General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsI don't know if this fits here; but, I have questions about "Keylogging" ...
If Norton (or other protective software) identifies a site as a "keylogger", are the keystrokes captured for everyone clicking into the site, or does one have to log on to the site to be affected.
Second question: does the keystroke capture only apply to the strokes done on that site: or will, once "infected", the keystrokes continue to be captured whenever one types?
Third question: Once "infected", or suspected that one is "infected, what steps should be taken.
X_Digger
(18,585 posts).. can cause a keylogging program to be installed. This is usually also accompanied by a remote access program.
The keylogging program works for anyone who sits down at the computer, regardless of application or website visited.
Typically such infected machines 'phone home' to a server in some remote country, letting the hackers know that they've got a live fish on the hook.
Then hackers will wait and check the keylogger. Once you've logged onto your bank's site, or keyed your credit card into an e-commerce site.. bingo. Then next time the hackers check in, they have all your account info / credit cards.
To fix.. I recommend a couple of products-- malwarebytes anti-malware is a good start. Norton's internet protect product is also of good quality.
seabeyond
(110,159 posts)one have to register for the site?
Remember you are talking to a computer stupid person. I do not know most of the language for computers.
X_Digger
(18,585 posts)When you accidentally click on the link for the ad, you get redirected to some third site that hosts the malicious code. These things are damned tricky. They'll try multiple attack methods trying to find a bit of software that's vulnerable to being exploited.
Good software like Norton's will frequently stop the attack. But it's an arms race between hackers and protection companies. Unfortunately, protection companies aren't always pro-active-- they're more often responding to new attacks in a reactive scenario.
After all, they can't imagine every attack vector ahead of time.
You don't typically have to register for a site to be served up an ad that leads to malicious code, no.
I also recommend adblock plus; I can't recall the last time I saw an ad.
seabeyond
(110,159 posts)R B Garr
(17,019 posts)my laptop a couple weird kind of beeps, and then for a short time, my typing was sort of ghosted and slowed down. I'm sure that's an awful description, but it was a strange and different. I actually had the same type question as the OP. Is there a sign to see if this has happened, like checking an installation or something? I'm probably reading too much into what happened, but that site is malicious in general.
X_Digger
(18,585 posts)And that usually manifests as your browser being slow to respond to clicks or typing..
I recommend that if you have any concerns, run a scan with windows defender (likely already installed if you have a recent MS OS) as well as malwarebytes (their free version is great.)
R B Garr
(17,019 posts)explanation. When you say that you've done it unintentionally a couple times (javascript), do you mean you clicked on a link that turned bad? Years ago I remember a brand new computer was ruined by clicking on a Java icon I thought was supposed to enhance my new machine, but it seized it up and destroyed it. Fortunately, the company where I bought it exchanged it out and the man that helped us said that Java problem is very common.
Thanks again for the suggestions!
X_Digger
(18,585 posts)R B Garr
(17,019 posts)seabeyond
(110,159 posts)until I got clicked out. And ya, the kinda shadow thing on the Op I had clicked to.
R B Garr
(17,019 posts)all that.
Rex
(65,616 posts)It is free and detects all kinds of spyware.
https://www.malwarebytes.com/
It is free.
R B Garr
(17,019 posts)type security things. Excellent information!
Squinch
(51,087 posts)Rex
(65,616 posts)Squinch
(51,087 posts)seabeyond
(110,159 posts)Rex
(65,616 posts)JRP might not have any real security like DU does. I dunno, but I am not surprised they had some malware on their site.
1StrongBlackMan
(31,849 posts)If I click on a link taking me to a website, or enter a website directly, can my keystrokes be logged?
X_Digger
(18,585 posts)Just visiting a site doesn't enable the site to track your keystrokes. It can track everything that you click on as pertains to that site- e.g. On 2016-07-12 at 13:33:00, the user at ip address 123.123.123.123 requested the resource "/images/favicon.ico". The browser was chome, and it appears that the machine is a PC.
If a site has been hijacked and loaded up with malicous code that tries to infect your computer by exploiting your browser, or if that site serves up ads that leads to sites that do the same.. then a key logger might be one of the things that hackers will try to install.
1StrongBlackMan
(31,849 posts)joshcryer
(62,287 posts)I can see such a script running in the background of webpages (though only when the browser was in focus), but it seems too complicated for Norton to detect.
I suspect an ad served it to the user as opposed to something else.
Separation
(1,975 posts)Will tell you to uninstall Java.
Well thats just my opinion.
joshcryer
(62,287 posts)Separation
(1,975 posts)X_Digger
(18,585 posts)If I want to prevent a form from submitting when a user hits the enter key (I might want to force them to hit the 'go' button), I might trap all keystrokes and ignore the enter key.
I also might put something on a search box that does type-ahead predictions, a la google. As you type in a search box, I might make a javascript call back to the server to pre-fetch search results, or other search results starting with the same string.
joshcryer
(62,287 posts)Probably just some ad serving malware. I get those from time to time (even with unlock origin).
Rex
(65,616 posts)on the clock. I guess they are tracking what their members are doing when they are active.
seabeyond
(110,159 posts)doesn't do it?
Rex
(65,616 posts)They can have all kinds of scripts running. I am now wary of that site after hearing this bit of information.
seabeyond
(110,159 posts)Remember computer stupid. I remember yrs back something popping up about taking care of malware but really it was to infest one with malware adn I was told to never click on that. So, the site that you gave to check things, cause no harm, correct?
Rex
(65,616 posts)However if you use it, it is recommended to always scan a computer in safe mode.
1StrongBlackMan
(31,849 posts)If I click on a link taking me to a website, or enter a website directly, can my keystrokes be logged?
Rex
(65,616 posts)to the source of the spyware. Keyloggers are justifiable application when used by an IT department, but there is ZERO reason to have a keylogger on a forum.
1StrongBlackMan
(31,849 posts)Rex
(65,616 posts)They would be liable for the damages caused and I doubt their TOS mentions it at all. That's not to say someone didn't infect their site, they might not have a clue I don't know if they know about intruder detection-prevention programs.
Squinch
(51,087 posts)looked at JPR a couple of times since the threadapalooza.
Rex
(65,616 posts)Sometimes malware can hide in regular mode. Safe mode makes it a lot harder for viruses to move around.
JPR might have a keylogger in a link to another site or it could be as easy as being in a picture you like that someone posted so you click on it or DL it for yourself.
People that put links to external sites could also have infections, it is hard to know since there are so many ways to get malware.
Squinch
(51,087 posts)Rex
(65,616 posts)Also JPR is a new site, so people might be trying to see what exploits are easily available. I'd avoid the place, I signed up during our Epic thread to see what it was all about - but I will be cautious about going back there. I trust DU and DI software, JPR is new and untested imo.
Warpy
(111,456 posts)All of the malware can as long as your machine is on, and sometimes when it's off or in sleep mode.
Removing one depends on which one you have. http://answers.microsoft.com/en-us/windows/forum/windows_vista-security/how-to-detect-if-a-keylogger-is-installed/d14c6cd6-6975-4b25-a2c5-17e5de194b50?auth=1
Next, plug its name into "remove ____" in Le Google. Follow instructions.
Most password and login stealing asswipes have moved to screen capture these days, but a few are still surfing keyloggers.
1StrongBlackMan
(31,849 posts)If I click on a link taking me to a website, or enter a website directly, can my keystrokes be logged?
Warpy
(111,456 posts)To be fair, most of these things are used by employers who want to make sure their office people aren't screwing off on Facebook instead of doing their jobs.
NCTraveler
(30,481 posts)Two replies make me think your question is about a link to a site found on DU. That this is more specific than you are making it out to be. Did I just go conspiracy theory on your op or am I a decent reader between the lines. lol.
1StrongBlackMan
(31,849 posts)indicated that a site that has been posted on DU, with a link to it, is a "Keylogger" site.
Having followed the link to the site, I am trying to assess my risk.
A DUer has responded that the risk is not very high (if I understand what they wrote.)
seabeyond
(110,159 posts)as it is for me, like another language, lol and only picking up words here and there?
1StrongBlackMan
(31,849 posts)seabeyond
(110,159 posts)time change to another, adding or subtracting.
1StrongBlackMan
(31,849 posts)a state that doesn't do day light savings time.
But, my car clock has run 25 minutes fast ... so, I do do the subtracting thing!
My wife has a navigation system in her car ... when we're on the road, I use the app BabyGirl added to my phone.
seabeyond
(110,159 posts)it is so endearing and keeps that babygirl close, feeling protective of you and taking care of you. Too too cute. Lol. Thanks for the giggle in the middle of my day.
1StrongBlackMan
(31,849 posts)FuzzyRabbit
(1,970 posts)and one hour late half the year. I am so used to it that if I set it to daylight savings time I would probably be an hour late every time I drove somewhere during the summer.
Or an hour early, I am not sure which. Damn, life can be so confusing!
FuzzyRabbit
(1,970 posts)1StrongBlackMan
(31,849 posts)seabeyond
(110,159 posts)VCR. But then he is probably using a dvd'er and just showing his age.
Hekate
(91,013 posts)As a consequence, I am interested in this Q&A and am bookmarking it because I think it has general applications to computer use in these times.
womanofthehills
(8,815 posts)Hekate
(91,013 posts)Kelvin Mace
(17,469 posts)in some cases, or via email attachment. Some type of file.
2) Keyloggers are client software that record all your keystrokes and report them back to a server.
3) Go here to start:
http://housecall.trendmicro.com/uk/
Free and online, though a clean bill of health is not a sure thing.
So, then go to a trusted machine and download this open source AV package:
http://www.clamwin.com/
Boot your computer from your original Windows CD into safe mode and run this software to check your system. If it passes, you are clean with about 99.99% certainty (Hey, who knows what the CIA is up to these days.<g>
I personally recommend using Firefox running the NoScript, Ghostery, and Privacy Badger addons. This has kept me safe for a long time.
Rex
(65,616 posts)Safe mode does not load up anything but key files and makes it harder for a virus to move around while being scanned. The BEST way to scan for a virus, is to do so from a flashdrive - for advanced users I recommend Linux Bit-Defender. The Windows OS does not even load up so there is no chance for a virus to morph-move around during a scan.
seabeyond
(110,159 posts)safe mode? I was going to ask before and decided wasn't that important, but here you are talking about it again. Where is my safe mode?
Rex
(65,616 posts)you have to hit F8 during this moment (I know, what the hell Rex) and if you do so successfully, a screen will pop up giving you a lot of options. At the very top is safe mode, well you want to go down the list to 'safe mode with networking' click on that option and the computer will load into safe mode.
The period for clicking the F8 button is right after the computer starts up and load CMOS, so the time is dependent on the speed of the motherboard.
I probably didn't explain that very well here is MS instructions on how to go into safemode;
https://support.microsoft.com/en-us/help/17419/windows-7-advanced-startup-options-safe-mode
Do one of the following:
If your computer has a single operating system installed, press and hold the F8 key as your computer restarts. You need to press F8 before the Windows logo appears. If the Windows logo appears, you'll need to try again by waiting until the Windows logon prompt appears, and then shutting down and restarting your computer.
If your computer has more than one operating system, use the arrow keys to highlight the operating system you want to start in safe mode, and then press F8.
On the Advanced Boot Options screen, use the arrow keys to highlight the safe mode option you want, and then press Enter.
seabeyond
(110,159 posts)Rex
(65,616 posts)Some things like annoying adware to backdoor bootleg servers, it is amazing what can find its way onto your PC without you knowing about it.
Goodluck sea, let us know what you find...hopefully your system will come back clean.
Prisoner_Number_Six
(15,676 posts)It has a gov't accessible keystroke logger built into the OS. By accepting the license you agree to its use for any reason they choose.
https://www.youtube.com/results?search_query=windows+10+keystroke+logger
The above posts give good info on killing them on earlier versions of Win.