How to Avoid and Remove a Keylogger

A keylogger is a dangerous program that runs invisibly as a low level system process. Usually started up when your computer Starts - so its impossible to detect it - a keylogger logs all the keystrokes that you type on keyboard and then sends that info to the person who infected you with the keylogger.



Keyloggers can be used to steal personal information such as your social security number, credit card number, and passwords. Keyloggers are especially dangerous to anyone who uses online cash sites like PayPal for a large amount of money transfers.


When you suspect that you are infected with a keylogger, do NOT type any personal information. Even if you are typing in a normal word document, the keylogger still track everything and where ever and what ever you type.


If you need to login to your Email or somewhere secure and password protected, this is the only way to get rid of the keylogger.



Click Start -> All Programs -> Accessories -> Accessibility -> On-Screen Keyboard


Doing this opens up a keyboard on your screen so that you can click whatever letter you would like to type. Since a keylogger does not track where and what you click, this helps you to get rid of it in times of urgency. Typing with the on-screen keylogger is a great loop hole for a keylogger. The only alternative is the remove the keylogger completely.


Detecting a keylogger is more important before you remove it because doing that is not such easy thig. It can be installed in many places on your computer, usually located in one of the system files. However, there is a much easier way to detect if a keylogger is running or not. Right click on your menu bar and click Task Manager or simply press Ctrl + Alt + Del. You should take a look on all the applications which are running at the moment. Click Processes tab. This gives you info about all the programs, hidden and visible that your computer is currently running.


Unless you know a lot about which processes the computer runs and does not run you will have trouble figuring out what is a keylogger and what not. The keylogger will show up on the list of processes as well as many other programs and background processes. However, you may not be able to find the difference between all the processes.


So you need to know which is a keylogger before you can stop it. There are many sites available on the Internet that provides a vast amount of information on each and every process that you may encounter. One of these sites is Liutilities. This site provides some background information on each process as well as telling you the author and which program it is part of. One of the best features of this site includes a recommendation about what to do with that process. Most of the time, the process you look up will be harmful and simply part of the operating system or another program you are running.

Another fantastic site for information on processes is Neuber. As with Liutilities, Neuber gives you background information on that process. A special feature they have is user created comments. Anyone can rate a process in terms of its security a leave a comment about how to deal with the process. Generally, these comments are very accurate. Neuber also provides a 'security rating' for each process based on the average rating by users.


However, some find it hard and long drawn out to research each process individually. There is an alternative program called Security Task Manager that is free to download. It will display information about each of the processes that are currently running, as well as telling you if they are dangerous or not. You will immediately be notified should anything harmful come up. Produced by Neuber, the program also shows the security rating and a random comment made by a user for each process. This program does have its disadvantages though. Processes that the program has never encountered before are not given a security rating or a comment. It is therefore advised that you research these processes individually.


Once you have found the harmful process, click the process and then click the 'End Process' button towards the bottom right. The process you have selected should be terminated immediately.

Once this is complete, you should be safe until you reboot your computer. If you do not delete the keylogger, upon rebooting your computer, the keylogger will start up again.


Once you have stopped the keylogger, run anti-virus and spyware checks on your entire computer. Some free virus scan utilities that are recommended are A2, Dr. Web and AVG. However, highly advanced keyloggers such as TypeAgent, KGB, and SpyOutside can often slip through these scans and remain undetected.

If the anti virus scans fail to show any result, you will need to manually detect and delete the keylogger. Keyloggers are usually located in the system files, so do not delete anything that you aren't 100% sure is the keylogger. Doing so may lead to errors in other areas of the computer. Go to 411-spyware and search for the type of keylogger that has infected your system. If it is listed, there should be instructions about how to manually remove the keylogger.


A great way to check if the keylogger has been completely removed from the system is to reboot. Remember the name of the keylogger's process and reboot the computer. If the process is not there when the computer has rebooted, you are safe.