KeyLogger detection.....kldetector

[YoKenny]

I think might border on being a Pedantic Curmudgeon but I think that my Chinese astrological sign is The Rooster and I like to get up early in the morning and announce to the world Good Morning

[polonus]

Well YoKenny,

So much for the rooster, but kl-detector found out about all the hidden things that McAfee's SiteAdvisor is performing on the computer e.g. SACore data after a short session with my Minefield browser:

Found as suspicious in some way:
C:\WINDOWS\Internet Logs\ACER-******D0D.ldb (created by ZA)
C:\Documents and Settings\Polonus\Local Settings\Application Data\Mozilla\Firefox\Profiles\*****4a.default\XUL.mfl
C:\Documents and Settings\All Users\Application Data\McAfee\SiteAdvisor\SA.dat-journal
C:\Documents and Settings\All Users\Application Data\McAfee\SiteAdvisor\SA.dat
C:\System Volume Information\_restore{344DC755-28BF-40FE-91D5-B22D466F307D}\R****\change.log
C:\Documents and Settings\LocalService\Application Data\SACore\Cache\DA39A3EE5E6B4B0D3255BFEF95601890AFD80709\.subcache
C:\Documents and Settings\Polonus\Application
Data\Mozilla\Firefox\Profiles\*****4a.default\places.sqlite (bookmarks and browsing history)
C:\Documents and Settings\Polonus\Application Data\Mozilla\Firefox\Profiles\*****4a.default\places.sqlite-journal (id. bookmarks & browsing hist.)
C:\Documents and Settings\LocalService\Application Data\SACore\Cache\DA39A3EE5E6B4B0D3255BFEF95601890AFD80709\.lockfile
C:\Documents and Settings\LocalService\Application Data\SACore\Cache\DA39A3EE5E6B4B0D3255BFEF95601890AFD80709\AA3480662CC1BD6B06FD9B1C4E69C4108D866B11\.subcache
C:\WINDOWS\Internet Logs\tvDebug.log (made by ZA, can be emptied and regenerates)
If anyone is interested - the following command will instantly delete the Cache folder and all of the contents temporarily. Assuming that Windows XP is on drive C. If not just change the C: to the correct drive letter. Copy the command to a blank Notepad document. Save the file, give it anyname.BAT
Be sure the extension is .bat and not the default .TXT (case is not important).
If you save to Desktop - just double click the file and Poof! Everthing's gone. You can also put in the Startup folder and it will automagically run when you reboot. enjoy!

RmDir /S /Q "C:\Documents and Settings\NetworkService\Application Data\SACore\Cache"
The only full solution is taking McAfee SiteAdvisor off your computer,

pol

[bob3160]

The same is true of this 'tool' it can't hatch into anything else other than a tool to detect the presence of keyloggers.

I thought the same was true of the Ape but I've been told by some very learned people that they are our forefathers   

[polonus]

Hi bob3160,

But the original Darwin had in mind had more fur than their offspring. You've read the book "The Naked Ape", some treat their computers like it is described there: http://en.wikipedia.org/wiki/The_Naked_Ape. Oh you, bob3160, comparing computer behavior of users with that of animals!

Damian

[drhayden1]

comparing computer behavior of users with that of animals!

Just you Damian to that of your Cows

[polonus]

Hi Dan,

One third of the herd is young animals, three third are made up of dairy cows, dry animals and the ones you get eventually,

polonus

[bob3160]

Hi bob3160,

But the original Darwin had in mind had more fur than their offspring. You've read the book "The Naked Ape", some treat their computers like it is described there: http://en.wikipedia.org/wiki/The_Naked_Ape. Oh you, bob3160, comparing computer behavior of users with that of animals!

Damian

Alice wouldn't let me look at that book. 

[polonus]

Hi YoKenny,

Why you use words that stem from 1580? http://dictionary.reference.com/browse/curmudgeon?jss=0
Why don't you try the cream of cauliflower soup with blue stilton, also a traditional...
http://allrecipes.com/Recipe/Cream-of-Cauliflower-and-Stilton-Soup/Detail.asp
And what that has to do with key logger detection, is beyond me.
Good article here: http://blogs.pcworld.com/tipsandtweaks/archives/006395.html
Hope bob3160 knows this quality of this program,


polonus

[bob3160]

Hope bob3160 knows this quality of this program,

One of the reasons I've been a PRO user for a long time. 

[YoKenny]

Hi YoKenny,

Why you use words that stem from 1580? http://dictionary.reference.com/browse/curmudgeon?jss=0
Why don't you try the cream of cauliflower soup with blue stilton, also a traditional...
http://allrecipes.com/Recipe/Cream-of-Cauliflower-and-Stilton-Soup/Detail.asp
And what that has to do with key logger detection, is beyond me.
Good article here: http://blogs.pcworld.com/tipsandtweaks/archives/006395.html
Hope bob3160 knows this quality of this program,


polonus

That sounds delicious.

I can't find a store that sells such delicacies here except for a Polish Deli that has some really unusual looking foodstuff and on a Saturday morning it is hard to get near the counter for the people conversing in Polish discussing how much of this and that they want.

There is a smoked cheese that I like and all manner of sausages from fire hot to pleasantly warm to go on fresh delivered breads that can be sliced on the spot.

What does this have to do with a keylogger?   
I have no idea but I like discussing culinary delights to relieve the boredom of this long Winter.