Results 1 to 5 of 5
  1. #1
    Ronon666's Avatar
    Join Date
    Jan 2011
    Gender
    male
    Location
    What are you? A stalker?
    Posts
    122
    Reputation
    8
    Thanks
    45
    My Mood
    Bored

    How to prevent your computer being hacked/keylogged

    Hello guys, i know that this is wrong forum but i have seen newbs posting "hacks" for ava here that are just crypted keyloggers/RATs binded to a "hack"(most of them post a program)

    yes even i was once infected. Than i went to this wonderful site: "Cantfkinpostlinksinthisforums"

    If this is in wrong forum feel free to remove it.

    First you need to make sure that your computer is hacked/keylogged.
    Even if you have little suspects i suggest you do it.


    PART 1 - Preparing Task Manager

    Open Task Manager (ctrl+alt+del). Go to the processes column and click View > Select Columns.



    Check the top one (PID (Process Identifier))


    Now, organize Task Manager by PID. This will make things easier to read for the next step.




    PART 2 - Using Netstat to see Established Connections

    Now you want to go into Start > Run > cmd > "netstat -ano". It should look similar to the picture below:



    Only look for ESTABLISHED connections (it would be established if its a RAT or malicious), read the PID and crosscheck into Task Manager. Notice in my example that the only established connections use the PID 424. Lets take a look at what that is:



    As we can see, its Firefox. Now lets say you notice the PID reads something like "svchost.exe". You should open the file location by right clicking it and pressing Open File Location and either scan it with Virustotal or check to see if in its legit location (if it was in Appdata or Program Files and it is svchost.exe, then you may have a problem).

    Hope this helped some of you out and good luck

    If this helped you please press thanks.
    Last edited by Ronon666; 05-18-2011 at 06:15 AM.



    Dont be a TOOL say Obamas cool.

  2. The Following 4 Users Say Thank You to Ronon666 For This Useful Post:

    /b/oss (05-18-2011),jawan187 (05-30-2011),lightningss (05-29-2011),S|W|P (05-30-2011)

  3. #2
    /b/oss's Avatar
    Join Date
    Feb 2010
    Gender
    male
    Posts
    13,652
    Reputation
    795
    Thanks
    3,543
    /moved to tutorial

  4. #3
    lightningss's Avatar
    Join Date
    Feb 2011
    Gender
    male
    Location
    amsterdam
    Posts
    216
    Reputation
    10
    Thanks
    66
    My Mood
    Sleepy
    damn, i never knew of this. thanks man
    i might be needing this someday

  5. #4
    S|W|P's Avatar
    Join Date
    Oct 2009
    Gender
    male
    Location
    The Netherlands
    Posts
    1,744
    Reputation
    -33
    Thanks
    91
    My Mood
    Doh
    thanks man i aint infected but this really help

  6. #5
    marmaluk's Avatar
    Join Date
    May 2011
    Gender
    male
    Posts
    121
    Reputation
    10
    Thanks
    2
    My Mood
    Amused
    thats very good but i am not infected