Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Can past keystrokes be retrieved? 1

Status
Not open for further replies.
drewla

drewla

Technical User
Joined
Dec 20, 2004
Messages
2
Location
GB
I am embroiled in a dispute with Betfair, the online betting company. My statement shows me depositing a large sum of money to my betting account and making two large losing bets. I did have a bet on at least one of these events, but for a small fraction of the amount that is shown.

Does anyone know if It's possible to retrieve keystroke data retrospectively?

Thank you.
 
Sort by date Sort by votes
Sorry, no. The cache is cleared due to several events including, reboot, typing more characters than the buffer can hold, etc. Unless you had a keylogger running it's probably gone.



James P. Cottingham
I'm number 1,229!
I'm number 1,229!
 
Upvote 0 Downvote
Even if you could retrieve it, it wouldn't help you. Any forensic evidence that you pull out of your own computer would be suspected of tampering. Any evidence you send them could have had entries deleted, or the events just might not have been logged, or you could have used another computer. You can't use key logs to prove you didn't do something.

Problem number two is that keyboard buffers don't timestamp entries, so even if you could get the things you typed, there's no way to prove when it was typed. A logger will timestamp when it got something, but trying to get it after the fact, there will be no timestamps.

BUT...

If they are handling financial transactions, they should be logging source IPs. Or, it you paid through some other company, such as PayPal, they should have logged where you were coming from when the transaction was made. If someone else was using your account, there should be some evidence that it came from another PC.

Unless they just used the PC that you did. Is there any chance someone has access to your PC and you just left something logged on?

Just some ideas. Hope it helps.


 
Upvote 0 Downvote
Thanks for the info guys.

The news is better today. Betfair have provided me with the log which shows that the 2 rogue transactions came from different IP addresses than the one always used by me. This is no proof that I didn't make the deposits and the bets but it adds some weight to my story, and to be fair to them they now seem convinced that I am telling the truth. It may be that there is some other information (e.g. that the bad IPs have come up time and again on fraudulent transactions) that they haven't revealed to me, but which adds credence to my story.

Anyway, thanks again, useful to know about the keylogging.

 
Upvote 0 Downvote
Close that account and start a new one ASAP.
 
Upvote 0 Downvote
Nope. This is illegally and programs which claim that they can retrieve keystrokes are junk.

Women are like elephants to me. I like to look at them, but I wouldn't want to own one.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Ailuin
  • Locked
  • Question Question
Best Residential proxy provider.
Replies
1
Views
1K
AvivBes
AvivBes
Russtoleum
  • Locked
  • Question Question
Windows client can't connect to sonicwall l2tp server
Replies
0
Views
288
Russtoleum
Russtoleum
ISDPCMAN
  • Locked
  • Question Question
Cannot connect to TZ-215 Sonicwall appliance with web browser!
Replies
0
Views
313
ISDPCMAN
ISDPCMAN
DivemasterBill
  • Locked
  • Question Question
Cannot connect via the SonicWall Login webpage
Replies
0
Views
400
DivemasterBill
DivemasterBill
TierOneTech
  • Locked
  • Question Question
TZ105 - can I define a second WAN interface for failover?
Replies
1
Views
301
jcarmichael1203
jcarmichael1203

Part and Inventory Search

Sponsor

Back
Top