Advertisement Problems / Popups

[prof_derzshowitz]

Hello everybody,

Thanks again for all of your helpful responses.

Although it may successfully prevent the "Creatives.Livejasmin" pop-under from loading, I personally do not like the idea of permanently remaining logged into any type of online account for privacy and security reasons, whether it's the V.E.F., my email address, etc.. However, I've found a different method of effectively blocking the "Livejasmin" pop-under from opening, which does not necessitate alterations to my Firefox or AdBlock Plus settings, installing any additional addons or software (such as NoScript), or altering my HOSTS files in my WINDOWS folder.

By first right-clicking and then left-clicking inside the appropriate boxes, Firefox's built-in pop-up blocker is able to trigger, yet securely absorb the "Creatives.Livejasmin" script, and prevent it from opening in a new tab. This "pop-under blocking" is accompanied with a Firefox notification that the browser has stopped a pop-up from loading, which appears when you make your initial Right-Click.

After this, one may freely left-click inside that particular box to simultaneously a) close the window of options that was opened by your initial right-click and b) gain normal access to the box, where one may insert the appropriate text, or make any other necessary selections (e.g. the insertion of a check-mark inside the "keep me logged in" box).

In addition, the usage of the TAB key may be employed to move from one box to another without triggering the pop-up, but the direction of the TAB movement seems to be predetermined according to the V.E.F. home page layout, and therefore certain boxes need to be selected before others, and in a particular order (which will be described below).

It is best to initiate the process by Right-Clicking and then Left-Clicking in the "keep me logged in" box before selecting the remaining login fields (because of the TAB-movement-direction issue mentioned above). This "Right-Click, Left Click" procedure will activate the "Livejasmin" pop-up script, but Firefox's built-in pop-up blocker will prevent the pop-up from loading in a new tab or within your current browser window.

Next, one should left-click inside the "user name" box and enter your member title. (The TAB key is of no use for moving your cursor from the "keep me logged in" box to the "username" box, because of the same TAB issue mentioned earlier).

(NOTE: If you are worried that the pop-up may still be activated by initial left-clicks inside the login fields, you could continue to employ the "Right-Click, Left-Click" method to safely move from the "keep me logged in" box to the "user-name" box, as was employed to access the "keep me logged in" box at the very beginning).

Then, after you have entered your text in the "user name" box, it does become possible to use the TAB key (as suggested here by the real McCoy: http://www.vintage-erotica-forum.com...71&postcount=7) to move from the "user name" box to the "password" box, at which point you may enter your code. Finally, hit ENTER on your keyboard, and you will be logged in to the forum.

(NOTE: If for some reason you are unable to use the TAB key to move from the "user name" to the "password" box, and/or you remain worried that the pop-up may still be activated by normal left-clicking, you can safely access the "password" box by following the same clicking procedure described in the previous steps, which in this case would be to first Right-Click, and then Left-Click in the "password" box.

---

Although because of the length of my description this may seem like a long process, it really is (IMO) the quickest, simplest, and least invasive method of preventing the "Livejasmin" pop-under from loading upon login. To briefly summarize, just:

1) Right-Click in the "keep me logged in box" and then Left-Click in the same box to insert the required checkmark,

2) Left-Click in the "user name" box to access its text field and enter your title,

3) Press TAB to move to the "password" box and enter your code, and

4) Hit ENTER on your keyboard to login to the site.

---

Now, all that remains is to find a method of preventing the "Straemmate"/"Streammate" pop-up from loading when accessing Imagevenue, without having to install the NoScript addon (which I would prefer not use for reasons that I have mentioned earlier in this thread), or making browser tweaks that end up hindering the normal operation of that particular imagehost.

[DubSalute]

Quote:

Originally Posted by prof_derzshowitz

Now, all that remains is to find a method of preventing the "Straemmate"/"Streammate" Imagevenue pop-up from loading, hopefully without having to install the NoScript addon (for reasons that I have mentioned earlier in this thread).

I think you will not be able to avoid having to use NoScript addon:
https://addons.mozilla.org/addon/722

It has a easy option to enable and disable again to "Allow Javascripst Globaly" again:

[IMG]http://i35.*******.com/2qw3238.jpg[/IMG]

Issue with Firefox is that as far as i know it has no built in "Site Preferences" option to site specific disable Javascripting, its on or of:
http://support.mozilla.com/en-US/kb/...+Content+panel

Quote:

Enable JavaScript: JavaScript is a scripting language commonly used to make web pages interactive. However, it also makes certain annoying behaviors much easier to perform. To disable JavaScript, uncheck this optionpreference. However, note that disabling JavaScript may cause some sites to not work properly. For more fine-grained control over what JavaScript can and cannot do, click Advanced....

The "Block Pop-up Windows" and "Load images automatically" options can be set site specific but not JavaScript.

[IMG]http://i35.*******.com/ygfwm.jpg[/IMG]

What you however could do is go to the "Content" options before visiting imagevenue, disable javascript visit imagevenue and then later enable it again.

That is a bit more work but should do the trick. With NoScript you could manage these preferences on a site to site base just like is possible with the Opera "Site Preferences" option.

With Internet Explorer you can add a site to Restricted sites to block them using Javascript. Adding by example the line: *.imagevenue.com to restricted sites will sort the script related ads on that site:
http://vintage-erotica-forum.com/t24...problems-.html

[prof_derzshowitz]

Quote:

Originally Posted by DubSalute

I think you will not be able to avoid having to use NoScript addon:
https://addons.mozilla.org/addon/722

It has a easy option to enable and disable again to "Allow Javascripst Globaly" again:

Issue with Firefox is that as far as i know it has no built in "Site Preferences" option to site specific disable Javascripting, its on or of:
http://support.mozilla.com/en-US/kb/...+Content+panel

What you however could do is go to the "Content" options before visiting imagevenue, disable javascript visit imagevenue and then later enable it again.

That is a bit more work but should do the trick. With NoScript you could manage these preferences on a site to site base just like is possible with the Opera "Site Preferences" option.

With Internet Explorer you can add a site to Restricted sites (*.imagevenue.com) to block them using Javascript.

Hi DubSalute,

Thank you very much for your response.

I do find it very peculiar (and frustrating) that Firefox lacks the capability to establish Javascript regulations on a site-to-site basis, while Internet Explorer gives users this option. I was under the impression that Firefox was a more secure and user-friendly browser (as far as the ability to configure it to fit one's personal preferences is concerned), and as such I've been using it exclusively for quite some time.

Although I acknowledge that NoScript does prevent the "Streammate" pop-up from loading on Imagevenue, when I previously had it installed I found that it really hindered the normal operation of a lot of my favourite sites. Also, it seems a bit excessive to install this add-on (which will end up affecting every site I access whenever the global script blocking tool is turned on) in order to keep just one particular pop-up script from loading on one particular website, while AdBlock Plus is able to handle just about every other pop-up I've encountered.

You did mention that it is possible to establish javascript parameters on a site-to-site basis with NoScript, which would theoretically allow me to block scripts on Imagevenue, yet enable them on other sites. However, when I did previously have the NoScript add-on installed, it seemed that I would need to globally block scripting on all websites, and then take the time to individually allow javascript, one-by-one, on every site for which I wanted to allow normal script functions.

If it were possible to reverse this procedure (i.e. use NoScript to initially globally allow javascripts on every site, and then set the regulations to block them on Imagevenue alone), I would be more than happy to install the add-on. But I don't know whether or not this is possible with NoScript, nor how I would implement it if it were.

In the meantime I might check out the Firefox "Content" option that you described earlier. But if I can't get that to function properly, I'll try to give NoScript another go in the hopes that I can configure it to fit my personal preferences.

[Billiwog]

Quote:

Originally Posted by prof_derzshowitz

If it were possible to reverse this procedure (i.e. use NoScript to initially globally allow javascripts on every site, and then set the regulations to block them on Imagevenue alone), but I don't know whether or not this is possible with NoScript, nor how I would implement it if it were.

Quote:

http://noscript.net/features

"Allow Scripts Globally (dangerous) switches NoScript in the (not recommended) "Default Allow" mode. Only sites and objects explicitly marked as untrusted will be disabled. Other security features like Anti-XSS protection will still be effective, though."

I might be stating the obvious, but a good place to start would be to backup your Firefox profile to somewhere safe before installing anything new. In WinXP this is located at C:\Documents and Settings\(YOUR USERNAME)\Application Data\Mozilla\Firefox\Profiles\xxxxxxxx.default (where xxxxxxxx=random letters assigned at install).

After doing that you can recover from any changes made, or you may want to make an installation of Firefox on a USB thumb drive, copy the contents of your local profile into that, and then make changes to the USB installation. If satisfied, copy the contents of the USB profile back to your local Fx install.

[9876543210]

prof_derzshowitz,

Quote:

Originally Posted by prof_derzshowitz

If it were possible to reverse this procedure (i.e. use NoScript to initially globally allow javascripts on every site, and then set the regulations to block them on Imagevenue alone), I would be more than happy to install the add-on. But I don't know whether or not this is possible with NoScript, nor how I would implement it if it were.

You DO NOT want to globally allow javascripts to run (which is what everyone that doesn't use NoScript does) as it is much easier to get hit by a drive-by malicious script (this is where a major portion of worms come from nowadays). A brief story:

A little while ago I ran into a friend that has a small business with a small website used primarily for customers and himself. Very little traffic. He was having some problems so I installed Firefox, NoScript and AdBlock Plus (he'd just been using IE). We wound up going to his site to make sure it worked and NoScript showed that there were two scripts trying to be run. One was obviously done by his webmaster while the other was suspicious. He called his web designer and asked about the scripts. The designer knew about the one script but not the other.

Turns out that a hacker had figured out a way to insert the script on this guys page and that the script was inserting an early version of the Conficker worm.

So, the whole reason for NoScripts existence is to stop all scripts from being run until you approve. If a site that you visit a lot isn't working correctly then its up to you to experiment with the scripts until the site works correctly. When you think of the number of sites that you actually go to all the time its really no big deal.

Personally, I wouldn't be without NoScript. And I put it on all machines that I oversee as, from a security standpoint, its a necessity nowadays.

[burpman]

The one browser which did not require additional configuration and that was successful in blocking this was Opera. I tried a number of different versions of the other big names and this was the only one that consistently blocked it out of the box.

[prof_derzshowitz]

Quote:

Originally Posted by 9876543210

prof_derzshowitz,

You DO NOT want to globally allow javascripts to run (which is what everyone that doesn't use NoScript does) as it is much easier to get hit by a drive-by malicious script (this is where a major portion of worms come from nowadays). ...

So, the whole reason for NoScripts existence is to stop all scripts from being run until you approve. If a site that you visit a lot isn't working correctly then its up to you to experiment with the scripts until the site works correctly. When you think of the number of sites that you actually go to all the time its really no big deal.

Personally, I wouldn't be without NoScript. And I put it on all machines that I oversee as, from a security standpoint, its a necessity nowadays.

Hello everybody,

After spending weeks unsucessfully trying to find a method of blocking all unwanted pop-ups and ads without having to employ any programs or addons other than Firefox's pop-up blocker, AdBlock Plus, and the tools in my internet security software, I decided to take the advice of many on this forum and give the Noscript Add-on another shot. And right now, it seems like one of the best decisions I've ever made to improve my internet security.

It definitely took a bit of time to become comfortable with the program, and the whole process of identifying the "nature" of all the different scripts (e.g. whether one is for advertisement or user behaviour analysis or even malicious attacks) and then regulating them accordingly meant that I would have to do some homework. But now that I can see the extent of the security benefits of the program, it was well worth the effort.

Right now, I am pairing it with another fantastic Firefox add-on called Ghostery (v. 2.0.1, located here: https://addons.mozilla.org/en-US/firefox/addon/9609) which is an amazing tool that is able to identify and also block all of the invisible trackers which record your behaviour on various websites, including a lot that NoScript doesn't catch. It is quite remarkable to see just how many scripts and tracking utilities are secretly running on almost every website you visit.

{It's actually a bit scary to realize that for all the time I've been surfing the web before installing these two extensions, I been completely exposed to potentially dangerous scripts and my browsing has been (to a certain extent) tracked and collected for directed advertising and who knows what other purposes.}

Also, in direct opposition to my primary worry that installing NoScript would ruin my browsing experience, pages seem to load quite a bit faster now that these annoying little scripts are being blocked. Yes, while for a lot of sites the installation did prevent them from initially working (since they required javascript), the fix simply involved granting permissions to the one or two scripts that should be running, while banning the rest.

So anyways, I am incredibly thankful that I gave the extension another shot, and even though it takes a bit of work and time to figure things out it is very well worth it.

P.D

---

PS: Also, the "Creatives.Livejasmin.com" pop-up now seems to be taken care of, even though it did load on my most recent V.E.F. login. However, this shouldn't really matter because it happened before I had a chance to finally determine which should remain blocked and which should be allowed to run.

And furthermore, the "Streammate.com/Straemmate.com" pop-up on Imagevenue has completely disappeared now that the "quantcast" and basic "imagevenue" scripts have properly been blocked, along with the request that you click on a particular link to continue to your image. And even still, every picture is loading in full size and full quality (they just don't resize down to medium any more).

So everything seems pretty fantastic at the moment, although I'll continue to experiment with the program to make sure that everything is really working as it should.

P.D.

[Zombywoof]

I've found this thread quite fascinating, because I too am infuriated by the livejasmin popunder that seems to be everywhere these days. Everyone trying to get rid of it has devoted their attention to the javascript that calls up the window, but I felt there had to be an easier way.

What I did was focus on the cookies, because it's the cookies that determine whether the javascript runs. These cookies don't come from livejasmin, they're set by VEF. It seemed to me that if you had the right cookie on your machine, the javascript that pops up livejasmin would not run. So I set out to find the cookie.

This was easy to do, all you need to do is use the native cookie app in Firefox to delete all the VEF cookies. In this way, you start with a clean slate, so to speak.

The first order of business is to navigate to the VEF site and see what cookies are set. As soon as you reach the VEF login page, three cookies appear, but they don't matter because none of them trigger livejasmin.

You enter your username, then click on the password box in preparation for entering your password. BINGO! This is the action that triggers the popunder. And sure enough, there is now a new cookie named, appropriately, "popundr".

I felt that if this "popundr" cookie was present whenever you clicked the VEF password box, the livejasmin window would not appear. Therefore, the problem could be solved by preventing the expiry of the popundr cookie.

I used a cookie editor to extend the expiry date of the popundr cookie by one year. Then I deleted all the other VEF cookies, and all the cookies set by the livejasmin window. Clean slate again.

Now, I navigated to the VEF login page. Same three unimportant cookies appeared. Entered username, then clicked down to the password box. Ah! Different behaviour this time, no livejasmin popunder! Completed the login, and one more cookie appeared.

So it is the "popundr" cookie (or absence thereof) that triggers the script that calls livejasmin. If you can prevent this cookie from expiring, you will not be bothered by livejasmin and you will not need to install and configure Noscript, because it's the cookie that decides whether the script runs.

[prof_derzshowitz]

Hello again,

I'm glad that my previous posting about my experience with NoScript was met with a positive response and/or deemed helpful.

After spending another week employing the combination of NoScript, Adblock Plus and Ghostery, I can safely say, without reservation, that these are the most useful and necessary programs I have ever installed to secure my web experience, (alongside my requisite firewall and antivirus software).

Incredibly, however, where the "Creatives.LiveJasmin.com" pop-under is concerned, I STILL have yet to discover a perfect configuration for the V.E.F. that would permanently block the advertisement, yet still allow for normal forum usage!

If NoScript is configured to BLOCK all javascripts from "vintage-erotica-forum.com", the "Creatives.LiveJasmin.com" pop-under WILL be prevented from opening when you click inside the necessary boxes in order to complete the login process. However, although this does solve the pop-under problem when logging in, by forbidding the V.E.F. scripts from running, the incredibly useful drop-down menus (which are accessed by clicking on the upside-down triangles located, for instance, to the right of the "Quick Links" section on the toolbar) will completely disappear, greatly hindering quick access to various areas on the forum (e.g. your "subscribed threads").

Yet, if you take the opposite approach, and configure NoScript to block all of the other scripts on the V.E.F. homepage, but ALLOW the scripts from "vintage-erotica-forum.com" to run, whenever you attempt log-in by normal means (i.e. by simply left-clicking in the necessary boxes to insert your check mark or username), the "Creatives.LiveJasmin.com" pop-under" will appear!

It does seem to be a bit of a "Catch-22", as it is possible to prevent the "Creatives.Livejasmin" pop-under from loading, but only if you configure NoScript to block all V.E.F. javascripts, which in turn, ends up negatively affecting your V.E.F. browsing experience.

Still, this is by no means a hopeless situation, as it is always possible to simply block the V.E.F. scripts when logging in, and then activate them once inside.

Also, you can take a slightly different approach, (one that I personally prefer, as it does not involve continually allowing, and then disallowing script permissions for the V.E.F.) in which you permanently allow the V.E.F. scripts to load, but use the "Right-Click and TAB" tactic I mentioned here (http://vintage-erotica-forum.com/sho...3&postcount=22), wherein you:

1) Right-Click in the "keep me logged in box" and then Left-Click in the same box to insert the required checkmark,

2) Left-Click in the "user name" box to access its text field and enter your title,

3) Press TAB to move to the "password" box and enter your code, and

4) Hit ENTER on your keyboard to login to the site.

---

Despite all of the annoyances that this particular V.E.F. pop-under has caused me, I'm glad that it has spurred me on to ask for assistance within this forum. Everyone's contributions to this thread have been of immense help, and they have led me to conduct further research and to increase my knowledge of internet security.

I am very thankful to everybody here for their suggestions regarding this subject, and I do hope that through my (considerably lengthy) posts in this thread, other members in similar positions have likewise been able to find answer to many of their own questions.

P.D.

[Zombywoof]

Prof..... please take a minute to read my post immediately above. I got rid of the livejasmin popunder without using noscript.