Mysterious domains added to Sup Forums scripts, inject code in your browser

Hiroshimoot is injecting malicious codes into your browser now

more info at Sup Forums

Other urls found in this thread:

8ch.
youtube.com/watch?v=D6MG2uBIfUI
twitter.com/AnonBabble

Im getting ads on Sup Forums now bypassing both my blockers`

can some kind user explain this to someone who does not lurk Sup Forumsentoo

Tldr leave Sup Forums

Hiroshimoot the gook who owns Sup Forums now, is using 2 weird servers to disable adblockers and anti-tracking tools, so you can be tracked and served ads to. if it sees that the domains are blocked, the site intentionally breaks itself.

>When you load up Sup Forums your browser is trying to connect to three new fishy domains. At this point we are unsure exactly what purpose they serve, but its almost guaranteed they are adhosting/analytics domains.
The site is now injecting a shady inline script
The shady inline script injects scripts from shady domains
The scripts from the shady domains are doing god knows what and sending data to said shady domains
only affecting some boards Sup Forums, /d/, /e/, /f/, /gif/, /h/, /hr/, /r/, /s/, /t/, /u/, /wg/, /i/, /ic/, /r9k/, /s4s/, /vip/, /hm/, /y/, /aco/, /hc/, /soc/, and /wsr/ are completely untouched.

Why don't you view ads on Sup Forums? They need money to stay online.

I dont want Sup Forums to stay online

Just noticed this. The ads slide down as you scroll down.

Yeah i'm getting ads even though i have 3 different adblock programs

still no ads with ublock

it's not just ads, these are tracking malware.

>bump
what if gookmoot is selling our data just like he did to all the nips?

Sup Forums breaks with seedy malware the exact same day that twitter says they will begin banning users for their behavior offsite, could there be any connection???

what do you mean "what if"? that is literally what that piece of shit is doing.

we might have to move to eightchan

scroll to the bottom

We tried telling you...

this guy gets it

Why does gook moot want to allow tracking cookies

Why is gook moot allowing tracking malware on the site.

because he gets paid. why do you think he bought Sup Forums? also he has done this same shit before in japan.

Like I care. If he finds out who I am, he will only find out who's gonna kick his autistic ass eventually. I hated that autist since the beginning.

>if he finds out who I am
what kind of an inbred are you? it's not him who's after your shit. he sells it off, including all data in your browser, not just to 4chin shit. plus your now have a comprimised browser.

if you're too stupid to know how bad this is, read the Sup Forums thread linked in OP.

He's still gonna get his ass kicked, bro. I hate that faggot.

great Sup Forums is blaming Sup Forums for gookmoot

are you a phone poster?
UI see no ads i'm using:
firefox quantum
ghostery
ublock origin

by staying here, and letting that script fuck your shit up, you are only lining that gookjew's pockets with money.

no you retard. moot literally had to get rid of Sup Forums because of the heat it had (mostly from Sup Forums). if that kid ever wanted to have a normal job, like he does now, he had to get rid of it. the fact that hiroshimoot is such a cancerous fucking kike is irrelevant.

if they site is not breaking, it means the script is injected in your shit already. meaning your blocking attempts have been subverted.

Thank you Sup Forums for making Sup Forums a huge botnet!
Dont worry we're coming to GREET you guys!

4chunz is going for a free hirocopter ride

FUCK SHILLS.

FUCK Sup Forums BOTNET.

DAY OF ROPE SOON

how to mitigate this?

Set up a pi-hole

end yourself you cuck

nothing really. the script is made to circumvent common blockers.

also the issue is that this is a decision made by the site owner. so even if you would block THIS script, he would just replace it with another one. he has decided to sell us out for cash.

I suggest we flood eight-chan and make it ours.
8ch.
net/pol

Can just block them too. It's still less harmful than google captchas so far.

The parasite is afraid.

Has the clown guy been here recently?

Sounds like advertisers don't want to be associated with porn/shitpost boards.

infinitychan or what

>unironically loading some shit from ukraine

I'm not getting any adds though

cdn is the image host/archive iirc
adglare is for targetting you with ads google analytics and gstatic keeps Sup Forums listed on Google when you type in Sup Forums afaik

if im wrong say so

but are you loading the scripts anyway? They don't have to be ads in those scripts, the fact that it's injecting code into your page to run means they could swap it out with a DDoS bot or coin miner without any effort.

>Can just block them too
by the time you find out, and find a way to block them, you're already infected and your data already stolen.

How do I check for this

>ublock + appchan
>nothing

stupid newfags

>the fact that it's injecting code into your page to run means they could swap it out with a DDoS bot or coin miner without any effort.

Is that really possible?

ublock/noscript/umatrix will list the domains that are being called for shit somewhere.

It was possible like 5 years ago.
youtube.com/watch?v=D6MG2uBIfUI

Ad Block Plus reporting in, no ads here.

same

First:
You are retard
Second:
Not malicious
Third:
It's not injecting anything into your browser. Do you even know how browsers work?
Fourth:
Tracking cookies are how this site has enforced bans since the beginning so that if you change IP addresses

Fuck how are you this new? How don't you know how computers work?

B-b-but muh Sup Forums

>not malicious
Lost.

Scrubs not using clover

It happened to me a few months ago. Windows Defender caught it but they somehow managed to use an injection or a cookie to add a bitcoin miner. If I remembered the name of the virus I would post the description of it.

OP is probly a retard but you so wrong.
>Malicious
The code injected can change at the drop of a hat. This is why JS ads are considered malicious by default.
>Injecting data: urls with javascript into eval()

Script is client side retard

All scripts are client side, these are just being requested from 3rd parties to load ads (for now)

You want me to leave?

JS is client side. You would have to a really special kind of retard to assume otherwise. Can it be used to track you? Sure but as far as injecting shit into your browser you would have to download malicious software

Phone posters win again.

we need a gookmoot happy merchant

OK I read this thread so tell me what I need to do to remove what the gook as added?
make it simple for an oldfag

I had them on when moot was there, gook moot put ads everywhere and I blocked them. Fuck him

Literally false. It goes and DOWNLOADS some server's javascript and inserts it into your page to run. This is called injection. The code is run inside your browser but is obtained from literally the internet.

It was fun boys


Everything i have ever posted on Sup Forums has been a work of fiction, the comments i have made are not compliant with any of my true to life opinions and can not be used against me in a court of law.

I have to reload the page 20+ fucking times just to get it work.
Fucking shit!

FUCK YOU HIROSHIMA!

if we stay, we are surrendering our anus to this piece of shit gookjew.

he already has the jew nose.

no easy way yet.

>thinking you have rights as Cucknadian
RIP Leaf

Same.

first:
you're a faggot
second:
you're a faggot
third:
????????????
fourth:
you're a faggot

We always win

Bullshit! Moot cashed out at a good time.

Moot DID have to separate himself from Sup Forums if he wanted a normal, politically sensitive job like working in corporate America. But it was not mostly from Sup Forums.

It was all the porn boards and loli anime!

Hell, Pol barely qualified as a problem. But show how MOOT owns a site that has interest in loli anime girls shitting dino dicks out of their ears and getting fucked in their nipples (thanks /d/), and he was doomed.

Some of the blue boards would have blocked him from ever having a corporate job.

Who would hire him? Ironically enough, the FBI, and several other alphabet agencies, thanks to his bending over backwards to work with the FBI over all the child porn posters and wanting those off his boards.

So moot could be one of our CIAanons are FBIanons these days, laughing about how he used to be shitposting on here for free and now he gets PAID to shitpost on here by the US fucking A.

You don't know what a browser is do you? A browser is physically on YOUR machine fucking retard!
The page and JS is being served and stored on a external server. Not in YOUR browser! Fucking dumbass

>Sup Forums
>Not a shitpost board

probably time for all moderators admins janitors of this site to have their identities and home addresses dumped in thread. once identities and addresses established user may raid v& and disect each scummy 4chanerator

There's a big ugly J-list ad in the middle of Sup Forums.
Who on god's green earth wants to see that?

It's both? You need to load scripts into memory to run them. It's physically on your machine.

I use a separate browser for Sup Forums btw and I don't know where else to go for entertainment.

the issue is not just ads, you're all being datamined even if you don't see the ads.

Either they're datamining or Sup Forums got hacked. Blacklist the following sites:

>*.piguiqproxy.com
>*.amgload.net
>*.smcheck.org

Most of the time...Faggots...

You get what you Pay For...

I noticed that ads first load then after a split second get removed whenever I Access Sup Forums
I'm using AdBlock on Firefox btw
I guess this way Hiroshimoot gets paid for the aids while fooling us that he hasn't bypassed it with his own scripts
Fucking jew atleast warn us first.

Or it could be just Firefox kikery

>and I don't know where else to go for entertainment.
ain't that the truth

RIP Sup Forums, I’m off to 8.chan

But I haven't paid for anything.

And that's not browser injection as op stated that's JS injection. JS injection is shit and really isn't a vulnerability. This is the reason that EVERY FUCKING major website ignores fucking JS injection! It's pretty much useless

I pentest for a living fucktard

Hiro tweeted this 2 weeks ago after somebody suggested data mining for income. I'm guessing he changed his mind.

It's officially run by a jew.
I'd rather suck Asian kike dick than khazar

Faggots should keep shush around him.
Anybody got that pic of Hiro scamming people of 2chan?

Fucking knew I wasnt the only one, wheres any comment from Hiroyuki, bare in mind he DOES speak english as he went to the University of Arkansas, despite him pretending "ME NO SPEAKU ENGRISH" he is a liar!

>click thread
>scroll to bottom
>now there's a fucking ad on my page

time to write a new chrome addon just for this site

He's got a notorious reputation on 2chan.
Clearly it was wrong to trust him.
I wish Luggage Lad would come back already

I suggest taking cs 101 this is clearly over your head

>Everything i have ever posted on Sup Forums has been a work of fiction, the comments i have made are not compliant with any of my true to life opinions and can not be used against me in a court of law.

This desu, the NSA aren't interested in this echo chamber.
For a start I post as multiple different personalities all with different beliefs and opinions that contradict each other.
Have a nice nothing to see here day.

I noticed this shit, even with adblock russian bride ads started popping up today

Sup Forums fixed the problem just install gentoo all will be fine

It looks like the Ukrainian servers are also injecting JS into the site. You should really blacklist the servers in the Sup Forums thread

Oh one of the attacks I forgot to mention because it's less relevant to Sup Forums is keylogging.
>Tracking
>DDoS
>Keylogging
>Coin Mining
>Distributing anything
JS injection is plenty deadly.

This fucker is just trolling.