help with an undetectable keylogger

[Swan]

I downloaded a game, and whenever I start it up, a warning pops up from my firewall Zone Alarm informing me that there is suspicious file that may log keystrokes and websites browsed. Ok.

So, I scan the file with my AV, no results. I run a rootkit scan and nothing. Why the hell is not appearing, sure it has been detected, but it cant be found.


Thanks guys.

[bad_brain]

what is the name of the file?

[Swan]

dont mean to sound dense BB, but what file?

This phantom keylogger, or the file that seems to contain it?

Its a game file.

As i said, Zone Alarm pops up, informs me of this suspicious file and I tell it to halt its movement. :S:S

[bad_brain]

hmm...ok....what is the name of the game exe that causes the alert then?
maybe I can find something about false alerts in context with it or sth like that...

[Nerdz]

Sometimes, because game are comunicating directly with a server, it's behavior is like one of a keylogger and they firewall think it is one...

[Losing_grip]

Im also using ZoneAlarm Internet Security Suit , The first time i launched the game called "Freestyle"(Street Basketball Game) ZA Alert me that it's trying to monitor keystroke etc. and i just put it on trusted list since i dont think a huge company will put keylogger in its game.

[p99]

Ok the firewall doesn't scan the file for a key logger. It looks for a program that does something similar to one. Like hooking the keyboard and then sending it to a remote ip. Typical keylogger behavior that is also typical mmporg behavior.

Baron just be sure that your game is a largely known one and downloaded from the official site.

[Losing_grip]

Why dont you try to scan the game for rootkits , keylogget , trojan etc.
or even try to sandbox that stuff

[rambo]

Phantom 2.0 -the Best Keylogger ! - GovernmentSecurity.org

COuldn't dig up anymore information - The forum is down for maintnience i'd check back there and ask around if i was you..