View Full Version : keyloggers
novav20
12-31-2005, 02:18 AM
ok, I work dsl tech support for a living, I have a freind who has keylogggers and their pc, also the computer seems like it is being accessed remotely. my freinds has tryed a destructive system restore and normal system restore and the software still shows up on the pc, soon after the restor's. I0 had my freinds also try using some spyware tools and some antivirus tools and a firewall, the onlything that seems to do anything is the firewall, but he still is haveing keyloggers constantly access his pc. another odd thing is if he sends an e-mail to himself he doesnt receive it back, and he doesnt have any spam removal tools. the only option i have left for him is micrsoft pc safety but I dont think they will be able to resolve his issue. any suggestions??? also he had some nutjob work on his pc that braged about being able to hack norton lol, when he told me that i about hit the roof. any suggestions would be helpful and thanks for your time.
PrntRhd
12-31-2005, 02:42 AM
Welcome to the PC Guide forums!
I would use firewalls for certain, but remove the PC from LAN and then clean the drive.
Unless the keylogger is hardware-based (which means that individual had physical access) programs such as DBAN http://www.snapfiles.com/get/dban.html
should remove the keylogger as keyloggers are software and can be killed by writing over them. Replacing the HDD is also a way to ensure complete removal. I hope this is not on a (unsecured) wireless LAN?
Ewido Suite 3.5 is another scan that may be able to fix the issue if it is a known keylogger. A close physical inspection and opening the keyboard and looking for added components are also ideas if this "nutcase" bugged the PC.
All media generated by the infected PC is suspect at this point.
All passwords for all accounts and the accounts themselves are at risk at this point, so get those changed immediately, and do file a credit watch if any finacial transactions are done from that PC.
I am moving this to Applications & Security, can you post a complete HJT log generated from the infected PC?
http://www.lurkhere.com/~nicefiles/index.html
vBulletin v3.6.1, Copyright ©2000-2012, Jelsoft Enterprises Ltd.