WARNING! Trojan Win32 = account getting hacked!
I downloaded various mods from Wow Interface on Sunday, April 20. These mods included DamageMeters original and 2.4 updated versions, FuBar and Titan Panel, 2.4 versions plus some plugins for those mods. I also downloaded a mail mod, and lastly the preview Advanced Auctioneer Suite for 2.4. I played all day Sunday, all day Monday (virtually), and didn't log on at all on Tuesday. Wednesday morning I went to log in, only to discover that my account had been hacked.
I contacted Blizzard via their site form immediately, but their billing office wasn't open yet. I got an auto-response from them verifying that they had received my complaint. I checked out WowInterface forums for info on accounts getting hacked, and replaced the Panda trial I had with Comodo antivirus, and also got the SUPERAnitSpyware and Spybot Seach&Destroy that were recommended. These free programs still did not resolve the trojan that I am confident was used to hack my account. I noticed on Monday that when I started my computer, a Win32 application error was appearing and glitching, I'd have to hit close a dozen times before it'd finally go away. After getting all my new antivirus and spyware, Comodo recognized the win32 as a potential harmful program and kept asking if I wanted to allow or block, but I'd have to choose block a dozen times still before it'd go away. So I googled win32, discovered it's a trojan that gives evil people access to your passwords, and downloaded SpyHunter, which offered a "free" scan. During the scan it did find the win32 and a window popped up saying it got rid of it, but it refused to get rid of all the other viruses it found unless I paid $30. But after that, Comodo recognized it trying to connect to the internet via another program, which was suspicious behavior, so I uninstalled the SpyHunter. I am going to get Spyware Doctor for the $30 a year because for some reason I trust Dr. Phil.
Blizzard finally responded to my web form on Friday, April 25, they refused to communicate with me via e-mail, since my e-mail address was no longer linked to the account in question (DUH! the hacker changed that, along with all the other vitals to the account!). So I have to call their Billing, but they are closed today, have to wait until Monday. Meanwhile, some hacker is out their completely screwing up my account, probably selling my gold for real cash. I am happy I paid with PayPal, because I filed a complaint with them to get my month's subscription fee refunded, and at this point am dealing with the potential loss of my account that i had worked on and paid for for 9 months, my main was almost level 70, along with a 47, 39, two 29's, all maxed out on their professions. I hope to keep my account, getting it restored and having the month refunded (why should I be paying for someone to be violating my account?), but who knows?
Newsflash! While writing this, Cairenn at Wow Interface sent me a private message requesting that I "stop with all the unsubstantiated fear mongering everywhere", and says that they are looking into it, as I reported potential bugs with each of the mods that I downloaded warning that they might have the trojan. I am rather insulted, as I clearly stated in each bug report that I wasn't sure if that mod had the trojan, that it was one of about 7 which I had downloaded. I only care about others not getting hacked, hello I'm the victim here just wanting to prevent others getting victimized! It is VERY SUBSTANTIATED... Wow Interface is the ONLY site I've downloaded from since UI Central crashed, and I got hacked the next day. The only other program I downloaded was the WowInterface mod updater... EVERYONE BE CAREFUL!!!!!
|