37 total posts
(Page 1 of 2)
A Keylogger (KeyLogger, Key Logger, or Keystroke Logger) is a program that runs in the background, recording all the keystrokes. Once keystrokes are logged, they are hidden in the machine for later retrieval, or shipped raw to the attacker. The attacker then peruses them carefully in the hopes of either finding passwords, or possibly other useful information that could be used to compromise the system or be used in a social engineering attack. For example, a key logger will reveal the contents of all e-mail composed by the user. Keylog programs are commonly included in rootkits and RATs (remote administration trojans).
A Key Logger normally consists of two files: a DLL which does all the work and an EXE which loads the DLL and sets the hook. Therefore when you deploy the hooker on a system, two such files must be present in the same directory.
Thanks for that Marianna. Is Probot Activity Monitor the best program to scan for keyloggers?
I had a post on advanced keylogger that was found by, of all people, AOL. My EWIDO hasn't detected it and it is paid and updated. I do trust my Ewido, though.
Trojans and Keyloggers
No chance for thieves to steal your bank data and personal sensitive information by tapped Internet connections, remote controlled webcams or secret keyboard recordings.
I wonder what AOL found if ewido didn't find anything
It doesn't give any details, just says advanced keylogger blocked at this time, this day. But thanks for reenforcing my faith in Ewido!
If I add Ewido.....
If I add Ewido to my computer which currently has AVG, Searchbot,
AD-aware, and Microsoft Antipyware will I get conflicts? Also is this overkill to have all 5 of these programs?
Thank you for all your help marianna. I installed Evido. You mentioned running it on demand. I notice it still shows up in my tray. It does not show up in my msconfig or startup folder. How do I remove it from the tray? Thank you
Hi, I'm not Marianna but to answer your
question, it shows up in the tray because the "Process Guard" is on for the first 2 weeks after you download it. To disable the guard, which should also remove it from the tray, open the program and there is a list titled "additional" on the front of the program. Click where it says "Remove Guard" and follow the prompts. You MAY have to reboot after that, I don't remember, it's been a long time since I had to do this myself. Once that is done, you can still use the scanner whenever you want, just click on whatever program shortcut you have for it. One further note. After the first 2 weeks is up, you will also lose the automatic updating but you can use the manual update button which only takes a few seconds unless it is a full database update which is rare. We post the updates in our "Updates" thread here in this forum if you would like to check that periodically. Ewido normally updates 2 or 3 times a day.
(NT) Thanks Roddy
(NT) You are welcome. :)
I have Ewido, NOD32, Adaware SE Plus, AdWatch, MS Beta, Spyware Blaster, Outpost Firewall and whatever AOL throws into the mix.
Which provides better protection, The Cleaner or Ewido?
I installed The Cleaner about 3 years ago, when you brought it to my attention in this forum. So far, I've never had any problem with trojans. Do you think Ewido is a better application for protection against trojans, worms, keyloggers, etc.?
They are both good Harv but ewido
seems to remove more lately than the other trojan programs. It is only a little over a year old but is an excellent program. BUT if the Cleaner has worked for you for 3 years, I see no reason to change. If you ever got infected with something that ewido would remove but the Cleaner wouldn't you could download it at that time.
Is it overkill to have both trojan applications on my pc?
I did have Ewido installed on my pc for the 14-day trial period. After that time period, realtime monitoring ceased. So I uninstalled Ewido, because all I had was a manual trojan scanner.
You only want one of them
for realtime anyway IMO Harv. I would feel more comfortable also having ewido as a backup but with the guard disabled so you have a backup scanner and only use it of you need it. It is not totally necessary but I would not call it overkill either. I've personally got quite a number of emergency programs on my own computer that I rarly use except to keep them updated but I have them on hand for an emergency. The reason I do this is that some malware will not let you download things which you would not have to do if you already have them, on the computer. As long as space is not an issue for you, I see no harm in having extras. I also do it so I know how to use the programs so I can answer questions about them if need be.
Can you still get updates after the trial period?
Roddy, I agree with you about having a backup trojan application, so I just re-installed Ewido. I un-installed it awhile back, because Realtime Protection and Automatic Update options became inactive after the trial period. Since I don't intend to purchase it, will I still be able to download the updates manually, when the trial period ends, in order to keep the definitions current for an on-demand scan?
Yes Harv, you can get the updates
manually and they only take a few seconds to download unless it is a full datebase update which is rare. I always post the updates in the updates thread every day. It updates usually 2 or 3 times a day on the week days and a little less often on the weekends. If you are only going to use it to scan, you actually only have to make sure it is up to date when you do the scan.
Does Ewido free version offer ANY protection after the
trial period expires? I noticed Realtime Monitoring ceased after 14 days, so I assumed the application was no longer protecting my pc against spyware, etc. Also, Automatic Online-Update ceased and I was unable to find a way to manually update the definitions (i.e., an Update button). For these reason, I uninstalled the application.
I just found the Update button in Ewido.
Don't know how I could have missed it! LOL
LOL, The answer to your other question Harv is
yes, the realtime monitoring ceases but you will have the scanner and it will be updated when you hit the button now that you have found it. LOL
I guess I'll have to be content with just a spyware scanner after the 14 day trial period ends, if I don't want to pay to play.
I thought that was all you
needed was a backup because you said you already have the Cleaner if I remember correctly?
SnoopFree Privacy Shield
SnoopFree Privacy shield is a free product that will actively warn against key loggers and programs trying to read your screen, and will allow you to block them, and delete the file. Its a proactive approach, so you never will get a keylogger instead of getting one having it translate all of your data, then deleting it. Its available here http://www.snoopfree.com/PrivacyShield.htm
Sounds like a good program though when I searched for it on this forum I did not find anything on it.
Google "Snoop Free Privacy Shield" to see what some ...
are saying... especially the Lockergnome site. CAUTION may be in order.
It does conflict with DEP
Winblows SP2 has a built in feature called Data Execution Prevention. It has a tendency to conflict with the SnoopFree. You just need to set both of its processes to the ignore list on DEP and everything will be fine. I had NO problems whatsoever unistalling it.
If you want an alternative which is truly awesome and has so many more features, try out Online Armour from Tall Emu. It is a sweet product, blocks all keyloggers, protects your personal data, tracks whatever a program does to your system and allows you to change those things it did, etc. It isn't free however. Try out the 30 day trial, you might fall in love with the program.
SnoopFree Doesn't uninstall & can't be deleted
I can't get rid of this program. It acts just like malware because it constantly reinstalls itself to Windows XP SP2 C:\windows\system32
Anybody got any ideas about how to delete it?
How do I uninstall SnoopFree Privacy Shield?
To uninstall SnoopFree Privacy Shield, follow these steps:
Click on Start -> Control Panel -> Add or Remove Programs
Scroll down until you find SnoopFree Privacy Shield in the list of installed programs.
Click on SnoopFree Privacy Shield and then on the Change/Remove button to start the uninstall process.