Page 2 of 2 FirstFirst 12
Results 11 to 18 of 18

Thread: Advanced Keylogger

  1. #11
    Member Danny's Avatar
    Join Date
    Dec 2005
    Location
    Quebec province
    Posts
    49

    Default

    Salut
    T'as rien trouver?alors quelle démarche à tu faites?(installer PP?...suppression manuelle,parti par magie??)
    Bye

    edit:un autre personne semble avoir le meme keylogger
    http://forums.spybot.info/showthread...0944#post10944
    c'est en allemand
    mais avec cela,on fini par comprendre
    http://babelfish.altavista.com/tr
    Last edited by Danny; 2006-02-06 at 14:10.

  2. #12
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello marcomomo.

    If there is a discussion here regarding malware (I am not too sure ) and you would like someone to take a look at the System; please post in the malware forum so that an authorised helper can assist you.

    Before you post a log

    Start a topic here:
    Malware Forum

    OR do this first:
    • Open SpyBot, check for and get any updates available.
    • Close all browsers, check for problems and fix everything found in red
    • Then on the toolbar menu select mode and switch to advanced mode, on the left lower down select tools, and view report, ensure all the options are selected near the bottom except
    • Uncheck[ ] do not report disabled or known legitimate Items.
    • uncheck[ ] Include a list of services in report.
    • Uncheck[ ] Include uninstall list in report.
    • Now select (near the top) view report.
    • Press export in the save in box choose a place such as your my documents folder, then in your next post near the bottom select the "browse" button; navigate to and attach or post that report in this topic please.


    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  3. #13
    Junior Member
    Join Date
    Feb 2006
    Location
    France
    Posts
    6

    Default

    @Danny : Hello
    Le spy n'est pas revenu.
    J'ai PP installé depuis qq mois pas de pbm ^^
    Je l'avais mis en quarantaine à chaque fois (et quarantaine supprimée).
    Mais bon il n'est pas revenu depuis 24 h bizarrement, alors qu'il revenait assez souvent ces derniers jours...

    @Tashi : Thanks for all
    If the spy came back I will check with spybot before, I made PP standard scan because they are quite fast.
    Read the german post too, he has the same threat.

    edit : The CA database report this spy since 05/05 I just found this :
    http://www3.ca.com/securityadvisor/p...x?id=453094239
    Last edited by marcomomo; 2006-02-06 at 20:27.

  4. #14
    Member Danny's Avatar
    Join Date
    Dec 2005
    Location
    Quebec province
    Posts
    49

    Thumbs up

    Salut Marcomomo
    Selon moi,quand ton spy revenait,c'était probablement du à un site en particulier que tu fréquentais....alors ne soit pas surpris si il revient......
    Bon ,bien a+ et si tu veux un super site pour l'informatique,va à
    www.zebulon.fr
    les membres du forum sont assez hot!
    mon nick est Zonk
    Bye

  5. #15
    Junior Member
    Join Date
    Mar 2006
    Posts
    18

    Default advanced keylogger

    Quote Originally Posted by marcomomo
    Hello, I use Spybot since years and found it great.
    I use other freeware and online scans too. Since few days Pest Patrol found several times an "Advanced Keylogger", that came very probably while surfing.
    Have you heard about this new threat ?

    Thanks in advance.

    edit : "Advanced", I forgot de d...
    in addition:

    I have found advanced keylogger using PCGuard and AdAwareSE but the anti-s have troubles to rid it off. I know where is it placed but traditional tool like "delete" doesn't work;
    I have found it in HKEY_CLASSES_ROOT:clsid\... under InproServer32 and titled "Apartment" under "TradingModel;or as "Deafult" I see - icmui.dll;

    I don't know how to stop it working...

    Anybody knows how to resolve the problem? How to find a sender? And how to k... its a...?

  6. #16
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello royakai. can we see a Spybot-S&D log please.

    • Open SpyBot, check for and get any updates available.
    • Close all browsers, check for problems and fix everything found in red
    • Then on the toolbar menu select mode and switch to advanced mode, on the left lower down select tools, and view report, ensure all the options are selected near the bottom except
    • Uncheck[ ] do not report disabled or known legitimate Items.
    • uncheck[ ] Include a list of services in report.
    • Uncheck[ ] Include uninstall list in report.
    • Now select (near the top) view report.
    • Press export in the save in box choose a place such as your my documents folder, then in your next post near the bottom select the "browse" button; navigate to and attach or post that report.


    Alternatively:
    If you are not being helped at another forum, follow these instructions.
    Before you post a log, and who will advise you.

    Start a topic here:
    Malware Forum

    Cheers.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  7. #17
    Junior Member
    Join Date
    Mar 2006
    Posts
    18

    Default advanced keylogger - report

    thanks for reply - that's the report

    by the way - I check for updates almost every day and use advanced mode

  8. #18
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello royakai.

    Could you post a HJT log in the malware forum please so we can take a look at the system from a different angle.

    Before you post a log, and who will advise you.

    Thanks.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •