Protecting against Neopets Cookie Grabber (CGer) Guide

Submitted by saudor on Sun, 17/05/2009 - 8:13am

Welcome to the in-depth guide to avoiding cookie grabbers. This page has been generated from background information of how it works, reverse engineering of various neo CGs and 1st hand research. (plus losing 800k + trades along the way, but hey, it's priceless!!)

[SHORT VERSION]

For the in-depth version, please see http://www.neopets.com/~punchback_bob
Remember that Internet Explorer is vulnerable to on-site cookie grabbers (on neopets)
Opera users should use the userjs file called BlockScript. It's sorta complicated but it's here

Get firefox here: http://www.mozilla.com/en-US/firefox/firefox.html?from=getfirefox

Recommended Firefox Add-ons
"NOSCRIPT" This helps block malicious scripts from running. 
Don't forget to whitelist neopets.com and any other sites that you trust (like hotmail.com) (see attachment)

FLASHBLOCK This allows you to selectively load adobe flash player objects. If you need flash to play games, simply click the arrow to enable that object. This is allowed since most browsers don't even come with flash. Do not whitelist neopets as one type of CG uses a redirection of http://images.neopets.com/flash_version_check_v1.swf? to steal cookies.

KEYSCRAMBLER ADD-ON. For protection against key loggers (programs that record everything you type) It's no use changing your password if every key you press is being sent to the "hacker"

ADBLOCK. It allows you to block ads... and other things (like CGs) See attachment for more info

REQUESTPOLICY. RequestPolicy is an extension that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit.

 

Think you got CG'd?

If you THINK you were CG'd, the first you should do is LOG OUT. Why? Because this invalidates the cookie that the "idiot" took. Try it yourself. Log into neo in another browser. You will see that you can browse neopets for a bit on both web browsers. Now click the log out button of one browser and see what happens. Contrary to popular belief, clearing cookies will do nothing for you. Just log out, get the keyscrambler add-on (if you can get it), and then log back in and THEN change your password

 

AttachmentSize
Image icon whitelist-neopets.gif74.73 KB
Image icon ablock-instructions.gif43.8 KB
Forums: 
Neopets Misc
  • 230856 reads

[quote=Pip]Has anyone ever had any kind of issue with NoScript when trying to submit to the Neopian Times? I have neopets.com whitelisted but I keep getting an error where it says Noscript detected a filtering error and then I am unable to submit my story =/ I even tried allowing the whole page and was still unable to submit maybe its just a glitch I'm just nervous because I clicked on a fake tarla board recently didn't click the link though[/quote] Those nasty fellows have nothing better to do and add cookies to tarla boards adding a CG to the link :( Jes' a lame ol' shoppe http://www.neopets.com/browseshop.phtml?owner=icaunus
Icaunus | Wed, 10/02/2010 - 6:16am |

The Keyscrambler is telling me I have an Encription Module Error. Did I do something wrong? Hm. Thanks for posting/writing all of this Dmitri!
lilly | Wed, 10/02/2010 - 12:27pm |

Thanks for the warning. I have premium. http://www.neopets.com/browseshop.phtml?owner=reborn_naphesh
http://www.neopets.com/browseshop.phtml?owner=reborn_naphesh Frozen for no reason, was raided or whatever.
Slim | Wed, 10/02/2010 - 9:02pm |

I am not sure if this is the best place to post, but I figured since this topic is about CGers, I'd post here. I just got Google Chrome today, as a 3rd browser, as it has some features fox doesnt. Anyways, is anyone familiar with a site called Neoronic? When I was SSW sniping, one of the user shops that had a worthy snipe, caused GC to stop the page from loading, and said there was malacious code within the page, from Neoronic.com SO, is Neoronic a grabber site? Or is GC just being silly? [font=Courier New] -------------------------------------------------------------- The STUFF - Mainly Codestones @ reasonable prices http://www.neopets.com/browseshop.phtml?owner=whispering_acara&misc [/font]
whispering_acara | Wed, 10/02/2010 - 10:15pm |

I got me some trogan viruses in my computer. I'm reformatting it in the next few days (after I post my advertisement)... any advice if this is a good idea? I've already searched all the cookies of my computer which were detected as a threat. Blocked them and deleted them. Not sure if this is enough. Hopefully my neopets' account won't be jeopardized. [url=http://www.neopets.com/browseshop.phtml?owner=1434sweet#p][img]http://img40.imageshack.us/img40/1889/1434sweet.jpg[/img][/url]
WOW! Selling: Maps, Neggs, Stamps, Coins, Cards, ETC! http://www.neopets.com/browseshop.phtml?owner=1434sweet#p
1434neopets | Wed, 10/02/2010 - 10:50pm |

Reformatting can be a real pain, but whenever I suspect the slightest bad problem, thats exactly what I do. I do not trust any removal program to fully protect me, and in all the years of being in IT, one of our tasks, were to try to get such programs to fail (aka googling bad things on said computer, to see if the program would protect as it should), and most of them eventually failed. Now by reformatting, I mean a complete wipe of the HDD and a clean install (scratch), not "recovery" or repair, that leaves behind documents and stuff. After reinstalling the OS of your choice, running and patching all updates for it is my next step (this is especially important for XP users, and other windows OSes). The only drawback, depends on the infection. The biggest pain, is backing up any of your documents and stuff like that (and any neo addict probably has a TON of coding text files, graphics, etc etc). If the infection is bad, it will reside within these files, and when you copy them back onto a freshly redone system, the infection starts back up again :( Thats my usual run down in sticky situations. The battle of the infections is one that is everlasting, sadly. Hope you get your computer cured soon :D [font=Courier New] -------------------------------------------------------------- The STUFF - Mainly Codestones @ reasonable prices http://www.neopets.com/browseshop.phtml?owner=whispering_acara&misc [/font]
whispering_acara | Wed, 10/02/2010 - 11:12pm |

Embedding a virus into graphics is hard though. Would have to use an exploit but i think that exploit was patched a long time ago -------------------------------------------------------------- [url=http://www.neopets.com/pirates/smugglerscove.phtml?thanks=24698]Get a SuAP[/url]
----------------------------- [color=purple]Protect your account[/color] http://www.neopets.com/~punchback_bob CG information & more
saudor | Wed, 10/02/2010 - 11:27pm |

[quote=whispering_acara]I am not sure if this is the best place to post, but I figured since this topic is about CGers, I'd post here. I just got Google Chrome today, as a 3rd browser, as it has some features fox doesnt. Anyways, is anyone familiar with a site called Neoronic? When I was SSW sniping, one of the user shops that had a worthy snipe, caused GC to stop the page from loading, and said there was malacious code within the page, from Neoronic.com SO, is Neoronic a grabber site? Or is GC just being silly? [font=Courier New] -------------------------------------------------------------- The STUFF - Mainly Codestones @ reasonable prices http://www.neopets.com/browseshop.phtml?owner=whispering_acara&misc [/font][/quote] Star, Neoronic's beloved mascot! Oh lookie! You've found us, Neoronic! Neoronic is made of a group of friendly Neopians who are crazy about Neopets! ... This is the best I could get , probably a neopet graphics inside was from neoronic, but I didn't dare risk go in haha :D Jes' a lame ol' shoppe http://www.neopets.com/browseshop.phtml?owner=icaunus
Icaunus | Thu, 11/02/2010 - 4:05am |

[quote=whispering_acara]Reformatting can be a real pain, but whenever I suspect the slightest bad problem, thats exactly what I do. I do not trust any removal program to fully protect me, and in all the years of being in IT, one of our tasks, were to try to get such programs to fail (aka googling bad things on said computer, to see if the program would protect as it should), and most of them eventually failed. Now by reformatting, I mean a complete wipe of the HDD and a clean install (scratch), not "recovery" or repair, that leaves behind documents and stuff. After reinstalling the OS of your choice, running and patching all updates for it is my next step (this is especially important for XP users, and other windows OSes). The only drawback, depends on the infection. The biggest pain, is backing up any of your documents and stuff like that (and any neo addict probably has a TON of coding text files, graphics, etc etc). If the infection is bad, it will reside within these files, and when you copy them back onto a freshly redone system, the infection starts back up again :( Thats my usual run down in sticky situations. The battle of the infections is one that is everlasting, sadly. Hope you get your computer cured soon :D [font=Courier New] -------------------------------------------------------------- The STUFF - Mainly Codestones @ reasonable prices http://www.neopets.com/browseshop.phtml?owner=whispering_acara&misc [/font][/quote] Yeah. My computer is slow right now. I'll definitely reformat it tomorrow and save all my stuff in a number of USBs. At the moment, I got zone alarm pro to protect my computer. Thanks for the reply. [url=http://www.neopets.com/browseshop.phtml?owner=1434sweet#p][img]http://img40.imageshack.us/img40/1889/1434sweet.jpg[/img][/url]
WOW! Selling: Maps, Neggs, Stamps, Coins, Cards, ETC! http://www.neopets.com/browseshop.phtml?owner=1434sweet#p
1434neopets | Thu, 11/02/2010 - 8:55am |

WoW! Thanks! This info has been a great help.
http://www.neopets.com/browseshop.phtml?owner=billhenderson2 http://www.youtube.com/user/FULLiMMERSIONSTUDIOS
Billhenderson2 | Fri, 26/02/2010 - 3:02pm |

Pages