tracking cookie comes back again and again

Question

I am using NIS 2007 and every full system scan (new computer as of Feb 07) was fine until 2 days ago (May 9) when I was alerted to tracking cookies.  I chose 'fix' and Norton indicated that all was fixed.  However, every full system scan now finds tracking cookies which I 'fix' only to have statse.webtrendslive.com return every time I use the internet.  I have fixed other tracking cookies which have not come back.   How can I get this to be 'fixed' permanently and why isn't NIS 2007 'fixing' it when it says it has done so?  Do I have to 'fix' this every time after a full system scan from now on?   I searched for this cookie using Tools->Internet Options->General(tab)->Browsing History Settings->view files but cannot find this particular cookie written exactly as above.  Also, both first- and third-party cookies are enabled.   Coincidently, this problem started after I installed the latest Windows update -- including the IE7 Security Update (KB931768).   I am new to this problem so any advice will be appreciated. Message Edited by sam_i_am on 05-12-2007 07:18 AM

Gmanson · Answer

Get ad-aware se and that should clean it.

Lorac30 · Answer

Sam

Go to Internet Options> Privacy tab.. Click on "sites" and enter the website address to your list of blocked sites, so the cookie is refused automatically. Try also entering it as " m. webtrends. com". (You might also recognize "webtrends" as this, when you go searching for the cookie, if you don't find it with "statse" in the beginning.) I don't know if it wil help, but worth giving a try.

Message Edited by Lorac30 on 05-12-2007 12:01 AM

joe53 · Answer

sam_i_am:    'Also, both first- and third-party cookies are enabled.'   At the very least, you should have your privacy settings block third-party cookies. More info on cookies and privacy settings in IE7 are here: http://www.mvps.org/winhelp2002/cookies.htm

sam_i_am · Answer

Lorac30,   Thank you for this advice.  I blocked it (I entered it as statse.webtrendslive.com and it appeared on my blocked list as webtrendslive.com) and NIS stopped notifying me of any tracking cookies.  You were right, I did find m.webtrends.com when I viewed the files under General->Browser history Settings.  Should I delete m.webtrends.com or is it ok now that I have blocked the address?   Thanks for your help.

sam_i_am · Answer

Gmanson,   Could you please direct me to where I can get adaware se?  Will it run with Vista?   Thanks.

sam_i_am · Answer

Joe53,   Thank you for the article.  I have now blocked third-party cookies as you suggested.

Bugbatter · Answer

'Ad-Aware SE is not officially supported on the Vista platform, however many customers run Ad-Aware with positive results, we have also done some testing on this with good results.Since the upcoming release of Ad-Aware 2007 I can not give you a definite answer on the Vista question for Ad-Aware SE since this version will be replaced and made obsolete once the new version is released.' More here: http://www.lavasoftsupport.com/index.php?showtopic=6674

sam_i_am · Answer

Bugbatter,   Thank you for the link.

ky331 · Answer

Sam,

[Note: I didn't read through the links people sent you to, so if any of this was explained there,

I apologize for repeating things. I am also familiar with procedures related to IE6, and realize that IE7 (which I don't use) might have better built-in security features. But for the sake of keeping things contained in this one thread:]

Scanners that look for tracking cookies (be it your NIS, or the suggested Ad-Aware, or any others) "fix" them by simply removing any instances of the particular cookie found. In this sense, "fix" is really a misnomer... while it removes the current cookies, it does nothing to prevent a similar cookie from returning to your system the next time you visit their website. So if you re-visit webtrendslive [or another website that is somehow associated with webtrendslive], you will get another cookie upon that visit.

In contrast, the procedure suggested by Lorac [Tools/Internet Options/Privacy/Sites] actually blocks cookies from that site from returning upon future visits, and so, in my opinion, is the optimal way to proceed.

Two points:

1) I've found in some very rare instances a blocked cookie may nevertheless somehow sneak back. I am at a loss to explain this.

2) You need to be careful if the allegedly "objectionable" cookie is a first-party cookie related to a legitimate website where you want to conduct internet business: Some legitimate businesses require cookies in order to conduct their transactions, and if you block these, you will not be able to interact with their site. [Please note that I am NOT suggesting that webtrendslive is such a site] So, for example, if a scanner picked up on a cookie from "XYZ Airlines.com", but you know that you fly and buy online from XYZ Airlines, you would [probably] NOT want to block their cookies.

Message Edited by ky331 on 05-12-2007 02:17 PM

sam_i_am · Answer

ky331,

Thank you for the information.

I have blocked the website as well as all third-party cookies and have not been alerted by NIS to any tracking cookies since then.

I am at a loss to explain where I picked up this tracking cookie as this is a new computer (since Feb) and the tracking cookie showed up on May 9. If I had to guess, it has something to do with an evite I responded to or from computer information websites I was searching. The cookie would show up every time I launched IE7 so I am thankful I have (hopefully) found a way to get rid of it.

Message Edited by sam_i_am on 05-12-2007 01:10 PM

1972vet · Answer

Quote: Also, both first- and third-party cookies are enabled. Coincidently, this problem started after I installed the latest Windows update -- including the IE7 Security Update (KB931768)...The cookie would show up every time I launched IE7 so I am thankful I have (hopefully) found a way to get rid of it. While you still have first party cookies enabled, you will be bothered on occasion I would suppose, when you scan your system and it finds more cookies that it wants to 'Fix'. As stated by an earlier post, 'Removed' is the better term. May I ask why you would want to have first party cookies enabled? While you may want to accept some first party cookies, there are undoubtedly some among them that save information about you that can be used to contact you without your implicit consent...which means, TONS OF SPAM. By the way, since you mentioned it I should say something to dispel the notion that there may be some connection...but installing the latest Windows Update has absolutely nothing to do with these tracking cookies showing up on your system. The third party cookies being enabled is where your problem started. While you had the issue repeat itself each time you opened IE, you either had a page bookmarked that was connected in some way with this tracking cookie, or it was in your cache.

sam_i_am · Answer

1972vet,   Thank you for responding.   I have first-party cookies enabled to be able to use the sites that require them, which, if I understand it correctly, are the ones I log onto on a regular basis.  I suppose I could simply add these particular websites to 'always accept' while blocking all cookies (first- and third-party) and not have to worry about getting any unwanted cookies.  I will keep this in mind if I continue to have a problem with this.  I wonder if most people block all cookies routinely........maybe I SHOULD be doing this now........   Because my issue presented itself each time I opened IE (my homepage is my IP's home page), I guess it was linked to this page or, as you suggested, in my cache.  How would I empty out my cache and should this be done?   Thank you for taking the time to pass on your information.  I am learning as I go and I appreciate those with more knowledge (like you) helping people like me.

ky331 · Answer

this brings up an issue that I don't recall seeing discussed here:  the optimal setting for cookies, in terms of privacy.     for what it's worth, i use IE6, set to  'Medium-High', which: -- blocks 3rd party cookies that don't have a compact privacy policy -- blocks 3rd party cookies that use personally identifiable information without my explicit consent -- blocks 1st party cookies that use personally identifiable information without my implicit consent   I then use Lorac's procedure to block any cookies that Ad-Aware, Spybot (&etc) find, unless I recognize their names as being part of a site [like my bank] that I know I want to use, and am willing to tolerate their cookies.   to Joe and 72Vet:   what setting do you use/recommend?   And is there any difference in the settings/security of IE6 vs. IE7 in this regard??  Vet:  Are you suggesting blocking all cookies, and then allowing only the exceptions you really need?

joe53 · Answer

In IE7, I have these Privacy>Advanced settings checked:

-Override automatic cookie handling
-Block First-party Cookies
-Block Third-party Cookies
-Always allow session cookies

I think this was pretty much the same in IE6. I only have about a dozen sites that require login cookies, which I allow via the "sites" button. One bonus using this method is I have no need for a third-party cookie manager.

Every once in a while, the Dell forums seems to forget my login (expired cookie?). Other than that, cookies haven't caused me much trouble.

1972vet · Answer

ky331,

I actually don't ever use IE...I use FFv2, but my IE privacy settings are the standard default settings which I have not changed. The default settings are set to "medium" rather than the higher security settings of "medium high". The difference is, the first party cookies are merely restricted and not blocked.

Since a first party cookie comes from the host domain, I'd rather not block them but take MS's advice and just have the browser restrict them. MS description in more detail Here.

In FF, I accept cookies until I close the browser at which time everything is deleted...including private data.

Virus & Spyware

Was this post helpful?