setting my password to a hotkey

[magekillr]

not sure if most keylgogers can detect this

 

 

 

 

 

 

 

but...how do i set my runescape password to a hotkey?

 

 

 

 

 

 

 

thatway the keylgoger just sees that single key

 

 

 

 

 

 

 

i dont wanna get hacked in the future

[Pyro]

A keylogger usually does not detect actual times you press a key on the keyboard, it detects when the computer tries to "use" the keystroke as input. Because of this the on-screen keyboard is pointless for this, as would a "hotkey" be.

[magekillr]

friggan hell lol...i figured some key loggers wuld get around that...didnt think most would

 

 

 

 

 

 

 

theres never hope :?...but hey...nothing is ever unhackabale

[Looce]

What Pyro said.

 

 

 

 

 

 

 

An explanation for this:

 

 

 

 

 

 

 

When you send a key to your computer via your keyboard, it is translated by your keyboard driver into a KeyPress message and sent to the active application. For that application to understand the key press, it must be sent as such a message.

 

 

 

 

 

 

 

A "flaw" (if I may call it thus) in Windows allows another application (the "Keylogger") to catch all KeyPress messages sent on your computer.

 

 

 

 

 

 

 

Now, like I said, key presses must be sent as KeyPress messages to applications, so your hotkey actually is translated to a series of KeyPress messages before arriving at (for instance) your RuneScape client. As are keys clicked on the Windows XP on-screen keyboard. Thus, keyloggers can catch hotkeys as their actual value (v9r3kv3;lv29 instead of Ctrl+Alt+5 for example) and can catch clicks on the on-screen keyboard as the right key.

 

 

 

 

 

 

 

Conclusion: Not only can most keyloggers catch hotkeys, they all can.

[magekillr]

tyvm every1...u may close this post if u want...or u can keep it up so others wont make same mistake

[EugenyG]

Hmm..

 

 

 

 

 

 

 

What if you had the following system:

 

 

 

 

 

 

 

Hotkey activates a special program which opens a file full of random patterns of characters and randomly copies and pastes the characters that make up the password into your password field. The value for the letters to pick is stored in the program in encrypted form (the encrypted password is a one-time (until a password change) copy by means of a diskette from a sister program located on a different computer which has no connection to the internet and is presumably keylogger-free.

 

 

 

 

 

 

 

For increased security, it can cut and paste the characters in random order.

[DaN]

Instead of trying to invent elaborate ways of sneaking past keyloggers I belive it would be much better for people to acually Secure their pc's instead.

[magekillr]

Instead of trying to invent elaborate ways of sneaking past keyloggers I belive it would be much better for people to acually Secure their pc's instead.

 

 

 

 

 

 

 

 

 

 

 

well lets see...

 

 

 

 

 

 

 

adaware, freedom internet security, symantic, norton, spybot, hijackthis, firewalls

 

 

 

 

 

 

 

wat else is there? must i slow down my computer even more than i already have? even though i have been hacked with all this already installed with regular scans everyday b4 i turn the computer off?

[runesmithie]

Hmm..

 

 

 

 

 

 

 

What if you had the following system:

 

 

 

 

 

 

 

Hotkey activates a special program which opens a file full of random patterns of characters and randomly copies and pastes the characters that make up the password into your password field. The value for the letters to pick is stored in the program in encrypted form (the encrypted password is a one-time (until a password change) copy by means of a diskette from a sister program located on a different computer which has no connection to the internet and is presumably keylogger-free.

 

 

 

 

 

 

 

For increased security, it can cut and paste the characters in random order.

 

 

 

 

 

 

 

You can't paste into the rs client without a keypress event though :P

[Looce]

You can't paste at ALL into the RS client, for anti-spam purposes. :wink:

 

 

 

 

 

 

 

Then again, some keylogger makers would be smart enough to catch Ctrl+V and send in a snapshot of the current clipboard contents.

 

 

 

 

 

 

 

What I'd use to circumvent a keylogger... is a simple Notepad.

 

 

 

 

 

 

 

Assuming my password is "tipitownzorzlolol" (Not actually it...), I'd type in a sentence like "At the IP 65.149.194.27 you can deposit and also withdraw nothing more than a few dozens of striped zebra looming lepers overreacting to a hallucination", alternating between the RS client (underlined keys in this example) and the Notepad. If the keylogger isn't smart enough to detect application changes, clicking (not Alt+Tabbing) back and forth between the RS client and the Notepad will get the keylogger maker to see only the long phrase I typed. (As an added bonus, the person over there will go WTH as soon as he gets the keys :D)

[Kwisatz]

I agree with Dan.

 

 

 

 

 

 

 

I will give everyone the honest-to-God truth.

 

 

 

 

 

 

 

I run NOTHING on this computer, at all. No anti-virus software, no Spybot, no Ad-Aware, no nothing. This is against conventional wisdom. But, ladies and gents, I have something that other people do not have: COMMON SENSE (and a bit of skillZ).

 

 

 

 

 

 

 

I've been using the internet and related services for 7 years now. In all that time, I have NEVER gotten a virus, trojan, keylogger, etc. I have gotten spyware ONCE in all that time, and I promptly removed it without the use of any software.

 

 

 

 

 

 

 

Just listen to me for a second. If you don't open suspicious emails, then you can't get viruses. If your email client doesn't parse as HTML as soon as you view it, you won't get viruses. If you use Firefox and have all the patches and don't download suspicious applets, you won't get viruses. If you don't download suspicious programs, you won't get viruses. If you don't accept files from strangers, you won't get viruses. It's simple as that.

 

 

 

 

 

 

 

And, if you run behind a router, then nobody can get to your computer, unless they use a trojan and reverse connect, in which case you're screwed anyway.

 

 

 

 

 

 

 

 

 

 

 

So, in short - if more people took the time to be educated and woke up to the dangers of the internet, then spyware and such would not be much of a problem. But most unfortunately we have people running around downloading [Caution: ExecutableFile] files because they think that they're Christmas pictures (I actually got paid $50 to disinfect a machine that had this happen).

 

 

 

 

 

 

 

So stop trying to come up with cockamaniac ideas to circumvent keyloggers and don't get them in the first place.

 

 

 

 

 

 

 

Plus, NetDevil, Optix, CIA, and Beast ALL detect application changes, keyboard pastes, and backspaces, and can retrieve encrypted password files. "Hackers" do not write their own trojans, rather, they download special software that allows them to use an existing codebase and create thier own custom-tailored trojan file, which has identical features to any other trojan created using the same software. In other words, if "hackers" use the same trojan software (which many do), and use the popular ones (NetDevil, etc.) then they ALL detect backspaces and stuff, meaning that the average trojan is "smart" enough to detect it.

 

 

 

 

 

 

 

So let me reiterate for the third time: don't get them and you'll be fine. If you get a trojan or a keylogger you're pretty much screwed. And Dan said that first.

[Romeoteddybear]

"So, in short - if more people took the time to be educated and woke up to the dangers of the internet, then spyware and such would not be much of a problem. But most unfortunately we have people running around downloading [Caution: ExecutableFile] files because they think that they're Christmas pictures (I actually got paid $50 to disinfect a machine that had this happen)."

 

 

 

 

 

 

 

That's where Windows has its problems as well. Microsoft tries to make it easy for people to use and as a result all these viruses and malware get created for it.

 

 

 

 

 

 

 

Vista might be a better..but as long as non-educated users are out there...

[SkULLEDPK3R]

Hmm..

 

 

 

 

 

 

 

What if you had the following system:

 

 

 

 

 

 

 

Hotkey activates a special program which opens a file full of random patterns of characters and randomly copies and pastes the characters that make up the password into your password field. The value for the letters to pick is stored in the program in encrypted form (the encrypted password is a one-time (until a password change) copy by means of a diskette from a sister program located on a different computer which has no connection to the internet and is presumably keylogger-free.

 

 

 

 

 

 

 

For increased security, it can cut and paste the characters in random order.

 

 

 

 

 

 

 

 

 

 

 

english please?

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

u cant get hacked if ur not online i hit standby whenever i log in.

[runesmithie]

 

Hmm..

 

 

 

 

 

 

 

What if you had the following system:

 

 

 

 

 

 

 

Hotkey activates a special program which opens a file full of random patterns of characters and randomly copies and pastes the characters that make up the password into your password field. The value for the letters to pick is stored in the program in encrypted form (the encrypted password is a one-time (until a password change) copy by means of a diskette from a sister program located on a different computer which has no connection to the internet and is presumably keylogger-free.

 

 

 

 

 

 

 

For increased security, it can cut and paste the characters in random order.

 

 

 

 

 

 

 

 

 

 

 

english please?

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

u cant get hacked if ur not online i hit standby whenever i log in.

 

 

 

 

 

 

 

If the keylogger is on your computer chances are it could save a text file while you arent connected and then send it when you next connect ;)