How to prevent your computer being hacked/keylogged
Hello guys, i know that this is wrong forum but i have seen newbs posting "hacks" for ava here that are just crypted keyloggers/RATs binded to a "hack"(most of them post a program)
yes even i was once infected. Than i went to this wonderful site: "Cantfkinpostlinksinthisforums"
If this is in wrong forum feel free to remove it.
First you need to make sure that your computer is hacked/keylogged.
Even if you have little suspects i suggest you do it.
PART 1 - Preparing Task Manager
Open Task Manager (ctrl+alt+del). Go to the processes column and click View > Select Columns.
Check the top one (PID (Process Identifier))
Now, organize Task Manager by PID. This will make things easier to read for the next step.
PART 2 - Using Netstat to see Established Connections
Now you want to go into Start > Run > cmd > "netstat -ano". It should look similar to the picture below:
Only look for ESTABLISHED connections (it would be established if its a RAT or malicious), read the PID and crosscheck into Task Manager. Notice in my example that the only established connections use the PID 424. Lets take a look at what that is:
As we can see, its Firefox. Now lets say you notice the PID reads something like "svchost.exe". You should open the file location by right clicking it and pressing Open File Location and either scan it with Virustotal or check to see if in its legit location (if it was in Appdata or Program Files and it is svchost.exe, then you may have a problem).
Hope this helped some of you out and good luck
If this helped you please press thanks.
Last edited by Ronon666; 05-18-2011 at 05:15 AM.
Dont be a TOOL say Obamas cool.
The Following 4 Users Say Thank You to Ronon666 For This Useful Post: