In November, someone from a Chinese IP address accessed our build server and put a keylogger in some of our downloads. It was an unusual keylogger in that it doesn't run if you have a running anti-virus on your system, it doesn't run if you are using a virtual machine and it included code designed specifically to get at Honorbuddy and Demonbuddy. We have now locked the attacker out and we have checked what was infected. So far, we find that one release of Arelog, one release of GW2Buddy and both the HonorbuddyBETA and DemonbuddyBETA builds from last week were infected. If you think your machine has been infected, please reboot and install Microsoft Security Essentials - it detects and destroys the trojan. Please reset your password on WoW, Diablo 3 and Guild Wars 2 as well just to be safe. On behalf of the Buddy team, sorry.
A fuller account and diagram is here: http://www.thebuddyforum.com/demonbuddy-forum/96700-demonbuddy-beta-infected-2.html#post953489
