How to disable the Mozilla Firefoxs keystrokes logger?
Could you be a little more precise, please. Is this some kind of addon you’ve installed or a toolbar that’s been added?
By the way, why Comodo Defense+ cant block it?
I use portable (PortableAppZ.blogspot.com) Forefox 3.5.5 with Downthemall! 1.1.3, Adblock + 1.1, Noscript
Unfortunately, that hasn’t helped very much. I’d like to understand why you think firefox is logging your keystrokes?
Zemana said that it was keylogger, type 23
By the way, they watch :o this thread at present. I think it is one of their favourite tools. They use all the freaking tools they can, cause they are hyperactive social-climber-copulateer rogues
I think Comodo should to develop Defense+ or to flag Mozilla Firefox as a trojan ;D
Hi Scary_bear,
As Quill said have to provide more details including OS, etc.
If you are using Zemana and its alerting something The precise message is needed not just the type What process is the suspect?
Then you have to ask Zemana developers in the 1st place. It could be FP
So your question about the Defense+ not blocking “it” cannot be answered.
Most likely the Defense+ shouldn’t raise an alert, because all is legit
…but that is necessary to know what is “it” - the name of a process who can be the Parent etc.
Cheers!
If you are using Zemana and its alerting something The precise message is needed not just the type What process is the suspect?FirefoxPortable.exe - try to log your keystrokes, activity - type 23 (approximately that)
Well, Scary_bear “approximately” is not “precise” 
… as far as I know
But it seems to me like FP on Zemana’s behalf
Is it happening on Foxe’s startup or when you are trying to enter something?
There should be some standard procedure stated by Zemana how to report issues
It should be some log file or alike / ruleset or something and so on, so you can pass that info to them
My regards
Is it happening on Foxe's startup or when you are trying to enter something?on startup
But it seems to me like FP on Zemana's behalfZemana dont use database so this activity is precisely suspicious (and № 23, by the way)
I just installed Zemana and I use firefox, it doesn’t report anything untoward. Perhaps it’s something to do with the version of firefox you’re using. Maybe there’s something in the portable version of firefox, an additional toolbar, perhaps.
I was talking about logging the events so they could be analyzed
Cheers!
Added the site you mentioned is badly rated by some (macAffee, Dr web link checker, etc.
I usually getting the portable Fox from http://portableapps.com/
I am not saying that could be the culprit. but in addition to what Quill advised to check I would try to download from portableapps and test without any add-ons & stuff
Look
[attachment deleted by admin]
1st, I added some info above… we were typing at the same time
And then, what you posted - should be shown to Zemana developers.
Cheers!
I agree with Siber. I looked on their site for information on what type 23 means and couldn’t find anything. There’s no forum and to be honest, a very poor site.
Post your log files to their support people and see what they say. I’ll not be keeping this application.
I will send this firefoxportable.exe to Comodo and I hope these keylogger will be discovered
I agree with Siber. I looked on their site for information on what type 23 means and couldn’t find anything. There’s no forum and to be honest, a very poor site.Yes. I cant find this information too
I’ll not be keeping this application.Zemana is cool ;D
That is just interesting to find out. And that should be the vendor (Zemana in this case)
Not sure why you are going to send it to Comodo labs, but you can do that if you wish.
As for Zemana being cool… I don’t know… it seems to me being redundant
There are some conditions to be met in order to suspect keylogger.
One of the conditions the application is windowless
That would be quite challenging to browse if the latter is true ;D
As for silently sending information outside … sure fox does that.
As a matter of fact Firefox when you start it first time is flagged by some security (behavioural analysis) as a BackDoor because of the specific way of establishing connection. You should allow that behaviour.
But I never heard yet that Foxe’s executable was flagged on startup as a keylogger
We always learn 
… about FPs(?)
Cheers
As for silently sending information outside … sure fox does that.As a matter of fact Firefox when you start it first time is flagged by some security (behavioural analysis) as a BackDoor because of the specific way of establishing connection. You should allow that behaviour.
More information please Siber. firefox, for me doesn’t do anything, unless I tell it to. Perhaps this is not the right thread, so PM me if you wish.
Thank you.
As for silently sending information outside … sure fox does that.Then why firefox still not flagged as backdoor? I suspect that firefox sends information which includes ip-address and log of requests as a minimum. So even if you use proxy with encoding the log will be received to the destination point. I suspect that this is the Mozilla's way for earning money. Really, they couldnt earn much money using only legal way cause there p2p exists and crackers toils 24 hours a day So they works for international corruption
You should allow that behaviour.Really? I should change its behaviour or use another software, I suppose
because of the specific way of establishing connectionCan you explain?
You should have the behavioral analysys layer of security for that (for “BackDoor”).
That was not the point. The point was that Fox is sending info out
so an alleged keylogger (any) does, but that doesn’t mean that it should be flagged as such.
Why would you change the legit Software because of that?
You have a lot of code in you software that is similar or precisely the code that malware uses. Malware removal Tools can have the same “malware code”
Sometimes that is flagged as FPs (signatures and/or heuristics).What can you do?
The behaviour can be considered as malicious as well (no signatures for analysis)
Cheers!
No no no no no. You said
because of the specific way of establishing connectionWhat way exactly?
According to you anonymous proxies must help but they dont help sometimes. You think they forces proxys hosts to log information for them?
P.S. I hate international freaking