Overclock.net › Forums › Software, Programming and Coding › Networking & Security › WoW account Hacked- Hyjackthis file.
New Posts  All Forums:Forum Nav:

WoW account Hacked- Hyjackthis file. - Page 2

post #11 of 58
Quote:
Originally Posted by deskjockey View Post
mozilla with no script works excellent for that.


I have seen quite a few spams lately that have a "video" link thats actually an .exe

edit: there have been a bunch of script exploits also Big o
valid point. No script is a good solution.
post #12 of 58
Quote:
Originally Posted by forcemasteryoda View Post
hm so assume i clicked a wow video on the wow forums and say something stole my password, would something like that be a one time thing, or would it leave someone on my computer?

aka, i sometimes watch videos on wowmovies.com, and that's the only thing i can think of that would get crud on this computer, so do i just stop watching them or do i have to remove something?
yes stop that

now to get cleaning....sounds like you know kind of what you are doing.

start in safe mode and run your UPDATED antivirus

also run smitfraudfix, avg anti-root and then....msconfig and look at the startup...see whats there
    
CPUMotherboardGraphicsRAM
x3210 @ 3360@1.328v after vdroop Asus P5k3 xFx 8800gt Alpha Dog + Galaxy 8800gt gskill DDR3 pc8500 
Hard DriveOSPower
120gb + 1tb xpp Cm 500 mod 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
x3210 @ 3360@1.328v after vdroop Asus P5k3 xFx 8800gt Alpha Dog + Galaxy 8800gt gskill DDR3 pc8500 
Hard DriveOSPower
120gb + 1tb xpp Cm 500 mod 
  hide details  
Reply
post #13 of 58
Quote:
Crogram FilesMicrosoft SQL ServerMSSQL$INVENTORCONTENTBinnsqlservr.exe
Do you run an sql server? That is the only thing that seemed out of place to me...

I don't know many home users that run SQL servers.

If you use the same password, user name, etc. Then the problem lies in your own fault. I don't mean to be rude, but there is no other way that this could have happened unless you have an actual trojan, or you just use the same password and username for everything.
Gaming
(23 items)
 
  
CPUMotherboardGraphicsGraphics
AMD Phenom II X6 1090T Crosshair IV Formula GTX 560 GTX 580 
RAMRAMRAMRAM
G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI  G. Skill F3-12800CL6D-4GBPI 
Hard DriveHard DriveHard DriveOptical Drive
Seagate Hard Drive Seagate Hard Drive Crucial M4 SSD Sony Optiarc 
CoolingOSMonitorMonitor
Corsair H70 Windows 7 Professional x64 ASUS VH242H 23" Monitor ASUS VH242H 23" Monitor 
MonitorKeyboardPowerCase
Samsung SyncMaster 906BW 19" Monitor Logitech G15 Corsair 1K PSU Lian-Li 70A 
MouseMouse PadAudio
Logitech Performance MX Razer Vespula HT Omega Pro+ 
  hide details  
Reply
Gaming
(23 items)
 
  
CPUMotherboardGraphicsGraphics
AMD Phenom II X6 1090T Crosshair IV Formula GTX 560 GTX 580 
RAMRAMRAMRAM
G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI  G. Skill F3-12800CL6D-4GBPI 
Hard DriveHard DriveHard DriveOptical Drive
Seagate Hard Drive Seagate Hard Drive Crucial M4 SSD Sony Optiarc 
CoolingOSMonitorMonitor
Corsair H70 Windows 7 Professional x64 ASUS VH242H 23" Monitor ASUS VH242H 23" Monitor 
MonitorKeyboardPowerCase
Samsung SyncMaster 906BW 19" Monitor Logitech G15 Corsair 1K PSU Lian-Li 70A 
MouseMouse PadAudio
Logitech Performance MX Razer Vespula HT Omega Pro+ 
  hide details  
Reply
post #14 of 58
Thread Starter 
Quote:
Originally Posted by GH0 View Post
Do you run an sql server? That is the only thing that seemed out of place to me...

I don't know many home users that run SQL servers.

If you use the same password, user name, etc. Then the problem lies in your own fault. I don't mean to be rude, but there is no other way that this could have happened unless you have an actual trojan, or you just use the same password and username for everything.
my wow password is not the same as any other password i've ever had for anything. (wowforums require your wow password).

i have mirc java running when this log was taken, could that use sql?
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
post #15 of 58
Thread Starter 
also, i'm getting an error when i try to update mcaffee saying "Failed to initalize Common Updater subsystem. Make sure the McAfee Framework Service is running. McAfee Common Framework returned error fffff95b @ 2"

i checked msconfig and the service is enabled, went to manage my computer and service is set to automatic start, but currently stopped.
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
post #16 of 58
Quote:
Originally Posted by forcemasteryoda View Post
my wow password is not the same as any other password i've ever had for anything. (wowforums require your wow password).

i have mirc java running when this log was taken, could that use sql?

No, and I never knew that mIRC had a java sub, plugin, or frontend.

I would kill that... or end the process. Unless you run a website or anything similar... because that to me looks sorta fishy.

Quote:
Originally Posted by forcemasteryoda View Post
also, i'm getting an error when i try to update mcaffee saying "Failed to initalize Common Updater subsystem. Make sure the McAfee Framework Service is running. McAfee Common Framework returned error fffff95b @ 2"

i checked msconfig and the service is enabled, went to manage my computer and service is set to automatic start, but currently stopped.
Then start it...
Gaming
(23 items)
 
  
CPUMotherboardGraphicsGraphics
AMD Phenom II X6 1090T Crosshair IV Formula GTX 560 GTX 580 
RAMRAMRAMRAM
G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI  G. Skill F3-12800CL6D-4GBPI 
Hard DriveHard DriveHard DriveOptical Drive
Seagate Hard Drive Seagate Hard Drive Crucial M4 SSD Sony Optiarc 
CoolingOSMonitorMonitor
Corsair H70 Windows 7 Professional x64 ASUS VH242H 23" Monitor ASUS VH242H 23" Monitor 
MonitorKeyboardPowerCase
Samsung SyncMaster 906BW 19" Monitor Logitech G15 Corsair 1K PSU Lian-Li 70A 
MouseMouse PadAudio
Logitech Performance MX Razer Vespula HT Omega Pro+ 
  hide details  
Reply
Gaming
(23 items)
 
  
CPUMotherboardGraphicsGraphics
AMD Phenom II X6 1090T Crosshair IV Formula GTX 560 GTX 580 
RAMRAMRAMRAM
G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI G. Skill F3-12800CL6D-4GBPI  G. Skill F3-12800CL6D-4GBPI 
Hard DriveHard DriveHard DriveOptical Drive
Seagate Hard Drive Seagate Hard Drive Crucial M4 SSD Sony Optiarc 
CoolingOSMonitorMonitor
Corsair H70 Windows 7 Professional x64 ASUS VH242H 23" Monitor ASUS VH242H 23" Monitor 
MonitorKeyboardPowerCase
Samsung SyncMaster 906BW 19" Monitor Logitech G15 Corsair 1K PSU Lian-Li 70A 
MouseMouse PadAudio
Logitech Performance MX Razer Vespula HT Omega Pro+ 
  hide details  
Reply
post #17 of 58
Thread Starter 
Quote:
Originally Posted by GH0 View Post
No, and I never knew that mIRC had a java sub, plugin, or frontend.

I would kill that... or end the process. Unless you run a website or anything similar... because that to me looks sorta fishy.



Then start it...
it's a java plugin for web browser to connect to irc, it's on gamesurge.net

but if that's not what it is then i do not know, so i'll kill it. anyone have anything for me on the virus update scene


btw thanks for all the responses, talking to you guys makes me feel a lot better, i've sent 5-6 emails to WoW and talked to the gm on my alt's account and they have done nothing but refer me to other departments :S

thanks again!

edit to your edit: I started it and windows said it automatically stopped since it had no work to do.
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
post #18 of 58
June 26, 2008
Blizzard Authenticator Introduced
To help players avoid unauthorized account access, we're introducing the Blizzard Authenticator, a keychain token that generates codes that must be entered when signing in to the linked World of Warcraft account. For full details, please check out the official announcement or visit the information page.

BLIZZARD® AUTHENTICATOR OFFERS ENHANCED SECURITY FOR WORLD OF WARCRAFT® ACCOUNTS

Keychain token generates unique codes used to help prevent unauthorized account access

IRVINE, Calif. –- June 26, 2008 -– Blizzard Entertainment, Inc. today introduced an optional extra layer of security for World of Warcraft®, its award-winning massively multiplayer online role-playing game. Designed to attach to a keychain, the lightweight and waterproof Blizzard® Authenticator is an electronic device that generates a six-digit security code at the press of a button. This code is unique, valid only once, and active for a limited time; it must be provided along with the account name and password when signing in to the World of Warcraft account linked to it.

This optional security measure will be available at the 2008 Blizzard Entertainment Worldwide Invitational, which takes place June 28-29 in Paris, France. In addition, the Blizzard Authenticator will be made available for purchase via Blizzard's online store in the near future for a cost of $6.50.

"It's important to us that World of Warcraft offers a safe and enjoyable game environment," said Mike Morhaime, CEO and cofounder of Blizzard Entertainment. "One aspect of that is helping players avoid account compromise, so we're pleased to make this additional layer of security available to them."

To learn more about the Blizzard Authenticator, please visit http://www.blizzard.com/security-token.

     
CPUGraphicsRAMOS
i7 4710q Nvidia GT840M 8GB DDR-3 1600 Windows 8.1 
Monitor
17" 1600x900 
CPUMotherboardGraphicsGraphics
Intel Core i7 930 D0 ASUS P6T-SE Sapphire 5750 1Gig @ 820/1275 Asus 6770 DirectCU 1Gig @ 908/1150 
RAMHard DriveOptical DriveOS
Kingston Value 18 Gigs 1086mhz CL8 Western Digital 640GB Black LG GH24LS50 24x Windows 7 Home Premium 64 
MonitorPowerCaseMouse
ASUS VW266H 26" 1920x1200 Antec True Power New 750 watts Thermaltake V3 Black Edition Logitech G5 V2 
  hide details  
Reply
     
CPUGraphicsRAMOS
i7 4710q Nvidia GT840M 8GB DDR-3 1600 Windows 8.1 
Monitor
17" 1600x900 
CPUMotherboardGraphicsGraphics
Intel Core i7 930 D0 ASUS P6T-SE Sapphire 5750 1Gig @ 820/1275 Asus 6770 DirectCU 1Gig @ 908/1150 
RAMHard DriveOptical DriveOS
Kingston Value 18 Gigs 1086mhz CL8 Western Digital 640GB Black LG GH24LS50 24x Windows 7 Home Premium 64 
MonitorPowerCaseMouse
ASUS VW266H 26" 1920x1200 Antec True Power New 750 watts Thermaltake V3 Black Edition Logitech G5 V2 
  hide details  
Reply
post #19 of 58
Do you keep your windows updated? I heard something about a windows update that kept like a million of account from being stolen.
Smee 2.0
(14 items)
 
  
Reply
Smee 2.0
(14 items)
 
  
Reply
post #20 of 58
Thread Starter 
a bit late for me crazyhead, but i'll look into it.

and no sm3g, i have a personal vendetta about windows update... let me refer you to I, Robot if you think this is silly.
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
Blue Steel Beauty
(13 items)
 
  
CPUMotherboardGraphicsRAM
E8500 E0 ASUS P5P43 EVGA 9800 GTX+ 8192 (4x2G) Corsair Dominator DDR3 
Hard DriveOSMonitorKeyboard
640 Gig SATA Win 7 Ultimate 2x 22" Widescreen Asus VW224U Logitech G15 
PowerCaseMouse
Corsair 550vx Thermaltake Armor Series Logitech G5 2000dpi!! 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › WoW account Hacked- Hyjackthis file.