Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Am I being keylogged??
New Posts  All Forums:Forum Nav:

Am I being keylogged?? - Page 2

post #11 of 59
AVG does a pretty good job for me. Malwarebytes is good stuff too. A lot of ISP's provide free anti-virus software also. Mine does at least.
Like a Bausss...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5-2500K @ 4.7ghz 1.416v ASUS P8P67 PRO XFX Radeon HD 6950 (unlocked to 6970) G.SKILL Ripjaws 4 x 2GB 1600MHz 7-8-7-24 
Hard DriveOSPowerCase
OCZ Vertex 2 120GB Win 7 Home Prem. x64 XFX 850W Black Edition CM 690 II Adv. 
Mouse
Razer Abyssus 
  hide details  
Reply
Like a Bausss...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5-2500K @ 4.7ghz 1.416v ASUS P8P67 PRO XFX Radeon HD 6950 (unlocked to 6970) G.SKILL Ripjaws 4 x 2GB 1600MHz 7-8-7-24 
Hard DriveOSPowerCase
OCZ Vertex 2 120GB Win 7 Home Prem. x64 XFX 850W Black Edition CM 690 II Adv. 
Mouse
Razer Abyssus 
  hide details  
Reply
post #12 of 59
Could also use the on screen keyboard when filling out important information.
    
CPUMotherboardGraphicsRAM
2500k ASUS P8P67 WS Revolution 2 x Asus GTX470 900/1800/1700 Corsair Vengence 8gb 
Hard DriveOSMonitorPower
120gb ssd, 4 x 1TB F3's Raid 0, 2TB F4 Backup Windows 7 Catleap 27 1440p Enermax Revolution 1050w 
Case
Case Labs M8 with pedestal  
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
2500k ASUS P8P67 WS Revolution 2 x Asus GTX470 900/1800/1700 Corsair Vengence 8gb 
Hard DriveOSMonitorPower
120gb ssd, 4 x 1TB F3's Raid 0, 2TB F4 Backup Windows 7 Catleap 27 1440p Enermax Revolution 1050w 
Case
Case Labs M8 with pedestal  
  hide details  
Reply
post #13 of 59
Quote:
Originally Posted by Bricked;12825221 
Is there a software that I can use to check for one? I don't have an anti-virus installed as I have very good browsing habits and follow the "Only ignorant people get viruses" rule.

What you have described is the exact reason why you install, anti-virus, HBSS (Host Based Security System), such as Kaspersky, Symantec Endpoint protection, malwarebytes, superantispyware and the likes.

Just because you never open an email attachment don't go to porn and such doesn't mean your system will never get compromised. So many things especially now a days are embedded into flash and just going to a site will infect your system.

Your best best is to run full scans with malwarebytes, superantispyware, get MSE, and Kaspersky. Depending on what you have got it could be down to the boot sector, which would require a lot more work to get rid of, such as a low level format and full reinstall.
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
post #14 of 59
Quote:
Originally Posted by Bricked;12825221 
Well guys, I'm beginning to think I've got a keylogger hiding somewhere in my system. It started a few months ago when I got a random fraudulent charge on my account to the tune of $40 for some timeshare crap... I filed a fraud claim and had it charged back to my account and a new debit card issued. Then a month later it happens again using my new debit card number... Odd... Went through the same process and filed a claim and got a new debit card. But now a month later I've got yet another charge, but this time to the tune of $29.95 from the EA Store.

Charge description:



So I called EA and spoke with them. They told me that someone had in fact used my card to purchase a game and they had the same last name as me, but different first name registered under the EA account. They also lived in the same state as I do... "This is EXTREMELY fishy! *dude laughs*" was the immediate response I got. The overall response I got from the EA rep was "Don't worry, I've sent an email to my higher ups. They communicate only through email, but they're like dogs when they get their hands on a fraud case like this and rest assured they will figure this out." In the mean-time, I've gone ahead and filed YET ANOTHER fraud claim on my account and ordered YET ANOTHER debit card.

How the hell does this asshat keep getting my debit card number?? Honestly! The only places I shop online are very trusted such as Newegg, Amazon (including Amazon Payments) and other similarly reputable stores...

Is there a software that I can use to check for one? I don't have an anti-virus installed as I have very good browsing habits and follow the "Only ignorant people get viruses" rule.


Thanks for reading if you've made it this far, and I'm looking forward to hearing what you guys think. redface.gif

Could be--though I don't have any experience with keyloggers--have you run the typical spyware/malware scanners since you started having these issues? Virus scans?

One thing to consider is that perhaps someone is getting your info in person. There are many instances where someone who works at a regular physical business, and has a card cloning machine with them--for example, let's say you go to a restaurant and pay with your debit card--the waiter takes your card to run the bill, and when you pay, they just swipe your card through their reader as well. It happened to my sister--luckily the person was eventually caught.

I'd do the usual scans on your system though. Or if you're super paranoid, format and reinstall should do the trick.
    
CPUMotherboardGraphicsRAM
i5-2500K Biostar TP67B+ XFX HD5750 1GB 2x4GB DDR3 Corsair 1600 
Hard DriveOSMonitorPower
60GB OCZ SSD, 2x160GB HDD RAID0, 500GB+500GB+1.5TB Windows 7 Ultimate 64-bit Samsung SyncMaster 930B Antec SmartPower 450w 
Case
Antec 900 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
i5-2500K Biostar TP67B+ XFX HD5750 1GB 2x4GB DDR3 Corsair 1600 
Hard DriveOSMonitorPower
60GB OCZ SSD, 2x160GB HDD RAID0, 500GB+500GB+1.5TB Windows 7 Ultimate 64-bit Samsung SyncMaster 930B Antec SmartPower 450w 
Case
Antec 900 
  hide details  
Reply
post #15 of 59
Quote:
Originally Posted by Somenamehere;12825337 
Could also use the on screen keyboard when filling out important information.

That won't work. The ONK is an emulated HID and still register as key presses smile.gif


Seriously, install some network monitoring tools. Monitor the outgoing and incoming ports on your PC as well as the protocols being used. You should be able to spot suspicious activity. Also, I hope you're using a different PC for this post because if a keylogger is installed you just alerted whoever it is!

Please pay attention: If you had a KL on your machine a format is the way to go, but first try find out who is stealing your money so you can bring these scumbags to justice!
    
CPUMotherboardGraphicsRAM
Intel i5 2500 @ 4,004GHz (1.202v) Asus P8P67-PRO B3 Leadtek GTX260 65nm 896MB 700|1430|1100 4GB DDR3 Muskin 1686MHz 
Hard DriveOptical DriveOSMonitor
2xWD CB 250GB, 2x SG 320GB, 1xSS F1 1TB Pioneer DVD-RW Windows 7 Professional 64bit Samsung 2032BW 20" 1680x1050 16:10 
KeyboardPowerCaseMouse
Razer Lycosa CoolerMaster GX 550W Coolermaster Storm Sniper Razer DeathAdder 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel i5 2500 @ 4,004GHz (1.202v) Asus P8P67-PRO B3 Leadtek GTX260 65nm 896MB 700|1430|1100 4GB DDR3 Muskin 1686MHz 
Hard DriveOptical DriveOSMonitor
2xWD CB 250GB, 2x SG 320GB, 1xSS F1 1TB Pioneer DVD-RW Windows 7 Professional 64bit Samsung 2032BW 20" 1680x1050 16:10 
KeyboardPowerCaseMouse
Razer Lycosa CoolerMaster GX 550W Coolermaster Storm Sniper Razer DeathAdder 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
post #16 of 59
Download processexplorer from systernals and check what processes are talking to the intenet over what ports. You will most likely see explorer or your default web browser talking to some random residential ip.

You should also run a scan with mbam
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
post #17 of 59
Thread Starter 
Wow thanks for the great response guys! I'm running malwarebytes right now and it hasn't found anything, but I'll be doing the fresh install and password change on everything important just to be safe. My wireless network is secured. I do use my debit card at the pump a lot... that might be the problem I'm running into here. I'll be making sure to pay inside only from now on.

EDIT: And I'd love to find out who is doing this, but EA was completely unwilling to release their IP to me and didn't even give me the email address that they used on the account. If they used MY money to make the transaction, I think I have a right to know who THEY are...
Edited by Bricked - 3/22/11 at 9:37am
post #18 of 59
Quote:
Originally Posted by Bricked;12825401 
Wow thanks for the great response guys! I'm running malwarebytes right now and it hasn't found anything, but I'll be doing the fresh install and password change on everything important just to be safe. My wireless network is secured. I do use my debit card at the pump a lot... that might be the problem I'm running into here. I'll be making sure to pay inside only from now on.

EDIT: And I'd love to find out who is doing this, but EA was completely unwilling to release their IP to me and didn't even give me the email address that they used on the account. If they used MY money to make the transaction, I think I have a right to know who THEY are...

Use the program mentioned above! See if explorer is connecting to an IP address and there's your IP! Then get in touch with EA and see if they will at least confirm they're the same addresses and such! smile.gif Tell them you need the information because if they match you're going to start criminal proceedings. That should convince them!


EDIT:

Welcome to OCN, also!

Pop into the UserCP and fill out your system specs =D
Edited by Viridian - 3/22/11 at 9:42am
    
CPUMotherboardGraphicsRAM
Intel i5 2500 @ 4,004GHz (1.202v) Asus P8P67-PRO B3 Leadtek GTX260 65nm 896MB 700|1430|1100 4GB DDR3 Muskin 1686MHz 
Hard DriveOptical DriveOSMonitor
2xWD CB 250GB, 2x SG 320GB, 1xSS F1 1TB Pioneer DVD-RW Windows 7 Professional 64bit Samsung 2032BW 20" 1680x1050 16:10 
KeyboardPowerCaseMouse
Razer Lycosa CoolerMaster GX 550W Coolermaster Storm Sniper Razer DeathAdder 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel i5 2500 @ 4,004GHz (1.202v) Asus P8P67-PRO B3 Leadtek GTX260 65nm 896MB 700|1430|1100 4GB DDR3 Muskin 1686MHz 
Hard DriveOptical DriveOSMonitor
2xWD CB 250GB, 2x SG 320GB, 1xSS F1 1TB Pioneer DVD-RW Windows 7 Professional 64bit Samsung 2032BW 20" 1680x1050 16:10 
KeyboardPowerCaseMouse
Razer Lycosa CoolerMaster GX 550W Coolermaster Storm Sniper Razer DeathAdder 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
post #19 of 59
It's honestly not worth pinning your debit card on security software. Backup everything you have or will need onto external media and reformat. For peace of mind, it's what I recommend. Especially when you've got money on the line.

An antivirus I recommend is Avast. As others will say, there are many other alternatives. Avira Antivir, AVG and NOD32 to name a few. You should install Malwarebytes AntiMalware in addition to any one of those AV's and you'll be set.
Lightning
(20 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K Gigabyte Z68XP-UD3P XFX HD6950 DD 2GB 8GB Corsair Vengeance 1600MHz 
Hard DriveHard DriveHard DriveOptical Drive
Crucial C300 64GB Samsung F2 1.5TB Seagate 500GB LG GH20NS15 
Optical DriveOSMonitorMonitor
Optiarc AD-7261S Win7 64bit 22" LG L226WTQ 19" AOC 
KeyboardPowerCaseMouse
Steelseries 6Gv2  Silverstone ST75F 750W Modular Fractal Design Arc Logitech G500 
Mouse PadAudioAudioAudio
Steelseries QCK Diablo 3 Beyerdynamic DT770 80ohm Fiio E9 Headphone Amp X-Fi XtremeGamer 
  hide details  
Reply
Lightning
(20 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K Gigabyte Z68XP-UD3P XFX HD6950 DD 2GB 8GB Corsair Vengeance 1600MHz 
Hard DriveHard DriveHard DriveOptical Drive
Crucial C300 64GB Samsung F2 1.5TB Seagate 500GB LG GH20NS15 
Optical DriveOSMonitorMonitor
Optiarc AD-7261S Win7 64bit 22" LG L226WTQ 19" AOC 
KeyboardPowerCaseMouse
Steelseries 6Gv2  Silverstone ST75F 750W Modular Fractal Design Arc Logitech G500 
Mouse PadAudioAudioAudio
Steelseries QCK Diablo 3 Beyerdynamic DT770 80ohm Fiio E9 Headphone Amp X-Fi XtremeGamer 
  hide details  
Reply
post #20 of 59
waiters dont need a card clone. They can just take a picture with cell phone.
ass eater
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9550 @ 3.8 EVGA 790i Ultra 3xGTX 280 SLI 8GB G.SKill Pi DDR3 1800 
Hard DriveOptical DriveOSMonitor
RAID 0 OCZ vertex 2 SSD 64GB /2xWD 1TB BE Lite on BLU RAY burner Windows 7 64bit ASUS 22" HD Moniter 
KeyboardPowerCaseMouse
A shitty one BFG 1200 AZZA Solano G9x 
Mouse Pad
A fucking piece of wood 
  hide details  
Reply
ass eater
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9550 @ 3.8 EVGA 790i Ultra 3xGTX 280 SLI 8GB G.SKill Pi DDR3 1800 
Hard DriveOptical DriveOSMonitor
RAID 0 OCZ vertex 2 SSD 64GB /2xWD 1TB BE Lite on BLU RAY burner Windows 7 64bit ASUS 22" HD Moniter 
KeyboardPowerCaseMouse
A shitty one BFG 1200 AZZA Solano G9x 
Mouse Pad
A fucking piece of wood 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Am I being keylogged??