How to block ads script added by ISP/mobile provider ??

cyan

New Member
My isp starting to add ads when I begin to use data access.
They use embeded javascript for all http traffic. Is there a way to prevent it ?

Code:
<script type="text/javascript">if(self==top){var idc_glo_url = (location.protocol=="https:" ? "https://" : "http://");var idc_glo_r = Math.floor(Math.random()*99999999999);[removed]("<scr"+"ipt type=text/javascript src="+idc_glo_url+ "cfs.u-ad.info/cfspushadsv2/request");[removed]("?id=1");[removed]("&enc=telkom2");[removed]("¶ms=" + "4TtHaUQnUEiP6K%2fc5C582I3GTyz6ti5eZu6le%2b1iFC9rQ%2fL8Dm263r8%2bGKw3FRm%2f  fxiWQ0h2Ey9y736Fj1zjT1wfOi16o3Sw%2bTuHd8ONWjuFXNwRVyU6EIkKuoq%2bowNGnovTLSN  xarkTDbxhUX40BUfPDtc1FA0uemUQ6g%2bF7CIgw7c%2bm8YCQyRgc3ZrB96bIsgUyLBUjG277S  7jnO80fdeOjLRGT%2fs%2bN4c5TRP4%2f06mYsgrOHmoYWzlO0rTXEARYm9tWnSOWk52D37oa3W  esCIRf0Oa2RoHCG8LoJkqb3Ps1e8MM8EILEjs%2ftHyOyFOUxpcRAeirNDXyWz748zTli4rlAyw  G1Iw82x6H3px1PN6fvpPMwRvzuvIwmPkY5ZcYgEuaMO5tgJQPH8DEhhvws3qsp2QTy0B6jrof21  BgfrfLgZ9znu1fMQoyKyIWRQS47WKE4xSV%2feQ6BnZOFqvlgya%2fPsWgjrSsN6vR4C6T686rF  ngaMm2ukyMSDtUZIvTiiIa6WuwfpY%3d");[removed]("&idc_r="+idc_glo_r);[removed]("&domain="+document.domain);[removed]("&sw="+screen.width+"&sh="+screen.height);[removed]("></scr"+"ipt>");}[removed]<noscript>activate javascript</noscript>
Thank you
 

saramoda

New Member
My isp starting to add ads when I begin to use data access.
They use embeded javascript for all http traffic. Is there a way to prevent it ?

Code:
<script type="text/javascript">if(self==top){var idc_glo_url = (location.protocol=="https:" ? "https://" : "http://");var idc_glo_r = Math.floor(Math.random()*99999999999);[removed]("<scr"+"ipt type=text/javascript src="+idc_glo_url+ "cfs.u-ad.info/cfspushadsv2/request");[removed]("?id=1");[removed]("&enc=telkom2");[removed]("¶ms=" + "4TtHaUQnUEiP6K%2fc5C582I3GTyz6ti5eZu6le%2b1iFC9rQ%2fL8Dm263r8%2bGKw3FRm%2f  fxiWQ0h2Ey9y736Fj1zjT1wfOi16o3Sw%2bTuHd8ONWjuFXNwRVyU6EIkKuoq%2bowNGnovTLSN  xarkTDbxhUX40BUfPDtc1FA0uemUQ6g%2bF7CIgw7c%2bm8YCQyRgc3ZrB96bIsgUyLBUjG277S  7jnO80fdeOjLRGT%2fs%2bN4c5TRP4%2f06mYsgrOHmoYWzlO0rTXEARYm9tWnSOWk52D37oa3W  esCIRf0Oa2RoHCG8LoJkqb3Ps1e8MM8EILEjs%2ftHyOyFOUxpcRAeirNDXyWz748zTli4rlAyw  G1Iw82x6H3px1PN6fvpPMwRvzuvIwmPkY5ZcYgEuaMO5tgJQPH8DEhhvws3qsp2QTy0B6jrof21  BgfrfLgZ9znu1fMQoyKyIWRQS47WKE4xSV%2feQ6BnZOFqvlgya%2fPsWgjrSsN6vR4C6T686rF  ngaMm2ukyMSDtUZIvTiiIa6WuwfpY%3d");[removed]("&idc_r="+idc_glo_r);[removed]("&domain="+document.domain);[removed]("&sw="+screen.width+"&sh="+screen.height);[removed]("></scr"+"ipt>");}[removed]<noscript>activate javascript</noscript>
Thank you
What a freakin ISP....

That codes trying to access ad server or script something. No deserve to check it.

u can just simply add a rule like this

Code:
u-ad.info
 

avatar

Administrator
Staff member
Administrator
Or you can remove that script from the page code:
Code:
$$script[tag-content="u-ad.info"]
 

deleted

Beta Tester
Hello all,I'm facing the same problem, My ISP is injecting ads into my browser......
I dunno how to present URLs and stuff but I think the following images should suffice, do tell me if you need any other info.....








open images in new tab to see clerer image.
 

deleted

Beta Tester
Have not been receiving those ads from the day I posted it here, maybe the Adguard name is enuff :D

will give info if it comes again :lol:
 

avatar

Administrator
Staff member
Administrator
Hello avatar, started receiving those ads again, cud u pls have a luk.
Here's the Page Source: http://pastebin.com/raw.php?i=59SsDvva
Strange, no third party scripts there.

Are you sure these ads are added by your ISP and not by some malware browser addon or something like that?

---------- Post added at 04:57 PM ---------- Previous post was at 04:54 PM ----------

IP belongs to the ISP though.

Maybe it does not add that script second time.
Let's get the source code another way.

Next time you see these ads:
1. Do not reload page
2. Open FF developer tools
3. Go to inspector, find <html> tag and Copy Inner HTML
 

deleted

Beta Tester
Strange, no third party scripts there.

Are you sure these ads are added by your ISP and not by some malware browser addon or something like that?

---------- Post added at 04:57 PM ---------- Previous post was at 04:54 PM ----------

IP belongs to the ISP though.

Maybe it does not add that script second time.
Let's get the source code another way.

Next time you see these ads:
1. Do not reload page
2. Open FF developer tools
3. Go to inspector, find <html> tag and Copy Inner HTML
k will do that.....
the probability of it being via a malware addon is remote since i use only 3 extensions all of which i have been using from a very long tym.
Will make sure to get u the data.
 

deleted

Beta Tester
@avatar, does this helps?



URL:
Code:
http://203.94.243.40/dyn/bg/MTNL-e-Bill/index.js?policy=52&webServer=http://203.94.243.40&url=http%3A%2F%2Fforum.adguard.com%2Fclientscript%2Fyui%2Fyuiloader-dom-event%2Fyuiloader-dom-event.js%3Fv%3D422
Source: forum.adguard.com
Data type: Script
Rule: 203.94.243.40

presently, I'm using the general filter rule '203.94.243.40' to block all requests to that ISP ad.
 
Last edited by a moderator:

Boo Berry

Moderator + Beta Tester
Moderator
Wouldn't this rule work?

Code:
/dyn/bg/MTNL-e-Bill/index.js?
 
Last edited by a moderator:
Top