Startups/Windows Processes

[drragostea]

I've gone Tools-> Internet Options and seen the privacy tab but not the cookies tab ?

I was actually referring to cookies button, not tab. There is a Privacy tab though.

So I presume this is sufficient to clear out all my cookies ?

Yes.

You may or may not be interested in this article from the Sydney Morning Herald.

Yes, I've read it before. But as long you know what you're typing there shouldn't be nothing wrong with that. I mean you're not going to post random links to some unknown site on your blog for no reason would you?

Not that it is likely to affect me, but it shows there is an ever increasing clampdown on certain "unacceptable" sites (the ones that tell the truth most probably...)

P.S Is it naughty to post web links ? If so sorry.......

Well, you have a point there. Sometimes you can relate to how the "media" wants you to only know what they want you to know.
Re (P.S): What web links? To what?

Can you advise me whether and how I should proceed with these please ?

I'm not sure what to tell you as it is in the Heuristics, because it could possibly be a false positive. As I said before, run a scan with an anti-spyware program and AV program. Spybot could to miss something that others might find.

When you say "heads up" do you mean it's the price you pay for a cleaning your system with Spybot?

No! Heads up generally meaning like a note.

Could it have happened when Spybot S&D removed a lot of keylogger software ?

I doubt it since I got the same results from AVG (files changed) after a clean reformat.

You're saying it's Spybot doing it but nothing to worry about ?

Nope. My guess was Spybot's Immunization but I am not clear on what is causing this change exactly.

May I ask why ?
I can of course understand it will not fix a thing to delete it, and only anti-spyware can "fix" the problem, but could deleting it make things worse ?

Well to simply put it, the risk of deleting something from the registry key (especially when its in letters and computer terms) can be dangerous because if you were to accidentally remove a registry key (that was infact a Windows core key) thinking it was malware, your machine is toast.

Not the same I know, but both copy and "send to recycle bin" are both actions which do not "execute" the file ?

If you are talking about a malicious file or some sorts, you won't execute it if you merely moving it from one location to another.

And practically every site I visit, it blocks.

Well, that was not the case for me. It supposedly is a HIP shield, so like it'll guard your machine against malicious ActiveXs, visiting malicious sites, BHOs, etc. Personally, I think that SpywareDoctor will run smoothly on a well equipped machine with at least 1GB of RAM.

You'd still use AVG though?

I've moved on to avast! anti-virus around a year ago because AVG now (last checked at Download.com) is relatively huge, a 56MB download which will be some trouble for dial-up users. avast! and Avira Antvir are both roughly 28MB file downloads, including anti-spyware too along with their AV.

I appreciate your honesty thanks.

I wouldn't worry about invalid registry keys.

Suppose I just wondered if a potential hijacker could possibly attack the registry ?

I'm sure your anti-spyware will catch it. I doubt registry "cleaners' will do anything about that :o).

Hardware firewall ? That sounds expensive ?

Hardware firewalls are including with your Internet router.

You mean if I'm a hacker ?

Meaning that you are good for now since you have an active AV and firewall. Malware does not usually attack you unless you welcome them in (using cracks, warez, keygens, etc.). That's not all the situation because you might accidentally encounter them on a malicious webpage.

Sometimes when I have been online before, I've noticed my mouse pointer quickly shooting down the screen moving.

Do you use a wireless mouse?

suddenly expand to 6 (3 x 2) making me think another user has joined the session.

Meaning that the icons magically expanded in size? I can't explain what might have caused that. When mine are expanded (I changed the settings in the Properties tab) my desktop icons are expanded too.

I know it sounds weird but any ideas ? Could it be my ISP or more likely someone else ?

I don't see why your ISP will purposely attempt to infiltrate your machine for no reason .

It also seems my PC crashes a lot more when I'm online than not. Any ideas about this ?

What kind of crashes? Freezing? Have you performed a Disk Defragment and Disk Check?

If I have cleared the keylogger software a while ago, is it possible "the back door" still remains open ?

Well, it's unlikely. Usually anti-spyware programs detect all of the baddies at once not just one of out the group. It's possible that if a backdoor was attached to the keylogger it's connection could have been severed when the keylogger was removed.

Where else would you suggest I check using Spybot, if at all ?

Maybe another anti-spyware program to check for things that Spybot might have missed. MBAM, SAS, and A2 and several programs I like, that are light weight (expect A2 since it's a bit heavy on resources during scanning).
:o)

[mariner77]

Well, you have a point there. Sometimes you can relate to how the "media" wants you to only know what they want you to know.
Re (P.S): What web links? To what?

Exactly, that's what I mean.
This website www.infowars.com is censored in some places in the UK because it exposes government and worldwide corruption.
It may sound too crazy to be true at first glance but everything is taken from the mainstream media and governments own documents and own admissions(that you won't see reported on TV)
Of course the mainstream media love to talk about "conspiracy theories" even when they admit the facts themsleves in their own documents.
So I'd highly recommend it. (if you're ready to take the red pill of course).

I'm not sure what to tell you as it is in the Heuristics, because it could possibly be a false positive. As I said before, run a scan with an anti-spyware program and AV program. Spybot could to miss something that others might find.

I'll use AVG for now as my anti virus program ?
And Spybot as my an anti spyware program ?

I doubt it since I got the same results from AVG (files changed) after a clean reformat.

Oh yes of course.

Well to simply put it, the risk of deleting something from the registry key (especially when its in letters and computer terms) can be dangerous because if you were to accidentally remove a registry key (that was infact a Windows core key) thinking it was malware, your machine is toast.

If you are talking about a malicious file or some sorts, you won't execute it if you merely moving it from one location to another.

I see what you mean now.
I thought you meant not to send the file itself to the recycle bin but you're talking about moving or delting registry keys.
Don't worry - no chance of me doing that.

I've moved on to avast! anti-virus around a year ago because AVG now (last checked at Download.com) is relatively huge, a 56MB download which will be some trouble for dial-up users. avast! and Avira Antvir are both roughly 28MB file downloads, including anti-spyware too along with their AV.

Thanks for the information - I'll check it out.

I wouldn't worry about invalid registry keys.

I won't !

I'm sure your anti-spyware will catch it. I doubt registry "cleaners' will do anything about that :o).

Thanks.

Hardware firewalls are including with your Internet router.

Apologies, what's a router ? Can you elaborate on how I would set up a hardware firewall ?

Do you use a wireless mouse?

Yes I do.

Meaning that the icons magically expanded in size? I can't explain what might have caused that. When mine are expanded (I changed the settings in the Properties tab) my desktop icons are expanded too.

The size of the icons(maybe they're not actually icons, they're the rectangle bars that appear when you click start) don't change, I get double the number of bars i.e. 2 for internet explorer, 2 for outlook express, 2 for wireless manager, whereas at startup I only get 1 of each.

Just seemed very strange......

I don't see why your ISP will purposely attempt to infiltrate your machine for no reason .

Sure, every infiltrator has their own reasons, whether good or bad.

What kind of crashes? Freezing? Have you performed a Disk Defragment and Disk Check?

Yes freezing.
Yes - maybe that could be it, I need to defrag.
I just thought that would mean it would be slower, not that it would freeze.
Maybe it's a memory "overload" thing when several programs are open ?

Well, it's unlikely. Usually anti-spyware programs detect all of the baddies at once not just one of out the group. It's possible that if a backdoor was attached to the keylogger it's connection could have been severed when the keylogger was removed.

Good to know !

Maybe another anti-spyware program to check for things that Spybot might have missed. MBAM, SAS, and A2 and several programs I like, that are light weight (expect A2 since it's a bit heavy on resources during scanning).
:o)[/FONT]

Thanks for the info.

By the way, did you look at the results from the ENLOCSTR "Smitfraud-C" thing ? Any ideas on whether that is a threat or not ?

Well thanks again dr, I feel increasingly confident now.

I guess one or two more posts and everything should be wrapped up.

[drragostea]

I'll use AVG for now as my anti virus program ?
And Spybot as my an anti spyware program ?

You're choice. All of them are good.

Apologies, what's a router ? Can you elaborate on how I would set up a hardware firewall ?

A router is usually a box, like a modem, however this box ix unique since it distributes a Internet connection in the room/area. So it'll have an antenna and you'll have to supply with a connection (DSL preferably) and the users who have access to the router can use the connection (wired or wireless).

Yes I do.

That might explain why your mouse was moving by itself like it was taken over. I have a wireless mouse too and it happened a few times in the past (it's rare). I was worried too, but I was suspecting it had to do with the wireless connection that was going on between the USB receiver and the wireless mouse itself. I had a few possibilities of what may could have caused it: the wireless 5.8Ghz handheld phone or my Netgear router.

Sure, every infiltrator has their own reasons, whether good or bad.

Good point. But why a everyday customer?

Maybe it's a memory "overload" thing when several programs are open ?

Well, that could be possible. Like if you performed a virus scan and opened Adobe Photoshop simultaneously, I doubt your system will continue running like nothing happened. Usually the more RAM and faster your processor, the better (your machine can run more applications at once smoothly).

http://spywarefiles.prevx.com/RRJIGJ...OCSTR.EXE.html
I'm not sure if the file is malicious or not.
Can you browse to the file (using the Windows Explorer 'Search' option) and copy it to the desktop? Then upload it to VirusTotal again.

If you have any other questions feel free to ask.

[mariner77]

A router is usually a box, like a modem, however this box ix unique since it distributes a Internet connection in the room/area. So it'll have an antenna and you'll have to supply with a connection (DSL preferably) and the users who have access to the router can use the connection (wired or wireless).

I see what you mean.
I'm conncected to the router via a wireless connection.
Does that mean I'm hidden behind a "hardware firewall" that is more difficult to penetrate ?
If not what advantage of protection does a hardware firewall/router give ?

That might explain why your mouse was moving by itself like it was taken over. I have a wireless mouse too and it happened a few times in the past (it's rare). I was worried too, but I was suspecting it had to do with the wireless connection that was going on between the USB receiver and the wireless mouse itself. I had a few possibilities of what may could have caused it: the wireless 5.8Ghz handheld phone or my Netgear router.

Think you're probably right though several strange things seem to happen all at once.
Like my mouse, the icons thing, my PC crashing, and all when I blog or visit a particular website that relates to politics.

Now I'm clean and don't visit the site it never seems to happen.

If I visit a website and "log in" does the site's owner have any additional power/control over me or it's visitors ?
e.g. like being able to get my IP address or anything else ?
It seems highly unlikely but it certainly feels like someone is attempting to strangle my computer whenever I go there because I'm expressing my free speech and they don't like what I'm saying.
Trust me, just contrary opinions, nothing that is libellous or criminal.

Good point. But why a everyday customer?

I thought you were talking about ISP's.

It depends whether you trust government and public and private institutions to snoop on users private information.

It's like CCTV - everyone including the innocent are tracked, traced and filmed. Doesn't mean they have done anything wrong though does it ?

So if ISP's are forced to snoop on innocent people on behalf of government directives then they probably will.

Not saying ISP's are and it's unlikely, but if I WAS (or possibly "targeted") could that explain the strange things I'm seeing and experiencing ?
Or is it more likely to be an outside hacker or the website itself to which I'm logged in to ?
Maybe it's hard for you to judge.....

This article (though not directly related) is an example of governments getting increasing power to spy on and control information
http://www.infowars.com/cybersecurit...over-internet/

Well, that could be possible. Like if you performed a virus scan and opened Adobe Photoshop simultaneously, I doubt your system will continue running like nothing happened. Usually the more RAM and faster your processor, the better (your machine can run more applications at once smoothly).

Yes my machine isn't exactly new either - that could well explain it.

http://spywarefiles.prevx.com/RRJIGJ...OCSTR.EXE.html
I'm not sure if the file is malicious or not.
Can you browse to the file (using the Windows Explorer 'Search' option) and copy it to the desktop? Then upload it to VirusTotal again.

I can do it again but won't I get exactly the same result as I got before ?
Sorry, I'm just a bit confused - didn't you see the results link I posted before when I uploaded it ?
And why do I need to "copy it to the desktop" when I know the location ?
You're making me slightly paranoid now !

If you have any other questions feel free to ask.[/FONT]

Thanks so much dr.
Hopefully (for you) I'm getting really close to the end of so many endless questions now.

[drragostea]

Does that mean I'm hidden behind a "hardware firewall" that is more difficult to penetrate ?
If not what advantage of protection does a hardware firewall/router give?

http://computer.howstuffworks.com/firewall.htm

If I visit a website and "log in" does the site's owner have any additional power/control over me or it's visitors ?
e.g. like being able to get my IP address or anything else ?

Well, basically a no because they don't do anything to your machine. They just log down your IP address and maybe the pages you visit on their site.
Like if you login to Yahoo! Mail, they do what they have to do. Provide you for email service. They don't do anything else they did not state they would do (hope that is for most cases, companies like Yahoo! or WellsFargo for example do what they have to do).

So if ISP's are forced to snoop on innocent people on behalf of government directives then they probably will.

ISPs have the account holder's information and they will not release unless they receive a subpoena.

Not saying ISP's are and it's unlikely, but if I WAS (or possibly "targeted") could that explain the strange things I'm seeing and experiencing ?

Most likely no.

I can do it again but won't I get exactly the same result as I got before ?

I can't be sure because it could be possible that the file was not completely uploaded the first time. I am not sure.

This article (though not directly related) is an example of governments getting increasing power to spy on and control information

The story about the kid taking down a whole power grid is pretty impressive. Er, but if Internet never existed then we would be back in the stone ages. Like cavemens. Our society wouldn't be as developed and advanced as it is today.

And why do I need to "copy it to the desktop" when I know the location ?

It was a suggestion, I thought it might have made it easier for you.

Sorry, I'm just a bit confused - didn't you see the results link I posted before when I uploaded it ?

I thought it might help if you gave it another shot.

[drragostea]

This link might help clear up your hardware firewall question:
http://www.webopedia.com/DidYouKnow/...wall_types.asp

[mariner77]

I can't be sure because it could be possible that the file was not completely uploaded the first time. I am not sure.

Are you saying that because of what the results(that you presumably analyzed?) told you the first time ?
If not, then how will you be sure the file will be completely uploaded the 2nd time if I do it again ?
I'm afraid you're not making much sense here......

The story about the kid taking down a whole power grid is pretty impressive.

The story about the kid taking down the whole power grid is complete rubbish, as the article unequivolocally stated.

So why on earth are you seemingly disagreeing with me ?

Er, but if Internet never existed then we would be back in the stone ages.

The internet and net neutrality is one of the best things that has ever happened.
So why are you implying the article and myself are suggesting the opposite ?

I WANT TO PROTECT THE INTERNET AND NET NEUTRALITY - that was the whole point of the article, to educate people that the people in power(like Rockefeller who said the internet should never have existed!) don't want it.

If the power to control the internet is given to the highest people in authority, then who will you blame when it gets taken down ?

Those with the power to take control of the internet or the dreamt up cyber-geek with a laptop in Latvia ?

I'm sorry to say it but judging by your responses, either you are unable to understand the important issues properly or you are being deliberately obtuse.

If you're in any doubt about what it really means, I suggest you read the article again.

It was a suggestion, I thought it might have made it easier for you.

Fair enough.

I thought it might help if you gave it another shot.[/FONT]

Why ?
Unless you explain and maybe elaborate on what was wrong with the same file I presumably and successfully uploaded before(how can one upload part of a file anyway ?) then I won't be able to understand how it can help you to do the exact same thing I did before, again.

You're probably great technically but without wanting to criticize you and without wanting to cause you any offence, like a lot of technical people you seem to be unable to supply a lack of sufficient detail when answering simple questions and seem to have a vacuum of logic.

Thanks for your help anyway - I do appreciate it.

[drragostea]

I'm afraid you're not making much sense here......

Then I'm sorry I don't have a solution to that .exe file you are referring to.

So why on earth are you seemingly disagreeing with me ?

I only read the first sentence of the article, not the whole thing.

If you're in any doubt about what it really means, I suggest you read the article again.

Will do.

[mariner77]

Then I'm sorry I don't have a solution to that .exe file you are referring to.

Fair enough.

I only read the first sentence of the article, not the whole thing.

I admire your honesty.

Will do.

Anyone who cares about the continuation of the internet and net neutrality really should, otherwise there'll be a fake cyberattack(there may be anyway) and Internet 2 will be introduced.
That will effectively mean chinese style censorship, only a few corporate websites and the effective end of net neutrality.
If you don't understand why that would happen you need to understand why the mainstream media like to label proven facts as "conspiracy theories".

Thanks for all your help dr, I do appreciate it.

http://forums.spybot.info/showthread.php?t=47137