Blizzard has warned it's World Of Warcraft users that there is a vicious Trojan able to bypass their authentication system. The Trojan acts in real time able to steal your account information as you enter them. The Trojan is built into a fake, but fully functional Curse Client that is downloaded from a fake Curse Client website.
The best way to remove the Trojan(Well easiest way) is to uninstall or delete the fake curse client. Then run scans from an updated Malwarebytes. After you've finish that step you can tell if it's on your account by making a MSInfo file and then look in the Start-Up section of the file.
If you do have the virus this is how it will appear:
Disker rundll32.exe c:\users\name\appdata\local\temp\w_win.dll,dw Name-PC\Name
or
Disker64 rundll32.exe c:\users\name\appdata\local\temp\w_64.dll,dw Name-PC\Name
Blizzard still suggests that the authenticator is still the best way to protect your account as it's rarely compromised. However, there are other way's to attempt to avoid getting the virus. If you have the virus be sure to remove it as fast as humanly possible, and if you don't have it then have Blizzard always remember your account name, in the hopes of a keylogger may get your password, but not the name needed to use it. The best method is to use Battle.Net launcher as it will load your credentials automatically, without having to put any information manually
No comments:
Post a Comment