Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Am I being keylogged??
New Posts  All Forums:Forum Nav:

Am I being keylogged?? - Page 3

post #21 of 59
Quote:
Originally Posted by PcKiller;12825272 
What do I do keep safe when I buy stuff online , is to use a visa gift card in the exact amount of my purchase, and only use it once. That way, if someone does get the number, it is no big deal, as the money was spent already. It only cost me $3.00 for the card at my bank.

That would work for people who rarely buy stuff online. Would be a terrible idea for someone like me smile.gif.
Intellect v2
(9 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-6700K Processor ASUS ROG MAXIMUS VIII HERO LGA1151 DDR4 M.2 SAT... EVGA GTX 1080 SC ACX 3.0 Crucial Ballistix Sport 32GB DDR4 2400 MT/s (PC... 
CoolingKeyboardPowerCase
Noctua NH-D15 Das Keyboard 4 Professional (Brown) Corsair AX860 Fractal Design Define R5 
Mouse
MIONIX NAOS 7000 
  hide details  
Reply
Intellect v2
(9 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i7-6700K Processor ASUS ROG MAXIMUS VIII HERO LGA1151 DDR4 M.2 SAT... EVGA GTX 1080 SC ACX 3.0 Crucial Ballistix Sport 32GB DDR4 2400 MT/s (PC... 
CoolingKeyboardPowerCase
Noctua NH-D15 Das Keyboard 4 Professional (Brown) Corsair AX860 Fractal Design Define R5 
Mouse
MIONIX NAOS 7000 
  hide details  
Reply
post #22 of 59
your best bet is get malwarebytes, superantispyware, microsoft security essentials.
Get all updated with most current definitions (updates).
Restart system in safe mode (no networking)
Do full scan with all.
Report back what they found.
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
post #23 of 59
Quote:
Originally Posted by XNine View Post
Hard to say how they're doing it.
First, I'd do a backup of all your music/docs/pics, etc, then reformat and reinstall. Get a copy of Eset Nod 32 and install it as soon as you've reinstalled Windows. You're obviously being comrpomised somehow. The "only ignorant people get viruses" rule is as ignorant as it gets, honestly.

Also, do you use a wireless connection? Could be one of your neighbors sniffing packets on an unsecured wireless network.

If it's a secured network it's just as easy to get into if you know how to sniff networks...



Quote:
Originally Posted by Viridian View Post
Use the program mentioned above! See if explorer is connecting to an IP address and there's your IP! Then get in touch with EA and see if they will at least confirm they're the same addresses and such!


EDIT:

Welcome to OCN, also!

Pop into the UserCP and fill out your system specs =D
agreed! Go here:

http://www.overclock.net/specs.php?do=addsystem

Also, not sure if you're aware.. if someone knows you don't use an antivirus and has any means of connecting to it they can just plant a keylogger on your PC remotely with ease.

It's like sex. Just because your girlfriend says she's on the pill doesn't mean she is. And it also doesnt mean she is on medication that inhibits the pill.

Also, just because you use a condom doesn't mean it won't break. Etc etc.

You have to practice safe.. browsing, as well as have protection installed otherwise your'e just asking for it. Even Linux isn't hack-proof. Someone who knows what they are doing can compromise any system, but if you have some layered security they are less likely to WANT to go through the hassle of hijacking your system.

Now for some programs:

Malwarebyes would be the first thing to run.

After that, grab something free like Avast, or grab a trial of Eset Smart Security 4 or Nod32, and update and scan that. You'll find Eset is phenomenal so I recommend grabbing that one. Otherwise you could go for the mainstream Norton... but whatever, grab an antivirus. Update it. Scan.

Also, grab a copy of Glary Utilities. Run that. See how your PC is doing.

Then report back here. Tell us what is going on.

Another thing to run is hijackthis. Gogogogo!
Edited by Bloodfire - 3/22/11 at 9:46am
BloodfireLAN
(16 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K Asus P67 Pro Asus GTX 680 32GB G. Skill 
Hard DriveHard DriveOptical DriveOS
1TB SATA6 WD Caviar Black Corsair 240GB N/A Win 8 Pro x64 
MonitorMonitorMonitorKeyboard
Asus P278Q 1440p BenQ 1080p BenQ 1080p maxxkeyboard Custom Mechanical MX Cherry Brown 
PowerCaseMouseMouse Pad
Corsair 750TX Custom build in the works Logitech Trackball/Logitech Anywhere Mouse MX N/A 
  hide details  
Reply
BloodfireLAN
(16 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500K Asus P67 Pro Asus GTX 680 32GB G. Skill 
Hard DriveHard DriveOptical DriveOS
1TB SATA6 WD Caviar Black Corsair 240GB N/A Win 8 Pro x64 
MonitorMonitorMonitorKeyboard
Asus P278Q 1440p BenQ 1080p BenQ 1080p maxxkeyboard Custom Mechanical MX Cherry Brown 
PowerCaseMouseMouse Pad
Corsair 750TX Custom build in the works Logitech Trackball/Logitech Anywhere Mouse MX N/A 
  hide details  
Reply
post #24 of 59
If this key logger is any good it will spread itself the moment you plug in an external drive or connect to a network share.you need to make sure you clean up your machine BEFORE you back up.
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
post #25 of 59
Thread Starter 
Quote:
Originally Posted by Viridian View Post
Use the program mentioned above! See if explorer is connecting to an IP address and there's your IP! Then get in touch with EA and see if they will at least confirm they're the same addresses and such! Tell them you need the information because if they match you're going to start criminal proceedings. That should convince them!


EDIT:

Welcome to OCN, also!

Pop into the UserCP and fill out your system specs =D
I've installed the program but It's not showing me any connecting IP's, just CPU usage based on each program active.

And thanks for the welcome! I currently don't have a system right now (piece of crap lappy) but I'm working on it!
post #26 of 59
Quote:
Originally Posted by Viridian View Post
That won't work. The ONK is an emulated HID and still register as key presses


Seriously, install some network monitoring tools. Monitor the outgoing and incoming ports on your PC as well as the protocols being used. You should be able to spot suspicious activity. Also, I hope you're using a different PC for this post because if a keylogger is installed you just alerted whoever it is!

Please pay attention: If you had a KL on your machine a format is the way to go, but first try find out who is stealing your money so you can bring these scumbags to justice!
First, if he's too proud to run an Antivirus client of some kind I'm going to make the conclusion he's not savvy enough to use the tools necessary to find a keylogger, much less find an IP that it's registering to.

Secondly, his bank or the isntitutions that have seen these fraudulent purchases would be more capable and inclined to find out who's doing it. Credit Card fraud is a Felony in the US. They take these things very seriously.

Best thing to do is reformat/reinstall and install an AV. I recommend Eset for it's small footprint and constant updates. That way he can rule out anything on his computer and be safer from then on.

Securing a network, wireless or not is also important.
post #27 of 59
Have you also considered that if you have a wireless network that is not well protected (even WEP can be broken easily) then you may be being attacked closer than you think!
Main System
(14 items)
 
Folding Rig
(14 items)
 
HTPC
(13 items)
 
CPUMotherboardGraphicsRAM
i5 3570K 4.7Ghz @ 1.312V Asus P8Z77-V Pro Palit 4Gb GTX680 JetStream 16Gb 1866Mhz G.Skills RipjawsZ 
Hard DriveOptical DriveCoolingOS
256Gb Samsung 840Pro LG DVD-Bluray RW Custom WC - EK SupremeHF, EK-FC680 GTX+, XSPC 2... Win 7 Home Premium 64 
MonitorPowerCase
Samsung P2450H 24" 1920x1080 XFX Black 850W Antec 300 modded to take 2xRads 
CPUMotherboardGraphicsGraphics
Phenom II X6 1090T Asus Crosshair V Formula-Z EVGA GTX980Ti Hybrid 1Gb Zotac GTX 650 TI 
RAMHard DriveOSMonitor
8Gb DDR3 1600Mhz  Crucial M4 Linux Ubuntu 15.10 19" - 1440x900 
Power
Corsiar AX760i 
CPUMotherboardGraphicsRAM
Athlon II X3 460 @3510GHz ASRock N68C-GS UCC HD5450 4Gb DDR3-1600  
Hard DriveOptical DriveMonitorPower
1Gb WD Black drive SATA DVD - blu-ray 32" Sony Bravia 350W ANTEC Supplied 
Case
ANTEC minuet 350 
  hide details  
Reply
Main System
(14 items)
 
Folding Rig
(14 items)
 
HTPC
(13 items)
 
CPUMotherboardGraphicsRAM
i5 3570K 4.7Ghz @ 1.312V Asus P8Z77-V Pro Palit 4Gb GTX680 JetStream 16Gb 1866Mhz G.Skills RipjawsZ 
Hard DriveOptical DriveCoolingOS
256Gb Samsung 840Pro LG DVD-Bluray RW Custom WC - EK SupremeHF, EK-FC680 GTX+, XSPC 2... Win 7 Home Premium 64 
MonitorPowerCase
Samsung P2450H 24" 1920x1080 XFX Black 850W Antec 300 modded to take 2xRads 
CPUMotherboardGraphicsGraphics
Phenom II X6 1090T Asus Crosshair V Formula-Z EVGA GTX980Ti Hybrid 1Gb Zotac GTX 650 TI 
RAMHard DriveOSMonitor
8Gb DDR3 1600Mhz  Crucial M4 Linux Ubuntu 15.10 19" - 1440x900 
Power
Corsiar AX760i 
CPUMotherboardGraphicsRAM
Athlon II X3 460 @3510GHz ASRock N68C-GS UCC HD5450 4Gb DDR3-1600  
Hard DriveOptical DriveMonitorPower
1Gb WD Black drive SATA DVD - blu-ray 32" Sony Bravia 350W ANTEC Supplied 
Case
ANTEC minuet 350 
  hide details  
Reply
post #28 of 59
Quote:
Originally Posted by Bricked View Post
I've installed the program but It's not showing me any connecting IP's, just CPU usage based on each program active.

And thanks for the welcome! I currently don't have a system right now (piece of crap lappy) but I'm working on it!
http://www.objectplanet.com/probe/

Try that one! I'm going to download it now and see how it works and I'll let you know very shortly.
    
CPUMotherboardGraphicsRAM
Intel i5 2500 @ 4,004GHz (1.202v) Asus P8P67-PRO B3 Leadtek GTX260 65nm 896MB 700|1430|1100 4GB DDR3 Muskin 1686MHz 
Hard DriveOptical DriveOSMonitor
2xWD CB 250GB, 2x SG 320GB, 1xSS F1 1TB Pioneer DVD-RW Windows 7 Professional 64bit Samsung 2032BW 20" 1680x1050 16:10 
KeyboardPowerCaseMouse
Razer Lycosa CoolerMaster GX 550W Coolermaster Storm Sniper Razer DeathAdder 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel i5 2500 @ 4,004GHz (1.202v) Asus P8P67-PRO B3 Leadtek GTX260 65nm 896MB 700|1430|1100 4GB DDR3 Muskin 1686MHz 
Hard DriveOptical DriveOSMonitor
2xWD CB 250GB, 2x SG 320GB, 1xSS F1 1TB Pioneer DVD-RW Windows 7 Professional 64bit Samsung 2032BW 20" 1680x1050 16:10 
KeyboardPowerCaseMouse
Razer Lycosa CoolerMaster GX 550W Coolermaster Storm Sniper Razer DeathAdder 
Mouse Pad
Razer Goliathus 
  hide details  
Reply
post #29 of 59
If this key logger is any good it will spread itself the moment you plug in an external drive or connect to a network share.you need to make sure you clean up your machine BEFORE you back up.

Swyped from my DROID X
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
Gene-Z Dedi
(7 items)
 
Captain America
(6 items)
 
 
CPUMotherboardRAMHard Drive
i7 2600k @ 5.2 Ghz Asus Maximus IV Gene-Z Gskill 2133 4GB Caviar Black 
CoolingOSPower
Corsair H100 Arch x64 OCZ 650 Watt 
CPUCPUMotherboardGraphics
Intel Xeon E5-2650 Intel Xeon E5-2650 ASUS Z9PE-D8 WS XFX 6870 
RAMOS
32 GB Samsung Arch Nix 
  hide details  
Reply
post #30 of 59
Quote:
Originally Posted by XNine View Post
First, if he's too proud to run an Antivirus client of some kind I'm going to make the conclusion he's not savvy enough to use the tools necessary to find a keylogger, much less find an IP that it's registering to.

Secondly, his bank or the isntitutions that have seen these fraudulent purchases would be more capable and inclined to find out who's doing it. Credit Card fraud is a Felony in the US. They take these things very seriously.

Best thing to do is reformat/reinstall and install an AV. I recommend Eset for it's small footprint and constant updates. That way he can rule out anything on his computer and be safer from then on.

Securing a network, wireless or not is also important.
Banks don't even investigate once they have concluded it is not from their proprietor. I had $15,000 stolen out of my account by my ex after we had got a divorce, the bank wrote it off.
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
The Raven
(16 items)
 
  
CPUMotherboardGraphicsGraphics
i7-2600K Gigabyte GA-P67A-UD5-B3 EVGA GTX 570 SC EVGA GTX 570 SC 
RAMHard DriveOptical DriveCooling
16GB G.SKILL Ripjaws X 1866 Samsung 840 Pro  iHAS324 - Lite-On DVD-RW Noctua NH-D14 
OSMonitorMonitorKeyboard
Windows 10 ASUS VN248 ASUS VN248 Logitech G510 
PowerCaseMouse
XFX 850W BE SILVERSTONE RV02B-EW Logitech MX518 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Am I being keylogged??