Key logging?

silcnlayc

Just one more spin pleez!
PABaccred
PABnonaccred
Joined
Sep 20, 2005
Location
Left Hungary
I need to know what I can do to stop from having my bank and Neteller account tracked/used/cleaned out.

Last night I went to play at Paradisde Poker and made a withdrawal from Neteller which was declined. I looked to see why and saw that within 1 second of me trying to do a deposit/withdrawal into my poker account, another withdrawal was requested for a few hundred dollars.

I was stunned needless to say for I never go over a $100 on any transaction. I called Neteller and made them aware of this and told them to please post a notice on my account to state this (the $100 max). Well, I thought to myself...let me see if this happens again this morning and sure enough, I had Paradise Poker running and went to banking in ANOTHER program (casino) and tried to make a deposit, again, declined.

Checked my Neteller account and within 1 second of my withdrawal being declined 2 more right behind it also were for another few hundred dollars each. I called Neteller immediately and totally closed my account (only changed my log in security the first time). Now I am starting to panic for it shows on the declined transactions my last 4 digits of my checking account which has NEVER been shown in any neteller transactions.

Help! Suggestions would be truly helpful! Never had this happened in all the years I have been online.
 
1st step would be to download a firewall. ZoneAlarm is free, easy to use, and VERY effective.

2nd step would be to get yourself a nice virus scanner, particularly one that runs in the background, looking for just these processes to start; and notifies you if one does.
 
Change all your passwords NOW using a clean computer or boot your computer into Linux using a live CD. There are several, Knoppix is the best known,
You do not have permission to view link Log in or register now.
is probably the best suited for disaster recovery, it can mount NTFS partitions in read-write mode.
Save your data and reinstall your operating system from scratch. If you have Windows XP, make sure the firewall is turned on before you connect to the internet, otherwise get a copy of Zonealarm before you start.
 
Last edited:
GrandMaster said:
Save your data and reinstall your operating system from scratch. If you have Windows XP, make sure the firewall is turned on before you connect to the internet, otherwise get a copy of Zonealarm before you start.


Kind of drastic, don't you think? :) Safe mode will do the same, as it won't start up the keylogger/backdoor/trojan, and you can do a scan/clean from there...then if the problem isn't found/cleaned, then definately reinstall.
 
winbig said:
Kind of drastic, don't you think? :) Safe mode will do the same, as it won't start up the keylogger/backdoor/trojan, and you can do a scan/clean from there...then if the problem isn't found/cleaned, then definately reinstall.
Safe mode is not safe. You need a formal virus scan, not running from a possibly infected environment.
 
Both Neteller and Casinos

They both have access to the ip address where the depsoit or withdrawal took place.

The poker site must have also record from which Ip addresses you have logged from in the last days.

Verify if they are at least from the same state

Withdrawal your money from neteller... tell them what happened and request them to open a new account.

If you are using instacash.. I recommend you to visit www.instadebit.com for future transactions..
 
If it was my accounts at risk dueto a possible PC compromise I would without a doubt immediately re-install windows from scratch. And GM has already said I would also change all my passwords immediately.
 
I'm gonna explain this in a paranoid way. You are infected, the damage has been done, tracing where the money went will have to be done by Neteller. Now for future precautions.

1) Backup all the necessary documents/programs you need.
2) Reformat the entire computer.
3) Install Windows without being connected to the internet.
4) Install a third party firewall program such as BlackIce, ZoneAlarm, etc... Specifically for the firewall program, make sure the program allows you to choose what program can or can not have access to the internet.
5) Install the latest anti-virus program - upgrade the virus definitions later online. Remember to upgrade definitions, without upgrading it's like you aren't protected.
6) Stop using Microsoft internet explorer. Much of the problems from people come from using this browser. There are way too many vulnerabilities with this browser. Use third party browser such as Firefox, Opera, etc... They may have vulnerabilities as well, but they are updated sooner. I would disable Java as well on these browsers until the time you need it. Same with javascript for those times when you aren't sure of what website you are visiting. Some sites can use ActiveX or some trojan horse/virus scripts program to automatically activate and download these bad programs. Set your settings to NOT automatically download, make sure you can say YES or NO to downloading first.
7) Get some kind of third party software that allows you to see your startup programs. Ctrl-Alt-Del isn't enough, there are plenty of processes running in the background you aren't aware of. Perhaps someone can suggest some?
8) Do not click on any links you aren't sure of, even if it's from friends. This applies to emails you receive from friends. If you aren't sure of an email, reply back to the friend first and then ask them if they sent it. This will disable most phishing attempts. Do not believe where a site goes, just because you move your mouse over the link and see the internet address. People can easily create fake ip addresses and redirect you to their fake site. One trick is to cut and paste the internet address into a standard text document using notepad.
9) Email programs - Do not using Outlook please. If possible set your email to text only or simple html 3.0 without javascript/java. Again use third party software for email programs. I don't know of any, because I don't use these programs. It's simple text for me.
10) Show all file extensions eg. virus.exe, can easily look like virus.jpg.exe. Do not trust an picture icon. See the file extension!
11) Please do not install programs from untrusted sites. What I like to do is do a google search of a site and see other people's reviews on it before I can trust it.
12) Install those programs that remove adware such as Spybot Search and Desteoy or Adaware.
13) Learn to love this website. w w w . g r c . c o m - It will tell you of the vulnerabilities and programs you can download to check your leaks.
14) Get a program that allows you to know when a program makes changes to your registry and make sure it has the ability for you to deny the changes. These programs are great, nothing comes to mind right now as to what is suggested.
15) Now the boring stuff starts. All the passwords, you have used in the past have been compromised. More likely than not, they have the information to do some serious identity fraud. If you like in USA, do a credit check on the three major credit bureau, or four not sure anymore. Transunion, EquiFax, Experian and some company that starts I. Set a fraud alert.
16) Change your passwords. simple enough.
17) Keep track of charges on your credit card bills and bank, poker, casino accounts. A lot of this leads into financial security.

- I understand some of this stuff might be too technical, please ask any questions.
- REMEMBER, these are just precautions, not the answer to everything. Be aware of what you are doing.
- I know sometimes, certain sites make it only possible to view it with a particular browser or whatever. If you take the proper precautions, these trusted sites should not harm your computer. If they do, you will be ready for the changes/attacks.

Having someone invade your computer is akin to having someone enter your home, take your cash and installed a surveillance camera to see your actions whenever they want. Take the proper precautions as if this was the same situation.
 
Backing up documents and programs may NOT be a good idea.
The trojan might have elements installed within certain programs and or documents.

I would do a complete wipe of the Hard Drive and reinstall OS.

Never chance saving things that may. or may not , be infected.

There are many good registry checkers out there, Registry Mechanic is a good one from PCTools.
Zone Alarm, Spyware Doctor are also good.
 
Where's the money?

Can't Neteller transactions tell where the funds were deposited or withdrawn? Were they placed in a Casino? Isn't the tracking available to give you this information? I know I am able to track everything I have. Neteller owes you that information. Am I wrong?
 
Hopefully all clean!

Hi all, it has been an interesting/scary weekend all told and what was the worst was all my info was definitely compromised. I have contacted Neteller with the details and the worst of all was, I could not log into the forum until Bryan came to the rescue today. Something was changed and I could not access casinomeister at all for the last 2 days..

The first time I did save a few things and it seemed as if it was still infected once I re-installed the OS. I did slick my machine again, saved absolutley NOTHING the second time! Felt something was wrong and went and slicked it again and started from scratch. It worked.

I want to thank everyone for all the help you have given and send a big group "HUG". You guys are the best and Bryan is included. Thanks again :D all!
 
No prob.....

You did get yourself an antivirus program and firewall, correct? :D


PS:

If you want to be a little bit safer in browsing, you may want to try out Firefox (www.getfirefox.com). Seeing as how it will not (cannot) run activeX controls, it's way more secure than using IE. :)
 
was there ever a purpose or good reason for keylogging

:mad:I would really like to know who is responsible for creating such a thing as keylogging and why???!!! It seems so obvious that the only person that keylogging benefits is the one that is stealing, invading, and causing, major devestation, in innocent people's lives. How dare anyone think that they have the right to keylog my information, from my private and personal computer, and steal my money, my identity, and my right to privacy!! I'm not sure what part of the evil act of identity theft is the worst... the total invasion of one's privacy, or the disregard the thief has for the devastation that is caused by his wrong doings. After reading all of the wonderful responses and very helpful hints as to further trying to prevent a person from being secretly invaded on their own computer... i couldn't help but think about all of the trouble and headaches the innocent person must go through to prevent a person from doing them wrong. In a perfect world, all of these people who have used computer programs,such as keylogging, to destroy innocent lives would endure the fate that they inflicted on others, or worse but the reality of today's world is that millions of people have fallen victim to identity theft and 9 out of 10 victims are the only ones who suffer any type of loss or consequence. It is absurd that there are actually people in this world that feel they have the right to steal what i have worked so hard to achieve. :confused: :mad: :what::eek:
 
There are legitimate uses for keyloggers.

One would be a parent using one on their childrens computer to make sure they're not getting into trouble, and watching out for predators trying to talk with them.
 
i learn something new everyday

:notworthyOkay... that is definitely a good reason for keylogging!! I think it would be interesting though, to see just how many parents use keylogging. Unfortunately, i think that people have made keylogging more of a threat than anything else. I am not by any means, saying that the intended purpose of keylogging wasn't a great safety device for our children and i thankyou for enlightening me on keyloggings actual use. :notworthy
 

Users who are viewing this thread

Meister Ratings

Back
Top