Anti-Spyware Forums


Reply
Thread Tools Display Modes

Keyloggers - does antivirus detect them

 
 
Spin
Guest
Posts: n/a

 
      05-12-2006, 12:59 AM
Gurus,

If you visit a malicious web site and a key logger gets downloaded to your
computer, does the typical Antivirus client detect it? How about if someone
surreptiously installs a keylogger on my computer when I am not around? My
computer is open and I live with a lot of roommates.

--
Spin


 
Reply With Quote
 
 
 
 
David H. Lipman
Guest
Posts: n/a

 
      05-12-2006, 01:06 AM
From: "Spin" <(E-Mail Removed)>

| Gurus,
|
| If you visit a malicious web site and a key logger gets downloaded to your
| computer, does the typical Antivirus client detect it? How about if someone
| surreptiously installs a keylogger on my computer when I am not around? My
| computer is open and I live with a lot of roommates.
|

Yes. Traditional anti virus companies do very well in detecting Keylogging Trojans.

If you have mnay 'mates around LOCK DOWN this system. Do not share it. Keep it password
protected with "strong" passwords. If it is a notebook, lock it away in a safe place. I
have seen too many posts were 'mates take adavatage of a good willed person and perform
malicious activity.

You can use the following to scan your computer...


Download MULTI_AV.EXE from the URL --
http://www.ik-cs.com/programs/virtools/Multi_AV.exe

To use this utility, perform the following...
Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose; Unzip
Choose; Close

Execute; C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }

NOTE: You may have to disable your software FireWall or allow WGET.EXE to go through your
FireWall to allow it to download the needed AV vendor related files.

C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
This will bring up the initial menu of choices and should be executed in Normal Mode.
This way all the components can be downloaded from each AV vendor's web site.
The choices are; Sophos, Trend, McAfee, Kaspersky, Exit this menu and Reboot the PC.

You can choose to go to each menu item and just download the needed files or you can
download the files and perform a scan in Normal Mode. Once you have downloaded the files
needed for each scanner you want to use, you should reboot the PC into Safe Mode [F8 key
during boot] and re-run the menu again and choose which scanner you want to run in Safe
Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.

When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive PDF help
file. http://www.ik-cs.com/multi-av.htm

Additional Instructions:
http://pcdid.com/Multi_AV.htm


* * * Please report back your results * * *


--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm


 
Reply With Quote
 
 
 
 
Miha Pihler [MVP]
Guest
Posts: n/a

 
      05-12-2006, 09:00 AM
Hi,

Keylogers would need administrative permissions to install on the system.
Don't browse, read e-mail etc. with this permissions. This should also
eliminate most of other malware (spyware, viruses, .)

Browsing the Web and Reading E-mail Safely as an Administrator, Part 2
http://blogs.msdn.com/michael_howard...17/354708.aspx

Antivirus will not detect hardware keylogers that can be attached to the
computer if (when) you leave it unattendent.

--
Mike
Microsoft MVP - Windows Security

"Spin" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> Gurus,
>
> If you visit a malicious web site and a key logger gets downloaded to your
> computer, does the typical Antivirus client detect it? How about if
> someone surreptiously installs a keylogger on my computer when I am not
> around? My computer is open and I live with a lot of roommates.
>
> --
> Spin
>
>



 
Reply With Quote
 
Bogwitch
Guest
Posts: n/a

 
      05-12-2006, 10:11 AM
Hi,

Whilst Miha is correct, it is worth noting that if your roommates have
unsupervised, physical access to your system, then it would be trivial to
aquire administrative permissions on your system.

With these administrative permissions it would be possible to test several
keyloggers to find one that is not detected as malware or to ensure that the
keylogger is not checked by the anti-virus software, perhaps by placing the
file in an Alternate Data Stream or by placing the executable name into an
exclusions list within the AV software.

To mitigate some of the risks of physical access, you should consider as a
very minimum, securing your case with a good padlock, ensuring you have a
BIOS password and that your system is configured to boot from the C: Drive
only.

Miha mentioned hardware keyloggers. A quick visual inspection should alert
you to the presence of a hardware keylogger. However, it would not be a
difficult task to build the keylogger directly into the keyboard.

In short, if an attacker has physical access to your system, it is only a
matter of time before they will have electronic access to your data.

Hope this helps,

Bogwitch.

"Miha Pihler [MVP]" <(E-Mail Removed)> wrote in message
news:#(E-Mail Removed)...
> Hi,
>
> Keylogers would need administrative permissions to install on the system.
> Don't browse, read e-mail etc. with this permissions. This should also
> eliminate most of other malware (spyware, viruses, .)
>
> Browsing the Web and Reading E-mail Safely as an Administrator, Part 2
> http://blogs.msdn.com/michael_howard...17/354708.aspx
>
> Antivirus will not detect hardware keylogers that can be attached to the
> computer if (when) you leave it unattendent.
>
> --
> Mike
> Microsoft MVP - Windows Security
>
> "Spin" <(E-Mail Removed)> wrote in message
> news:(E-Mail Removed)...
> > Gurus,
> >
> > If you visit a malicious web site and a key logger gets downloaded to

your
> > computer, does the typical Antivirus client detect it? How about if
> > someone surreptiously installs a keylogger on my computer when I am not
> > around? My computer is open and I live with a lot of roommates.
> >
> > --
> > Spin
> >
> >

>
>




--
Posted via a free Usenet account from http://www.teranews.com

 
Reply With Quote
 
S. Pidgorny
Guest
Posts: n/a

 
      06-12-2006, 10:33 AM
G'day:

"Bogwitch" <(E-Mail Removed)> wrote in message
news:45753722$0$8293$(E-Mail Removed)...
> Hi,
>
> Whilst Miha is correct, it is worth noting that if your roommates have
> unsupervised, physical access to your system, then it would be trivial to
> aquire administrative permissions on your system.


Unless full disc encryption (BitLocker on Vista, or a 3rd party product) is
used.
Still they can install hardware key logger. With some creativity - _inside_
the computer case.

--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-


 
Reply With Quote
 
Bogwitch
Guest
Posts: n/a

 
      06-12-2006, 04:26 PM

"S. Pidgorny <MVP>" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> G'day:
>
> "Bogwitch" <(E-Mail Removed)> wrote in message
> news:45753722$0$8293$(E-Mail Removed)...
> > Hi,
> >
> > Whilst Miha is correct, it is worth noting that if your roommates

have
> > unsupervised, physical access to your system, then it would be

trivial to
> > aquire administrative permissions on your system.

>
> Unless full disc encryption (BitLocker on Vista, or a 3rd party

product) is
> used.
> Still they can install hardware key logger. With some creativity -

_inside_
> the computer case.


Inside the keyboard would be easier, IMO.

bogwitch.


 
Reply With Quote
 
stevengerrard223 stevengerrard223 is offline
Junior Member
Join Date: Aug 2013
Posts: 10

 
      29-08-2013, 10:03 AM
Quote:
Originally Posted by Spin View Post
Gurus,

If you visit a malicious web site and a key logger gets downloaded to your
computer, does the typical Antivirus client detect it? How about if someone
surreptiously installs a keylogger on my computer when I am not around? My
computer is open and I live with a lot of roommates.

--
Spin
It's not that difficult to detect or find a keylogger on your computer. There are plenty of anti-spyware program from Internet, you can deep search from Google and try one. I have just killed a myjad keylogger and I feel Good

Last edited by stevengerrard223; 14-10-2013 at 08:55 AM..
 
Reply With Quote
 
 
 
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Does Ad-Aware Pick Up Keyloggers? Jack Barrett Spyware 24 23-03-2006 07:29 AM
Keyloggers--Deteciting Them W. Watson Virus Information 5 28-05-2005 12:06 PM
mysearchweb/lop.com etc - having got rid of them how to keep them out? Steve Virus Information 2 19-08-2004 03:17 AM
Does those antivirus software detect trojan? asp Security Software 2 10-07-2004 01:15 AM
Keyloggers - does spybot/adaware/avg pick them up? Maybe dumb Q Nic O'Demus Spyware 2 30-08-2003 06:12 PM


All times are GMT. The time now is 05:51 PM.