IS THERE AN UNAUTHORISED KEYLOGGER INSTALLED IN MY COMPUTER ?
Hello, Thanks in advance for any advice.I am running XP PRO, the latest in AVG FREE 9.0, run regular scans and defrags and generally watch for anything out of the ordinary. My machine (apart from tracking cookies) has escaped anything to sinister for the past two years. BUT... a few nights ago I went into one of my (password protected) MS Office Home and Student 2007, Word documents to find just below my title these words"Please close file, keylogger has now commenced..." These words appeared like this in light grey font and a similar size. This file contained all website registration details including passwords and usernames. Up until three months ago I had never made a purchase over the net but around that time I started using Itunes with store cards. About a week before this event I started purchasing music downloads from Itunes with A Debit card. The only other thing I did differently over the net was also a couple of days before the appearance of said text and that was to register for online banking. The bank sent me an email confirmation that I could now go to the site and access my account (which I have not done now because I spotted that wording beforehand). I have also deleted all files with password and username type info. I have tried forums and blogs and can not find a simlilar occurance. I have run half a dozen scans with the new AVG and this is showing a clean computer. At the least I was hoping someone might know of a page listing all inbuilt warning messages that may come with MS WORD 07. That would be a start. For such an important security issue, it was a rather small, light grey warning. Thanks again. 1 person got this answerI do too
July 2nd, 2010 7:32am

Whoah! Sounds like something I would do... Ok, you either have a friend or family member(That KNOWS you Pwords) screwing with you. A really DUMB hacker, Or a really COCKY hacker. Other than make these OBVIOUS statements I am at a complte LOSS for what to do.Young and Learning... Have Mercy
Free Windows Admin Tool Kit Click here and download it now
July 2nd, 2010 8:31am

Thankyou Chaos. It is exactly what my friends and family would do to except for the fact that they are all as wise as me when it comes to computers. Anyway, thanks. I will keep looking through forums. Nobody else has access to this computer, which also has its own password to log onto as well. So if it is possible then it has been done over the net.
July 2nd, 2010 3:36pm

Firstly, check and make sure your Windows is Genuine. If your Windows is pirate or NOT genuine, no one could help you with security.Check your Windows Firewall and make sure you have latest service pack and update yoru Windows.Just in case run full system scan with:http://onecare.live.com/site/en-us/default.htmAnd see if it will detect anything or not.Check Windows Security Center in control panel and make sure everything is fine.Then see result and tell us.
Free Windows Admin Tool Kit Click here and download it now
July 2nd, 2010 4:26pm

Thank also CDF;Windows genuine...............................................confirmed.All latest updates for Windows and AVG FREE.......installed. (NOTE: last year I attempted to install XP SP3 and machine became unusable for days. Did sys/res and removed SP3.I ran windows updates the other night and nothing attempted to reload XP SP3. (Which I am greatful about). The first attempt took hours to install, used 1.5Gb and stuffed machine.Firewall, Automatic updates and Virus protection all on and in the green.Onecare.live no longer available. In its place is Microsoft Security Essentials. Unfortunately or maybe fortunately (paranoia is kicking in again..), I am not completley disatisfied with AVG FREE and as the word is not out on MSE and running two side by side is not recommended I have chosen to remain with AVG for now.Chaos' funny line about a doppy hacker is sadly plausable ( like the bandit who robs the bank wearing his helmet.....only his name is on the front of the helmet).. My thought was that MS Word or XP itself was running an alert in the doc after detection but I can not find any reference. I will attempt to contact Microsoft again to get some info. But getting harder to contact them.
July 3rd, 2010 1:19am

Yeah, a LOT of hackers are stupid and careless... THis sounds like this hacker is a "Rookie" and is "Exploring" his newfound "Skills"... He's not even worthy of the name of hacker.... TRUE hackers do NOT steal data or exploit it... TRUE hackers actually find new ways to do things on the computer and over the internet, basically the TRUE hacker is a Elite Programmer... This is all VERY true, you should look up the history of the hacker. In Hacker terms we refer to this type of person as a "Cracker" (Not racistly motivated)... Anyway, enough with the history lesson...Young and Learning... Have Mercy
Free Windows Admin Tool Kit Click here and download it now
July 3rd, 2010 1:29am

Yes Chaos_Edit I agree, I am a novice in the computer world but it is pretty easy to see by its history that there are those who are helping to develope a great resource for us all and then there are those carrying the intent to harm. I hope it is the latter who are.....wearing the helmet....
July 3rd, 2010 7:22am

Thank you for your information. Try to run online scanner in my preview post and see if it will detect something or not.May be when you were away someone just come in your PC and copy that file into your PC.
Free Windows Admin Tool Kit Click here and download it now
July 3rd, 2010 11:56am

Thankyou Cyber_Defend_Team for your advice. I might run it at a later date and if so I will certainly post you the results but I am going to do some reading myself before I do to much more clicking. Because of this issue, I have starting checking all files and straight away I have now discovered (in My Documents) a file called "Default Remote Desktop"....? It has only turned up recently I am sure of that. Maybe harmless but I am a newcomer and really wouldnt have a clue.Concern factor is starting to overtake paranoia. All Remote Access utilities and exceptions are disabled but I do not know if this file (now deleted) is able to remotely enable these tools. something tells me that i should attempt to change the default setting for these items to personal settings if I can. That shoud take up the rest of my day off.....Thanks to yourself and Chaos_Edit for taking the time to reply and provide advice. Maybe time for a whole new computer...only with the next one I will not be clicking on anything called " Bet you wish you didnt click here" or "Masochist" or the like..etc...lol.
July 5th, 2010 1:37am

Thankyou Cyber_Defend_Team for your advice. I might run it at a later date and if so I will certainly post you the results but I am going to do some reading myself before I do to much more clicking. Because of this issue, I have starting checking all files and straight away I have now discovered (in My Documents) a file called "Default Remote Desktop"....? It has only turned up recently I am sure of that. Maybe harmless but I am a newcomer and really wouldnt have a clue.Concern factor is starting to overtake paranoia. All Remote Access utilities and exceptions are disabled but I do not know if this file (now deleted) is able to remotely enable these tools. something tells me that i should attempt to change the default setting for these items to personal settings if I can. That shoud take up the rest of my day off.....Thanks to yourself and Chaos_Edit for taking the time to reply and provide advice. Maybe time for a whole new computer...only with the next one I will not be clicking on anything called " Bet you wish you didnt click here" or "Masochist" or the like..etc...lol. Hey, I understand man.. I really get it. For future tools, and to help from something like this from happening again try to use these:http://www.malwarebytes.org/mbam.phpThis will check for malware, AND registry key errors, or so most of the forums say. >.>http://superantispyware.com/You can download the free version and it will check for spyware as well.Anyway, your welcome for the help. As for buying a new computer. If you upgraded to windows XP (Meaning the computer came with ANOTHER older operating system) Then YES it IS time to upgrade. XDYoung and Learning... Have Mercy
Free Windows Admin Tool Kit Click here and download it now
July 5th, 2010 1:46am

Thank you for your post, in Windows XP, that file default remote desktop should be default.rtp and hidden by default, that is part of Wndows and if you remove it, it will back, that is NOT risky file.
July 5th, 2010 12:55pm

Thanks CDT.
Free Windows Admin Tool Kit Click here and download it now
July 7th, 2010 7:48am

Welcome
July 8th, 2010 8:01am

AVG is terrible since v8.5. I use MSE. It is by far the BEST FREE ANTIVIRUS out there. A whitehat hacker buddy of mine swears that Windows LiveOne Care was the best AV. (as it was the hardest for him to break) He still uses the leftover paid version. That maybe why MSE is so good then. I have put MSE on some PC's (family and friends) and it has found Virus's within minutes of being installed without running a Scan. It was also the first FREE AV to get a ADV+ rating fromAV Comparatives . It is really good at removing Virus's. Avast is also better then AVG but is not that great at removing. But is great at preventive. So that is why I use and prefer MSE.[_1337_Pete_]
Free Windows Admin Tool Kit Click here and download it now
August 2nd, 2010 10:09pm

AVG is terrible since v8.5. I use MSE. It is by far the BEST FREE ANTIVIRUS out there. A whitehat hacker buddy of mine swears that Windows LiveOne Care was the best AV. (as it was the hardest for him to break) He still uses the leftover paid version. That maybe why MSE is so good then. I have put MSE on some PC's (family and friends) and it has found Virus's within minutes of being installed without running a Scan. It was also the first FREE AV to get a ADV+ rating fromAV Comparatives . It is really good at removing Virus's. Avast is also better then AVG but is not that great at removing. But is great at preventive. So that is why I use and prefer MSE.[_1337_Pete_]Are you endorsing MSE? Why are you even posting on this thread. The answer was found, and while I agree with you about AVG, I would rather the user use something along the lines of Avast***, Avira***, or eSet NOD32(Not Free) ***If using the above also use, Malwarebytes and Superantispyware As for your whitehat hacker friend having issues "CRACKING" MSEHe is not a hacker, but a cracker.There's a difference.And seriously? He can't crack MSE? That's a general basic task for a cracker(Getting around, and/or disabling/destroying the AV)... Anyway, I would not go around talking about ANY form of hacking on this forum, I'm SURE somewhere in the forum's rules this is forbidden and it is just bad form.Regards,Young and learning...Have mercy - ChaosIf this post resolves your issue, please click the "Mark as Answer" or "Helpful" buttons. This helps other users with similar problems find the answer faster.
August 2nd, 2010 10:20pm

Are you endorsing MSE? Why are you even posting on this thread. The answer was found, and while I agree with you about AVG, I would rather the user use something along the lines of Avast***, Avira***, or eSet NOD32(Not Free) ***If using the above also use, Malwarebytes and Superantispyware As for your whitehat hacker friend having issues "CRACKING" MSEHe is not a hacker, but a cracker.There's a difference.And seriously? He can't crack MSE? That's a general basic task for a cracker(Getting around, and/or disabling/destroying the AV)... Anyway, I would not go around talking about ANY form of hacking on this forum, I'm SURE somewhere in the forum's rules this is forbidden and it is just bad form.Regards,Young and learning...Have mercy - ChaosIf this post resolves your issue, please click the "Mark as Answer" or "Helpful" buttons. This helps other users with similar problems find the answer faster.Looks to me like your the one taking a shot at my post. I was simply advising to use other than AVG. And yes Avast is great along with Avira. (if you like annoying popups)MalwareBytes is good if you can get it installed or get it to run. As almost anything knows how to block it. I do agree with SAS. But prefer thePortable Version . It does not need to be installed and does not let malware/virus's see it as it does not use .EXE.Yes I am all over promoting software that works. I on the other hand was not promoting hacking in anyway. I was clearly stating his input. He's ex-military. So no he's not talking about cracking or getting around. He was talking otherwise. He has not tested MSE yet. He tested LiveOne Care.I use to advise of Pc Tool products until I found out they are apart of Symantec since 08. eww. I did like there firewall, threatfire and spyware doctor. Not anymore.-------------------------------------------------------------------------------------------------------------------------"There are only 10 types of people in the world. Those that understand binary, and those that don't."[_1337_Pete_]
Free Windows Admin Tool Kit Click here and download it now
August 2nd, 2010 10:54pm

Thank you for supporting MSE, if you have any idea or suggestion that could make MSE even better please submit them using feedback form:https://feedback.microsoftsecurityessentials.com/default.aspx?productkey=morro&scrx=1It will help MSE product team to make product better.
August 3rd, 2010 1:40pm

I use a product call Advanced System Care by Obit. They have 2 scan utilities between both they clean out garbage and restore registry. after each scan you will get a chance to look at every scan detail in detail. there are eight details. in the one with registry details look for the open keys and see if the ones listed are the one that was opened. if you see your problem there click ok at bottom right of detail report then click the repair button. Thats it you are DONE!I hope this is helpful if not go to cnet and look in free down loads for a registry repair tool. WinUtilities is good too. just like ASC Tim
Free Windows Admin Tool Kit Click here and download it now
August 9th, 2010 4:17am

I hope this is helpful if not go to cnet and look in free down loads for a registry repair tool. WinUtilities is good too. just like ASC Tim I myself use that free cleaner and it is pretty good. But you can never trust just one cleaner. I also use ccleaner and easycleaner. I dislike how bloated cnet and download.com are. I use snapfiles.com and filehippo.com They are the top freeware sites in my book.[_1337_Pete_]
August 9th, 2010 4:19pm

On Mon, 9 Aug 2010 13:19:54 +0000, MrPeter1985 wrote:I hope this is helpful if not go to cnet and look in free down loads for a registry repair tool. WinUtilities is good too. just like ASC  Tim I myself use that free cleaner and it is pretty good. But you can never trust just one cleaner. I also use ccleaner and easycleaner. I dislike how bloated cnet and download.com are. I use snapfiles.com and filehippo.com They are the top freeware sites in my book.You are both looking for trouble. All registry cleaners should beavoided.Registry cleaning programs are all snake oil. Cleaning of theregistry isn't needed and is dangerous. Leave the registry alone anddon't use any registry cleaner. Despite what many people think, andwhat vendors of registry cleaning software try to convince you of,having unused registry entries doesn't really hurt you. The risk of a serious problem caused by a registry cleaner erroneouslyremoving an entry you need is far greater than any potential benefitit may have. Read http://www.edbott.com/weblog/archives/000643.htmland http://aumha.net/viewtopic.php?t=28099and alsohttp://blogs.technet.com/markrussinovich/archive/2005/10/02/registry-junk-a-windows-fact-of-life.aspxLet me point out that neither I nor anyone else who warns against theuse of registry cleaners has ever said that they always causeproblems. If they always caused problems, they would disappear fromthe market almost immediately. Many people have used a registrycleaner and never had a problem with it.Rather, the problem with a registry cleaner is that it carries with itthe substantial risk of having a problem. And since there is nobenefit to using a registry cleaner, running that risk is a very badbargain.Ken Blake
Free Windows Admin Tool Kit Click here and download it now
August 9th, 2010 9:46pm

Oh I don't know about him, But I do not clean my registry. I use those tools to clean otherwise.Someone stated that no matter what can be done to the registry the most time you can really save for the hours it takes to do it will only save you a 10% speed increase at the most. Which you will get use to in minutes and you will no longer notice them the next day."There are only 10 types of people in the world. Those that understand binary, and those that don't."[_1337_Pete_]
August 9th, 2010 10:01pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics