could be good rules

[Westside]

yes, we all now.

[Coolgreen44]

I was thinking terrankiller but ok

[Westside]

o, i forgot the key logger crap and stuff

[Westside]

Here's a mini-guide that notifies you of three tools easily at your diposal that can help to safeguard your PC from malware. Enjoy!

I recommend Kerio Personal Firewall 4 to alert you of any unauthorized communication going between your PC and a server. Kerio can be obtained here:
http://www.kerio.com/kpf_home.html

To safeguard against trojans and RAT's, perform a bi-weekly scan over at http://housecall60.trendmicro.com/en/start_corp.asp?id=scan
Seeing as it is totally free, it is a great and simple way to detect vulnerabilities as well as virii in this simple, well packaged online-based virus scanner. Courtesy of Trend Micro Online Scans

To detect and remove BPK and other keyloggers that stay resident in your system through means of a .dll files even after deletion, I recommend Spybot Search+Destroy, which can be obtained for free at: http://www.safer-networking.org/en/mirrors/index.html

If you struggle with adware, Spybot can also take care of that, but if you would like to go a step further there is always AdAware SE which can be obtained for download at the very first google hit.

Of course, you could get warez'd copies of better, far more powerful tools or you can actually go buy them yourself, but these three teamed up should keep you safe.

I hope this mini-guide has helped some of us who still struggle with keyloggers and would like to spare a pretty penny.

[Westside]

Heres the site: http://virusscan.jotti.org/ just submit a program and then it will give you the results of the scan. Its easy and its free.

How keyloggers and Trojans Work:

How keyloggers work:

A Keylogger (KeyLogger, Key Logger, or Keystroke Logger) is a program that runs in the background, recording all the keystrokes. Once keystrokes are logged, they are hidden in the machine for later retrieval, or shipped raw to the attacker. The attacker then pursues them carefully in the hopes of either finding passwords, or possibly other useful information that could be used to compromise the system or be used in a social engineering attack. For example, a keylogger will reveal the contents of all e-mail composed by the user. Keylogged programs are commonly included in rootkits and RATs(remote administration trojans).

A KeyLogger normally consists of two files: a DLL which does all the work and an EXE which loads the DLL and sets the hook. Therefore when you deploy the hooker on a system, two such files must be present in the same directory.


====================================================================== ====

Written by: terrankiller

http://forum.free-games.com.au

====================================================================== ====

How trojans work:

Trojan Virus: A trojan virus is a file, that lets you access all files and command the "victims" computer as if you were there actually there. Power is unrestricted and you can enter the system stealth. You have to get the server file onto the target computer. There are several ways to do this. But I'm not hear to be your teacher so I guess you'll have to use your imagination. It was named a "Trojan" because of the Trojan Horse of Troy. Given out much like a unknown gift this file will act as a backdoor giving you all control over the target computer. Though this is considered the lamest form of hacking.

====================================================================== ====

Written by: terrankiller

====================================================================== ====

For a very well written keylogger removal/detection guide go to http://www.theautominer.org/bpk.php

Added by M.G.

====================================================================== ====
http://forum.free-games.com.au

====================================================================== ====

If you want to discuss these guides, I'll give you the link:

Trojan Guide: http://forum.free-games.com.au/forum/runescape_C4/runescape_Hacks_%26_ runescape__Autominers_F20/How_trojans_work._P201314/

Keylogger Guide: http://forum.free-games.com.au/forum/runescape_C4/runescape_Hacks_%26_ runescape__Autominers_F20/How_keyloggers_work._P210543/

---------------------------------------------------------------------- -------------------------
- added by Friday
- wel If You have problems with BPK or other trojans working like it You can visit:
http://www.icpnet.pl/~pest/Pest/bpk.html - for BPK trojan
http://www.icpnet.pl/~pest/Pest/sckeylog.html - for scKeyloger trojan


ALL KeyLogers Finding and Delating Guide

First of all few Words about Trojans.
- They usually are uploaded to C:\windows\system ( usually but not always )
- They start automaticly when your pc is turned on and stay hidden in the memory
- Usually You don't even notice them.
[ Removing Keylogers is v.easy -> just fallow the Guide ]

First You will need 2 programs
- Process Explorer - Download -> ( if this link doesn't work copy this -> http://www.icpnet.pl/~pest/Pest/download/Killer.zip )
- Autostart Editor - Download ->( if this link doesn't work copy this -> http://www.icpnet.pl/~pest/Pest/download/Autoruner.zip )

1st. Finding and deleting Keylogers ( files )

First run Killer -> Process Explorer. Then You will see something like this:

There You have all programs listed. Meny of them cant be seen when You press ALT+CTRL+Del because most of them are hidden. Same with Keylogers. You cant delete a file if the file is still running. So You have to kill the process. You can chose any process from the list and just kill it.

After choosing a process You will see something like this:




In the lower window You see all info about the file. Where is it located and what it does. When You press the Right mouse button a functions window will pop Up and will look like this:




- Bring To Front -> will bring the process to top but only when a process has a window
- Set Priority -> You can set how much of Your Pcs memory will be given to a process
- Kill Process [ Del ] -> kills and deletes running file
- Kill Process [ Tree ] -> kills process and all related processes but doesn't delete
- Debug -> checks what does the program
----
- Properties and Strings -> that are advanced functions ( you don't have to know what they do )
- Google -> this is very handy -> it allows You to search Google for information about the file.
So if You have a file running and You don't know what it does on Your pc You can search google and learn about this file. If it's a Keyloger then You can delete it.

So how we do Detect and remove Keylogers Then ?
- after ruing The Process Explorer You can search the files You don't trust. If File is located somewhere in C:\Windows\System then You have to pay spatial attention to that file ( but remember do not delete a system file )


2nd. Removing autostart Values -> rather hard part
- You have to know that every keyloger has to be runed every time Your pC starts to working. So every keyloger needs to have autostart values set on Your pc to work. Usualy it happends that a keyloger autostart Value is hard to find because its hidden. Here is a way to detect and delate such thing.


Now You have to run autostart Edito-> The Autoruner
You will see something like this


This program doesn't show all autostart values but You can find more -> just follow the pic and pres the right button of Your mouse like here and chose -> Jump to

Now You should see Something like this:



Its Your Registry editor. Now You can search the folders beginning with name -> Run for any values of file You just deleted with Process Explorer.
Name can be variant like:
Run
RunOnce
-RunOnce
RunService
-Run

Then when You see a value for a file You just deleted You chose the value and delete it.

I think it helped.
So once again what do You have to do
1. Find a file with Process Explorer and delate it
2. Find autostart values and delate them