Protecting against Neopets Cookie Grabber (CGer) Guide

Submitted by saudor on Sun, 17/05/2009 - 8:13am

Welcome to the in-depth guide to avoiding cookie grabbers. This page has been generated from background information of how it works, reverse engineering of various neo CGs and 1st hand research. (plus losing 800k + trades along the way, but hey, it's priceless!!)

[SHORT VERSION]

For the in-depth version, please see http://www.neopets.com/~punchback_bob
Remember that Internet Explorer is vulnerable to on-site cookie grabbers (on neopets)
Opera users should use the userjs file called BlockScript. It's sorta complicated but it's here

Get firefox here: http://www.mozilla.com/en-US/firefox/firefox.html?from=getfirefox

Recommended Firefox Add-ons
"NOSCRIPT" This helps block malicious scripts from running. 
Don't forget to whitelist neopets.com and any other sites that you trust (like hotmail.com) (see attachment)

FLASHBLOCK This allows you to selectively load adobe flash player objects. If you need flash to play games, simply click the arrow to enable that object. This is allowed since most browsers don't even come with flash. Do not whitelist neopets as one type of CG uses a redirection of http://images.neopets.com/flash_version_check_v1.swf? to steal cookies.

KEYSCRAMBLER ADD-ON. For protection against key loggers (programs that record everything you type) It's no use changing your password if every key you press is being sent to the "hacker"

ADBLOCK. It allows you to block ads... and other things (like CGs) See attachment for more info

REQUESTPOLICY. RequestPolicy is an extension that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit.

 

Think you got CG'd?

If you THINK you were CG'd, the first you should do is LOG OUT. Why? Because this invalidates the cookie that the "idiot" took. Try it yourself. Log into neo in another browser. You will see that you can browse neopets for a bit on both web browsers. Now click the log out button of one browser and see what happens. Contrary to popular belief, clearing cookies will do nothing for you. Just log out, get the keyscrambler add-on (if you can get it), and then log back in and THEN change your password

 

AttachmentSize
Image icon whitelist-neopets.gif74.73 KB
Image icon ablock-instructions.gif43.8 KB
Forums: 
Neopets Misc
  • 231152 reads

[quote=choochiegirl]I installed the Key scrambler for FF and since then my space bar has been quirky, not always working in flash games, I thought I had broke it playing in the AC, but I guess not. Is it just me?[/quote] I have the same problem. It really makes me angry. >.<
[center] [color=#74BE04]» Luck «[/color] [color=#C4928C]» http://www.neopets.com/browseshop.phtml?owner=twilight51492 «[/color] [/center]
twilight51492 | Sun, 13/09/2009 - 1:01am |

[quote=twilight51492][quote=choochiegirl]I installed the Key scrambler for FF and since then my space bar has been quirky, not always working in flash games, I thought I had broke it playing in the AC, but I guess not. Is it just me?[/quote] I have the same problem. It really makes me angry. >.<[/quote] Yeah. This happen to me a lot when I try to play one of the neopets games. Since I'm not much of a gamer, I don't really mind it but a solution to this problem would just be dandy.
WOW! Selling: Maps, Neggs, Stamps, Coins, Cards, ETC! http://www.neopets.com/browseshop.phtml?owner=1434sweet#p
1434neopets | Sun, 13/09/2009 - 1:14am |

I usually just turn off keyscrambler while I'm playing flash games that use the keyboard. It's not like I'm typing anything important that needs to be scrambled.
melaka | Tue, 15/09/2009 - 9:03am |

So... What is Key Scrambler? I've had No-script on and using that as my adblock, so I don't have adblock on either. (I actually really like noscript), I haven't been CGed though I've been playing all 9 months that it's been going, and never had a notion since I got no script that it would be a problem until I noticed this forum... so back to the point what is Key Scrambler? [font=VladimirScrD][/font]00100100 00110001 00110000 00100000 01111001 01101111 01110101 00100000 01110011 01101000 01101111 01110101 01101100 01100100 00100000 01100111 01101001 01110110 01100101 00100000 01101101 01100101 00101110
[color=Gray]Good Idea: Feeding stray kittens in the park. Bad Idea: Feeding stray kittens in the park... to a bear.[/color]
davymuncher | Sun, 20/09/2009 - 1:55pm |

[center] Key scrambler disguises your keystrokes, in case someone manages to get a keylogger onto your computer. ------------------------------------------------------------------- [url=http://www.neopets.com/browseshop.phtml?owner=raine_storme&misc]~~ Come visit my map shop ~~[/url] [/center]
[center] ------------------------------------------------------------------- [url=http://www.neopets.com/browseshop.phtml?owner=raine_storme&misc]~~ Come visit my map shop ~~[/url] [/center]
raine_storme | Thu, 08/10/2009 - 8:08pm |

Hey, I have a question about no script. It used to be that a yellowbar was always appearing at the bottom of all the windows. And I could click on it and manage stuff (temporarily allow, perm allow, etc). Well I think my FF just updated the add-ons and that bar is gone now. Anyone else get this? Now Im seeing ads again, (like on here for example) when they were blocked before, so is my no-scripts not working now?
[hr][size=11]Training, Luck & Medicine! ^_^ www.neopets.com/browseshop.phtml?owner=_jaspeh_&misc#c [/size]
_jaspeh_ | Fri, 30/10/2009 - 7:08am |

My noscript isn't a yellow bar, it's a little S occasionally with a slash through it, a slash next to it, or just a big S. I don't know what it is. --- Step outside, take a breath of fresh air, then look down to see if you have a new text message.
[color=Gray]Good Idea: Feeding stray kittens in the park. Bad Idea: Feeding stray kittens in the park... to a bear.[/color]
davymuncher | Sat, 31/10/2009 - 3:14pm |

I have a bar at the bottom of my page with a S that is slashed through. I just downloaded it a few minutes ago because I came across two sites that I feared were CGs on neo
jfh79 | Sat, 31/10/2009 - 3:17pm |

I usually have that bar at the bottom too, tho not always, just when scripts are being blocked. Oh and it seems to be back. Just a glitch I guess, when I restarted my laptop, it returned :P
[hr][size=11]Training, Luck & Medicine! ^_^ www.neopets.com/browseshop.phtml?owner=_jaspeh_&misc#c [/size]
_jaspeh_ | Sat, 31/10/2009 - 3:43pm |

Where are CG'ers usually found? Can they be on user lookups? I keep getting neomail from poeple saying how fantastically amazingly brilliant my shop is and how cheap and that they're gonna recommend all their friends, but they've never bought a thing from my shop lol... Guessing they want me to check their userlookup?
_chaostx | Sat, 31/10/2009 - 6:20pm |

Pages