Karl`s PC Help Forums Last active: Never
Not logged in [Login ]
Go To Bottom

In memory of Karl Davis, founder of this board, who made his final journey 12th June 2007

Post Reply
Who Can Post? All users can post new topics and all users can reply.
Username   Need to register?
Password:   Forgot password?
Subject: (optional)
Icon: [*]
Formatting Mode:
Normal
Advanced
Help

Insert Bold text Insert Italicised text Insert Underlined text Insert Centered text Insert a Hyperlink Insert E-mail Hyperlink Insert an Image Insert Code Formatted text Insert Quoted text Insert List
Message:
HTML is Off
Smilies are On
BB Code is On
[img] Code is On
:) :( :D ;)
:cool: :o shocked_yellow :P
confused2 smokin: waveysmiley waggyfinger
brshteeth nananana lips_sealed kewl_glasses
Show All Smilies

Disable Smilies?
Use signature?
Turn BBCode off?
Receive email on reply?
The file size of the attachment must be under 200K.
Do not preview if you have attached an image.
Attachment:
    

Topic Review
Katzy

[*] posted on 2-10-2017 at 19:26
So, don't use IE. :)

I never have.

In some browsers, you can take a look at the cookies you have and it'll give you details of the site that put it there.
JackInCT

[*] posted on 1-10-2017 at 22:07
Quote:
Originally posted by Katzy
...You can check who hosts a site, by going to a "whois" site...


YES, but obviously it's not very practical to do the 'whois' for each and every site that one visits.

IE, as an example, has, supposedly, a series of "safeguards" built into it to protect users, to include somewhere in its Internet Options area a list of sites that it deems "dangerous" [I'm forgetting the details of just how that works if you attempt to open up a website that it deems'forbidden'--somewhere in IE there's a list of the domains that it puts into that category]. IF the quality of the work that MS puts into that part of IE is as good as the quality of the rest of the work that MS puts out, I don't have any confidence that it's even a halfway measure that will offer some level of protection to an end user.
Katzy

[*] posted on 1-10-2017 at 15:42
Thing is, freewebs are a company that hosts websites. They seem to be about as good as Godaddy, who are dire, in every way.

So, if you visit a site that is hosted by them, you're gonna cop their cookies (Unless you disable them, of course).

You can check who hosts a site, by going to a "whois" site, such as this one. I've given you a link which gives the details of this forum, as an example.

https://www.whois.com/whois/karlsforums.com
JackInCT

[*] posted on 1-10-2017 at 01:51
Quote:
Originally posted by LSemmens
Is it showing up as attatched to your browser?..


No! I actually cannot see that it does anything at all; this whole post of mine is simply a hidden negative consequence suspicion that I am not aware of that it's occurring. Most of my experience with freeware 'goodies' is that they create a toolbar OR installs some specific search engine) in my default browser. The toolbar always shows up in my list of installed software (Revo uninstaller is what I use to find it and uninstall it), and the search engine stuff also shows up [by paying attn to what search engine the browser is using all of a sudden] and can be disabled/removed in any browser by the 'search engine' choices in the browser's options, or add ons areas.
LSemmens

[*] posted on 1-10-2017 at 01:02
Is it showing up as attatched to your browser? If so, which one? Something triggers in my memory as something that works like a homepage hijacker. It could be something in your installed add ons for your browser.
JackInCT

[*] posted on 30-9-2017 at 19:28
I'm posting this from the PC that has this 'freewebs" listing.

(1) it continues to show up after boot up in the list of tracks that will be deleted by my tracks eraser software, but will not show up after that cleaning until the next boot/reboot,

(2) it does not show up in a regedit scan, so it's not a entry in regedit (done scan twice, including one right after bootup and before it was deleted,

(3) does not show up in ccleaner (and the hacked ccleaner update was resolved quickly with a new version several days ago at this point),

(4) I am a registered owner of maleawarebytes (sp ?) but do not have it installed; there is this never ending back & forth re programs like maleawarebytes, and spybot search & destroy, etc., that if you use their realtime scan feature, it will interfere with whatever antivirus program that you are using; I'm not aware if that "issue" has ever been satisfactorily resolved to include the fact that maleawarebytes, etc. is NOT to be used as a substitute/alternative/adding an extra level of security to an/any antivirus program.

SO, I will let this ride until I can come up with a better idea as to why I can't track down this entry [it's not in the list of cookies in thecache of any of my browsers (before I run the tracks/cookies eraser stuff)].
LSemmens

[*] posted on 30-9-2017 at 09:05
I am also comfortable using the registry cleaner which is a part of cCleaner, although Piriform had an issue where someone managed to inject some malware into cCleaner recently. (They HAVE fixed the problem in short order - credit to them)
JackInCT

[*] posted on 29-9-2017 at 14:45
Quote:
Originally posted by Katzy
....How comfortable are you with clearing out your registry...


I completely forgot about (as I had intended to do) taking a peek at registry when I was on the computer with this freewebs entry. Your post jarred ye olde grey cells and it's back on my todo list.

I typically in "cases" such as this, simply open up registry and scan it using "find [or maybe it's called 'search']" and see what turns up, and delete more or less on the proverbial "winging it". By the way that method won't work at all if what you're scanning/searching for via the choice of search words a common occurrence in the registry, i. e., there are a great many words/phrases in registry that occur frequently but have nothing to do with one another, not to mention are impossible to tell what program created them to begin with.
Katzy

[*] posted on 29-9-2017 at 10:41
If you know how to use this, Jack, it'll be worth running it. I wouldn't be without it.

https://sourceforge.net/projects/hjt

Be careful, though. Used wrongly, it can cause problems.

If anything "Freewebs" appears, though, tell it to zap it.

Leigh's advice is sound, too, of course.

How comfortable are you with clearing out your registry, manually? I tend to clear mine out, from time to time, just for the Heck of it. I'd never use one of those cleaners, though, as has been discussed, elsewhere. I much prefer this, over Windows' regedit.

https://www.oo-software.com/en/ooregeditor
JackInCT

[*] posted on 28-9-2017 at 22:07
Quote:
Originally posted by Katzy
Do you happen to have the following files, in your C: directory?

C:xa.exe
C:fa.exe


Finally got around to cranking up ye olde machine and did a search. No Joy!
JackInCT

[*] posted on 17-9-2017 at 13:13
Quote:
Originally posted by Katzy
Do you happen to have the following files, in your C: directory?

C:xa.exe
C:fa.exe


I'm back on my primary computer (getting back on my secondary ones involves finding/reconnecting some cables in the dark rear mishmash of cables in the back of these 3 machines); I will look into this in the next day or two.

Thanks
LSemmens

[*] posted on 17-9-2017 at 11:08
malwarebytes scan might help.
Katzy

[*] posted on 16-9-2017 at 20:56
Do you happen to have the following files, in your C: directory?

C:xa.exe
C:fa.exe
JackInCT

[*] posted on 16-9-2017 at 13:53
Thanks for your help with this.

Yesterday I did the monthly Windows Update on another of my backup desktop PCs, and that same file also appeared on that one, along with another file that began with "cookies...". This file does not appear on my primary (day in-day out) PC. All these PCs, in terms of installed software, are virtually identical.

One thing that I have forgotten to check is to see whether this "freewebs" appears in Registry. Now on my ToDo list. It's beginning to look like this entry is the byproduct of one of my many, many freeware programs, i. e., there's some kind of financial payment arrangement to the developer for including it in the install, and the developer does NOT have an opt out option for it during the install process. I don't ever get an 'invitation' to visit freewebs when I work on these 2 PCs, but that may be due to my tracks erasers, or my pop up blockers.

I'm not going to mess with the programs that you suggested, even though, under the hood, these kinds of files can be messing with the end user big time re tracking surfing 'habits', and the end user would never know it.
Katzy

[*] posted on 15-9-2017 at 10:18
I'd be tempted to use Process Monitor and Process Explorer https://technet.microsoft.com/en-gb/sysinternals to see if I can see if there's anything "rogue" running.

I have no idea how computer literate you are. I know of a suite of programs, along with the sysinternals one, that can hunt into all sorts of things and do things that are quite literally amazing.

But, in the wrong hands, they can cause horrendous things to happen.

That having been said...

http://www.nirsoft.net

I have his programs and the launcher, along with the suite of SysInternals tools, which that can launch, too.

http://launcher.nirsoft.net/downloads/index.html

These tools are, amazingly, free! But...

BE CAREFUL!!! :D
JackInCT

[*] posted on 14-9-2017 at 22:14
Quote:
Originally posted by Katzy
What browser do you use, Jack?

If you know how to look at the cookies, for whatever browser you use, try that and see if it's there. You can delete it/them, then.


I run this history/tracks eraser program as a matter of routine as soon as the boot up to desktop is finished; so none of my browsers have been opened up at that point. And more often than not I also run it before I power down/do a restart, so it's not likely left over from a previous session. AND there are no other entries in the scan list that begin with "cookies".

I have 3 browsers, so if you're suggesting that a site that I visit is sticking this to me via one of these browsers, that would have to mean that I visit that site during each session (since it does get deleted by my tracks eraser), but my surfing during each session doesn't always involve consistent visits to the same group of sites.

I have 3 history eraser freeware gems. For whatever reasons, each developer coded their gear to delete different "tracks" (and just for laughs (but not funny Ha Ha), as soon as some of these tracks are deleted, IF I immediately repeat the scan, some of the deleted files reappear (and I'm NOT referring to the *.dat Windows files either).
Katzy

[*] posted on 14-9-2017 at 20:47
What browser do you use, Jack?

If you know how to look at the cookies, for whatever browser you use, try that and see if it's there. You can delete it/them, then.
JackInCT

[*] posted on 14-9-2017 at 17:34
Tracking Down A Mysterious File

While running, via a 3rd party tracks/history eraser program (on my secondary desktop PC), I noticed this entry in the list of files that shows up after this program scans my local HD; this entry is in the screen capture embedded image.

I have zero idea which of my installed programs this file is associated with (OR perhaps from a program that's been uninstalled).

I tried to track its location on my local HD with a variety of 'entries' [re various choices for the search words) in two separate programs, (1) the built in Windows file search gear, and (2) a 3rd party search program. No Joy! I have the File View Show Hidden Files choice turned on; so that's not the reason I can't find it/see it.

I did a Google search, and there are hits for this "freewebs.com", but all the hits simply show that it's a free website hosting service (and I've never used it).

I'm not at all sure whether this entry is actually a file, I. e., it has a strange/uncommon "name". It does get deleted by my tracks eraser program, but it shows up again the next time I reboot.

My antivirus is NOT 'burping' on this (or anything), but I don't like having unknown origin files re what they could be up to.

Any ideas how/where to track this down?