For some time now, any web page that uses Flash has resolutely refused to work correctly in the Chrome browser for me. I use Windows 8 – 64 bit. Amazingly it all works fine in Firefox, 64-bit Firefox Nightly, Opera, IE10 in 32 & 64 bit incarnations….?
The solution from the chrome help page, is to enable Flash from the plugins menu. You type this the address bar to get show all the plugins.
Chrome Plugins Normal
Unfortunately, it doesn’t work!
Checking the plugin, I see it is apparently working alright! See the screenshot.
I decided to try a “flip” – turning off Flash still didn’t make it work – and neither did it work when I turned it back on. There’s an Enable/Disable toggle link for this which you can see in the screenshot.
But then, in the top right of the plugins screen, I spied a “detail” link! So I clicked it to expand it – and all is revealed!
Chrome Plugins Expanded
Adobe Flash Now Working
The issue is that there are two Flash plugins; one is the default “pepper” that comes with Chrome; the other is installed manually and works in all other browsers.
The solution, after a little trial and error, is to disable the native, cross-platform Flash player, “Pepper”, and to enable the manually installed, most-recent, version. It still won’t work if Pepper is enabled and the installed version disabled. The Adobe Flash test page now works in Chrome, as you can see.
Below is a screenshot of how it should look (well for me at least!) to get it all working properly.
Well, typing the URL directly takes me to workingfromhome22.com! This is it!
Cunningly, you’ll note that it’s pulled out my home-town as Bournemouth (where I live) with that awful “mom” Americanism! No-one in the UK addresses their mother as mom… I mean, FFS?
The webpage links, containing the disreputably used graphics of Thomson, Reuters, CNBC and NBC Universal all point to http://workinghome22.com/go.php, which is of course in this domain. So let’s click it, shall we?
Well, pctrck.com is trying to load, but not much else.
Reversing then trying to exit workinghome22.com produces a pop-up of dubious functionality! Check the words – there’s no cancel button!
I did however manage to successfully close this page following that. Whew!
Now Back to onlineincnow.com
The previously mentioned http://onlineincnow.com/2/?aff_sub=72 is located in the USA.
So What Is It Up To?
OnlineIncNow.com Whois Record
Good Question! A WHOIS puts the registrant in China with the DNS servers in Russia!
As I mentioned earlier, the similarity of the scamminessof this thing is just like the Google Treasure Chest/ Google Money Tree / PWW scams of old.
The site is plastered with the logos of well known businesses to ad an air of authenticity to things (just as the original hook sites used The Guardian Newspaper and CBS in the same way) yet at the bottom of the page they disingenuously ad:
This site and the products and services offered on this site are not associated, affiliated, endorsed, or sponsored by NBCNEWS, ABC, USA Today, CNN or Fox News, nor have they been reviewed tested or certified by NBCNEWS, ABC, USA Today, CNN or Fox News.
onlineincnow.com T&C Screenshot
Despite all this, it is of course bollox set to deceive. In fact, it now appears that it’s the well known negative option scam, used by Pacific Webworks (PWW) and Jesse Willms to good effect until they were found out.
Let’s see how this pans out, shall we?…..
Check out the T&C page from the tiny link in the page footer – screenshot on the right.
They say that the applicable law is the State of Florida.
You will become a “member” and the key phrases are here:
You must register as a “Member” with Online Income Now to access certain functions of the website. You must provide current, complete and accurate information about yourself (the “Registration Data”) when registering as a Member. You agree that such information is truthful and complete. You agree to maintain and keep your Registration Data current and to update your Registration Data as soon as it changes. You are responsible for maintaining the security of your password. Online Income Now is not liable for any loss that you suffer through the use of your password by others. You agree to notify Online Income Now immediately of any unauthorized use of your account or other breach of security known to you. You also, by becoming a Member, agree to report violations of these Terms and Conditions by others to Online Income Now.
For a limited time only, the cost of this product is $97.00 ( usual price $299.95 ) and every 32 days thereafter you will be billed the member’s only price of $9.95 for the monthly use.
MATERIALS PROVIDED TO Online Income Now OR POSTED AT ANY Online Income Now’s WEB SITE
Online Income Now does not claim ownership of the materials you provide to Online Income Now (including feedback and suggestions) or post, upload, input or submit to any Online Income Now Web Site or its associated services (collectively “Submissions”). However, by posting, uploading, inputting, providing or submitting your Submission you are granting Online Income Now, its affiliated companies and necessary sublicensees, permission to use your Submission in connection with the operation of their Internet businesses including, without limitation, the rights to: copy, distribute, transmit, publicly display, publicly perform, reproduce, edit, translate and reformat your Submission; and to publish your name in connection with your Submission.
You’ll see that “Online Income Now” will:
make you a “member” (of what?)
and you will be regularly billed, (why?)
and that for anything you post, upload etc (wah? whadya mean? Where is this uploading?), “Online Income Now” will take no responsibility for what you do!
…………….which is curious as you don’t know what you’ll be doing and they have invited you to do it in the first place!!!
Now Lets Click The Link! Follow that Opportunity!
2 Spots Left!
Amazingly (sarcasm alert) there are two “spots” left in my area! This is the page… http://onlineincnow.com/2/index2.php
Michelle Johnson is the “guru” who will tell me everything! So what do I do? I have two options:
Let’s Try Backing Out, Shall We?
Cannot Backout From OnlineIncNow 2
Cannot Backout From OnlineIncNow
Well of course, they won’t let me. It takes two goes to get out and the first one completely takes over the browser! Bad. This is B.A.D.
Ah, well. Finally escaped.
Let’s Try Clicking to the Signup Page, Shall We?
secure.onlineincnow.com Data Entry Screen
I decide on my name, “Jobless Jake” and a random phone number…. The website is now https://secure.onlineincnow.com/2/cc_97.php
What I see is bad, really bad, and any attempt by this pack of jokers at saying they don’t run a negative option scam is now revealed on this sign-up page!
The scam is now revealed for what it is – a negative option scam! Read it carefully….. They expressly say;
By enrolling, you will be charged a one-time fee of $97.00
In teeny-tiny letters, note!
But remember, right back buried in the T&C’s they say;
every 32 days thereafter you will be billed the member’s only price of $9.95 for the monthly use.
This is expressly against the FTC code and laws in most countries. If any extra charges are to be levied for any service or goods, they should be expressly stated on the sign-up page where the customer first enters their financial details.
Gotcha! You Bastards!
Okay, I’ve Had Enough of This. I’m Off!
“Not so fast, young Jobless Jake”, say onlineincnow.com……!
Cannot Backout From OnlineIncNow 3
They’ve an extra 20% off plus and extra bit of webpage-erese! The screenshot says it all, though it wasn’t the end of it. I had one more “Leave Page” option like the earlier one above.
Actually, I tried the 64 bit installs of Firefox and Internet Explorer soon after I installed this Windows 7 64 bit Operating System. They were both pants and summarily removed from my hard drives and I haven’t revisited for over 2 years….
But now things seem on the up.
64-bit is now mainstream with a large 64-bit user base and fewer and fewer 32-bit applications seeing regular usage against the 64-bit versions. This is Firefox’s “about” info (above) from this browser. It’s called “Nightly”, and actually (whispers to one side), it’s very good…!!! Miles better than before, which made the machine crash….
Worked first time
Needed Flash plugins which were directly available, and work!
Worked okay with all my current plugins – Web Developer, Flagfox, Quirk SearchStatus and the rest. Amazing. They all worked!
Got it’s own icon
Installs into it’s own folder separate to Firefox
Carries over all Firefox settings & shortcuts.
Carries over all Firefox add-ons & plugins, if they work.
only needed a new Flash install to get it working the way it was on 32-bit
So now I’m going to try 64-bit browsing as a real test.
A few days ago I got hacked. I quickly ripped out a heap of dodgy files left by the hackers but for some days now, Firefox, my browser, while viewing pages on this website, has been saying that it’s “downloading data from tructuyenso.vn… “.
This, of course, was not actually happening, as I’ve put the blockers on the whole of Vietnam using .htaccess! The reason for this is that initially, tructuyenso wasn’t the only site appearing in the progress tip – there was another which lasted until I got rid of the various files dumped on my website. This is how:
<Limit GET POST>
deny from 220.127.116.11/8
allow from all
However, the call was still being made from somewhere on my site as the progress indicator wouldn’t stop….
A search for the string “tructuyenso.vn” turned up nothing in the files on my website using my website host’s file manager. (In the end, this was my failing and I will not rely on the thing again!)
A search through my database also turned up zero.
TCPView is a download from Sysinternals.com (now Microsoft!) that shows the various net connections being made to one’s PC from everywhere. This immediately showed that as soon as the main strangelyperfect.tv website (not the backend WordPress admin area), fired up in Firefox, as many as 7 connections were simultaneously made to 18.104.22.168…… This is the IP address that holds tructuyenso.vn, plus 11 other domains, some of which I’d seen flash through the progress bar.
Even when closed by TCPView, the connections would immediately start up again to the same IP address, 22.214.171.124 (manually closing strangelyperfect.tv stopped the connections).
I had of course previously changed my FTP, mySQL databaase and site management passwords, but the link at the bottom to a Website malware & blacklist scan (Sucuri) was the killer! On visiting Sucuri, it instantly said that I was acting as a host for malware and gave the offending results, for free! (Of course, I wasn’t hosting malware – just that it gave an indication that I was and hence the slowness of the site to load as it tried and failed to download shite my way from Vietnam)
Checking the source code for my homepage (which in retrospect I should have done first!!) threw up “tructuyenso.vn” right at the very bottom. This is the code as it was when I checked:
<a href="http://tructuyenso.vn" title="Quang cao truc tuyen | Ban hang truc tuyen | Dien dan quang cao truc tuyen" > Quang cao truc tuyen</a>
<iframe marginWidth="0" marginHeight="0" frameBorder="0" width="0" height="0" bottommargin="0" rightmargin="0" leftmargin="0" topmargin="0" nosize scrolling="no" src="http://tructuyenso.vn/"></iframe>
This was then easily traced to the footer.php file in my theme, Suffusion.
It was simply stripped out and the website then worked fine….. but to be sure, I have downloaded then checked the footer file in a fresh theme download to be sure – it’s clean! I then uploaded a whole clean Suffusion theme in it’s entirety just in case any other theme files were compromised during the original hack yet were dormant, waiting for a trigger.
A recheck on Securi shows my website to be okay now. See screendump below. I’ll be using Securi a lot more!
Over the last couple of days the strangest thought has plagued me. Two simple ugly words have kept emerging, only for me to lock them out and ridicule them as bizarre. Simon’s dead. Just to write it down feels like … Continue reading →
If you ever needed confirmation that the UK is not run by a shadowy cabal of sinister plotters but a bunch of chinless fucking idiots then the upcoming Digital Economy Bill is a good place to start. As well as … Continue reading →