{"id":541,"date":"2014-06-18T21:43:24","date_gmt":"2014-06-18T12:43:24","guid":{"rendered":"http:\/\/matoken.org\/blog\/?p=541"},"modified":"2014-06-18T21:44:59","modified_gmt":"2014-06-18T12:44:59","slug":"keylogger","status":"publish","type":"post","link":"https:\/\/matoken.org\/blog\/2014\/06\/18\/keylogger\/","title":{"rendered":"\u81ea\u5206\u306ePC\u306b\u30ad\u30fc\u30ed\u30ac\u30fc\u3092\u8a2d\u5b9a\u3059\u308b"},"content":{"rendered":"<div style=\"background-color: rgb(255, 255, 255); font-family: 'Lucida Grande', 'Segoe UI', 'Apple SD Gothic Neo', 'Malgun Gothic', 'Lucida Sans Unicode', Helvetica, Arial, sans-serif; font-size: 0.9em; overflow-x: hidden; overflow-y: auto; margin: 0px !important; padding: 5px 20px 26px !important;padding: 20px;padding: 20px; color: rgb(34, 34, 34); font-size: 15px; font-family: 'Roboto Condensed', Tauri, 'Lucida Grande', 'Lucida Sans Unicode', 'Lucida Sans', AppleSDGothicNeo-Medium, 'Segoe UI', 'Malgun Gothic', Verdana, Tahoma, sans-serif; background-color: rgb(255, 255, 255); -webkit-font-smoothing: antialiased; background-position: initial initial; background-repeat: initial initial;\">\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u30ad\u30fc\u30ed\u30ac\u30fc\uff0e\u4eba\u306ePC\u306b\u4ed5\u639b\u3051\u308b\u306e\u306f\u307e\u305a\u3044\u3051\u3069\u81ea\u5206\u306e&#038;\u81ea\u5206\u3057\u304b\u4f7f\u308f\u306a\u3044PC\u3067\u8a66\u3059\u5206\u306b\u306f\u554f\u984c\u306a\u3044\u3060\u308d\u3046\u3068\u3044\u3046\u3053\u3068\u3067\u5165\u308c\u3066\u307f\u3066\u307e\u3059\uff0e\n  <\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u5165\u308c\u3066\u3044\u308b\u306e\u306f\u4ee5\u4e0b\u306e <strong>logkeys<\/strong> \uff0e\n  <\/p>\n<ul>\n<li style=\"display: list-item; line-height: 1.4em;\">\n      \u201clogkeys &#8211; a GNU\/Linux keylogger that works! &#8211; Google Project Hosting\u201d <a href=\"https:\/\/code.google.com\/p\/logkeys\/\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\">https:\/\/code.google.com\/p\/logkeys\/<\/a>\n    <\/li>\n<\/ul>\n<h1 id=\"-\" style=\"clear: both;font-size: 2.2em; font-weight: bold; margin: 1.5em 0px 1em;\">\n    <a name=\"-\" href=\"#-\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\"><\/a>\u5c0e\u5165\u65b9\u6cd5<br \/>\n  <\/h1>\n<p style=\"margin-top: 0px;margin: 1em 0px; word-wrap: break-word;\">\n    Debian\u3084Ubuntu \u3060\u3068\u30d1\u30c3\u30b1\u30fc\u30b8\u304c\u3042\u308b\u306e\u3067 <strong>logkeys<\/strong> \u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u5c0e\u5165\u3059\u308b\u3060\u3051\uff0e\n  <\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; overflow: auto;\"><code data-origin=\"&lt;pre&gt;&lt;code&gt;% sudo apt-get install logkeys\n&lt;\/code&gt;&lt;\/pre&gt;\" style=\"display: block;border: 1px solid rgb(204, 204, 204); white-space: pre; padding: 0.5em; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 1em; font-family: Consolas, Inconsolata, Courier, monospace; letter-spacing: -1px; font-weight: bold;\">% sudo apt-get install logkeys\n<\/code><\/pre>\n<h1 id=\"-\" style=\"clear: both;font-size: 2.2em; font-weight: bold; margin: 1.5em 0px 1em;\">\n    <a name=\"-\" href=\"#-\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\"><\/a>\u521d\u671f\u8a2d\u5b9a<br \/>\n  <\/h1>\n<p style=\"margin-top: 0px;margin: 1em 0px; word-wrap: break-word;\">\n    <code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;color: rgb(0, 0, 0); background-color: rgb(254, 236, 221); border: 1px solid rgb(239, 223, 208);\">\/etc\/default\/logkeys<\/code> \u3068\u3044\u3046\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u3092\u8a2d\u5b9a\u3057\u307e\u3059\uff0e\n  <\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; overflow: auto;\"><code data-origin=\"&lt;pre&gt;&lt;code&gt;ENABLED=1\nLOGFILE=\/home\/mk\/.logkeys\/`\/bin\/date +%Y%m%d-%H%M%S-$$`\n\n# This should be updated according to your hardware\n# Check README.Debian for more info\nDEVICE=\/dev\/input\/event0\n&lt;\/code&gt;&lt;\/pre&gt;\" style=\"display: block;border: 1px solid rgb(204, 204, 204); white-space: pre; padding: 0.5em; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 1em; font-family: Consolas, Inconsolata, Courier, monospace; letter-spacing: -1px; font-weight: bold;\">ENABLED=1\nLOGFILE=\/home\/mk\/.logkeys\/`\/bin\/date +%Y%m%d-%H%M%S-$$`\n\n# This should be updated according to your hardware\n# Check README.Debian for more info\nDEVICE=\/dev\/input\/event0\n<\/code><\/pre>\n<ul>\n<li style=\"display: list-item; line-height: 1.4em;\">\n      ENABLED : 0 \u8d77\u52d5\u3057\u306a\u3044 \/ 1 \u8d77\u52d5\u3059\u308b\n    <\/li>\n<li style=\"display: list-item; line-height: 1.4em;\">\n      LOGFILE : \u30ed\u30b0\u30d5\u30a1\u30a4\u30eb\u306e\u6307\u5b9a\n    <\/li>\n<li style=\"display: list-item; line-height: 1.4em;\">\n      DEVICE : \u30ad\u30fc\u30dc\u30fc\u30c9\u30c7\u30d0\u30a4\u30b9\u6307\u5b9a\n    <\/li>\n<\/ul>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u81ea\u52d5\u8d77\u52d5\u3057\u3066\u30ed\u30b0\u30d5\u30a1\u30a4\u30eb\u306e\u8a2d\u5b9a\uff0c\u30ed\u30b0\u3059\u308b\u30ad\u30fc\u30dc\u30fc\u30c9\u30c7\u30d0\u30a4\u30b9\u306e\u6307\u5b9a\u3092\u3057\u307e\u3059\uff0e<br style=\"clear: both;\" \/>\u30ed\u30b0\u30d5\u30a1\u30a4\u30eb\u306f\u4ed6\u306e\u4eba\u304b\u3089\u8aad\u307e\u308c\u306a\u3044\u3088\u3046\u306b\u30d1\u30fc\u30df\u30c3\u30b7\u30e7\u30f3\u3092\u8a2d\u5b9a\u3057\u3066\u304a\u304d\u307e\u3057\u3087\u3046\uff0e\u30d5\u30a1\u30a4\u30eb\u540d\u306f\u8a66\u3057\u306b\n  <\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; overflow: auto;\"><code data-origin=\"&lt;pre&gt;&lt;code&gt;\/home\/mk\/.logkeys\/`\/bin\/date +%Y%m%d-%H%M%S-$$`\n&lt;\/code&gt;&lt;\/pre&gt;\" style=\"display: block;border: 1px solid rgb(204, 204, 204); white-space: pre; padding: 0.5em; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 1em; font-family: Consolas, Inconsolata, Courier, monospace; letter-spacing: -1px; font-weight: bold;\">\/home\/mk\/.logkeys\/`\/bin\/date +%Y%m%d-%H%M%S-$$`\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u3068\u304b\u66f8\u3044\u3066\u307f\u305f\u3089\u884c\u3051\u307e\u3057\u305f\uff0e\u8a66\u3057\u3066\u307f\u308b\u3082\u3093\u3067\u3059\u306d\uff0e\u3053\u308c\u3067\u8d77\u52d5\u6bce\u306b\u65b0\u3057\u3044\u30ed\u30b0\u30d5\u30a1\u30a4\u30eb\u304c\u4f5c\u6210\u3055\u308c\u308b\u306f\u305a\u3067\u3059\uff0e<br style=\"clear: both;\" \/>\u30ad\u30fc\u30dc\u30fc\u30c9\u30c7\u30d0\u30a4\u30b9\u306f <code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;color: rgb(0, 0, 0); background-color: rgb(254, 236, 221); border: 1px solid rgb(239, 223, 208);\">\/proc\/bus\/input\/devices<\/code> \u3092\u898b\u305f\u308a\uff0c\u5b9f\u969b\u306e\u30c7\u30d0\u30a4\u30b9\u3092 cat \u3057\u3066\u30ad\u30fc\u5165\u529b\u3057\u3066\u307f\u305f\u308a\u3057\u3066\u898b\u3064\u3051\u307e\u3059\uff0e<br style=\"clear: both;\" \/>\u8a73\u7d30\u306f <code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;color: rgb(0, 0, 0); background-color: rgb(254, 236, 221); border: 1px solid rgb(239, 223, 208);\">\/usr\/share\/doc\/logkeys\/README.Debian<\/code> \u306b\u66f8\u304b\u308c\u3066\u3044\u307e\u3059\uff0e\n  <\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u4ee5\u4e0b\u306e<code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;color: rgb(0, 0, 0); background-color: rgb(254, 236, 221); border: 1px solid rgb(239, 223, 208);\">\/proc\/bus\/input\/devices<\/code> \u3067\u306f\uff0c\u982d\u306e\u304ckeyboad \u306e\u3088\u3046\u3067\u3059\uff0e\n  <\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; overflow: auto;\"><code data-origin=\"&lt;pre&gt;&lt;code&gt;I: Bus=0011 Vendor=0001 Product=0001 Version=ab54\nN: Name=&quot;AT Translated Set 2 keyboard&quot;\nP: Phys=isa0060\/serio0\/input0\nS: Sysfs=\/devices\/platform\/i8042\/serio0\/input\/input0\nU: Uniq=\nH: Handlers=sysrq kbd event0 \nB: PROP=0\nB: EV=120013\nB: KEY=402000000 3803078f800d001 feffffdfffefffff fffffffffffffffe\nB: MSC=10\nB: LED=7\n\nI: Bus=0019 Vendor=0000 Product=0005 Version=0000\nN: Name=&quot;Lid Switch&quot;\nP: Phys=PNP0C0D\/button\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/device:00\/PNP0C0D:00\/input\/input3\nU: Uniq=\nH: Handlers=event2 \nB: PROP=0\nB: EV=21\nB: SW=1\n\nI: Bus=0019 Vendor=0000 Product=0003 Version=0000\nN: Name=&quot;Sleep Button&quot;\nP: Phys=PNP0C0E\/button\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/device:00\/PNP0C0E:00\/input\/input4\nU: Uniq=\nH: Handlers=kbd event3 \nB: PROP=0\nB: EV=3\nB: KEY=4000 0 0\n\nI: Bus=0019 Vendor=0000 Product=0001 Version=0000\nN: Name=&quot;Power Button&quot;\nP: Phys=LNXPWRBN\/button\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/LNXPWRBN:00\/input\/input5\nU: Uniq=\nH: Handlers=kbd event4 \nB: PROP=0\nB: EV=3\nB: KEY=10000000000000 0\n\nI: Bus=0010 Vendor=001f Product=0001 Version=0100\nN: Name=&quot;PC Speaker&quot;\nP: Phys=isa0061\/input0\nS: Sysfs=\/devices\/platform\/pcspkr\/input\/input6\nU: Uniq=\nH: Handlers=kbd event5 \nB: PROP=0\nB: EV=40001\nB: SND=6\n\nI: Bus=0019 Vendor=17aa Product=5054 Version=4101\nN: Name=&quot;ThinkPad Extra Buttons&quot;\nP: Phys=thinkpad_acpi\/input0\nS: Sysfs=\/devices\/platform\/thinkpad_acpi\/input\/input8\nU: Uniq=\nH: Handlers=kbd rfkill event6 \nB: PROP=0\nB: EV=33\nB: KEY=18040000 0 10000000000000 0 1501b00102004 c000000001104000 e000000000000 0\nB: MSC=10\nB: SW=a\n\nI: Bus=0003 Vendor=04f2 Product=b217 Version=0854\nN: Name=&quot;Integrated Camera&quot;\nP: Phys=usb-0000:00:1a.0-1.6\/button\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1a.0\/usb1\/1-1\/1-1.6\/1-1.6:1.0\/input\/input9\nU: Uniq=\nH: Handlers=kbd event7 \nB: PROP=0\nB: EV=3\nB: KEY=100000 0 0 0\n\nI: Bus=0019 Vendor=0000 Product=0006 Version=0000\nN: Name=&quot;Video Bus&quot;\nP: Phys=LNXVIDEO\/video\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/device:00\/PNP0A08:00\/LNXVIDEO:00\/input\/input10\nU: Uniq=\nH: Handlers=kbd event8 \nB: PROP=0\nB: EV=3\nB: KEY=3e000b00000000 0 0 0\n\nI: Bus=0001 Vendor=14f1 Product=506e Version=0001\nN: Name=&quot;HDA Digital PCBeep&quot;\nP: Phys=card0\/codec#0\/beep0\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/input\/input11\nU: Uniq=\nH: Handlers=kbd event9 \nB: PROP=0\nB: EV=40001\nB: SND=6\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=&quot;HDA Intel PCH HDMI\/DP,pcm=8&quot;\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input18\nU: Uniq=\nH: Handlers=event10 \nB: PROP=0\nB: EV=21\nB: SW=140\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=&quot;HDA Intel PCH HDMI\/DP,pcm=7&quot;\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input17\nU: Uniq=\nH: Handlers=event11 \nB: PROP=0\nB: EV=21\nB: SW=140\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=&quot;HDA Intel PCH HDMI\/DP,pcm=3&quot;\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input16\nU: Uniq=\nH: Handlers=event12 \nB: PROP=0\nB: EV=21\nB: SW=140\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=&quot;HDA Intel PCH Headphone&quot;\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input15\nU: Uniq=\nH: Handlers=event13 \nB: PROP=0\nB: EV=21\nB: SW=4\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=&quot;HDA Intel PCH Dock Headphone&quot;\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input14\nU: Uniq=\nH: Handlers=event14 \nB: PROP=0\nB: EV=21\nB: SW=4\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=&quot;HDA Intel PCH Dock Mic&quot;\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input13\nU: Uniq=\nH: Handlers=event15 \nB: PROP=0\nB: EV=21\nB: SW=10\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=&quot;HDA Intel PCH Mic&quot;\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input12\nU: Uniq=\nH: Handlers=event16 \nB: PROP=0\nB: EV=21\nB: SW=10\n\nI: Bus=0011 Vendor=0002 Product=0007 Version=01b1\nN: Name=&quot;SynPS\/2 Synaptics TouchPad&quot;\nP: Phys=isa0060\/serio1\/input0\nS: Sysfs=\/devices\/platform\/i8042\/serio1\/input\/input7\nU: Uniq=\nH: Handlers=mouse0 event17 \nB: PROP=5\nB: EV=b\nB: KEY=e520 10000 0 0 0 0\nB: ABS=660800011000003\n\nI: Bus=0003 Vendor=0000 Product=0000 Version=0004\nN: Name=&quot;ACPI Virtual Keyboard Device&quot;\nP: Phys=\nS: Sysfs=\/devices\/virtual\/input\/input20\nU: Uniq=\nH: Handlers=sysrq kbd rfkill event18 \nB: PROP=0\nB: EV=3\nB: KEY=ffffffffffffffff ffffffffffffffff ffffffffffffffff fffffffffffffffe\n\nI: Bus=0011 Vendor=0002 Product=000a Version=0000\nN: Name=&quot;TPPS\/2 IBM TrackPoint&quot;\nP: Phys=synaptics-pt\/serio0\/input0\nS: Sysfs=\/devices\/platform\/i8042\/serio1\/serio2\/input\/input19\nU: Uniq=\nH: Handlers=mouse1 event19 \nB: PROP=0\nB: EV=7\nB: KEY=70000 0 0 0 0\nB: REL=3\n\nI: Bus=0003 Vendor=046d Product=0a29 Version=0111\nN: Name=&quot;Logicool Logicool Wireless Headset&quot;\nP: Phys=usb-0000:00:1d.0-1.1\/input3\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1d.0\/usb2\/2-1\/2-1.1\/2-1.1:1.3\/0003:046D:0A29.000A\/input\/input27\nU: Uniq=000d44b85a7d\nH: Handlers=kbd event1 \nB: PROP=0\nB: EV=1b\nB: KEY=18000 17800000000 8e000000000000 0\nB: ABS=ffffff0000000000\nB: MSC=10\n&lt;\/code&gt;&lt;\/pre&gt;\" style=\"display: block;border: 1px solid rgb(204, 204, 204); white-space: pre; padding: 0.5em; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 1em; font-family: Consolas, Inconsolata, Courier, monospace; letter-spacing: -1px; font-weight: bold;\">I: Bus=0011 Vendor=0001 Product=0001 Version=ab54\nN: Name=\"AT Translated Set 2 keyboard\"\nP: Phys=isa0060\/serio0\/input0\nS: Sysfs=\/devices\/platform\/i8042\/serio0\/input\/input0\nU: Uniq=\nH: Handlers=sysrq kbd event0 \nB: PROP=0\nB: EV=120013\nB: KEY=402000000 3803078f800d001 feffffdfffefffff fffffffffffffffe\nB: MSC=10\nB: LED=7\n\nI: Bus=0019 Vendor=0000 Product=0005 Version=0000\nN: Name=\"Lid Switch\"\nP: Phys=PNP0C0D\/button\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/device:00\/PNP0C0D:00\/input\/input3\nU: Uniq=\nH: Handlers=event2 \nB: PROP=0\nB: EV=21\nB: SW=1\n\nI: Bus=0019 Vendor=0000 Product=0003 Version=0000\nN: Name=\"Sleep Button\"\nP: Phys=PNP0C0E\/button\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/device:00\/PNP0C0E:00\/input\/input4\nU: Uniq=\nH: Handlers=kbd event3 \nB: PROP=0\nB: EV=3\nB: KEY=4000 0 0\n\nI: Bus=0019 Vendor=0000 Product=0001 Version=0000\nN: Name=\"Power Button\"\nP: Phys=LNXPWRBN\/button\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/LNXPWRBN:00\/input\/input5\nU: Uniq=\nH: Handlers=kbd event4 \nB: PROP=0\nB: EV=3\nB: KEY=10000000000000 0\n\nI: Bus=0010 Vendor=001f Product=0001 Version=0100\nN: Name=\"PC Speaker\"\nP: Phys=isa0061\/input0\nS: Sysfs=\/devices\/platform\/pcspkr\/input\/input6\nU: Uniq=\nH: Handlers=kbd event5 \nB: PROP=0\nB: EV=40001\nB: SND=6\n\nI: Bus=0019 Vendor=17aa Product=5054 Version=4101\nN: Name=\"ThinkPad Extra Buttons\"\nP: Phys=thinkpad_acpi\/input0\nS: Sysfs=\/devices\/platform\/thinkpad_acpi\/input\/input8\nU: Uniq=\nH: Handlers=kbd rfkill event6 \nB: PROP=0\nB: EV=33\nB: KEY=18040000 0 10000000000000 0 1501b00102004 c000000001104000 e000000000000 0\nB: MSC=10\nB: SW=a\n\nI: Bus=0003 Vendor=04f2 Product=b217 Version=0854\nN: Name=\"Integrated Camera\"\nP: Phys=usb-0000:00:1a.0-1.6\/button\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1a.0\/usb1\/1-1\/1-1.6\/1-1.6:1.0\/input\/input9\nU: Uniq=\nH: Handlers=kbd event7 \nB: PROP=0\nB: EV=3\nB: KEY=100000 0 0 0\n\nI: Bus=0019 Vendor=0000 Product=0006 Version=0000\nN: Name=\"Video Bus\"\nP: Phys=LNXVIDEO\/video\/input0\nS: Sysfs=\/devices\/LNXSYSTM:00\/device:00\/PNP0A08:00\/LNXVIDEO:00\/input\/input10\nU: Uniq=\nH: Handlers=kbd event8 \nB: PROP=0\nB: EV=3\nB: KEY=3e000b00000000 0 0 0\n\nI: Bus=0001 Vendor=14f1 Product=506e Version=0001\nN: Name=\"HDA Digital PCBeep\"\nP: Phys=card0\/codec#0\/beep0\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/input\/input11\nU: Uniq=\nH: Handlers=kbd event9 \nB: PROP=0\nB: EV=40001\nB: SND=6\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=\"HDA Intel PCH HDMI\/DP,pcm=8\"\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input18\nU: Uniq=\nH: Handlers=event10 \nB: PROP=0\nB: EV=21\nB: SW=140\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=\"HDA Intel PCH HDMI\/DP,pcm=7\"\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input17\nU: Uniq=\nH: Handlers=event11 \nB: PROP=0\nB: EV=21\nB: SW=140\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=\"HDA Intel PCH HDMI\/DP,pcm=3\"\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input16\nU: Uniq=\nH: Handlers=event12 \nB: PROP=0\nB: EV=21\nB: SW=140\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=\"HDA Intel PCH Headphone\"\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input15\nU: Uniq=\nH: Handlers=event13 \nB: PROP=0\nB: EV=21\nB: SW=4\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=\"HDA Intel PCH Dock Headphone\"\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input14\nU: Uniq=\nH: Handlers=event14 \nB: PROP=0\nB: EV=21\nB: SW=4\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=\"HDA Intel PCH Dock Mic\"\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input13\nU: Uniq=\nH: Handlers=event15 \nB: PROP=0\nB: EV=21\nB: SW=10\n\nI: Bus=0000 Vendor=0000 Product=0000 Version=0000\nN: Name=\"HDA Intel PCH Mic\"\nP: Phys=ALSA\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1b.0\/sound\/card0\/input12\nU: Uniq=\nH: Handlers=event16 \nB: PROP=0\nB: EV=21\nB: SW=10\n\nI: Bus=0011 Vendor=0002 Product=0007 Version=01b1\nN: Name=\"SynPS\/2 Synaptics TouchPad\"\nP: Phys=isa0060\/serio1\/input0\nS: Sysfs=\/devices\/platform\/i8042\/serio1\/input\/input7\nU: Uniq=\nH: Handlers=mouse0 event17 \nB: PROP=5\nB: EV=b\nB: KEY=e520 10000 0 0 0 0\nB: ABS=660800011000003\n\nI: Bus=0003 Vendor=0000 Product=0000 Version=0004\nN: Name=\"ACPI Virtual Keyboard Device\"\nP: Phys=\nS: Sysfs=\/devices\/virtual\/input\/input20\nU: Uniq=\nH: Handlers=sysrq kbd rfkill event18 \nB: PROP=0\nB: EV=3\nB: KEY=ffffffffffffffff ffffffffffffffff ffffffffffffffff fffffffffffffffe\n\nI: Bus=0011 Vendor=0002 Product=000a Version=0000\nN: Name=\"TPPS\/2 IBM TrackPoint\"\nP: Phys=synaptics-pt\/serio0\/input0\nS: Sysfs=\/devices\/platform\/i8042\/serio1\/serio2\/input\/input19\nU: Uniq=\nH: Handlers=mouse1 event19 \nB: PROP=0\nB: EV=7\nB: KEY=70000 0 0 0 0\nB: REL=3\n\nI: Bus=0003 Vendor=046d Product=0a29 Version=0111\nN: Name=\"Logicool Logicool Wireless Headset\"\nP: Phys=usb-0000:00:1d.0-1.1\/input3\nS: Sysfs=\/devices\/pci0000:00\/0000:00:1d.0\/usb2\/2-1\/2-1.1\/2-1.1:1.3\/0003:046D:0A29.000A\/input\/input27\nU: Uniq=000d44b85a7d\nH: Handlers=kbd event1 \nB: PROP=0\nB: EV=1b\nB: KEY=18000 17800000000 8e000000000000 0\nB: ABS=ffffff0000000000\nB: MSC=10\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    <code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;color: rgb(0, 0, 0); background-color: rgb(254, 236, 221); border: 1px solid rgb(239, 223, 208);\">H: Handlers=sysrq kbd event0<\/code> \u304b\u3089\u5b9f\u969b\u306e\u30c7\u30d0\u30a4\u30b9\u306f <code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;color: rgb(0, 0, 0); background-color: rgb(254, 236, 221); border: 1px solid rgb(239, 223, 208);\">\/dev\/input\/event0<\/code> \u306a\u306e\u3067\uff0c\u3053\u308c\u3092cat \u3057\u3066\u4f55\u304b\u30ad\u30fc\u30dc\u30fc\u30c9\u5165\u529b\u3057\u3066\u53cd\u5fdc\u304c\u3042\u308b\u304b\u78ba\u8a8d\u3057\u307e\u3059\uff0e\u5f53\u305f\u308a\u306e\u3088\u3046\u3067\u3059\uff0e\n  <\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; overflow: auto;\"><code data-origin=\"&lt;pre&gt;&lt;code&gt;% sudo cat \/dev\/input\/event0\n\ufffdw\ufffdS\ufffd\ufffd      \ufffdw\ufffdS\ufffd\ufffd      \ufffdw\ufffdS\ufffd\ufffd                  \ufffdw\ufffdS?\ufffdw\ufffdS?\ufffdw\ufffdS?p     a\ufffdw\ufffdSK\n\ufffdw\ufffdSK\n\ufffdw\ufffdSK\n\ufffdw\ufffdw\ufffdS\ufffd\ufffd.\ufffdw\ufffdS\ufffd\ufffd.\ufffdw\ufffdS\ufffd\ufffd     a\ufffdw\ufffdS(\ufffd^C\n&lt;\/code&gt;&lt;\/pre&gt;\" style=\"display: block;border: 1px solid rgb(204, 204, 204); white-space: pre; padding: 0.5em; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 1em; font-family: Consolas, Inconsolata, Courier, monospace; letter-spacing: -1px; font-weight: bold;\">% sudo cat \/dev\/input\/event0\n\ufffdw\ufffdS\ufffd\ufffd      \ufffdw\ufffdS\ufffd\ufffd      \ufffdw\ufffdS\ufffd\ufffd                  \ufffdw\ufffdS?\ufffdw\ufffdS?\ufffdw\ufffdS?p     a\ufffdw\ufffdSK\n\ufffdw\ufffdSK\n\ufffdw\ufffdSK\n\ufffdw\ufffdw\ufffdS\ufffd\ufffd.\ufffdw\ufffdS\ufffd\ufffd.\ufffdw\ufffdS\ufffd\ufffd     a\ufffdw\ufffdS(\ufffd^C\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u5b9f\u969b\u306b\u4f7f\u3063\u3066\u307f\u308b\u3068\u5f53\u305f\u308a\u524d\u3067\u3059\u304c\u5165\u529b\u3057\u305f\u3082\u306e\u304c\u30ed\u30b0\u30d5\u30a1\u30a4\u30eb\u306b\u5410\u304b\u308c\u3066\u3044\u307e\u3059\uff0e\u3082\u3061\u308d\u3093\u30d1\u30b9\u30ef\u30fc\u30c9\u306a\u3069\u3082\u305d\u306e\u307e\u307e\uff0e<br style=\"clear: both;\" \/>\u65e5\u672c\u8a9e\u5165\u529b\u3057\u305f\u3082\u306e\u306a\u3069\u306f\u30ed\u30fc\u30de\u5b57\u5165\u529b\u306a\u306e\u3067\u30ed\u30fc\u30de\u5b57\u3067\u8a18\u9332\u3055\u308c\u3066\u3044\u307e\u3059\uff0e\u30d5\u30a3\u30eb\u30bf\u306b\u304b\u3051\u308b\u3068\u8aad\u307f\u3084\u3059\u304f\u306a\u308a\u307e\u3059\u306d\uff0e\u30e1\u30bf\u6587\u5b57\u3082&lt;lctrl&gt;&#038;ltup&gt;&lt;down&gt;\u306e\u3088\u3046\u306a\u611f\u3058\u3067\u8a18\u9332\u3055\u308c\u307e\u3059\uff0e<br style=\"clear: both;\" \/>root \u3067\u52d5\u3044\u3066\u3044\u308b\u306e\u3067\u30e6\u30fc\u30b6\u3092\u5909\u66f4\u3057\u3066\u3082\u8a18\u9332\u3055\u308c\u307e\u3059\uff0e<br style=\"clear: both;\" \/>\u30c7\u30d0\u30a4\u30b9\u3092\u6307\u5b9a\u3057\u3066\u3044\u308b\u306e\u3067\uff0c\u5916\u4ed8\u3051\u306e\u30ad\u30fc\u30dc\u30fc\u30c9\u3092\u63a5\u7d9a\u3059\u308b\u3068\u8a18\u9332\u3055\u308c\u307e\u305b\u3093\uff0e<\/down><\/up><\/lctrl>\n  <\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u3061\u306a\u307f\u306b\u30d7\u30ed\u30bb\u30b9\u306f\u3053\u3093\u306a\u611f\u3058\u306a\u306e\u3067\u8272\u3005\u4e38\u898b\u3048\u3067\u3059\u306d\uff0e\n  <\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; overflow: auto;\"><code data-origin=\"&lt;pre&gt;&lt;code&gt;% ps -ef| grep -i logk\nroot      1433     1  0  6\u670810 ?      00:00:25 \/usr\/bin\/logkeys -s -u -d \/dev\/input\/event0 -o \/home\/mk\/.logkeys\/20140610-222504-1004\n&lt;\/code&gt;&lt;\/pre&gt;\" style=\"display: block;border: 1px solid rgb(204, 204, 204); white-space: pre; padding: 0.5em; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-break: break-all; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 1em; font-family: Consolas, Inconsolata, Courier, monospace; letter-spacing: -1px; font-weight: bold;\">% ps -ef| grep -i logk\nroot      1433     1  0  6\u670810 ?      00:00:25 \/usr\/bin\/logkeys -s -u -d \/dev\/input\/event0 -o \/home\/mk\/.logkeys\/20140610-222504-1004\n<\/code><\/pre>\n<h1 id=\"-\" style=\"clear: both;font-size: 2.2em; font-weight: bold; margin: 1.5em 0px 1em;\">\n    <a name=\"-\" href=\"#-\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\"><\/a>\u30ad\u30fc\u30ed\u30ac\u30fc\u3078\u306e\u5bfe\u7b56<br \/>\n  <\/h1>\n<p style=\"margin-top: 0px;margin: 1em 0px; word-wrap: break-word;\">\n    \u3053\u306elogkeys \u3067\u3042\u308c\u3070\u5225\u306e\u30ad\u30fc\u30dc\u30fc\u30c9\u3092\u4f7f\u3048\u3070\u56de\u907f\u3067\u304d\u307e\u3059\uff0e\u3067\u3082\u5168\u90e8\u306e\u30c7\u30d0\u30a4\u30b9\u3092\u8a18\u9332\u3059\u308b\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u30ad\u30fc\u30ed\u30ac\u30fc\u3060\u3068\u56de\u907f\u3067\u304d\u307e\u305b\u3093\uff0eOS \u3092LiveCD\/USB \u306a\u3069\u3067\u5225\u306e\u3082\u306e\u3092\u8d77\u52d5\u3057\u3066\u3057\u307e\u3048\u3070\u56de\u907f\u3067\u304d\u307e\u3059\uff0e\n  <\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u3067\u306a\u304f\uff0c\u30cf\u30fc\u30c9\u30a6\u30a7\u30a2\u30ad\u30fc\u30ed\u30ac\u30fc\u3082\u3042\u308a\u307e\u3059\uff0e\u3053\u308c\u306fUSB \u3084PS\/2 \u30dd\u30fc\u30c8\u306e\u30ad\u30fc\u30dc\u30fc\u30c9\u306e\u9593\u306b\u53d6\u308a\u4ed8\u3051\u3066\u30ed\u30ae\u30f3\u30b0\u3059\u308b\u3082\u306e\u3067\u3059\uff0eOS \u3092\u5909\u3048\u3066\u3082\u56de\u907f\u3067\u304d\u307e\u305b\u3093\uff0e\u308f\u304b\u308a\u3084\u3059\u3044\u3082\u306e\u306fPC\u306e\u88cf\u3092\u898b\u308b\u3060\u3051\u3067\u4f55\u304b\u3064\u3044\u3066\u308b\u306e\u3067\u3059\u3050\u308f\u304b\u308a\u307e\u3059\u304c\uff0c\u30ad\u30fc\u30dc\u30fc\u30c9\u306e\u4e2d\u3084PC \u7b50\u4f53\u306e\u4e2d\u306b\u4ed5\u8fbc\u307e\u308c\u308b\u3068\u4e00\u898b\u3057\u305f\u3060\u3051\u3067\u306f\u308f\u304b\u308a\u307e\u305b\u3093\uff0e<br style=\"clear: both;\" \/>\u4ed5\u8fbc\u3093\u3060\u30ed\u30ac\u30fc\u3092\u56de\u53ce\u3057\u3066\u30ed\u30b0\u3092\u56de\u53ce\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u306e\u3067\u3059\u304c\uff0c\u7121\u7dda\u65b9\u5f0f\u306e\u3082\u306e\u3060\u3068\u73fe\u5730\u306b\u884c\u304b\u306a\u304f\u3066\u3082\u7121\u7dda\u7d4c\u7531\u3067\u56de\u53ce\u3067\u304d\u308b\u306e\u3067\u72af\u4eba\u306e\u8ffd\u8de1\u3082\u96e3\u3057\u3044\u3067\u3059\uff0e\n  <\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u3061\u306a\u307f\u306b\u305d\u3093\u306a\u306b\u7279\u6b8a\u306a\u3082\u306e\u3067\u306a\u304f\u666e\u901a\u306b\u3042\u3061\u3053\u3061\u3067\u58f2\u3063\u3066\u3044\u307e\u3059\uff0e\u304a\u307e\u3051\u306b\u5b89\u4fa1\uff0e\n  <\/p>\n<ul>\n<li style=\"display: list-item; line-height: 1.4em;\">\n      \u201cKeyGrabber &#8211; Hardware Keylogger &#8211; WiFi USB hardware keyloggers\u201d <a href=\"https:\/\/www.keelog.com\/\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\">https:\/\/www.keelog.com\/<\/a>\n    <\/li>\n<li style=\"display: list-item; line-height: 1.4em;\">\n      \u201cHardware Keylogger | eBay\u201d <a href=\"http:\/\/www.ebay.com\/sch\/i.html?_trksid=p2050601.m570.l1313.TR0.TRC0.H0&#038;_nkw=Hardware+Keylogger&#038;_sacat=0&#038;_from=R40\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\">http:\/\/www.ebay.com\/sch\/i.html?_trksid=p2050601.m570.l1313.TR0.TRC0.H0&#038;_nkw=Hardware+Keylogger&#038;_sacat=0&#038;_from=R40<\/a>\n    <\/li>\n<\/ul>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u753b\u9762\u3092\u98db\u3070\u3059\u3082\u306e\u307e\u3067\u3042\u308a\u307e\u3059\uff0e\u30c6\u30f3\u30da\u30b9\u30c8\u3092\u4f7f\u3046\u3088\u308a\u305a\u3063\u3068\u304a\u624b\u8efd\u3067\u5b9f\u7528\u7684\u3067\u3059\u306d><\n  <\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\n    \u3068\u3044\u3046\u3053\u3068\u3067\uff0c\u5916\u306e\u7aef\u672b\u3067\u306f\u30bb\u30f3\u30b7\u30c6\u30a3\u30d6\u306a\u60c5\u5831\u306f\u5165\u529b\u3057\u306a\u3044\u304f\u3089\u3044\u3057\u304b\u5bfe\u7b56\u306f\u7121\u3055\u305d\u3046\u3067\u3059\uff0e\n  <\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>\u30ad\u30fc\u30ed\u30ac\u30fc\uff0e\u4eba\u306ePC\u306b\u4ed5\u639b\u3051\u308b\u306e\u306f\u307e\u305a\u3044\u3051\u3069\u81ea\u5206\u306e&#038;\u81ea\u5206\u3057\u304b\u4f7f\u308f\u306a\u3044PC\u3067\u8a66\u3059\u5206\u306b\u306f\u554f\u984c\u306a\u3044\u3060\u308d\u3046\u3068\u3044\u3046\u3053\u3068\u3067\u5165\u308c\u3066\u307f\u3066\u307e\u3059\uff0e \u5165\u308c\u3066\u3044\u308b\u306e\u306f\u4ee5\u4e0b\u306e logkeys \uff0e \u201clogkeys &#8211; a G [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"webmentions_disabled_pings":false,"webmentions_disabled":false,"activitypub_content_warning":"","activitypub_content_visibility":"","activitypub_max_image_attachments":4,"activitypub_interaction_policy_quote":"anyone","activitypub_status":"","footnotes":""},"categories":[7,6],"tags":[276,32,275,10],"class_list":["post-541","post","type-post","status-publish","format-standard","hentry","category-debian-linux","category-linux","tag-debian-linux","tag-jessie","tag-linux","tag-10"],"_links":{"self":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/posts\/541","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/comments?post=541"}],"version-history":[{"count":0,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/posts\/541\/revisions"}],"wp:attachment":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/media?parent=541"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/categories?post=541"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/tags?post=541"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}