OneBag3

29 - Keylogger App

Submitted Via

Curse Client 4.0.1.104, Microsoft Windows NT 6.1.7600.0

Installed Version

v3.3.12

Description

This addon has a keylogger associated to it. My account got hacked the minute I installed the addon.

Installed Addons

Altoholic - Altoholic 4.0.005 Deadly Boss Mods - Deadly Boss Mods 4.70-r4833 HealBot Continued - 4.0.3.8 OneBag3 - v3.3.12 Postal - v3.4.5 Prat 3.0 - 3.4.15 QuestGuru - QuestGuru 2.2.3 Recount - v4.0.1e release

User When Change
Kaelten Oct 18, 2014 at 23:44 UTC Changed status from New to Fixed
JAYDONGRINER Jan 14, 2011 at 04:05 UTC Create

You must login to post a comment. Don't have an account? Register to get one!

  • 3 comments
  • Avatar of Kaelten Kaelten Oct 18, 2014 at 23:44 UTC - 0 likes

    I'm bulk marking these tickets as fixed.

    Please let me know if your issue persists

    WowAce.com & CurseForge.com Adminstrator
    Check out my new addon, OneChoice, it helps you pick quest rewards faster.
    Developer of Ace3, OneBag3, and many other addons and libraries
    Project lead and Mac developer for the Curse Client

  • Avatar of Aoxomoxoa Aoxomoxoa Mar 04, 2011 at 02:53 UTC - 0 likes

    Even if there were a "dummy" version posted on curse, which there aren't because all submission are reviewed before they are posted, you can't embed a keylogger into an LUA script that only runs in the environment that wow allows it to run in. So no, you did not get a keylogger from this addon at all.

    In all likelihood you got your infection by allowing scripts to run on your browser and visiting a wow related website that has advertising (malicious in some cases) targeted specifically at game related websites. Curse has, in the past, been the target of these malicious "ads" that install software on visitors systems...but it can happen on any website, especially sites with ads directed at wow players specifically.

    Use Firefox and install the "noscript" addon for it. You then allow scripts to run only from specific and trusted domains..the rest are filtered out and you are safer for it. If you use Internet Explorer, then you have only the option to allow or deny all scripts. If you block all scripts you will not be able to use 90% of the internet, and if you allow all you essentially let any website, including its advertising affiliates such as google, execute code on your system locally.

  • Avatar of aphrodytee aphrodytee Jan 24, 2011 at 02:28 UTC - 0 likes

    I've been using it for 2 years now. So far I haven't been hacked. I downloaded mine from curse though not here. I do know that people have put up dummy versions that are not the real addon and do not stay up for very long before they pull it off.

  • 3 comments

Facts

Last updated
Oct 18, 2014
Reported
Jan 14, 2011
Status
Fixed - Developer made requested changes. QA should verify.
Type
Other - Some other kind of issue
Priority
Medium - Normal priority.
Votes
0

Reported by

Possible assignees