Windows XP - Private Folder question

[Colapop]

I've got Ad Aware SE now and running it. Got 50 bits of shit. Hopefully the bits that are pissing me off.

[pervert]

Make sure to use Spybot as well, Ad-Aware on it's own doesn't get absolutely everything you would be better off without.

[Colapop]

Yeah I'll get it now coz the f*cken things aren't gone yet.

[pervert]

Some of them are really tricky, but I've fixed a very similar one to yours using Spybot.

If you still don't have any luck then search google for keywords like the messages you are receiving and see if anyone else has had the exact same issue.

This usually leads to a solution although it can get to the point when some technical knowledge is required to remove them, the basic scanners aren't always 100% successful.

[davereid]

I bet you all have some spyware on your PC you havent spotted. Open cookies and look for IMRWORLDWIDE.COM - Cookies are IMRID and V5. These cookies are placed there by imrworldwide, part of AC NEILSEN N.Z. to track your surfing. Imrworldwide place them on behalf of your internet banking site, trademe, your online newspaper etc etc. (If your bank really wanted just to know how many times you visited their site they could place the cookie themselves. But by having imrworldwide do it, they can trace you before and after you leave their site.)

P.S. imrworldwide are aware that somepeople restrict cookies. So they also place a 1x1 clear pixel on all pages they are involved with. So your browser is forced to request this pixel from imrworldwides server. You cant see it, but it gives imrworldwide info on .. your pc, your browser, the referring page (ie where you last were) and your IP address so they can track you as you surf.

Why not email your bank and ask them why they need to spy on you ?

[riffer]

Jeez Col, how the hell did you infect that PC in TWO days?

I use Zone Alarm Pro for a firewall on this laptop. Keeps me safe.

And Avg, Spybot, Adaware.

No problems on my mac or my ubuntu box though.

[pervert]

I bet you all have some spyware on your PC you havent spotted. Open cookies and look for IMRWORLDWIDE.COM - Cookies are IMRID and V5. These cookies are placed there by imrworldwide, part of AC NEILSEN N.Z. to track your surfing. Imrworldwide place them on behalf of your internet banking site, trademe, your online newspaper etc etc. (If your bank really wanted just to know how many times you visited their site they could place the cookie themselves. But by having imrworldwide do it, they can trace you before and after you leave their site.)

P.S. imrworldwide are aware that somepeople restrict cookies. So they also place a 1x1 clear pixel on all pages they are involved with. So your browser is forced to request this pixel from imrworldwides server. You cant see it, but it gives imrworldwide info on .. your pc, your browser, the referring page (ie where you last were) and your IP address so they can track you as you surf.

Why not email your bank and ask them why they need to spy on you ?

Are they aware some people monitor and delete cookies accordingly?

[Wellyman]

Avast Anti-Virus, Ashampoo Firewall
I would reccomend these two to all newbies. I use these on my main PC, and use C.O.M.O.D.O firewall and Avast anti virus on my server.
WM

[Flyingpony]

I've been using Firefox for some time and I like it. Once one of these pop-ups occur I'll save a copy and post it so you/s can see... and lo here it is...

To me, that popup looks to be related to the 'Messenger' service from the services control panel. Turn it off, you don't need that one because that service is intended for computers who are company networked.

What's happening is that instead of sending spam emails, these companies are targeting random IP addresses with Messenger pop up messages. Turn the service off and it stops. Are you running a firewall because that should stop them entering in the first place.

My 2c.

[davereid]

Hi pervert, yep they know people delete cookies, thats why they use web beacons as well - 1x1 clear pixels.

[Ixion]

Of course, SOME miserable sods might put in a firewall rule to block such beaconing sites

[pervert]

To me, that popup looks to be related to the 'Messenger' service from the services control panel. Turn it off, you don't need that one because that service is intended for computers who are company networked.

What's happening is that instead of sending spam emails, these companies are targeting random IP addresses with Messenger pop up messages. Turn the service off and it stops. Are you running a firewall because that should stop them entering in the first place.

My 2c.

Listen to this guy! I remember now...that is exactly what is happening!

[scracha]

Anyone know how to easily get rid of these stupid pop-up windows telling me that my PC is infected and I need to go to registry cleaner...
I have Anti-virus (AVG Professional) software so I know it's not a virus. I am running Windows XP professional.

I used to recommend it but now I'd say AVG isn't worth the download. Sounds like you've got Smitfraud or a variant. Download one of the smitfraud removal tools (there's a few..just google it) and then boot it into safe mode (F8 after the beep) before running.

A few of my customers have had similar experiences and they're running Symantec, McAfee, Avast, etc etc. The ONLY defence is backup.

Do yourself another favour and cut a knoppix live CD in case of emergenies.

[scracha]

How to get rid of private folder secuirty problems,


right click -> properties -> secuirty -> advance -> owner -> give ogin owner status (remeber to click replace owner on subcontainers and objects) -> APPLY (not wait and your all done)

If it's XP home, you'll need to start it in safe mode and login as administrator

[Cajun]

If it's XP home, you'll need to start it in safe mode and login as administrator

true, my desktop is pro, machine the hdd failed in was home