Joined: April 2006
||Posted: Nov. 10 2006,21:32
The short answer is "yes." Without a doubt, if the host OS is infected, anything running above (higher level) that OS can be monitored / injected, manipulated, reprogrammed, etc.
However, a particular keylogger might be fooled by virtual OSes. Maybe most, I don't know. But it is certainly possible that a keylogger can log everything above it in the "OS layer."
As stated previously, if you have a hardware keylogger, it doesn't matter what application you are running, or even if your computer is turned on.
Try it yourself. I've used perfect keylogger, which is a commercial application with a freeware version. Not trial or anything, just less functional, but functional enough, especially for testing. There are probably free keyloggers out there too. Most of the ones I've tried had dependability and usability problems. Perfect Keylogger works good.
As for the on screen keyboard, it is possible for an infection to record those keystrokes too. It is much less likely, though, that they are programmed to do so.