Tojan Horse virus stealing WoW passwords (IE users only)
[User]Just passing out a warning regarding a Trojan Horse virus which has caused numerous WoW accounts to get hacked.

The Trojan Horse only affects users of Microsoft's Internet Explorer, since it was embedded in the code of a pop-up banner that was being hosted on the Allakhazam site. People who visited the Allakhazam site in the past few weeks using IE as their browser have been exposed to this virus.

There is a thread about it on the Allakhazam forums (http://wow.allakhazam.com/forum.html?forum=21&mid=1127831866231755738&num=33). The responsible banner provider has since been spotted and has been blocked by Allakhazam until further notice.

To see if you are affected by this Trojan Horse, look in the Program files\internet explorer directory for a file called "syssmss.exe". If it is present, you have the Trojan on your machine; kill the process in the task manager and delete this file, along with the copy placed in %WIN_DIR%\Downloaded Program Files, called either "fucksnow.exe" or "muma.exe". Apologies for the name of that one file, but that's what it's called.

As a final note, people, who have a firewall and virus scanner which are up to date as well as run updates on their Windows OS often, should not have been infected. It appears the Trojan makes use of a security leak which has been fixed by Microsoft a while ago. More info is in the topic listed above.Submitted by Maurice, 10:24 AM

Had one of our guys walk right into that one.
Everything on the account was vendored for cash, and the gold mailed off.

More useless pieces of shit that deserve a bullet in the head.

You have to wonder how the ad wasn't screened better for content than that.

Trojan Virus Alert This only applies to you if you are running an older version of Internet Explorer, have not updated windows with the latest security patches and do not have virus protection on your computer. Apparantly one of our ad providers was affected by a trojan and was serving it to our site for several days last weekend. This is a keylogger and could possibly compromise your game login and password. As soon as we discovered it, we pulled all of their ads.

To see if you got the trojan, go to Program Files/Internet Explorer in your directory and look for a file named "syssmss.exe". If it is there, then open your task manager and delete the file. Also go to %WIN_DIR%\Downloaded Program Files and delete a file named either "fucksnow.exe" or "muma.exe". Then once you have done that, log into the game and change your password.

There are also several online sites that scan your computer for free.

http://www.windowsecurity.com/trojanscan/
http://housecall.trendmicro.com/

We apologize for this. In 6 years of running this site, nothing like this has ever happened. It kills me to think that we may have, even inadvertantly, caused anyone to have their account compromised. We're all about making the games better and more fun. Believe me, we will do everything in our power to make sure it does not happen again.

Along with the advertiser who sent this, and in cooperation with the FBI, we are attempting to track down the people who sent this. I hope I get a few minutes in a back room with the bastards.