Planet-Love.com Searchable Archives

these freakin' russians are really getting high tech with their info inbedding. I cannot get, sexyque.com/cgi-bin/proliv/proliv.cgi? to stay off of my urls. I cannot find it. I get these .ru sites then this porno page sometimes that takes over everything. It locks into my favorites, then becomes my default page and dropps beaucoup cookies in my computer. Can anyone tell me how to get rid of this.
Thanks
Joe
ps these Russian site are amazing sophistaced these days

... in response to I need some computer helps guys....., posted by yoe on Jan 23, 2003

Get some kind of software to protect your computer like Guard Dog or a firewall shareware program.  I don't follow my own advice however since the Guard Dog program caused me to have more crashes.

... in response to I need some computer helps guys....., posted by yoe on Jan 23, 2003

OK, the sexyque.com/cgi-bin/proliv/proliv.cgi? is a simple redirect cgi script that will redirect you to a random site it picks from a list within the smutserver.com domain. So it's pretty much impossible to tell which one in particular you paid a visit to, but I've had a look at the source on one of them. Basically it's an html/javascript page, it will open up a few frames, also writes up a lengthy function in javascript that will set a cookie to hotlog.ru and open a pop-up window asking you to add a URL to your favourites:
window.external.addFavorite('http://www.sexyfotki.com/?fav', 'SexyFotki ñâåæèå äåâ÷oíêè êàæäûé äåíü')
The function is called several times.
Note that unless you actually click OK, it won't be added, so look before you click. All in all it's annoying but I wouldn't rate this as especially malicious, I've seen some worse stuff.
id

... in response to I need some computer helps guys....., posted by yoe on Jan 23, 2003

You probably downloaded an Active X component from some Russian site. This can do some nasty stuff to your browsing. Open windows explorer and go to Windows - downloaded program file. Right click on the components there
- click on properties - check under general - codebase - if you see anything from a russian site, delete it. make a note of what you see under codebase and let me know as you might have to delete a few registry entries as well.

Gimme a list of everything you see in downloaded program files.

I also suggest that you disable activeX as the only useful need i see for it is to upgrade windows from the Microsoft website. To disable in Internet explorer go to - Tools -internet options- security - custom level-disable download signed and unsigned Active X.

... in response to Active X, posted by Cold Warrior on Jan 23, 2003

http://ftp.hp.com/pub/automatic/player/isetupM
http://camserv.base.1plus1.net/AxisCamControl.ocx

... in response to these I do not know, posted by yoe on Jan 23, 2003

[This message has been edited by Cold Warrior]

camserv is probably loaded from a web cam that you viewed. Looks like a ukr webcam. ftp.hp is a download from hewlett packard.

do a search for sexyque and the name of the page that sets itself up as your homepage.Go to - Start - search- files and folders. Try first - files and folders named- and then - containing text. Let me know if you find anything.

... in response to Looks OK, posted by Cold Warrior on Jan 23, 2003

nt

... in response to just a few cookies that I delete again a..., posted by yoe on Jan 23, 2003

If you aren't doing anything already go here ... http://www.lavasoft.nu/index.html and download Ad-aware.

Run it every day or two.  It identifies and removes spy cookies.  I don't think it's my imagination that the number of popups interrupting me are fewer after I disrupt the spy game by deleting the spy cookies.  The basic version, which I use, is free.

... in response to spyware, posted by John F on Jan 23, 2003

of this - spy-ware killer?

Since I acquired a "c.c. washer," speed/problem issues have become null. It's like a new computer, albeit an ancient one.

Any impute, would be grand!!!

... in response to What exactly , is the purpose...., posted by BURKE89 on Jan 23, 2003

Believe it or not, there are cookies which track the sites you visit, advertisements you look at, etc.  These cookies can't identify you as a person, but they can collect information about the activities of your computer .... your computer has a unique identifier consisting of your internet provider id and other information.  You can see evidence of this; suppose you visit a lot of sites looking for dvd's.  Later you realize that suddenly a lot of pop-ups are interrupting you with offers for dvd's.  That's because somebody has been tracking what you did with your computer.

Now the scary part .... The companies tracking you don't know who you are, but, they sell their information with what identifying information they have to other companies.  These other companies have enough demographic information in their databases that they can come up with a pretty accurate match rate.  There, they know who you are and what you've been doing on the internet.  Soon, you will be receiving offers for dvd's (hopefully you haven't been visiting porn dvd sites) in the U.S. postal service, hard copy, hand delivered mail, right to your front door, and in your name.

... in response to Re: What exactly , is the purpose...., posted by John F on Jan 23, 2003

however, I've never recieved anything in the mail.

So my "bleach," doesn't eliminate these elements?

I assume, this has happened to you. I'm  simply, a happy fellow whose computer runs quicker - in all respects!

Yet, you're correct on preferences. I still recieve... 20+ oddball elements a day. This, from a flood of: "re-finance" cr@p, E-bay scams etc...

Splain...

... in response to I don't doubt you, John..., posted by BURKE89 on Jan 23, 2003

For an example, use the following url to read Yahoo's privacy statement.  After a quick explanation of what they're doing, they indicate that they use it to "personalize your experience".  Realize that means knowing which advertisements to pop up on your screen.

http://privacy.yahoo.com/privacy/us/pixels/details.html

... in response to Re: What exactly , is the purpose...., posted by John F on Jan 23, 2003

if you are interested to see the information a website can gather from you every time you visit check this site.

www.elfqrin.com/binfo.shtml

... in response to Re: What exactly , is the purpose...., posted by John F on Jan 23, 2003

Haven't had that happen yet. I have noticed in about the last month that spam email has trippled or worse and for about the last 2 weeks that all of a sudden about 1/2 the spam email I get all suddenly seem to know my name and birthday and a lot of them seem to think that I live where I did until about 3 months ago (city anyway, so far none of them have mentioned the actual address). I run ad-aware about every two or three days and it always finds about 15 of the SAME ^%$*%% spies over and over again.

... in response to Re: Re: What exactly , is the purpose......, posted by Michael B on Jan 23, 2003

If one of the sites you use collects information about you (such as they do when you order something) they may sell the information about you to an advertiser like doubleclick that allows them to tie an identity to the serial number they track you by in their database.

You can disable third party cookies in Internet Explorer.  At least in 6.0.2 you can, probably in other versions as well.  Go to Tools - Internet Options - Privacy, and click on Advanced, then enable "Override automatic cookie handling."  Select "Block" under third party cookies.

Close the browser and then delete all your cookies (make sure you remember your password here because you'll have to enter it the next time you post).

I just tried that and then surfed around to many of the big commercial sites to see if I would pick up any third party cookies.  Didn't see any.

Third party cookies are those set by a site outside the one you'e visiting.  That's how most sites with ads operate.  They have ads that are linked in from a different advertising site, so while you're at foxnews.com, they might embed an ad that's served from doubleclick.com.  When they call the ad from the doubleclick server, Doubleclick reads their own cookie (the doubleclick one) that's on your computer and they store the fact that you visited page X at foxnews.com for your particular serial number (the one stored in the doubleclick cookie).  If there was no doubleclick cookie, they set one and start a new record in their database so the tracking starts on the next site you reach that has doubleclick ads.

Disabling third party cookies seems to prevent any cookie other than one from the site you're visiting (at least from the brief experiment I did).

That's not going to stop the spam you're receiving (you're already on the lists) but at least it looks like it would stop any additional tracking in the future.

... in response to Re: Re: Re: What exactly , is the purpos..., posted by Patrick on Jan 24, 2003

Thanks Patrick !! Even though I use Netscape, its working.
John

... in response to Re: Re: Re: What exactly , is the purpos..., posted by Patrick on Jan 24, 2003


Often at the end of Spam Mail, you will see a "Please Remove me from this list" link.

Frequently, this will not actually remove you.

So, why is it there?

Many people will use a fake account when filling out forms. So, the spammers can't know if the address they sent their spam to was actually used.

When you click "Please Remove" what you have done, in actuality, is tell the Spammer that the address is valid, and someone actually read it.

You are better off using a service like hotmail which has spam filters built in. Have the filter delete and block the domain (if possible) and NEVER actually click on any of the spam ads... even if you are interested. Instead, open a new browser, and use it to go to the site, that way the Spam database doesn't know the spam was effective...

... in response to Re: Re: Re: What exactly , is the purpos..., posted by Patrick on Jan 24, 2003

I block sexyque.com then I get some other name, I block that and get another, next thing ya know-no pages are coming up. All this in from a Russian site. Now I only get porno if I type in a 'non' web page. Take for instance if I just tupe 'lp' I get some "Penis Enlargement" banner with some pics (not so bad though). This actaully is no joke.
Joe

see-http://www.sexytetki.com/index5.html?lp
http://www.penispill.com/index.shtml?smutserver::http://www.sexytetki.com/index5.html

... in response to does not work with sexyque...., posted by yoe on Jan 24, 2003

[This message has been edited by Cold Warrior]

your computer is infected by spyware. This is like a virus,it doesn't destroy anything but it can reset your homepage, direct your search to other pages and pop up ads. I could help you search the registry and delete this stuff but try ad-aware first.

http://www.lavasoft.nu/index.html

... in response to just a few cookies that I delete again a..., posted by yoe on Jan 23, 2003

"bleach" with your cookies?

It has done wonders for me.

My old "box" hasn't run this smooth ever.

Concerned Patriot...

... in response to Yoe, have you tried..., posted by BURKE89 on Jan 23, 2003

What is bleach?

... in response to Re: Yoe, have you tried..., posted by MarkInTx on Jan 24, 2003

It's an option with my cookie and cache washer. I have mine set for 7 washes, so it completely destroys the files making them unrecoverable. It seems to be working, but I'm no expert on this stuff.

... in response to I need some computer helps guys....., posted by yoe on Jan 23, 2003

It's not the russians, it's the javascript that's possibly getting more sophisticated and nastier. I'll have a look at it when I'm on my Linux box, I'm in Windoze at the moment and don't want to let the nasty porn take over my browser.
P.S. Disabling javascript will stop the pop-up windows and resizing your browser for sure.
id