Recently, my World of Warcraft account was hacked. I reported it to the Game Masters and after a couple days they were able to restore my account to it's full glory. That day, I went through the tedium of laying everything out like I had it and went to bed. The next morning I awoke to find the account had been compromised again and everything that had just been restored was again missing.
After the first problem, I ran Trend Micro's Anti-virus and was unable to detect anything on my computer. I also ran Ad-aware and Spybot and removed all the spyware that those programs found (all of it was low-risk). Unsatisfied, and sure that there was more to the problem, I went to Webroot and ran their virus scanner. There, I found a virus called Mal/Generic-A. I uninstalled Trend Micro and purchased Webroot's Anti-Virus and removed (quarantined) the virus along with some other low-threat items it detected.
I then tried to track where I might have picked up the virus, by locating the file, finding the date it was created and looking through my browser history (Firefox). It seems this virus had been on my machine since the middle of November and I picked it up while looking around for old episodes of one of my favorite TV shows. I was leary, to say the least. It seemed unlikely that this thing would be on my computer that long and only now did I have a problem; not to mention the fact that it really wasn't a World of Warcraft-related site I seemed to get it from.
In any case, a couple days had passed and my account had been restored. Feeling mildly reassured that my computer was now clean, I logged back in to my World of Warcraft account only to have it stolen again that night while I was asleep.
I'm 90% sure that my log-in information was stolen when i logged into the Account Management page at Battle-Net, and not when I logged into my game application. So, I'm worried that there may be something dormant on my machine that is only active when I visit the Battle-Net login screen. I'm also concerned that they've gotten into my Hotmail account and fear for my other online account's security.
Please help. I've used HJT before. If you want a log posted I'm happy to do that, I just didn't want to post it here if I wasn't supposed to.
Thanks again for your help.
Edited by Orange Blossom, 28 April 2010 - 09:09 PM.
Move to AII as no logs posted. ~ OB