Jump to content

Malware Paywalls: e.g. adfly, blogspot, etc.


Burn666

Recommended Posts

I've been around a while, I remember using email via BBS, remember Mosaic, though I don't remember which version, pre 1.0 and pre Netscape, cousins had an Apple ][ and Atari 2600, which were pretty interesting at age 8 for a kid who grew up in a house restored from a barn (originally built as a house it ended up used as a grain barn before my parents bought it) in the poorest county in the state. All that aside, it was just a lead in because i never posted an introduction "Say hi," the title is the central point of this thread. I know I won't be popular for this because of the number of ad supported pages which may not realize the harm of the ads. I run a pretty tight ship when it comes to my computers, got used to it when I was working for an advertising agency doing a combination of computer art, coding, and tech support. But those days are past, too long past ...ehh, pull up a chair, did I ever tell ya how easy y'all kids got it, how 

i walked to school every day, in the snow, uphill, both ways.. yeah, I can make fun of myself, it's pretty easy actually.


I like LL a lot, they are ad free and their support LL is unobtrusive. And this: "We are a free and open community; members requiring payment for mods, support, or putting anything behind a paywall will be removed without warning. Donation buttons/links to support an author is fine, so long as nothing is promised, given, or rewarded other than a sense of satisfaction for supporting an author or owner of content." I have to apologize to LL because I'm not in a situation that I am able to support but once I am again I will. With my background why am I not creating CC? Bluntly put, my hands are no longer much good, I have trouble using my mouse because my hands shake and I hit the mouse buttons unintentionally on a constant basis, it is due to a medical condition but that is really saying too much already, I am not looking for anything because of that, it's just a part of life for some people and the cause may be important to me but it is not an entitlement for luxuries in life.

 

Anyway, back to the topic. See the little green padlock, not if you're using Edge, still, see the padlock to the left of the site address. Here you do, now take a look at a site hosted on Blogspot. Notice anything missing or a different colour? How's that padlock look now? How many sites do you go to without paying attention to that padlock, but they have a https protocol so they must be secure, right? Wrong. They are using a secure server but they are using ad content from non-secure sources. Oh, did you put payment info in while on that site? But what the hell, Facebook is selling your identity to the shadiest bidder so who cares, right? Something to think about.

Link to comment

https://blog.mozilla.org/internetcitizen/2017/04/21/https-protect/

https://www.kaspersky.com/blog/https-does-not-mean-safe/20725/

 

I use Privacy Badger, HTTPS Everywhere, and Decentraleyes, all are browser addons.

Privacy Badger blocks tracking cookies or requests to tracking services.

HTTPS Everywhere has the option to block unencrypted requests.

Decentraleyes is a local CDN emulator.

 

Ad.fly I avoid, but there are addons and Greasemonkey (Firefox) and Tampermonkey (Chrome) scripts that bypass them in some way (don't use them myself because I avoid any links that use URL shorteners).

 

Also I have Malwarebytes Premium that will block requests to malicious sites.

 

If there is a site that I never been to before or looks suspicious, I do a search for the site with Ixquick (Startpage) which provides an option to open search result links using their proxy service.

 

Link to comment

My first Ibm 286 unknown memory 512 I think? Or was it my brothers  Wic20?

But if you want to be decent safe, install Spy Boot search and destroy.

Warning here.

You need to get it from this address, all other adresses around that are hijacked by maleware sites. Used it for ages.

 

https://www.safer-networking.org

 

Let it fix your black list in your browsers, it works well whit all other AV programs that are out there.

If you want safe browsing, dont use Chrome at any time. It is full of small holes that any crap can pass by.

Edge/FireFox or Opera is the name of the game.

And one AV that do some thing. Even MS own AV that comes whit W10 is good.

 

As other says, stay away from Randomnamehere and stuff, check the lock in your browser.

And as OP says, check the color of the padlock.

 

If you plan to visit your bank, make sure you check your PC first from MaleWare whit any AV.

 

And to keep sites like this clean and safe, support it, so it dont get in those pesky ads that have crap in them.

My self work part time (40%) and I can afford that, 3$ what is that, 3 beers? for having one good safe community, and I can browse it and feel safe.

Link to comment
11 hours ago, Sarge Misfit said:

When it comes to ads, I have AdBlocker Ultimate installed.

Using FireFox.

When I go to a site that uses AdFly, etc, I just get a blank page and a 5 second timer. Once that runs out, I get a 'Skip Ad' button and that's it.

and you think you are safe, FALSE!
you move here daily on LL, me too, there are very few cookies here, but here too there are Trojans and phishing mails!
I myself have tracked down a very malicious virus and have communicated this to a moderator.
Here daily links are uploaded that do not only come from reputable websites and I do not believe that every single link will be checked here!

 

https://www.loverslab.com/topic/87535-new-site-questions-comments-and-suggestions/?do=findComment&comment=2200662

 

edit: only if you interrupt the internet connection, you safe. :classic_wink:

 

Link to comment
10 hours ago, novatul said:

A series of tubes.

No offense, animated avatars are not allowed!

 

see rule 5

Spoiler

Forum signatures should not be larger than 250 pixels high or 600 pixels wide. They must not contain any affiliate links, or links to paysites, and must be static (no animated gif). Signatures are allowed to contain pornographic content, as long as it is not anything deemed hardcore, which is up to the judgment of the site staff. A certain amount of leeway in regards to signature sizes or avatars is allowed here, the most important thing is to simply not make your signature overly intrusive or distracting. Avatars, like signatures, should also be static images and not animated. 


https://www.loverslab.com/guidelines/

Link to comment

Safe, no, eliminating annoyances, yes.

 

I also block crypto-miners, FireFox blocks trackers. I don't link my real info to my online avatar. Even my username on this PC is 'Sarge Misfit'.

I never do any online banking except from my own home computer.

 

Nothing's perfect, but I take what steps I can to protect my data and my info. If the Powers That Be wants it, there's not much to stop them.

But I won't make it easy for them.

Link to comment

Nice to see I am not alone and there are people here more cautious than I am, living in the US it sometimes feels like I am alone by not wasting things, I know I am not but even living in a locale which charges for landfill, garbage but not recycling, I feel that way. I actually posted this in part because I was annoyed by something being on a site which is notorious for misleading people because of its popularity. I won't say which site because I am not trying to narrow it down enough it could be seen as calling someone out.

 

I have had ads blocked even here but they were in signatures, which I have since turned off. Graphical sigs just slow forums down and I am unsure if they count against this site's bandwidth, that all depends on the provider, but I do know it counts against data limits for metered connections. My home PC is not on a metered connection but my android is, not that I ever near my limit, but not everyone has that luxury and I try to be considerate of such things. I grew up poor and though I had a decent career I am poor again. That's ok though, I came into the world with nothing and I can't take anything with me when i leave.

Link to comment
2 hours ago, Sarge Misfit said:

Nothing's perfect, but I take what steps I can to protect my data and my info. If the Powers That Be wants it, there's not much to stop them.

But I won't make it easy for them.

you're right, there gives not much to protect themselves, that most is just garbage.
and the good programs are only for certain people (state surveillance clubs) or Illegal. :classic_wink:

 

Here's a good tip, This safety program is the best thing in Germany.
it is free, but who wants can pay an annual fee, but is not necessary.

 

Malwarebytes

https://de.malwarebytes.com/

Link to comment
  • 2 weeks later...

Ok, I am glad there are other security conscious people like you all out there however I would like to address another aspect of the pay walls. I think it is pretty well established that none of the people who replied to the security side of my OP are far from intellectually lacking. I read a twitter comment a couple days ago which was made about 5 years ago. The comment was concerning Patreon pay walls and circumventing them. I don't agree with the tweet that essentially was saying circumventing the Patreon paw walls was an ok form of piracy because making an income with Patreon wasn't a real job. The tweeter in question was an idiot for openly making such a tweet and I completely disagree with the statement he or she made. On the other hand, I'm pretty sure you all saw the "on the other hand" coming; anyway, on the other hand, and read this carefully so it is not misunderstood. Going on, I do not begrudge anyone earning a fair, or even better than fair, income for their work; in fact I applaud them for finding a niche where they can provide a product for which people are willing to put their credit card information at an increased risk of being stolen.

 

But there is one aspect which bugs the fuck out of me, that it has become expected that everyone can afford it and while pulling down nearly 13 thousand dollars a month I am expected to buy into the 'starving artist bit.' Patreon shows the amount they make a month and yet they assume we are stupid enough to buy the 'starving' bit or that someone who is getting over 900 a month from their Patreon can't afford the Patreon fee of one of the two mod developers with which their mod, which is developed to the Patreon exclusive version of the more successful Patreon mod, directly interacts, one could even go so far a sponges off the interactions between that mod and the highly successful mod. Like I said I do not begrudge anyone a fair or even better than fair income for their work, but I have to add _if they are indeed working_. To me 2 to 4 hours of concerted effort a week does not constitute work and if either of the two cases, to which I will not attach an identity, were doing more than 4 hours of coding a week the products would be much more developed and it can be seen in the development that they have release versions, not even released to their Patreons, which they are holding back and doling out at a snail's pace. Yeah, something can actually be accomplished in 4 hours a week even if one of those hours is spent laying out version numbers and trying to remember A-Z in the correct order.

 

Ok, I went a bit overboard in the previous paragraph but I hate greed and someone thinking they can play me for stupid. I don't care how much they make, they are like everyone else, they can't take it with them when they die. Greed really only bothers me because they forget where they came from, but they could end up right back there. I don't wish that on them, after all money would have no value is someone didn't value it overly much.

Link to comment

i can completely see your point and concede is the wrong word because I never had a view in opposition to your point. Without LL these mods would not have a common ground place to be found. LL hosts the files for most of the content which I imagine is quite a bit of bandwidth which translates to running LL is not cheap. I am expecting to get a financial reprieve in the somewhat near future though how near that future will be is still to be determined. I made a comment about credit card info being put a greater risk but that, in my case, is somewhat sensationalist. The winner of the PWNY awards several years back was Sony and at that time I not only had a Playstation Plus account, I was also playing one of Sony's online games. Though it was never used and has since changed I was one of the people who had their credit card info stolen from Sony. That doesn't matter now it was just leading into this: once I am able to I will support LL, much has been put into building the LL community and it can be seen that it is a much stronger community than any of the other adult gaming communities. I look to LL before anywhere else for adult content and I value LL being here for me to do so. That's just a collection of words though, it won't mean anything until I am able to afford to support LL. I am in an assisted living home right now and it costs more than I make, I am only able to be here because of a state grant but I have an application in for a place which will leave me enough of my income it wouldn't even be a struggle to support LL.

Link to comment
  • 4 weeks later...

I may have fallen victim to some sort of malware/cookies that collected my old login info to my account. I keep getting a notifications once a day that someone failed 3 times trying to login from overseas in Germany region not sure if its a fake IP. Heck I even changed emails along with the password, also set up a phone verification for security measures. Yet still getting notifications, but its specifically only this site someone is trying to intrude my account. I have malwarebytes along with adwcleaner so idk whats going on.

Link to comment

I just got one of those emails about failed login attempts today, too.  The staff is aware of it - there's a thread in the tech support section with one post saying as much - but it's still really disconcerting.

 

Nice to know it's not just me, I was starting to wonder if I'd fucked up and caught something I shouldn't have on my PC.

Link to comment

What annoys ME the most is when you go to some website to, lets say for example, watch Anime or such.

You click on an episode, the page loads and the episode buffers up, ready to play.

Just as your about to press Play however, the video is removed and replaced by a giant black box stating something along the lines of

"TRUE HEROES DONT USE ADBLOCKER, WHITELIST US AND YOU CAN VIEW THIS"

which when translated into leyman's terms equals

"DISABLE ADBLOCKER TO ALLOW MALICIOUS ADS THAT COVER YOUR ENTIRE SCREEN TO FLOOD YOUR PC CUZ FUCK U WE WANT MONEY"

 

Now, I'm not saying you shouldn't support people with money (hell, im a very Anti-Pirating person myself), but god DAMNIT if these money grubbing fuckers like KissAnime don't annoy the shit out of me.

Hell, even Knowyourmeme of all places, is starting to do this whole "turn off adblocker or gtfo" crap.

Link to comment
On 5/13/2018 at 7:04 PM, Jexsam said:

I just got one of those emails about failed login attempts today, too.  The staff is aware of it - there's a thread in the tech support section with one post saying as much - but it's still really disconcerting.

 

Nice to know it's not just me, I was starting to wonder if I'd fucked up and caught something I shouldn't have on my PC.

 

It's happening to quite a few folks including me.  Even happened to Ashal.  Just make sure you have a good, strong and complex password.  Ashal is banning the IP of each attempted hack, so hopefully whoever it is will move on soon.

Link to comment
17 hours ago, gregathit said:

Just make sure you have a good, strong and complex password.

I would like to add to the very wise recommendation of gregahit that not only must your passwords be strong and complex with a random selection of uppercase, lowercase letters, numbers and punctuation but they will be safer by never ever including your first and/or last names, whether they are yours, a relative's, or your pet's, your favorite pop or sport star's, nor dates of births, weddings, sequence of numbers or letters such as 1234, abcd, zodiac sign, etc ...

 

They must absolutely be different for each site where you need to identify yourself and never memorize them in any way on your computer or via your browser, a "remember me" function or else, write them instead on a separate piece of paper as a memo. You will find this method certainly tedious to achieve, but doing so will make it difficult for hackers who, rather than losing too much time, will move to a prey easier to reach.

 

To make your connections even more secure, use a virtual keyboard that encrypts your login entries and passwords. Some solid and reputable virus protection software suites offer this type of special function.

 

Never register your bank account or credit card information on any payment website, even if it is offered to you. It can be understood that this may facilitate your payment procedures, but anything that is made easy for you is a risk factor.

Never reply to an email asking for your bank and credit cards details, it is fraudulent because even your own bank will never ask you through an email.

 

Beware of any softwares that you want to install in your computer on the pretext that they present well or that an attractive advertisement praises them. Before installing anything, check the comments made by other advanced users on trusted technical sites and compare, look for the possible flaw. Your software, whatever it may be, must be effective first and foremost.

 

Before closing your browser verify that your logins are closed - sign out sites login session. After each internet browsing session and before shutting down your computer delete the browser cache, non-essential cookies and browsing history.


By doing so, your sensitive data will be better protected. Better be safe than sorry.

Link to comment
On 4/5/2018 at 12:19 AM, Alkpaz said:

I use the much less used Opera as my browser. I was having issues with Mozilla a while back, didn't care for Chrome,

 

Opera is Chrome but worse because it is based on an older version and they keep shoe-horning in cloud crap that could be used as spyware.

Vivaldi is basically the same thing but it actually looks like Opera.

 

8 hours ago, Fifoo said:

Before closing your browser verify that your logins are closed - sign out sites login session. After each internet browsing session and before shutting down your computer delete the browser cache, non-essential cookies and browsing history.

 

That's a lot of repeated clicks that simply do not have to happen if you just browse in private mode.

Link to comment
13 hours ago, Fifoo said:

Before closing your browser verify that your logins are closed - sign out sites login session. After each internet browsing session and before shutting down your computer delete the browser cache, non-essential cookies and browsing history.


By doing so, your sensitive data will be better protected. Better be safe than sorry.

way too much work, if I do this, then I must every day new login (register), I am not only on Loverslab on the way, there are a lot of websites where I am registered, everywhere with different passwords!
I know how to protect myself, I do not even use AdBlocker but I have a very good program that all malicious cookies track down.

Link to comment
13 hours ago, winny257 said:

way too much work, if I do this, then I must every day new login (register), I am not only on Loverslab on the way, there are a lot of websites where I am registered, everywhere with different passwords!

I think you misunderstood me, or the translation is not adapted to these "sign in" and "sign out" terms: by doing this you don't need to register anew and/or create a new password but just sign in, sign out ... to connect and disconnect ...

Link to comment

You can use a password manager. It will create 64 character impossible to hack passwords (well, nearly impossible) unique for each website and/or service you use. Then you can sign in/out.

 

And it's simply better to use a paid VPN provider hosted in a country that does not exchange data, disable WebRTC, disable any third party cookies and don't allow Javascript but for a select few sites that you actually trust.

Link to comment
4 hours ago, Reginald_001 said:

You can use a password manager. It will create 64 character impossible to hack passwords (well, nearly impossible) unique for each website and/or service you use. Then you can sign in/out.

 

And it's simply better to use a paid VPN provider hosted in a country that does not exchange data, disable WebRTC, disable any third party cookies and don't allow Javascript but for a select few sites that you actually trust.

my program feels malicious cookies on, tracked this to the starting point (if possible) and then write a report with all related data.
then it's up to me whether I pass on this data (law enforcement), but mostly unnecessary because at the latest after a minute this cookie has disappeared. :smiley:

Link to comment
10 hours ago, Reginald_001 said:

You can use a password manager. It will create 64 character impossible to hack passwords (well, nearly impossible) unique for each website and/or service you use.

You will have to make the right choice among the products offered because, as in any software domain, they are not all as secure as you think. Choosing the right one will be critical for your security when keeping all your passwords in one basket. And don't forget that hackers have the ability to decrypt encrypted data.

 

Password managers: The good, the bad, and the ugly

Password manager OneLogin hacked, exposing sensitive customer data

9 Popular Password Manager Apps Found Leaking Your Secrets

Pre-Installed Password Manager On Windows 10 Lets Hackers Steal All Your Passwords

 

The general principle on which I base myself regarding the password security goes through:

  • Two-factor authentication - also known as two-step verification or multifactor authentication, whenever this function is available.
  • Avoiding the use of software to store data as sensitive as multiple (long) passwords in my computer, even if they are encrypted when typed.

------------

EDIT: 4 suspicious links removed.

Link to comment
1 hour ago, Fifoo said:

You will have to make the right choice among the products offered because, as in any software domain, they are not all as secure as you think. Choosing the right one will be critical for your security when keeping all your passwords in one basket. And don't forget that hackers have the ability to decrypt encrypted data.

---snip---

would you for these suggested websites put your hand in the fire?
I not! :classic_wink:
4 of these pages contained malicious cookies (Trojans)!
even Google Chrome and Bing has dishonest cookies on the home page.
I only use programs that work independently of an Internet connection. 

Link to comment
On 18/05/2018 at 12:43 AM, winny257 said:

4 of these pages contained malicious cookies (Trojans)!

If you knew (as you can certainly think) the number of scripts, cookies, tracking and data collection attempts blocked by the protections installed in my system at each browsing session made on the Net, I would not finish counting them ... after that a ZHPDiag scan will do the complete check: nothing, all clear for now in my system.

 

The solely Trojan that infected a previous WinXP Pro install in year 2008 was due to G-Data let him pass through and I putted the named AV suite in the trash. Complete hardware and software reconfiguration and Win7 Pro system clean since that day.

 

Thanks for your checkup winny257. Really appreciated. :classic_wink:

Suspicious links removed.

Link to comment

Archived

This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue. For more information, see our Privacy Policy & Terms of Use