Wrestling Talk | NCAA, High School, Pro, & College Wrestling

Connect with Facebook
Register Forums Photos Results Videos Groups Rankings Mark Forums Read

Technique Library Update
The TWT Wrestling Video Library continues to grow. We have added 300 clips to get started and have another 1,750 to add to the initial database.

TheWrestlingTalk > Site Suggestions, Feedback, & Support Additional Information

Got hit with a fake Flash Player update

fake, flash, hit, player, update
Got hit with a fake Flash Player update

Reply
Page 1 of 2 1 2
 
Thread Tools Display Modes Language
Old 11-04-2009, 11:00 AM   #1
National Finalist
 
Gantry's Avatar
 
Join Date: Feb 2008
Location: Chicago
Posts: 817
Gantry is an All AmericanGantry is an All AmericanGantry is an All AmericanGantry is an All American
Default Got hit with a fake Flash Player update
Was in one of the threads on the college page when I got an alert to install an update for the Flash Player. The screen kind of faded gray on the sides and the adobe alert was right in the middle of the thread/page. Immediately tried to get me to save an exe to install flash.

Was running Microsoft Security Essentials and it caught it right away, here are the details from their stie:

http://www.microsoft.com/security/po...tid=2147627865

It likely came from something via your ad network but wanted to give the heads up. I canceled the download, went to adobe's site and verified that I was on the latest version and did not need an update.

I had multiple tabs open but I was in the TWT page and that alert only showed on the tab for the forums.
Send me a PM Send Me a Gift My Albums
Reply With Quote

Old 11-04-2009, 11:32 AM   #2
Web Host
Users Flag!
 
Schlottke's Avatar
 
Join Date: Mar 2007
Location: Minnesota
Posts: 4,269
Blog Entries: 17
Schlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a Legend
Default Re: Got hit with a fake Flash Player update
Originally Posted by Gantry View Post
Was in one of the threads on the college page when I got an alert to install an update for the Flash Player. The screen kind of faded gray on the sides and the adobe alert was right in the middle of the thread/page. Immediately tried to get me to save an exe to install flash.

Was running Microsoft Security Essentials and it caught it right away, here are the details from their stie:

http://www.microsoft.com/security/po...tid=2147627865

It likely came from something via your ad network but wanted to give the heads up. I canceled the download, went to adobe's site and verified that I was on the latest version and did not need an update.

I had multiple tabs open but I was in the TWT page and that alert only showed on the tab for the forums.
What page were you on?

The ad service is managed by Google, so if there is an issue I'm sure it will be dealt with swiftly.

Thanks for the heads up.
__________________
Diet & Training System | "Manage your season!"
High School Blogs Groups Videos Toolbar
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 04:02 PM   #3
National Finalist
 
Gantry's Avatar
 
Join Date: Feb 2008
Location: Chicago
Posts: 817
Gantry is an All AmericanGantry is an All AmericanGantry is an All AmericanGantry is an All American
Default Re: Got hit with a fake Flash Player update
Unfortunately I don't remember which thread and had closed Firefox and the tab to be safe before posting.

Was very well done, almost had me fooled and I get paid to clean up PCs that get infected with this stuff! Also the first Firefox-specific malware I've actually seen, though I've heard of them out there.

Like you said though, if it was via google I'm sure it's been stopped already. If only malware writers (who are amazing clever) used their power for good..
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 05:08 PM   #4
Web Host
Users Flag!
 
Schlottke's Avatar
 
Join Date: Mar 2007
Location: Minnesota
Posts: 4,269
Blog Entries: 17
Schlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a Legend
Default Re: Got hit with a fake Flash Player update
Originally Posted by Gantry View Post
Unfortunately I don't remember which thread and had closed Firefox and the tab to be safe before posting.

Was very well done, almost had me fooled and I get paid to clean up PCs that get infected with this stuff! Also the first Firefox-specific malware I've actually seen, though I've heard of them out there.

Like you said though, if it was via google I'm sure it's been stopped already. If only malware writers (who are amazing clever) used their power for good..
Yeah, some of that stuff they put out is pretty clever. Like the viral facebook/myspace messages and mimicking a legit flash install.

I still don't understand why Google allows them to host their banners on a separate server though.
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 08:33 PM   #5
National Finalist
 
Gantry's Avatar
 
Join Date: Feb 2008
Location: Chicago
Posts: 817
Gantry is an All AmericanGantry is an All AmericanGantry is an All AmericanGantry is an All American
Default Re: Got hit with a fake Flash Player update
Just got it again in the "NCAA Survey RE Format, Timing of Wrestling Championships" thread
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 08:38 PM   #6
National Finalist
 
Gantry's Avatar
 
Join Date: Feb 2008
Location: Chicago
Posts: 817
Gantry is an All AmericanGantry is an All AmericanGantry is an All AmericanGantry is an All American
Default Re: Got hit with a fake Flash Player update
Pretty sure the nefarious URL in question from that thread is secureupdatetracking.com, that shows up when I load the thread and I'm fairly certain that's where the flash exe was trying to download from, the first time I got it.

WHOIS info on that domain - registered in asia and hosted in the UK:

http://www.networksolutions.com/whoi...tetracking.com

You may want to see exactly where the reference to that domain is being handled when loading the page, certainly doesn't seem like a legit site and google/twitter info is non-existant
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 08:59 PM   #7
Web Host
Users Flag!
 
Schlottke's Avatar
 
Join Date: Mar 2007
Location: Minnesota
Posts: 4,269
Blog Entries: 17
Schlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a Legend
Default Re: Got hit with a fake Flash Player update
Yeah, I tracked it down, banned him and banned the whole range of IPs for his country.
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 09:00 PM   #8
Web Host
Users Flag!
 
Schlottke's Avatar
 
Join Date: Mar 2007
Location: Minnesota
Posts: 4,269
Blog Entries: 17
Schlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a Legend
Default Re: Got hit with a fake Flash Player update
haha.. you actually did copy it, too.
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 09:21 PM   #9
National Finalist
 
Gantry's Avatar
 
Join Date: Feb 2008
Location: Chicago
Posts: 817
Gantry is an All AmericanGantry is an All AmericanGantry is an All AmericanGantry is an All American
Default Re: Got hit with a fake Flash Player update
I realized about .000234 seconds after posting that I might have made a mistake with the copy/paste. I gotta say, that was an impressively well written piece code. With the news that Mozilla will now notify you when your flash is outdated I actually thought it was was legit at first...
Send me a PM Send Me a Gift My Albums
Reply With Quote
Old 11-04-2009, 09:55 PM   #10
Web Host
Users Flag!
 
Schlottke's Avatar
 
Join Date: Mar 2007
Location: Minnesota
Posts: 4,269
Blog Entries: 17
Schlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a LegendSchlottke is a Legend
Default Re: Got hit with a fake Flash Player update
Aside from the image it loaded being grainy I'd have to agree with you.
Send me a PM Send Me a Gift My Albums
Reply With Quote
Reply
Page 1 of 2 1 2

« Wrestling Technique Library ala Kolat.com & FloWrestling Wave | Using attachments in new threads »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are Off
Pingbacks are On
Refbacks are Off

Platinum Sponsors
Silver Sponsors
Contact Us - Evony - Home - Archive - Privacy Statement - Top

Powered by vBulletin Copyright © 2000-2009 Jelsoft Enterprises Limited.

SEO by vBSEO 3.2.0 ©2008, Crawlability, Inc.