Keylogger prevention

[Amlin]

I wish to share with everyone this info: Wikipedia
Lets discuss keylogger prevention methods noted there and maybe share knowledge of other methods not mentioned on Wikipedia. Sad but lots of usefull prevention methods doesnt work with EU login. I`d liked to know if its possible to login EU using speech/handwriting recognition, but as i know it is impossible to login using on screen keyboard or copy/paste.
So i think that usefull keylogger prevention methods working for EU login are:
1) Gold card
2) Alternative keyboard layout. It is easy to install additional language (i advice to use the one you dont use now and from language you dont know, to make it even harder for someone to guess), check in some notepad or smt for strange symbols in usual places and use them as your password. For example use russian keyboard and type your "password". Then your actual password will be "зфыыцщкв". Hard to guess for anyone, easy to remmember for yourself and keylogger user will have hard time to guess that you used russian language if you dont know that language at all. Maybe keyloggers may get info about language in witch text was typed, i dont know, so please someone confirm it.
3) Non-technological methods. Type part of login, switch focus to password, type part of it, then switch back to username and so on, but be sure to type random lengths of username/password every time. I mean dont switch between username/password every letter or every second letter and dont use tab, shift+tab to switch. Use mouse. I didnt tested if its possible to focus on non-typable area of EU login screen but if possible then press several keys on keyboard there too, actually typing nothing in username/password fields. You may do even more complex by typing not to end, but to middle. Simplified example with username "Amlin" and password "Password": Mouseclick in password field, type "word", Mouseclick in username field, type "mli", mouseclick in password field before all *`s and type "Pass" then mouseclick in username field before mli and type "A", click at end and press "n". Result is same, but keylogger got "wordmliPassAn" dont knowing where what went...
Btw if you know/feel/suspect keylogger is in your PC and you wish to change your password then dont forget about other prevention methods that dont work on EU login. To change password for e-mail, EU you may use them, and should.

[Mojoswoptops]

It seems to me that you have comprehensively covered all idea's. Wish i could add a suggestion but i know very little about the topic. Plus rep for the good idea's tho.

[Amlin]

Poll added

[Legion]

Learn to use a computer.. that's abotu all one needs to do to protect yoruself from keyloggers, and if your stupid enough to not learn well then it's your own fault if one get's hacked.

And the info about using a different keyboard layout is kind of useless if you ask me, it's better to know what your doing and have a proper firewall and anti spyware, that is all you need.

[Amlin]

Learn to use PC is a must, but i`m not a person who sits ant prays that AV/AS/FW/etc protects me. Anything that is automated may be broken. So every program may be hacked imho, just you need to think how much people use that program. The more unusual way you use to protect yourself the bigger is chance that you will be safe. I think that i know a lot about PC, and the more i know the less i trust ONLY to AV/AS/FW/any other soft. I wish to do something myself. It depends on your paranoia level talking about layouts, but if you accidently already are using some other layout except English (US) or some other most popular layouts then it costs you almost nothing to switch to it before typing password and switching back afterwards. But it MAY save your PEDS

[Gankoholic]

From what i know the keyloggers actualy use a trojan , there r about 2-3 ways a trojan can be installed on your PC but the easyest one is to give you some crap server.exe ( thats the default name , it can be changed to anyting like entropiacheats.exe or like a saw somewhere on the forum sildeshow.exe ..a slide show is not a .exe its made in powerpoint ..just use ur head ) that will activate the trojan only if u execute it ..so just dont execute stuff like that

[JackFree]

Quote:

Originally Posted by Amlin

Learn to use PC is a must, but i`m not a person who sits ant prays that AV/AS/FW/etc protects me. Anything that is automated may be broken. So every program may be hacked imho, just you need to think how much people use that program. The more unusual way you use to protect yourself the bigger is chance that you will be safe. I think that i know a lot about PC, and the more i know the less i trust ONLY to AV/AS/FW/any other soft. I wish to do something myself. It depends on your paranoia level talking about layouts, but if you accidently already are using some other layout except English (US) or some other most popular layouts then it costs you almost nothing to switch to it before typing password and switching back afterwards. But it MAY save your PEDS

Won't a keylogger record what keys you punch regardless of the keyboard layout? I mean if you have a Z in you password it will be recorded by the keylogger no matter what key you actually press to get that character.

Or, I have no idea about how keyloggers actually work?

Cheers

Edit:

Ok I read the wiki and found this:

Quote:

Most keylogging hardware/software assumes that a person is using the standard QWERTY keyboard layout, so by using a layout such as Dvorak, captured keystrokes are nonsense unless converted. For additional security, custom keyboard layouts can be created using tools like the Microsoft Keyboard Layout Creator.

So I guess changing the keyboard layout could help. Of course the question arises that if the keylogger appication is "smart" enough, could it not detect your keyboard layout as well?

Cheers again

[Pollus]

Well the gold card lets you not worry about that in terms of entropia.exe

[Legion]

Quote:

Originally Posted by Amlin

Learn to use PC is a must, but i`m not a person who sits ant prays that AV/AS/FW/etc protects me. Anything that is automated may be broken. So every program may be hacked imho, just you need to think how much people use that program. The more unusual way you use to protect yourself the bigger is chance that you will be safe. I think that i know a lot about PC, and the more i know the less i trust ONLY to AV/AS/FW/any other soft. I wish to do something myself. It depends on your paranoia level talking about layouts, but if you accidently already are using some other layout except English (US) or some other most popular layouts then it costs you almost nothing to switch to it before typing password and switching back afterwards. But it MAY save your PEDS

heh from that reply i'd have to say your a bit to much of a paranoid person. Also from that reply i get the feeling that you think you know a lot about computers but you actually dont really do. Atleast that's the feeling i get.

[Amlin]

I know about computers a lot, but not in this particular sphere (keyloggers, viruses, hacking). But i know how computers work, and i understand that there is lots of types of keyloggers, changing language helps against the ones that record witch keys are pressed, not witch symbols are transferred to program. As i wrote before it may help, but may not aswell
About cathing keylogger itself there is much more ways than just manually doubleclick on renamed "server.exe".
Yes, as you maybe noticed i putted Gold Card as No. 1 keylogger prevention method. But if someone is paranoid enough or just doesnt have that card (or waiting for it) he/she may use other methods too. This is just info to let everyone KNOW about prevention possibilities. To avoid such accidents as "i ordered GC but didnt knowed that i may do something more like just to sit and pray to my AV/AC/FW/etc hoping keylogger wont get in/work for me"