rjno1.com: detection

[DeepChirp]

Prerequisites

• [X] I read and understood the policy as to what is a valid filter issue
• [X] I verified that the issue has not already been reported (use this button to find out)
• [X] I forced an update of my filter lists (how to do this: click "Purge all caches", then click "Update now")
• [X] I did not remove any of the default filter lists
• [X] I have no custom filter lists, or I verified that the issue still occurs without custom filter lists
• [X] I am not using another content blocker along uBO

URL address of the web page

https://www.rjno1.com/

Category

detection

Describe the issue

If the ad filter is not turned off, then the page cannot be accessed

```js window.onload = function(){ if (ydd3d9rjno1settimeout) { } else { //document.getElementById('ydd3d9bbb').style.display='block'; for ( i=0; i

禁用广告屏蔽(ad blocker)，刷新页面继续浏览<\/p>

Please disable your ad blocker,refresh page to view.<\/p>

请使用firefox或者基于chrome的浏览器浏览本站<\/p>

Please use firefox or chrome-based browser to browse this site<\/p><\/div>"; } } } }, 4187); }; ```

Screenshot(s)

Screenshot(s)


Configuration

```yaml uBlock Origin: 1.39.2 Chromium: 96 filterset (summary): network: 104163 cosmetic: 103335 scriptlet: 19292 html: 0 listset (total-discarded, last updated): added: https://gitlab.com/DandelionSprout/adfilt/-/raw/master/LegitimateURLShortener.txt: 1596-0, 3h.19m block-lan: 44-0, 21h.57m fanboy-annoyance: 59368-155, 1d.20h.49m ublock-annoyances: 4347-126, 51m default: CHN-0: 27123-86, 3d.20h.46m easylist: 62348-16, 1d.20h.45m easyprivacy: 26566-43, 1d.20h.43m plowe-0: 3681-818, 22h ublock-abuse: 79-0, 51m ublock-badware: 3648-65, 21h.53m ublock-filters: 30140-180, 21h.55m ublock-privacy: 193-12, 1d.20h.41m ublock-unbreak: 1734-43, 1d.20h.47m urlhaus-1: 7612-0, 3h.21m filterset (user): [empty] modifiedUserSettings: cloudStorageEnabled: true modifiedHiddenSettings: [none] supportStats: launchToReadiness: 273 launchFromSelfie: true popupPanel: blocked: 6 ```

[uBlock-user]

rjno1.com##+js(overlay-buster)
rjno1.com##+js(acis, onload)

Works for me.

[Yuki2718]

@uBlock-user CHN has rjno1.com##+js(abort-current-script, onload, AdBlock) so rjno1.com##+js(overlay-buster) alone should be enough.

[uBlock-user]

scriptlets don't work on this site as I would have expected.

[Yuki2718]

I guess rjno1.com##div[id][style="width: 100%; height: 100%; border-left: 10px solid; border-top: 5px solid;"] is maybe enough.

[JobcenterTycoon]

Anti Adblock is back

Also fingerprint stuff coming from https://www.rjno1.com/cdn-cgi/challenge-platform/h/b/scripts/invisible.js and data get send to https://www.rjno1.com/cdn-cgi/challenge-platform/h/b/cv/result?req_id=6cc6f390389b2074

On uBlock Origin the layer can be hidden with: rjno1.com##div[id]:matches-css(position: /fixed/)

[mapx-]

or rjno1.com##[style]:matches-css(animation-delay:/^/)

@Yuki2718

[Yuki2718]

@slavaleleka I can't make these matches-css rules actually work with AG Ext. 3.6.17 on Chromium. User rules are logged but don't hide the overlay.

[JobcenterTycoon]

What about the tracking?

[gwarser]

I see this now:

[JobcenterTycoon]

its rjno1.com##div[id]:matches-css(position: /fixed/) Im absolut sure i tested it yestarday and i didn’t saw this. I see they check this element and throw anti adb if they detect hidden overlay. Restyling works

rjno1.com##[style]:matches-css(animation-delay:/^/) does nothing on my end i still get anti adb

[mapx-]

breaking other pages completely, I'll remove the filters for now

[Yuki2718]

On my end ##[style]:matches-css(animation-delay:/^/) is still working with uBO.

Not working - it appears the page detects the picker and hides the overaly if I open the picker.

What about the tracking?

I so far don't see breakage by blocking this, maybe the rule can be added. I was wrong, page broeken at https://www.rjno1.com/windows-run/

[JobcenterTycoon]

@Yuki2718 What is broken? I seo no difference after blocking the tracking

but at least they have a second adb detection when i bypass the overlay i get this after clicking on random link

These classic filters will bypass both:

@@||rjno1.com^$ghide
@@||pagead2.googlesyndication.com/$script,xhr,domain=rjno1.com
*$script,redirect-rule=noopjs,domain=rjno1.com
*$frame,redirect-rule=noopframe,domain=rjno1.com
rjno1.com#@#.adsbygoogle:upward(1)
rjno1.com#@#+js()

[Yuki2718]

Yeah, I now see no difference, strange. I'll go with the classic fix in AG Chinese.

[JobcenterTycoon]

@Yuki2718 uBO still need the special filters from my comment https://github.com/uBlockOrigin/uAssets/issues/11152#issuecomment-1012231327 because now the page is broken on uBO because of rjno1.com##.adsbygoogle:upward(1) and the +js filters need to be removed it triggers anti adb

[Yuki2718]

@JobcenterTycoon Yeah, I forgot that.

[JobcenterTycoon]

@Yuki2718 anti adblock is back.

rjno1.com##style:has-text(@media screen):remove() already got removed

AG filter:

@@||hm.baidu.com/hm.js?$script,domain=rjno1.com
||sinaimg.cn/unipro/$script,redirect=noop.js,domain=rjno1.com

[Yuki2718]

@@||hm.baidu.com/hm.js?$script,domain=rjno1.com ||sinaimg.cn/unipro/$script,redirect=noop.js,domain=rjno1.com

On my end doesn't/no more work.

[JobcenterTycoon]

@Yuki2718 anti adb is back

||nos.netease.com/fps-pro/frontends/house_index/index/js/index-ad.js?$script,redirect=noop.js,domain=rjno1.com works for me with AG chinese

[JobcenterTycoon]

@Yuki2718 anti adblock is back. Filter suggestion:

||pos.baidu.com^$script,redirect=noop.js,domain=rjno1.com
||cpro.baidu.com^$script,redirect=noop.js,domain=rjno1.com
@@||cpro.baidustatic.com/cpro/ui/cm.js$script,domain=rjno1.com

[Yuki2718]

Is ||pos.baidu.com^$script,redirect=noop.js,domain=rjno1.com really needed?

[JobcenterTycoon]

For me yes

[Yuki2718]

Okay added.

[JobcenterTycoon]

@Yuki2718 anti adblock is back. Filters

||jspassport.ssl.qhimg.com^$script,redirect=noop.js,domain=rjno1.com,important
@@||googletagmanager.com/gtag/js$script,domain=rjno1.com

[Yuki2718]

Is important needed?

[JobcenterTycoon]

No

[JobcenterTycoon]

@Yuki2718 Anti adblock is back. I can bypass it by blocking inline scripts and hiding the overlay with rjno1.com##div:matches-css(animation-fill-mode:/forwards/) or similar

Or do you see any legitime inline scripts ? ...

[mapx-]

rjno1.com##+js(aost, document.getElementById, inlineScript)
rjno1.com##style:has-text(@keyframes):remove()

[JobcenterTycoon]

Works too

[JobcenterTycoon]

@Yuki2718 anti adblock is back

[JobcenterTycoon]

@Yuki2718 back is the anti adblock

rjno1.com##+js(aeld, error) ?

[Yuki2718]

rjno1.com##+js(aeld, error) ?

Doesn't work on my end. These seem to work:

rjno1.com##+js(aost, document.styleSheets, inlineScript)
rjno1.com##+js(aost, document.getElementById, /google|inlineScript/)

[JobcenterTycoon]

@Yuki2718 anti adblock is back

what about ||rjno1.com^$inline-script for uBO ?

[Yuki2718]

Better ||rjno1.com^$csp=script-src 'self' 'unsafe-eval' http: https: so that works on AG too but I'm not sure. @AdamWr what do you think?

[AdamWr]

If I'm not wrong, $inline-script and $csp=[...] will break #menu-toggle button in mobile view.

Screenshot


[Yuki2718]

will break #menu-toggle button in mobile view.

Yeah, you're right. So we have to continue cat-and-mouse game...

[JobcenterTycoon]

Its only on mobile so exclude the filter from mobile works

[Yuki2718]

I'm not sure how to 100% exclude all mobile env in AG syntax.

[Yuki2718]

The easiest way will be to add to uBlock filters with env_mobile and add

!+ PLATFORM(windows,mac)
||rjno1.com^$csp=script-src 'self' 'unsafe-eval' http: https:

to AG, giving up AG Exetension.

[AdamWr]

At the moment, I can't reproduce anti-adblock with AdGuard app/extension, so maybe it would be better to add this rule to uBO filters only?

[JobcenterTycoon]

I get anti adblock with adguard too but the overlay not the red one

[JobcenterTycoon]

ok its gone now

[Yuki2718]

Done as you see. Thanks guys.

[JobcenterTycoon]

@Yuki2718 do you get breakage (blank cloudflare page) with uBO? If yes i need to remove ||rjno1.com^$inline-script

[Yuki2718]

No problem on my end.

[JobcenterTycoon]

@Yuki2718 rjno1.com##+js(abort-on-stack-trace, document.getElementById, /google|inlineScript/) in AG chinese breaks the site completely (tested with uBO)

[dportvine]

https://www.rjno1.com/last-news/

Screen


```yaml uBlock Origin: 1.52.3b15 Chromium: 118 filterset (summary): network: 136049 cosmetic: 72955 scriptlet: 24015 html: 0 listset (total-discarded, last-updated): removed: user-filters: null added: CHN-0: 25211-134, 1m ublock-annoyances: 5551-9, 1m default: RUS-0: 40004-10, 1m easylist: 71875-49, 1m easyprivacy: 33186-167, 1m plowe-0: 3729-1075, 1m ublock-badware: 7271-132, 1m ublock-filters: 34961-187, 1m ublock-privacy: 562-7, 1m ublock-quick-fixes: 229-86, 1m ublock-unbreak: 2125-34, 1m urlhaus-1: 10360-0, 1m filterset (user): [array of 3 redacted] userSettings: advancedUserEnabled: true contextMenuEnabled: false showIconBadge: false hiddenSettings: filterAuthorMode: true popupPanelHeightMode: 1 supportStats: allReadyAfter: 972 ms (selfie) maxAssetCacheWait: 609 ms popupPanel: blocked: 12 network: baidustatic.com: 2 doubleclick.net: 5 googleadservices.com: 1 googlesyndication.com: 1 googletagmanager.com: 1 sinaimg.cn: 2 extended: ##.adsbygoogle-noablate ##div:matches-css(position:/fixed/) ##+js(addEventListener-defuser, error, event.target.tagName) ##+js(remove-node-text, script, /_date|Date()|parseInt|banana|ad… ##+js(replace-node-text, script, /\/\*.*?\*\//) ##+js(replace-node-text, script, }else{, }if(true){) ##+js(replace-node-text, script, .push({});, .push({}); document… ```