Recent Razer drivers spiked with Trojan

Source: http://www.pcadvisor.co.uk/news/index.cfm?newsid=3202340&
http://www.geek.com/articles/news/razer-driver-downloads-include-a-trojan-20090923/

This was the reason i couldnt get my Lachesis software to work for the past few days. Ive been getting viruses warnings with AVG8.5 and even spybot S&D picked it up, but i ignored it as a regular temp file virus.

Razer took down the drive support site and reviewed it under Trend Micros recommendation.

 

thats good info, thanks for posting this bc i was going to update mine tonight.

or is it still bad?

 

It should be all clean now, but it never hurts to check. If you have an AV like AVG, Avast or Avira it should pick it up straight away.

Razer took down the site for 24 hours to clean out the infectious drivers. They found 8 device drivers were spiked with the win32.asprox trojan.

 

It is good never to rely on signature detection only. I always think it best to use behavior monitor security software or sandbox type methods. Either way, a layered defense is always a good idea along with regular backups of a known clean system.

 

Wow... I'm glad I haven't updated my Diamondback 3G drivers recently, as my Norton subscription expired a few weeks ago (not that Norton would have prevented the Trojan from owning my computer anyway). Thanks for the heads up.

 

The virus has become persistent, i think it has attached itself to the mouse's synapse memory or something.

I am getting rootkit and usbctrl.exe virus alerts all over the place. I think i may have to do a clean install.

Ive contacted Razer but they still have not responded

 

Unlucky with the drivers, but is this the first time hackers have actually bothered hacking gaming mice websites just to spread virii?

 

How did this happen? The drivers are from Razer itself, right? Or did someone post their own "drivers" to the site but they looked like they came from Razer?

 

Like the article said, the manufacturer's website got hacked and the proper drivers replaced with the tainted versions.

 

I ended up having to do a clean install of Windows. I emailed Razer support, they apologized and offered a tee shirt for my trouble.

 

Serious i wrote a 20min email explaining my situation and i get this drone reply 36 hours later

They totally didnt read what i wrote which is annoying. Seeing as i did specifically write on my inital email what OS, firmware, AV i was using and AV's i tried.

I own full razer gear (Death adder, Lachesis, Tarantula, Mantis and Goliathus pad) and i get this crap support

Here is my virus vault log ever since i installed those damned drivers:

 

For making me reinstall Windows (which I do all the time anyway):

Unfair Advantage Series - Well Equipped (Black, X Large) 1
Razer Beanie 1
Razer Messenger Bag (Cyclist Bag)  with Distressed THS 1

Just shipped today. Not bad.

 

Director of Customer Satisfaction emailed me back yesterday told me i would get free SWAG but he only asked for my shirt size

Hopefully i get those too...i want the messenger bag!

 

They only asked me for shirt size, too. That's all I was expecting until I saw the shipping confirmation email.

 

That's nice of Razer to offer consolation T-shirts.

Almost makes me wish I owned a Razer. Almost.

 

Could this be why Belkin has removed their drivers for the N52TE speed pad? It uses Razer Synapse memory.

 

I got my razer messenger bag and shirt today. The bag is pretty big, tons of pockets for everything.

Its worth $100+ so i guess its better compensation than nothing.

 

Hey, does anyone know what day the trojan started? The reason I ask is because I installed the death adder driver on 9/15. Was the infection this early? I think it says 9/19 on. I just want to be sure. I ran a virus check and didn't find anything but now I am a bit paranoid. Thanks,
stevenx

 

Most AV's will detect it no problem. What AV are you using?

 

avg free version. I checked it last week and I was clean. I am just paranoid.
Thanks,

Stevenx

 

September 19-22 are the dates for the bad drivers.