Hello Friends,
Off late I have observed that when visiting some websites (Clean ones), especially where a form is to be filled, a spam advts tab opens in the browser. It happens in Android as well as Ubuntu in Firefox. In my Ubuntu laptop, I was on a sports shopping site and just when I clicked on Buy Now, it opened a spam page, even playing an advt video.
What is this new phenomenon happening?
Regards, Rony.
I haven't seen those on clean pages but I've had those on before on a few "content providers of questionable legality". What a lot of sites do is add a invisible box in front of the whole page which links to an advertisment pop up. Maybe one of the embeded advertisments is able to use that technique.
I don't think it's a virus or a rouge extention since it's happening on both your phone and PC. Maybe someone else might have a better Idea
On 05/21/2018 12:02 PM, Rony Bill wrote:
On Mon, 21 May 2018 at 12:09, Dhruva Lokegaonkar dhruva@lokegaonkar.in wrote:
Some sample URL's where you see such behaviour might be helpful, to let us diagnose the issue.
Thanks and Regards
R. K. Rajeev Ph : +91-9323802020
Just happened today.
Click on Register Now and a spam tab opens. If you close it, your registration page is there.
Regards, Rony.
On Mon, May 21, 2018, 12:11 PM Rajeev R. K. rajeevrk@gmail.com wrote:
On 21-05-2018 13:11, Rony Bill wrote:
Didn't happen with on Firefox. On clicking "Register Now", the following page opened in new tab:
http://youtoocanrun.com/races/get-cycloned-the-smart-commute-way/
No spam pages. I'm using MTNL broadband.
Rajen.
It happened in my Android phone chrome but I have experienced this phenomenem on Firefox in Ubuntu too.
Regards, Rony.
On Mon, May 21, 2018, 1:15 PM Rajen M. Parekh rajen.parekh@gmail.com wrote:
It's almost fishy the number of scripts that site tries to load.
The registration page wants to load >20 scripts.
* Rony Bill gnulinuxist@gmail.com [180521 09:42]:
On Firefox on Ubuntu I had experienced a video playing in a background tab when trying to buy this tyre.
http://www.mastermindbikes.in/Hybrid-Tyres/Schwalbe-Marathon-Plus-SmartGuard...
Regards, Rony.
On Mon, May 21, 2018, 1:18 PM Darshit Shah darnir@gmail.com wrote:
I think these advts are positioned at form filling portions of a page and may be gathering information from the form data.
Regards, Rony.
On Mon, May 21, 2018, 1:23 PM Rony Bill gnulinuxist@gmail.com wrote:
On Mon, May 21, 2018 at 12:41 AM, Rony Bill gnulinuxist@gmail.com wrote:
I went to the link and it opened the registration page on a new tab w/o any ad/spam tab *but* my access is from the US. This was in Chrome [a]; with very few extensions from Google and LinkedIN active. I wonder if VPN would mitigate this annoyance.
I also use dnsmasq (localhost) DNS resolver with extension to block "suspect" sites [b]. It has helped clean up a lot of pop ups in my browsing, even those injected by the web sites in question.
Try disabling/removing any extension and the dnsmasq technique.
PS - agree with GN about https. It's a shame that web site owners don't want to go through LetsEncrypt setup to secure the site with https.
-- Arun Khan
[a] Google Chrome 66.0.3359.181 (Official Build) (64-bit) Revisiona10b9cedb40738cb152f8148ddab4891df876959-refs/branch-heads/3359@{#828}
[b] https://gist.github.com/erlepereira/c11f4f7a3f60cd2071e79018e895fc8a and https://github.com/StevenBlack/hosts
I have had similar experience. The interesting thing though was that I didn't see the same behaviour with the same sites on other machines. So, I guess the reason had to be some extension that was installed. I didn't have the time & patience to check which one was the culprit, as the concerned browser installation had quite some extension installed. I just uninstalled & re-installed firefox and then didn't install any of the extension. Working fine now.
Regards.
On 21-05-2018 12:02, Rony Bill wrote:
MTNL also Puts its code in some HTML pages
On Mon, May 21, 2018 at 12:23 PM Rajen M. Parekh rajen.parekh@gmail.com wrote:
I do use MTNL broadband.
Regards, Rony.
On Mon, May 21, 2018, 12:47 PM Richard Victor Correia richard@florix.net wrote:
Please check the site you are trying to load, I guess this happens only on those sites that are not on https. This is my guess. These advertisements are not embedded on the server side, but were injected along the way since the transmission is not encrypted. This behavior will disappear only when all websites run on https.
I sent a complaint to www.thehindu.com, when this happened, requesting them to convert to https.
Do you think it is because of MTNL? Did other ISPs also have experienced this problem?
-- GN
On Monday 21 May 2018 01:14 PM, Rony Bill wrote:
Yes even on mobile data I have experienced this in Android.
Regards, Rony.
On Mon, May 21, 2018, 7:36 PM GN nagarjun@gnowledge.org wrote:
Its done by MTNL as an ISP
My software website was breaking because of it.
Using https solved the problem for me.
All clients were using MTNL
On Mon, May 21, 2018 at 7:36 PM GN nagarjun@gnowledge.org wrote:
Is there any setting in my router that can reduce this?
Regards, Rony.
On Mon, May 21, 2018, 9:11 PM Richard Victor Correia richard@florix.net wrote:
a simple method is to add the unholy url to /etc/host with ip set to 127.0.0.1
I use a proxy, Apart from ghostery, adbloc plus and privacy badger. So the above host entry takes care of android too.
On Mon, May 21, 2018 at 9:45 PM, Rony Bill gnulinuxist@gmail.com wrote: