|
|
|
|
|||||
|
|
|
|
|
|
|||
| Welcome
to Tech Support Forum home to more then 136,000 problems solved. Issues
have included: Spyware, Malware, Virus Issues, Windows, Microsoft,
Linux, Networking, Security, Hardware, and Gaming Getting your
problem solved is as easy as: 1. Registering for a free account 2. Asking your question 3. Receiving an answer Registered members: * See fewer ads. * And much more..
|
| Want to know how to post a question? click here | Having problems with spyware and pop-ups? First Steps |
|
|||||||
| Resolved HJT Threads Resolved spyware and popup issues. |
|
|
LinkBack | Thread Tools |
10-31-2006, 11:20 PM
|
#1 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
New KB deluged Hijack this
Hi, Saviors,
Well...just finished first Hijack this thread showing I had faux insect. After exhausting everyone. God has sense of humor. Because I just got the most amazing KB I evah had or thought existed.....loaded the software and hooked up with Logitech site....just ran Hijack this....as I do every day....and for first time it is loaded with stuff..... from Logitech. Now that I know that my gremlins....the ones who help me decide tech-related things with no training or sanity....may not be perfect.....I decided 2 post this log to get some expert feedback.....before I "fix" every one of these entries...which the GREMLINS told me was right thing 2 do....they added that my amazing new KB will still function perfectly and all this junk is a scam to allow Logitech to monitor my system. So I will wait 2 C if Gremlins R right....before I go ahead...and this is ot easy for me, trust me....the waiting to kill all of them. Thanks! Jill ________________________________________ Logfile of HijackThis v1.99.1 Scan saved at 1:08:24 AM, on 11/1/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\AOL\1130120933\ee\AOLSoftware.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\IObit\Advanced WindowsCare V2 Pro\Awc.exe C:\Program Files\Iconoid\iconoid.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Trend Micro\Tmas\Tmas.exe C:\Program Files\Common Files\AOL\1130120933\ee\aolsoftware.exe C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE C:\Program Files\America Online 9.0a\waol.exe C:\Program Files\America Online 9.0a\shellmon.exe C:\unzipped\hijackthis\HijackThis.exe O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = ? O18 - Protocol: bw+0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {363E3887-8C8A-46AC-A0FA-5217AA3DD753} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll ***************************************** Ready, aim....OK I am waiting ...but I want 2 "fix all these right now. I also now have Logitech icon on Wtaskbar.....but feel this is also needless. Thanks again, Jill *************************************** Edit: If it matters, this is the KB: Logitech Media Elite Black Wired Keyboard - Retail at Newegg.com My system: Dell Optiplex GX260; P4, 2.26; 1GB DDR ram; 2, 80GB IDE HDDs, WXP Pro. Last edited by Ariesjill; 10-31-2006 at 11:29 PM. |
|
     |
| Important Information |
|
Join the #1 Tech Support Forum Today - It's Totally Free!
TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free. Join TechSupportforum.com Today - Click Here |
|
11-03-2006, 08:18 PM
|
#2 (permalink) |
|
Manager, Security Center, TSF Academy; Analyst, Security Team
Join Date: Jan 2005
Location: Transylvania County, North Carolina, USA
Posts: 35,524
OS: 2000 Pro; XP Pro; XP Home
|
Hi Jilly -
You don't need that Logitech junk running at Startup. We usually fix all but the first O18 entry. You can read more about it here: backweb-8876480.exe Windows process - What is it?
__________________
Practice Safe Surfing Because what you don't know, CAN hurt you.  Microsoft MVP - Consumer Security 2009
|
|
|
|
|
11-03-2006, 09:50 PM
|
#3 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
We Do, Bob?????????
Please....this is a riot. Given, I will nevah be one of the "we"s.
OK I got afraid and thought my Gremlins were PMSed......so NOW I will immediately kill everything except the one thing U said could stay. See? I dissed the gremlins and that was not good! Thanks SO MUCH! Jilly Wait! OMG....just used the link! Those sneaky humans!!!!!! Plus, I keep getting little green thingy saying Logitech has a message 4 U! Comes out of nowhere on the lower right of LCD....moves around....creeps me out! So OK, I did capitulate finally today....and it hooked me up with their site and they wanted me to register the board and then fill in a gazillion fields......but the Gremlins told me "DO NOT DO THIS; listen to US!!!" So I xed out of it. See? Nevah doubt your Gremlins. Is the message. Thanks so much for the link!! J. Last edited by Ariesjill; 11-03-2006 at 09:57 PM. |
|
|
|
|
11-03-2006, 10:22 PM
|
#4 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
Update
OK....i isolated the one Bob said was OK.....put it on ignored; then checked all the others & hit fix.
...then got strange error message I will attach a shot of. But then all the others did go away normally. 1) Do not understand error message 2) Now the cute bonus function keys do not work, e.g. the volume/mute control, the zoom in and zoom out thingy I thought was adorable....the instant ISP button. K I do not need those....but they were fun. But....if there is no way I can preserve them without risking the "low level" (no such thing, sorry) threat.....then I should just forget them, right? I got sucked into bells & whistles, right? Dogs & ponies? 3) And.....this stuff REPLICATES ITSELF......it was BREEDING.....cause the Hijack this scan I JUST RAN HAD LIKE 80+ THINGIES.....it was amazing..... OK....I will chill and wait 4 more info if there is any.But right now, except for the OK one....they are all dead. Thanks! Jilly OK wait....forgot to upload...I am a little freaked. Last edited by Ariesjill; 11-03-2006 at 10:29 PM. |
|
|
|
|
11-03-2006, 10:59 PM
|
#5 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
Byzantine
New Update: OK, I am writing from my bootable backup drive (Luci)....booted into her because obviously, she still has all the logitech stuff---I just updated her yesterday with XXclone....also why the adorable bells & whistles work in this drive....and immediately got firewall window saying Logitech desktop messenger trying to access, yadda, yadda....so I said NO.
 I luv the bells & whistles, so feel tempted to retain them in Luci but now get that this is subtle spyware, OK? SNEAKY & SUBVERSIVE. Also now think....that with this deluge of stuff in place, each time you boot, this messenger thingy spys and replicates and activates....is this possible? I am not doing drugs, honest. So I should now do in Luci....wut I did in Jilly (primary, WD drive) via Hijack this, right? Why can't they just sell U a KB with no-downside bells & whistles???  And I right off posted glowing review on Newegg.....I am so naive....I even mentioned the function keys; said this KB changed my ilfe....which, even without the seductive function keys...it has; I even got one of these for my friend. I betta warn him.  OK....thanks again, Jill Last edited by Ariesjill; 11-03-2006 at 11:07 PM. |
|
|
|
|
11-03-2006, 11:37 PM
|
#6 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
Possible Gremlin Epiphany
OK....the Gremlns just suggested that I go to Add/Remove and look....in the backup drive which still has all the junk....which I am now in.
PLEASE C ATTACHED SHOT. U will C that there are two programs: the Messenger one....with the potential insects....and the SETPOINT ONE. i THINK THE setpoint one...U can open it's menu via right clicking on the W taskbar icon....I think has the adorable bells & whistles!!!!!!!! So.....I am about to uninstall the desktop messenger one, ratain the setpoint one...an C if the bells & whistles remain. If they DO IN lUCI, THEN, I will run HJT & put wut it finds on ignore list. Then, if this works as the Gremlins suggested it might, I will boot into my main drive, uninstall all KB stuff, shut puter down, unplug KB, replug, power on, boot intop main drive and then reinstall the Logitech software and go thru the same steps with Jilly (WD) as I did with Luci (Hitachi). Wut? No, this is wut the Gremins told me to do, OK? And not only do they have badges....they also have CAPES, Ok? (Where DID I put my medication?????  I am so doing this. Prepare the IV. Jilly Last edited by Ariesjill; 11-03-2006 at 11:42 PM. |
|
|
|
|
11-03-2006, 11:56 PM
|
#7 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
Forget the IV
OK, put yr hands together 4 the Gremlins!
I did wut they told me as perabove in Luci....uninstalled Logitech desktop messenger....euphamism for WE R WATCHING U, jILLY! Saw right off the bells & whistles still WORKED....ran HJT scan: Logfile of HijackThis v1.99.1 Scan saved at 1:49:10 AM, on 11/4/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\IObit\Advanced WindowsCare V2 Pro\Awc.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Iconoid\iconoid.exe C:\Program Files\Common Files\AOL\1130120933\ee\aolsoftware.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Trend Micro\Tmas\Tmas.exe C:\Program Files\Common Files\AOL\1130120933\ee\aolsoftware.exe C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE C:\Program Files\America Online 9.0a\waol.exe C:\Program Files\America Online 9.0a\shellmon.exe C:\unzipped\hijackthis\HijackThis.exe O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - Global Startup: Logitech SetPoint.lnk = ? *************************************** Hello!!!!!!!!!!!!!!!! Can U believe this???????? Let's hear it for THE GREMLINS!!!! (They also told me VISTA IS A TOTAL SCAM) Jilly very happy. HJT even happier, OK? Now I will put the two Logitech entries on IGNORE LIST AND DEAL WITH PRIMARY DRIVE AS PER PREVIOUS POST. Jilly and her Gremlins 
Last edited by Ariesjill; 11-03-2006 at 11:57 PM. |
|
|
|
|
11-04-2006, 12:32 AM
|
#8 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
OK Eureka!
No biggie....U will C from attached shot of....Jilly-(Primary WD) desktop, that it all worked!!!
Insect-ridden Logitech desktop messenger dead; setpoint adorable bells & whistles and insect-free.... restored....C interface!!! HJT scan clean as a whistle, "no suspicious crap found" It's all good. Now, let's DANCE.  Jilly Last edited by Ariesjill; 11-04-2006 at 12:35 AM. |
|
|
|
|
11-05-2006, 11:25 PM
|
#9 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
Important Addenda!
Hi again:
OK, Logitech.....even more insidious than I could have imagined!!!! 1) Between last post here....when I thought I had defeated the Logitech insects, and like an hour ago, I had downloaded (yes, gremlins suggested) amazing utility, SnoopFree, via the signature of Glas, a major pundit on this site. SnoopFree Software - Spy software... Detect spy software...* Block spy software...* Stop spy software...* Protect your privacy! IT.....told me, for first time evah....that AOL had keylogger insect in 9.0 SE!!!!!!!!! And I posted and was told to let SnoopFree (not Doggg) do its thing and not to kill any files. 2)Then, I innocently opened Logitech Setpoint, which I thought was the insect-free part versus the Desktop Mgr I had deleted......and guess WUT? 3) You got it.....THE SECOND I opened Setpoint, SNOOP FREE interface appeared & TOLD ME THAT THE KEY LOGGER was in there as well!!!!!!!!!! In the Setpoint!!!! (Pls see attached) So...... 4) ....anyone with any relatively new Logitech KB (I have no learned it's ot only this particular one!) who wants their special function keys to function but even more, wants 2 remain safe....PULEEEEAAAZE download SNOOPFREE.....OR you will unwittingly be subject to having your keystrokes tracked AND SCREENSHOTS OF YOUR system made by STRANGERS  , ok???????Talk about the undead, boy.....and how there is no end to wut they will do to get into your stuff  .Who could have guessed.....that an otherwise amazing, name brand KB could be programmed by the CIA??????? How DARE THEY?????  Stay safe, guys!!  NOW....we can maybe dance.... Jill Last edited by Ariesjill; 11-05-2006 at 11:38 PM. |
|
|
|
|
11-06-2006, 05:52 PM
|
#10 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
JITTERBUGS! Wundaful.....
Am sure this is now in wrong forum....but one thing leads to another. Thing.
Now that I am newly paranoid....I did some Googling, came upon this: THE SPIES R apparently upping the ante 2 decode at their end; check the potential.....but SnoopFree is most precious antI: Could your keyboard spy on you? - Network World Pls scroll down 2 bottom of page re the above; it's there. Jill Last edited by Ariesjill; 11-06-2006 at 05:56 PM. |
|
|
|
|
11-20-2006, 08:27 PM
|
#11 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
Update
I had immediately (as is my style) posted wildly glowing review of this KB on Newegg, 4 seconds after I hooked it up.
I just finally made the time to post an additional review there warning everyone...mentioning hJT log & I had to post on my tech site...and telling everyone 2 get the board but then get SnoopFree. Life....is exhausting, OK. Because we don't have MACs. Now...I feel bettah. Don't want this to happen to ANYONE. Jill Last edited by Ariesjill; 11-20-2006 at 08:29 PM. |
|
|
|
|
11-20-2006, 11:23 PM
|
#12 (permalink) |
|
Human Individual
Join Date: May 2006
Location: Manhattan
Posts: 2,837
OS: WXP Home, WXP Pro
|
Update of Update
Well....I just looked and Newegg did not post the above.
They do have rules about no URLS....and I specifically mentioned SnoopFree, but pasted no links....hope this is it and not that they R being WUSes about Logitech. Bottom line....a gazillion innocent humans are in subtle harms' way. I said right off....still 5 stars, get the board....but..... Why is everyone so afraid of everything? (Cause if they weren't how could Fascists get elected????   )J. |
|
|
|
| Thread Tools | |
|
|
