Defend what you create

Other Resources

Close

Library
My library

+ Add to library

Contact us
24/7 Tech support | Rules regarding submitting

Send a message

Your tickets

Profile

Back to news

Flooders take down Counter-Strike and Half-Life servers

March 27, 2012

Doctor Web—the Russian developer of IT security software—is notifying users of a wave of flooder applications designed to render Counter-Strike and Half-Life game servers, as well as other GoldSource servers, non-operational. Some of these malignant programs may also do harm to the criminals who use them.

Competition among owners of game servers is traditionally high, especially, if the servers are at the top of gametracker’s ratings. Back in February, several applications rendering GoldSource servers non-operational appeared in the public domain. One of them, added to the Dr.Web virus database as Flooder.HLDS, is a program that has a graphical interface and emulates a large number of connections to a game server which can make the server freeze and cause errors.

Flooder.HLDS.2 is another malevolent program that sends a certain data packet to the server which causes it to crash. The program offers several options to communicate with the server. Both applications have been widely spread via gaming forums, and the number of attacks on game servers that were orchestrated using these applications increased significantly during this month.

screen

Interestingly such programs can cause damage to the systems of intruders who try to bring down game servers. Doctor Web's virus analysts got hold of copies of Flooder.HLDS.2 from game forums. When run, some of these programs infect the system with DarkNess.47 backdoor and Trojan.Wmchange.14. The first acts as a backdoor and DDoS bot, while the Trojan horse changes WebMoney wallet IDs in the memory of the compromised computer to steal money from a user’s account. Thus, would-be criminals become victims of virus attacks and subject their computers to the risk of infection.

All the threats are added to the Dr.Web virus databases. More detailed information can be found in our video review:

Tell us what you think

You will be awarded one Dr.Webling per comment. To ask Doctor Web’s site administration about a news item, enter @admin at the beginning of your comment. If your question is for the author of one of the comments, put @ before their names.


Other comments

The Russian developer of Dr.Web anti-viruses

Doctor Web has been developing anti-virus software since 1992

Dr.Web is trusted by users around the world in 200+ countries

The company has delivered an anti-virus as a service since 2007

24/7 tech support

© Doctor Web
2003 — 2019

Doctor Web is the Russian developer of Dr.Web anti-virus software. Dr.Web anti-virus software has been developed since 1992.

2-12А, 3rd street Yamskogo polya, Moscow, Russia, 125040