1 #############################################################################
2 # Sample actions file for the Internet Junkbuster 2.9.x
4 # For information, see http://ijbswa.sourceforge.net/
6 # $Id: ijb.action,v 1.8 2002/03/12 01:42:50 oes Exp $
8 # Purpose : Default actions file, see
9 # http://ijbswa.sourceforge.net/faq/questions.html#CONFIGFILES
11 # We value your feedback. However, to provide you with the best support,
14 # * Use the support forum to get help:
15 # http://sourceforge.net/tracker/?group_id=11118&atid=211118
16 # * Submit bugs only thru our bug forum:
17 # http://sourceforge.net/tracker/?group_id=11118&atid=111118
18 # Make sure that the bug has not already been submitted. Please try
19 # to verify that it is a Junkbuster bug, and not a browser or site
20 # bug first. If you are using your own custom configuration, please
21 # try the stock configs to see if the problem is a configuration
22 # related bug. And if not using the latest development snapshot,
23 # please try the latest one. Or even better, CVS sources.
24 # * Submit feature requests only thru our feature request forum:
25 # http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse
27 # For any other issues, feel free to use the mailing lists:
28 # http://sourceforge.net/mail/?group_id=11118
30 # Anyone interested in actively participating in development and related
31 # discussions can join the appropriate mailing list here:
32 # http://sourceforge.net/mail/?group_id=11118. Archives are available
35 #############################################################################
37 #############################################################################
39 # To determine which actions apply to a request, the URL of the request is
40 # compared to all patterns in this file. Every time it matches, the list of
41 # applicable actions for this URL is incrementally updated. You can trace
42 # this process by visiting http://i.j.b/show-url-info
44 # There are 4 types of lines in this file: comments (like this line),
45 # actions, aliases and patterns, all of which are explained below.
47 #############################################################################
49 #############################################################################
51 # 1. On Domains and Paths
52 # -----------------------
54 # Generally, a pattern has the form <domain>/<path>, where both the <domain>
55 # and <path> part are optional. If you only specify a domain part, the "/"
59 # is a domain-only pattern and will match any request to www.yahoo.com
62 # means exactly the same (but is slightly less efficient)
64 # www.example.com/index.html
65 # matches only the document /index.html on www.example.com
68 # matches the document /index.html, regardless of the domain
71 # matches nothing, since it would be interpreted as a domain name and
72 # there is no top-level domain called ".html".
77 # The matching of the domain part offers some flexible options: If the
78 # domain starts or ends with a dot, it becomes unanchored at that end:
81 # matches only www.example.com
84 # matches any domain that ENDS in .example.com
87 # matches any domain that STARTS with www.
89 # Additionally, there are wildcards that you can use in the domain names
90 # themselves. They work pretty similar to shell wildcards: "*" stands for
91 # zero or more arbitrary characters, "?" stands for one, and you can define
92 # charachter classes in square brackets and they can be freely mixed:
95 # matches adserver.example.com, ads.example.com, etc but not sfads.example.com
98 # matches all of the above
101 # matches www.ipix.com, pictures.epix.com, a.b.c.d.e.upix.com etc
103 # www[1-9a-ez].example.com
104 # matches www1.example.com, www4.example.com, wwwd.example.com,
105 # wwwz.example.com etc, but not wwww.example.com
112 # Paths are specified as regular expressions. A comprehensive discussion of
113 # regular expressions wouldn't fit here, but (FIXME) someone should paste
114 # a concise intro to the regex language here.
116 # If Junkbuster was compiled with pcre support (default), Perl compatible
117 # regular expressions are used. See the pcre/docs/ direcory or man perlre
118 # (also available on http://www.perldoc.com/perl5.6/pod/perlre.html) for
121 # Please note that matching in the path is CASE INSENSITIVE by default, but
122 # you can switch to case sensitive by starting the pattern with the "(?-i)"
125 # www.example.com/(?-i)PaTtErN.*
126 # will match only documents whose path starts with PaTtErN in exactly this
129 # Partially case-sensetive and partially case-insensitive patterns are
130 # possible, but the rules about splitting them up are extremely complex
131 # - see the PCRE documentation for more information.
133 #############################################################################
135 #############################################################################
137 # There are 3 kinds of action:
139 # Boolean (e.g. "block"):
143 # Parameterized (e.g. "hide-user-agent"):
144 # +name{param} # enable and set parameter to "param"
147 # Multi-value (e.g. "add-header", "wafer"):
148 # +name{param} # enable and add parameter "param"
149 # -name{param} # remove the parameter "param"
150 # -name # disable totally
152 # The default (if you don't specify anything in this file) is not to take
153 # any actions - i.e completely disabled, so JunkBuster will just be a
154 # normal, non-blocking, non-anonymizing proxy. You must specifically
155 # enable the privacy and blocking features you need (although the
156 # provided default actions file will do that for you).
158 # Later actions always override earlier ones. For multi-valued actions,
159 # the actions are applied in the order they are specified.
161 #############################################################################
163 #############################################################################
165 # +add-header{Name: value}
166 # Adds the specified HTTP header, which is not checked for validity.
167 # You may specify this many times to specify many headers.
172 # +deanimate-gifs{last}
173 # +deanimate-gifs{first}
174 # Deanimate all animated GIF images, i.e. reduce them to their last
175 # frame. This will also shrink the images considerably. (In bytes,
177 # If the option "first" is given, the first frame of the animation
178 # is used as the replacement. If "last" is given, the last frame of
179 # the animation is used instead, which propably makes more sense for
180 # most banner animations, but also has the risk of not showing the
181 # entire last frame (if it is only a delta to an earlier frame).
184 # Downgrade HTTP/1.1 client requests to HTTP/1.0 and downgrade the
185 # responses as well. Use this action for servers that use HTTP/1.1
186 # protocol features that Junkbuster currently can't handle yet.
189 # Many sites, like yahoo.com, don't just link to other sites.
190 # Instead, they will link to some script on their own server,
191 # giving the destination as a parameter, which will then redirect
192 # you to the final target.
194 # URLs resulting from this scheme typically look like:
195 # http://some.place/some_script?http://some.where-else
197 # Sometimes, there are even multiple consecutive redirects encoded
198 # in the URL. These redirections via scripts make your web browing
199 # more traceable, since the server from which you follow such a link
200 # can see where you go to. Apart from that, valuable bandwidth and
201 # time is wasted, while your browser aks the server for one redirect
202 # after the other. Plus, it feeds the advertisers.
204 # The +fast-redirects option enables interception of these requests
205 # by junkbuster, who will cut off all but the last valid URL in the
206 # request and send a local redirect back to your browser without
207 # contacting the remote site.
210 # Filter the website through one or more regular expression filters.
211 # Repeat for multiple filters.
213 # Filters predefined in the supplied re_filterfile include:
215 # html-annoyances: Get rid of particularly annoying HTML abuse
216 # js-annoyances: Get rid of particularly annoying JavaScript abuse
217 # no-poups: Kill all popups in JS and HTML
218 # frameset-borders: Give frames a border
219 # webbugs: Squish WebBugs (1x1 invisible GIFs used for user tracking)
220 # no-refresh: Automatic refresh sucks on auto-dialup lines
221 # fun: Text replacements for subversive browsing fun!
222 # nimda: Remove (virus) Nimda code.
223 # banners-by-size: Kill banners by size
224 # crude-parental: Kill all web pages that contain the words "sex" or "warez"
228 # Block any existing X-Forwarded-for header, and do not add a new one.
231 # +hide-from{spam@sittingduck.xqq}
232 # If the browser sends a "From:" header containing your e-mail address,
233 # either completely removes the header ("block"), or change it to the
234 # specified e-mail address.
236 # +hide-referer{block}
237 # +hide-referer{forge}
238 # +hide-referer{http://nowhere.com}
239 # Don't send the "Referer:" (sic) header to the web site. You can
240 # block it, forge a URL to the same server as the request (which is
241 # preferred because some sites will not send images otherwise) or
242 # set it to a constant string.
244 # +hide-referrer{...}
245 # Alternative spelling of +hide-referer. Has the same parameters,
246 # and can be freely mixed with, "+hide-referer". ("referrer" is the
247 # correct English spelling, however the HTTP specification has a
248 # bug - it requires it to be spelt "referer").
250 # +hide-user-agent{browser-type}
251 # Change the "User-Agent:" header so web servers can't tell your
252 # browser type. (Breaks many web sites). Specify the user-agent
253 # value you want - e.g., to pretend to be using Netscape on Linux:
254 # +hide-user-agent{Mozilla (X11; I; Linux 2.0.32 i586)}
255 # Or to identify yourself explicitly as a JunkBuster user:
256 # +hide-user-agent{JunkBuster/1.0}
257 # (Don't change the version number from 1.0 - after all, why tell them?)
260 # Treat this URL as an image. This only matters if it's also "+block"ed,
261 # in which case a "blocked" image can be sent rather than a HTML page.
262 # See +image-blocker{} for the control over what is actually sent.
264 # +image-blocker{logo}
265 # +image-blocker{blank}
266 # +image-blocker{pattern}
267 # +image-blocker{<URL>} with <url> being any valid image URL
268 # Decides what to do with URLs that end up tagged with {+block +image}.
269 # There are 5 options. "-image-blocker" will send a HTML "blocked" page,
270 # usually resulting in a "broken image" icon. "+image-blocker{logo}"
271 # will send a "JunkBuster" image. "+image-blocker{blank}" will send
272 # a 1x1 transparent image, "+image-blocker{pattern}" will send a 4x4
273 # grey/white pattern which is less intrusive than the logo but easier
274 # to recognize than the transparent one. And finally, "+image-blocker{<URL>}"
275 # will send a HTTP temporary redirect to the specified image URL.
278 # +limit-connect{portlist}
279 # The CONNECT methods exists in HTTP to allow access to secure websites
280 # (https:// URLs) through proxies. It works very simply: The proxy
281 # connects to the server on the specified port, and then short-circuits
282 # its connections to the cliant and to the remote proxy.
283 # This can be a big security hole, since CONNECT-enabled proxies can
284 # be abused as TCP relays very easily.
285 # By default, i.e. in the absence of a +limit-connect action, Junkbuster
286 # will only allow CONNECT requests to port 443, which is the standard port
288 # If you want to allow CONNECT for more ports than that, or want to forbid
289 # CONNECT altogether, you can specify a comma separated list of ports and port
290 # ranges (the latter using dashes, with the minimum defaulting to 0 and max to 65K):
292 # +limit-connect{443} # This is the default and need no be specified.
293 # +limit-connect{80,443} # Ports 80 and 443 are OK.
294 # +limit-connect{-3, 7, 20-100, 500-} # Port less than 3, 7, 20 to 100, and above 500 are OK.
297 # Prevent the website from compressing the data. Some websites do
298 # that, which is a problem for junkbuster, since +filter, +no-popup
299 # and +gif-deanimate will not work on compressed data. Will slow down
300 # connections to those websites, though.
303 # If the website sets cookies, make sure they are erased when you exit
304 # and restart your web browser. This makes profiling cookies useless,
305 # but won't break sites which require cookies so that you can log in
306 # or for transactions.
309 # Prevent the website from reading cookies
312 # Prevent the website from setting cookies
316 # Filter the website through a built-in filter to disable
317 # window.open() etc. The two alternative spellings are
321 # This action only applies if you are using a jarfile. It sends a
322 # cookie to every site stating that you do not accept any copyright
323 # on cookies sent to you, and asking them not to track you. Of
324 # course, this is a (relatively) unique header they could use to
328 # This allows you to add an arbitrary cookie. Specify it multiple
329 # times in order to add several cookies.
331 #############################################################################
334 #############################################################################
336 #############################################################################
338 #############################################################################
340 # You can define a short form for a list of permissions - e.g., instead
341 # of "-no-cookies-set -no-cookies-read -filter -fast-redirects", you can
342 # just write "shop". This is called an alias.
344 # Currently, an alias can contain any character except space, tab, '=', '{'
346 # But please use only 'a'-'z', '0'-'9', '+', and '-'.
348 # Alias names are not case sensitive.
350 # Aliases beginning with '+' or '-' may be used for system permission names
351 # in future releases - so try to avoid alias names like this. (e.g.
352 # "+no-cookies" below is not a good name)
354 # Aliases must be defined before they are used.
358 +no-cookies = +no-cookies-set +no-cookies-read
359 -no-cookies = -no-cookies-set -no-cookies-read
360 +imageblock = +block +image
362 # Fragile sites should have the minimum changes
363 fragile = -block -deanimate-gifs -fast-redirects -filter -hide-referer -no-cookies -no-popups
365 # Shops should be allowed to set persistent cookies
366 shop = -filter -no-cookies -no-cookies-keep
368 # Your favourite blend of filters:
370 myfilters = +filter{html-annoyances} +filter{js-annoyances} +filter{no-popups}\
371 +filter{webbugs} +filter{nimda} +filter{banners-by-size}
373 #... etc. Customize to your heart's content.
375 #############################################################################
377 #############################################################################
389 +hide-referer{forge} \
392 +image-blocker{http://i.j.b/send-banner} \
403 #############################################################################
404 # A useful site for testing - shows all headers:
405 # http://privacy.net/analyze/
406 #############################################################################
407 {+add-header{X-Privacy: Yes please} \
408 +add-header{X-User-Tracking: No thanks!} -filter}
412 #############################################################################
413 # Test for new GIF deanimation feature.
414 # Just try http://www.oesterhelt.org/deanimate-demo with and without it.
415 #############################################################################
416 {+deanimate-gifs{last}}
417 www.oesterhelt.org/deanimate-demo
420 #############################################################################
421 # Sites that need cookies
423 # FIXME: Now cookies are allowed by default, do any of these sites
424 # need persistent cookies?
425 #############################################################################
440 #############################################################################
441 # These sites are very complex and require
442 # minimal interference.
443 #############################################################################
445 .office.microsoft.com
446 .windowsupdate.microsoft.com
449 #############################################################################
450 # Shopping sites - still want to block ads.
451 #############################################################################
454 .worldpay.com # for quietpc.com
458 #############################################################################
459 # These shops require pop-ups
460 #############################################################################
465 #############################################################################
466 # Sometimes fast-redirects catches things by mistake
467 #############################################################################
469 www.ukc.ac.uk/cgi-bin/wac\.cgi\?
471 edit.europe.yahoo.com
473 .altavista.com/.*(like|url|link):http
474 .altavista.com/trans.*urltext=http
478 #############################################################################
479 # Please don't re_filter code!
480 #############################################################################
485 #############################################################################
487 #############################################################################
489 #############################################################################
494 #############################################################################
496 #############################################################################
498 .ad.preferences.com/image.*
501 .ad-adex3.flycast.com
503 .connect.247media.ads.link4ads.com
505 .mojofarm.mediaplex.com/ad/
506 www.carbuyer.com/cgi-carbuyer/getimage.cgi
507 /phpAds(New)?/viewbanner\.php
508 .ad.de.doubleclick.net
509 /.*/count\.cgi\?.*df=
510 *.fxweb.com/v2-trackrun\.cgi
516 a196.g.akamai.net/7/196/2670/000[1-3]/images\.gmx\.net/.*images/.*/.*/
520 .smartclicks.com/.*/smart(img|banner|host|bar|site)
521 .linkexchange.com/.*/showl(ogo|e)
523 pixel.intares.net/cgi-bin/janus
524 ar.atwola.com # This serves all ads for CNN and AOL
526 #############################################################################
528 #############################################################################
530 #############################################################################
531 /.*/(.*[-_.])?ads?[0-9]?(/|[-_.].*|\.(gif|jpe?g))
532 /.*/(.*[-_.])?count(er)?(\.cgi|\.dll|\.exe|[?/])
533 /.*/(ng)?adclient\.cgi
534 /.*/(plain|live|rotate)[-_.]?ads?/
536 /.*/(sponsor)s?[0-9]?/
537 ###/*.*/(sponsor|banner)s?[0-9]?/
538 ###/*.*/.*banner([-_]?[a-z0-9]+)?\.(gif|jpg)
540 /?.*/_?(plain|live)?ads?(-banners)?/
542 /?.*/ad(sdna_image|gifs?)/
543 /?.*/ad(server|stream|juggler)\.(cgi|pl|dll|exe)
548 /?.*/adv((er)?ts?|ertis(ing|ements?))?/
552 /?.*/banner_?anzeigen
556 /?.*/cgi-bin/centralad/getimage
557 /?.*/images/addver\.gif
558 /?.*/images/advert\.gif
559 /?.*/images/marketing/.*\.(gif|jpe?g)
564 /?.*/randomads/.*\.(gif|jpe?g)
565 /?.*/rekla(ma|me|am)/.*\.(gif|jpe?g)
568 /?.*/sponsors?[0-9]?/
572 /?.*/werbung/.*\.(gif|jpe?g)
573 /?.*/adv\. # www.telegraaf.nl
574 /?.*/advert[0-9]+\.jpg
589 /bin/getimage.cgi/...\?AD
590 /bin/nph-oma.count/ct/default.shtml
591 /bin/nph-oma.count/ix/default.html
592 /cgi-bin/getimage.cgi/....\?GROUP=
594 /cgi-bin/webad.dll/ad
596 /cwmail/amzn-bm1\.gif
604 /image\.ng/transactionID
605 /images/.*/.*_anim\.gif # alvin brattli
606 /ip_img/.*\.(gif|jpe?g)
609 /netscapeworld/nw-ad/
610 /promotions/houseads/
614 /torget/jobline/.*\.gif
619 /cgi-bin/nph-adclick.exe/
620 /?.*/Image/BannerAdvertising/
622 /?.*/adlib/server\.cgi
623 /?.*/gsa_bs/gsa_bs.cmdl
627 # for our finnish friends, by Kai Puolamaki <Kai.Puolamaki@iki.fi>
628 /?.*/mainos/*.*/.*\.gif
629 /?.*/mainos/*.*/.*\.jpe?g
631 # more from a finnish friend Petri Haapio <pha@iki.fi>
633 .keltaisetsivut.fi/web/img/\.*gif
634 .haku.net/pics/pana\.*gif
636 /?.*/(.*[-_.].*)?maino(kset|nta|s).*(/|\.(gif|html?|jpe?g|png))
637 /?.*/(ilm(oitus)?|kampanja)(hallinta|kuvat?)(/|\.(gif|html?|jpe?g|png))
639 # and even more from a finnish friend Hannu Napari <Hannu.Napari@hut.fi>
640 194.251.243.50/cgi-bin/banner
644 www.iltalehti.fi/ilmkuvat
645 www.mtv3.fi/mainoskuvat
656 /?.*/images/topics/topicgimp\.gif
657 .discovery.com/.*banner_id
660 .idrink.com/frm_bottom.htm
662 /?.*/ph-ad.*\.focalink\.com
665 /we_ba/ # hausfrauenseite.de *bwhahahaaaaa*
668 /.*(ms)?backoff(ice)?.*\.(gif|jpe?g)
669 /.*(/ie4|/ie3|msie|sqlbans|powrbybo|activex|backoffice|explorer|netnow|getpoint|ntbutton|hmlink).*\.(gif|jpe?g)
670 /.*activex.*(gif|jpe?g)
671 /.*explorer?.(gif|jpe?g)
672 /.*freeie\.(gif|jpe?g)
673 /.*/ie_?(buttonlogo|static?|anim.*)?\.(gif|jpe?g)
674 /.*ie_sm\.(gif|jpe?g)
675 /.*msie(30)?\.(gif|jpe?g)
676 /.*msnlogo\.(gif|jpe?g)
677 /.*office97_ad1\.(gif|jpe?g)
678 /.*pbbobansm\.(gif|jpe?g)
679 /.*powrbybo\.(gif|jpe?g)
680 /.*sqlbans\.(gif|jpe?g)
682 /.*ie4get_animated\.gif
707 # generally useless information and promo stuff (commented out)
708 #/.*/(counter|getpcbutton|BuiltByNOF|netscape|hotmail|vcr(rated)?|rsaci(rated)?|freeloader|cache_now(_anim)?|apache_pb|now_(anim_)?button|ie_?(buttonlogo|static?|.*ani.*)?)\.(gif|jpe?g)
710 /?.*/images/na/us/brand/
711 /?.*/advantage\.(gif|jpg)
712 /?.*/advanbar\.(gif|jpg)
713 /?.*/advanbtn\.(gif|jpg)
714 /?.*/biznetsmall\.(gif|jpg)
715 /?.*/utopiad\.(gif|jpg)
716 /?.*/epipo\.(gif|jpg)
717 /?.*/amazon([a-zA-Z0-9]+)\.(gif|jpg)
718 /?.*/bnlogo.(gif|jpg)
719 /?.*/buynow([a-zA-Z0-9]+)\.(gif|jpg)
724 # for the dutch folks by a dutch friend gertjan@west.nl
727 .netdirect.nl/nd_servlet/___
729 # --------------------------------------------------------------------------
733 # --------------------------------------------------------------------------
735 # the next two lines work
738 193.158.37.3/cgi-bin/impact
745 195.63.104.*/(inbox|log|meld|folderlu|folderru|log(in|out)[lmr]u|)
753 206.165.5.162/images/gcanim\.gif
757 207.159.129.131/abacus
761 207.87.27.10/tool/includes/gifs/
764 209.1.112.252/adgraph/
765 209.1.135.14[24]:1971
770 209.207.224.22[02]/servfu.pl
771 209.239.37.214/cgi-pilotfaq/getimage\.cgi
774 209.85.89.183/cgi-bin/cycle\?host
775 212.63.155.122/(banner|concret|softwareclub)
778 216.49.10.236/web1000/
781 .ICDirect.com/cgi-bin
782 .Shannon.Austria.Eu.net/\.cgi/
787 # generic hosts (probably most effective)
795 #/.*/*preferences.com*
798 .akamaitech.net/.*/Banners/
799 .altavista.telia.com/av/pix/sponsors/
800 .amazon.com/g/associates/logos/
802 .asinglesplace.com/asplink\.gif
804 .automatiseringgids.nl/gfx/advertenties/
805 #avenuea.com/Banners/
808 .befriends.net/personals/matchmaking\.jpg
809 .bizad.nikkeibp.co.jp
810 .bs.gsanet.com/gsa_bs/
813 .cgicounter.puretec.de/cgi-bin/
814 .ciec.org/images/countdown\.gif
815 .classic.adlink.de/cgi-bin/accipiter/adserver.exe
817 #.clickhere.egroups.com/img/
819 .commonwealth.riddler.com/Commonwealth/bin/statdeploy\?[0-9]+
821 .dagbladet.no/ann-gif
824 .dn.adzerver.com/image.ad
829 .eur.a1.yimg.com/eur.yimg.com/a/
830 .us.a1.yimg.com/us.yimg.com/a/
832 #fastcounter.linkexchange.com
834 .focalink.com/SmartBanner
835 .freepage.de/cgi-bin/feets/freepage_ext/.*/rw_banner
836 .freespace.virgin.net/andy.drake
837 .futurecard.com/images/
841 .go.com/cimages\?SEEK_
843 .home.miningco.com/event.ng/.*AdID
847 image*.narrative.com/news/.*\.(gif|jpe?g)
849 #image.linkexchange.com
851 .images.yahoo.com/adv/
852 .images.yahoo.com/promotions/
855 .impartner.de/cgi-bin
856 informer2.comdirect.de:6004/cd/banner2
857 .infoseek.go.com/cimages
859 .kaufwas.com/cgi-bin/zentralbanner\.cgi
860 #leader.linkexchange.com
863 .linktrader.com/cgi-bin/
864 .logiclink.nl/cgi-bin/
865 lucky.theonion.com/cgi-bin/oniondirectin\.cgi
866 lucky.theonion.com/cgi-bin/onionimp\.cgi
867 lucky.theonion.com/cgi-bin/onionimpin\.cgi
869 .mailorderbrides.com/mlbrd2\.gif
872 .members.sexroulette.com
873 .messenger.netscape.com
875 # movielink became moviefone
876 .moviefone.com/.*(banner|newbutton|(ad|poster).*?\.gif|mmail|bytb|h_(guy|showtick|aML)|m_|icon_|NF_.*?back|h_.*?gif|media/(art|imagelinks(/MF.(ad|sponsor))))
877 mqgraphics.mapquest.com/graphics/Advertisements/
880 .news.com/cgi-bin/acc_clickthru
882 .ngserve.pcworld.com/adgifs/
890 .promotions.yahoo.com
892 .qsound.com/tracker/tracker.exe
893 .resource-marketing.com/tb/
895 .rtl.de/homepage/wb/images/
896 .schnellsuche.de/images/*
897 .shout-ads.com/cgibin/shout.php3
898 .sjmercury.com/advert/
899 .smartclicks.com/.*/smart(img|banner|host|bar|site)
902 .static.wired.com/advertising/
904 .sysdoc.pair.com/cgi-sys/cgiwrap/sysdoc/sponsor\.gif
905 .t-online.de/home/040255162-001/*
908 .teleauskunft.de/commercial/
911 .tvguide.com/rbitmaps/
914 .ultra.multimania.com
918 .us.yimg.com/promotions/
922 .videoserver.kpix.com
923 .washingtonpost.com/wp-adv/
924 .webconnect.net/cgi-bin/webconnect.dll
926 .webserv.vnunet.com/ip_img/.*ban
927 .werbung.pro-sieben.de/cgi-bin
928 .whatis.com/cgi-bin/getimage.exe/
929 www..bigyellow.com/......mat.*
931 www.addme.com/link8\.gif
932 www.aftonbladet.se/annons
933 www.americanpassage.com/
934 www.angelfire.com/in/twistriot/images/wish4\.gif
935 www.bizlink.ru/cgi-bin/irads\.cgi
936 www.blacklightmedia.com/adlemur
937 www.bluesnews.com/flameq\.gif
938 www.bluesnews.com/images/ad[0-9]+\.gif
939 www.bluesnews.com/images/gcanim3\.gif
940 www.bluesnews.com/images/throbber2\.gif
941 www.bluesnews.com/miscimages/fragbutton\.gif
942 www.businessweek.com/sponsors/
943 www.canoe.ca/AdsCanoe/
944 www.cdnow.com/MN/client.banners
947 www.clicmoi.com/cgi-bin/pub\.exe
948 www.dailycal.org/graphics/adbanner-ab\.gif
949 www.detelefoongids.com/pic/[0-9]*
950 www.dhd.de/CGI/werbepic
951 www.dsf.de/cgi-bin/site_newiac.adpos
952 www.firsttarget.com/cgi-bin/klicklog.cgi
953 www.forbes.com/forbes/gifs/ads
954 www.forbes.com/tool/includes/gifs/
955 www.fxweb.holowww.com/.*\.cgi
956 www.geocities.com/TimesSquare/Zone/5267/
957 www.goto.com/images-promoters/
958 www.handelsblatt.de/hbad
959 www.hotlinks.de/cgi-bin/barimage\.cgi
960 www.infoseek.com/cimages
961 www.infoworld.com/pageone/gif
962 www.isys.net/customer/images
963 www.javaworld.com/javaworld/jw-ad
964 www.kron.com/place-ads/
965 www.leo.org/leoclick/
966 #www.linkexchange.ru/cgi-bin/erle\.cgi
967 www.linkstation.de/cgi-bin/zeige
968 www.linux.org/graphic/miniature/
969 www.linux.org/graphic/square/
970 www.linux.org/graphic/standard/
971 www.luncha.se/annonsering
973 www.ml.org/gfx/spon/icom/
974 www.ml.org/gfx/spon/wmv
975 www.musicblvd.com/mb2/graphics/netgravity/
977 www.news.com/Midas/Images/
978 www.newscientist.com/houseads
979 www.nextcard.com/affiliates/
980 www.nikkeibp.asiabiztech.com/image/NAIS4\.gif
981 www.nordlys.no/imaker/.*/.*/.*/.....\.gif # alvin brattli
982 www.nordlys.no/imaker/.*/.*/.*/..003 # alvin brattli
983 www.oanda.com/server/banner
985 www.oneandonlynetwork.com
986 www.page2page.de/cgi-bin/
987 www.prnet.de/.*/bannerschnippel/.*\.(gif|jpe?g)
988 www.promptsoftware.com/marketing/
989 #www.reklama.ru/cgi-bin/banners/
990 www.riddler.com/sponsors/
991 www.rle.ru/cgi-bin/erle\.cgi
992 www.rock.com/images/affiliates/search_black\.gif
993 www.rtl.de/search/.*kunde
994 #www.search.com/Banners
995 www.sfgate.com/place-ads/
996 www.shareware.com/midas/images/borders-btn\.gif
997 #www.sjmercury.com/products/marcom/banners/
998 www.smartclicks.com:81
999 www.sol.dk/graphics/portalmenu
1000 www.sponsornetz.de/jump/show.exe
1002 www.sunworld.com/sunworldonline/icons/adinfo.sm\.gif
1003 www.swwwap.com/cgi-bin/
1004 www.taz.de/~taz/anz/
1005 www.telecom.at/icons/.*film\.(gif|jpe?g)
1006 www.theonion.com/bin/
1007 www.topsponsor.de/cgi-bin/show.exe
1009 www.ugu.com/images/EJ\.gif
1010 www.warzone.com/pics/banner/
1011 www.warzone.com/wzfb/ads.cgi
1013 www.websitepromote.com/partner/img/
1014 www.winjey.com/onlinewerbung/*\.gif
1015 www.wishing.com/webaudit
1016 www.www-pool.de/cgi-bin/banner-pool
1017 www2.blol.com/agrJRU\.gif
1019 .yahoo.com/CategoryID=0
1020 .yahoo.de/adv/images
1023 www.bannerland.de/click.exe
1028 www.slate.com/redirect/
1029 www.slate.com/articleimages/
1031 www.forbes.com/tool/images/frontend/
1034 .pathfinder.com/shopping/marketplace/images/
1037 static.wired.com/images
1038 .perso.estat.com/cgi-bin/perso/
1039 #dinoadserver1.roka.net
1040 .fooladclient*.fool.com
1041 .affiliate.aol.com/static/
1049 # www.sunday-times.co.uk
1050 www.sunday-times.co.uk/standing/newsint/ticker
1052 #NeXgo (ex Germany.Net)
1056 # Block as much of GeoCities as possible
1057 # All geocities-owned images
1058 www.geocities.com/images
1059 www.geocities.com/MemberBanners/live/
1060 pic.geocities.com/images
1061 # And the popup (it still pops up, but does not eat up precious bandwidth)
1062 #www.geocities.com/ad_container/pop.html # already fixed by other regexp
1064 # from corion@informatik.uni-frankfurt.de
1067 #ads.xmonitor.net/xadengine.cgi # fixed by above regexp
1068 # Also block the japanese geocities popups
1069 www.geocities.co.jp/images
1070 # Also block the come.to, surf.to etc. popups
1073 # Also block the xoom stuff.
1075 home.talkcity.com/homepopup.html.*
1077 # Max Maischein <max.maischein@econsult.de> again ...
1078 # Halflife.net uses WON banners
1079 # Banners from Freeserve
1080 #banner.freeservers.com/cgi-bin/fs_adbar # fixed by above regexp
1081 # And those nasty va-popups !
1082 /?.*/?va_banner.html
1083 # And an all-around hit against advert*.jpg
1084 /?.*/advert[0-9]+\.jpg
1085 # And yet another Internet Explorer gif ...
1087 # Some uninteresting buttons I think...
1088 .mircx.com/images/buttons/
1089 services.mircx.com/.*\.gif
1090 # Easyspace - yet another "free disk space" provider with <yuck> banner popups
1091 www.easyspace.com/(fpub)?banner.html
1092 www.easyspace.com/100\.gif
1093 # Some russian banner exchanges
1094 .banner.ricor.ru/cgi-bin/banner.pl
1095 #www.bizlink.ru/cgi-bin/irads.cgi # already fixed by other regexp
1096 stx9.sextracker.com/stx/send/
1097 # And even more of geocities :
1098 www.geocities.com/pictures/
1099 # Gaah - www.angelfire.com - another webspace provider with popups
1100 .angelfire.com/sys/download.html
1101 # Gamasutra.com uses this ad provider
1102 sally.songline.com/@
1104 # Eule.de (search engine)
1105 # maybe images.eule.de as a whole...
1106 www.eule.de/cgi-bin/
1107 images.eule.de/comdirect\.gif
1108 images.eule.de/wp\.gif
1109 .aladin.de/125_1\.gif
1110 images.eule.de/neu/books\.gif
1112 # --------------------------------------------------------------------------
1116 # --------------------------------------------------------------------------
1118 # some images on cnn's website just suck!
1121 /.*cnnpostopinionhome.\.gif
1122 /.*custom_feature\.gif
1123 /.*explore.anim.*gif
1125 /.*pathnet.warner\.gif
1126 /.*images/cnnfn_infoseek\.gif
1127 /.*images/pathfinder_btn2\.gif
1128 /.*img/gen/fosz_front_em_abc\.gif
1129 /.*img/promos/bnsearch\.gif
1130 /.*navbars/nav_partner_logos\.gif
1131 /BarnesandNoble/images/bn.recommend.box.*
1132 /digitaljam/images/digital_ban\.gif
1133 /hotstories/companies/images/companies_banner\.gif
1134 /markets/images/markets_banner\.gif
1135 /ows-img/bnoble\.gif
1136 /ows-img/nb_Infoseek\.gif
1137 .cnn.com/images/custom/totale\.gif
1138 .cnn.com/images/lotd/custom.wheels\.gif
1139 .cnn.com/images/.*/by/main.12\.gif
1140 .cnn.com/images/.*/find115\.gif
1141 .cnn.com/.*/free.email.120\.gif
1142 .cnnfn.com/images/left_banner\.gif
1144 www.cnn.com/images/.*/bn/books\.gif
1145 www.cnn.com/images/.*/pointcast\.gif
1146 www.cnn.com/images/.*/fusa\.gif
1147 .cnn.com/images/.*/start120\.gif
1148 images.cnn.com/SHOP/
1152 # the / indicates the beginning of the path (and no longer the FQDN)
1158 /gif/buttons/banner_
1159 /gif/buttons/cd_shop_
1160 /gif/cd_shop/cd_shop_ani_
1163 /av/gifs/av_map\.gif
1164 /av/gifs/av_logo\.gif
1165 /av/gifs/new/ns\.gif
1166 altavista.com/i/valsdc3\.gif
1167 jump.altavista.com/gn_sf
1170 tucows./images/locallogo\.gif
1175 # simpliemu.hypermart.net/frames.html
1176 .go2net.com/mgic/adpopup
1177 .go2net.com/metaspy/images/exposed\.gif
1178 .go2net.com/metaspy/images/ms_un\.gif
1181 www.cebu-usa.com/cwbanim1\.gif
1182 www.cebu-usa.com/Connection\.jpg
1183 www.cebu-usa.com/phonead\.gif
1184 www.cebu-usa.com/ban3\.jpg
1185 www.cebu-usa.com/tlban\.gif
1186 www.cebu-usa.com/apwlogo1\.gif
1187 www.cebu-usa.com/rose\.gif
1190 www.fnet.de/img/geldboerselogo\.jpg
1192 # hirsch@mathcs.emory.edu
1193 /images/getareal2\.gif
1195 www.assalom.com/aziza/logos/cniaffil\.gif
1196 www.assalom.com/aziza/logos/4starrl1\.gif
1197 www.phantomstar.com/images/media/m1\.gif
1200 .wahlstreet.de/MediaW\$/tsponline\.gif
1201 .wahlstreet.de/MediaW\$/dzii156x60\.gif
1202 .wahlstreet.de/MediaW\$/etban156x60_2_opt2\.gif
1206 /pics/getareal1\.gif
1208 /ltbs/cgi-bin/click.cgi
1209 .linuxtoday.com/ltbs/pics/
1213 /include/watermark/v2/
1215 # Reinier Bikker <R.P.Bikker@phys.uu.nl>
1218 # Mark Lutz <luma@nikocity.de>
1219 /.*/*werb.*\.(gif|jpe?g) # hope that's not to restrictive
1221 #Free Yellow thing at bottom of pages (HereticPC)
1222 www.freeyellow.com/images/powerlink5a\.gif
1223 www.freeyellow.com/images/powerlink5b\.gif
1224 www.freeyellow.com/images/powerlink5c\.gif
1225 www.freeyellow.com/images/powerlink5d\.gif
1226 www.freeyellow.com/images/powerlink5e\.gif
1229 www.eads.com/images/refbutton\.gif
1230 www.fortunecity.com/console2/newnav/*
1231 www.goldetc.net/search\.gif
1232 www.cris.com/~Lzrdking/carpix/cars3-le\.gif
1233 www.justfreestuff.com/scott\.gif
1234 www.cyberthrill.com/entrance\.gif
1235 secure.pec.net/images/pec69ani\.gif
1236 www.new-direction.com/avviva\.gif
1237 /.*internetmarketingcenter\.gif
1238 www.new-direction.com/wp-linkexchange-loop\.gif
1239 www.new-direction.com/windough\.gif
1240 www.digitalwork.com/universal_images/affiliate/dw_le_3\.gif
1241 service.bfast.com/bfast/click/*
1242 www.new-direction.com/magiclearning\.gif
1243 www.new-direction.com/mailloop\.gif
1245 www.free-banners.com/images/hitslogo\.gif
1246 rob.simplenet.com/dyndns/fortune5\.gif
1247 .nasdaq-amex.com/images/bn_ticker\.gif
1250 # navilor@hotmail.com
1253 # wayne@staff.msen.com
1255 a*.*.*.yimg.com/([0-9]*|\/)*us.yimg.com/*
1258 www.realtop50.com/cgi-bin/ad
1262 www.yacht.de/images/(my_ani|eissingani|chartertrans|fum|schnupper|fysshop|garmin)\.gif
1263 www.sponsorweb.de/web-sponsor/nt-bin/show.exe
1266 # Club-internet pops up a complain if you refuse cookie (still pops up...)
1267 perso.club-internet.fr/html/Popup/popup_frame_nocookie.html
1268 perso.club-internet.fr/pagesperso/popup_nocookie.html
1270 .gmx.net/images/newsbanner/
1273 .quicken.lexware.de/images/us7-468x60.gif
1274 /img/special/chatpromo\.gif
1275 www.travelocity.com/images/promos/
1277 # wonder that that does...
1280 #/*.*/phpAds/viewbanner.php
1281 #/*.*/phpAds/phpads.php
1283 www.linux-magazin.de/banner
1284 .comtrack.comclick.com
1286 .iac-online.de/filler
1288 .media.interadnet.com
1289 .stat.www.fi/cgi-bin
1293 .disneystoreaffiliates.com
1295 .powerwork.mobile.de/cgi-bin/getimage\.cgi
1299 ####################################################
1302 # The Register ads - oh, and all images in Register stories (sigh).
1303 www.theregister.co.uk/media/
1305 # Used on http://www.theregister.co.uk/
1306 # Sample advert URL:
1307 # http://secure.webconnect.net/cgi-bin/webconnecthome.dll?F467
1311 www.dilbert.com/comics/dilbert/images/.*_140x800.*\.gif
1314 # Uses URL: http://www.stattrack.com/cgi-bin/stats/image.cgi
1316 # And loads JavaScript from http://www.stattrack.com/stats/code
1317 www.stattrack.com/stats/
1319 #Now they're Yahoo GeoCities, their junk is in a different place.
1320 ##geo.yahoo.com/serv
1321 ##visit.geocities.com/visit.gif
1322 .yimg.com/?.*/www.geocities.com/js_source
1323 #http://us.toto.geo.yahoo.com/toto?s=76001086
1325 .visit.geocities.com
1326 .yimg.com/?.*/www.geocities.com/
1328 #http://counter16.bravenet.com/counter.php
1331 #http://stat.cybermonitor.com/7emezone_p?1707_USdvd
1334 #http://members.tripod.com/adm/popup/.....
1335 members.tripod.com/adm/popup/
1337 #This is the worst ad idea ever!
1338 #count.exitexchange.com/exit/1100661
1339 #count.exitexchange.com/clients/navbar.html
1340 #(used in http://skyhivisuals.tripod.com/malfunctions_.htm)
1346 #This site traps the browser
1349 #privacy.net runs ads
1352 #Lindsay.Marshall@newcastle.ac.uk suggested these, to kill Opera adverts:
1357 dinoadserver*.roka.net
1359 logout.tvspielfilm.de
1361 www.freenet.de/customerindex\.html
1363 .fxweb.com/v2-trackrun\.cgi
1364 rtldating.peopleunited.de
1366 www.zdnet.com/fcgi-bin/
1367 service.bfast.com/bfast/serve
1369 fourohfour.nbci.com/Members404Error.php3
1372 www.fair-ist-mehr.de/cgi-bin/bt.pl
1382 #############################################################################
1384 #############################################################################
1387 www.userfriendly.org/images/banners/banner_dp_heart\.gif
1390 #Why were these in the Waldherr blockfile?
1392 #a*.*.*.yimg.com/([0-9]|\/)*us.yimg.com/i/*
1394 # some regexps are simply too aggressive ...
1396 # equalizer to /*.*(.*[-_.])?ads?[0-9]?(/|[-_.].*|.(gif|jpe?g))
1407 .ad.siemens.de # SIEMENS Automation & Drives
1408 #add-url.altavista.com
1415 # univ. don't advertise, do they :-)
1417 .ac.uk # English Universities too! - Jon
1418 .uni-*.de # What about Germany? --oes
1419 www.ugu.com/sui/ugu/adv
1423 clubs.yahoo.com/clubs
1424 edit.my.yahoo.com/config/show_identity
1425 www.ix.de/newsticker/data/ad
1426 www.heise.de/newsticker/data/ad
1427 www.careernet.de/anzeige
1428 www.careernet.de/bewerber/stellenanzeigen
1429 www.baumgartner.de/stellenmarkt/anzeigen
1430 www.dspartner.de/Anzeigen
1431 www.aws-jobs.de/Anzeigen
1432 www.jobware.de/.*/anzeigen/
1433 www.jobworld.de/bilder/
1434 www.cnn.com/TECH/computing/.*/internet.ads/
1435 www.financial.de/shop/
1439 194.221.152.2/phptelefontmp
1440 .harvard.edu/images/banner/
1443 www.dhd.de/CGI/anzeigen/
1446 .img.web.de/web/img/
1448 www.segel.de/menu/bilder/anzeigen\.gif
1449 www.corel.com/graphics/banners/
1450 www.software.ibm.com/ad/
1451 www.omg.org/docs/ad/
1453 .sperrmuell.de/scripts/anzeigen
1454 www.freenet.de/index.html
1455 www.01019freenet.de/index.html
1456 www.freenet.de/freenet/
1457 www.01019freenet.de/freenet/
1458 webfactory.de/anzeigen.php
1460 www.internatif.org/bortzmeyer/debian/sponsor/
1463 www.software.hosting.ibm.com/ad/
1464 www.ibm.com/software/ad/
1467 www.debian.org/Pics/banner-blue\.gif
1468 www.linux.de/pics/Nachrichten_banner\.gif
1471 finder.shopping.yahoo.com/shop/
1481 .consumer-direct.com
1486 # my banking stuff => no ads.
1492 # Jon's addition: MSDN
1497 .freemail*.web.de/online/ordner/anzeigen
1498 foggy.sda.t-online.de
1499 .us.i1.yimg.com/us.yimg.com/i/pim/ad2.gif
1500 www.nexgo.de/.*/bg_banner.jpg
1502 # .*ads. matches prdownloads.sourceforge.net and many other download sites