Jump to content
Tuts 4 You

Cloudflare Captcha Shit!


Recommended Posts

Hi guys,

just wanna ask whether there is any way to bypass / disable that absolutely annoying Captcha crap which makes me really sick to pick the right images question loop all 5 minutes.So what the heck!It would be maybe ok if this would just popup once to make that shit image pick game to satisfy those Cloudflare jerks but not the whole time.On internet I found that Cloudflare does it because of users of TOR etc!=?So in my case I am not using TOR or VPN or whatever just using my normal ISP IP got and I also get that Cloudflare Captcha crap.So is there anything we could do against this trash?

greetz

Link to comment
Teddy Rogers

Could be due to a few or combination of reasons; JavaScript disabled/blocked, IP address listed on Project Honeypot, cookies blocking cf_clearance, site your accessing flagged your IP.

Try resolving any of the above. Alternatively you may have success using the Privacy Pass extension in your browser...

Ted.

  • Like 1
Link to comment

I agree it's very annoying, if your IP from the ISP is static then it's a nasty problem, try resetting your router to get a new IP from your ISP

The new IP could solve your problems.

  • Like 1
Link to comment

Hi again,

anyway, so I get those captcha or VPN messages if I wanna access some sites using my real IP and this pretty sucks of course.The problem are the IPs itself which seems to be blacklistet anyhow for something for some sites "WhateverBecause" etc and now I have that crap IP to work with. :( In this case I only can try to use any proxy or VPN / TOR with any IP which works without to get those trash to bypass first also if I dont wanna use a proxy (but I am getting forced to use it).Nothing with free internet for free people.You just getting crap and you have to pay for it.My ISP also sucks and has many bad hops = I just get a minimum download speed and also here I am getting forced again to use any accelerator tool to get my full bandwith speed.Always those stupid de-tours we have to do pissed me really off.

PS: So to reset my router isnt a good idea because it takes a long time and also then I got a similar IP where only the last digit range was changed a few counts like 99 to "same.same.same.100" etc.In earlier days it was much easier just doing a quick de-connect and connect from desktop. :) About Privacy Pass, so I found many bad comments about this AddOn which seems also not to work for CF.

greetz

Link to comment
5 hours ago, newhak said:

If you want a dynamic IP and bypass the nasty stuff from time to time, try Tor Browser. It worked with me in several occasions, hopefully it will do so with you either.

https://www.torproject.org/download/

Use of Tor leads to even more nasty captchas on most of the sites!

8 hours ago, Kurapica said:

Sorry I meant turn off and on again, it may get a new IP on next boot.

Doesn't work in many countries where they use either cable-based or fiber-optic internet. In the US for ex, you need to call up the ISP if you need an IP change, or wait for a few months till they change it on their own...

10 hours ago, LCF-AT said:

anyway, so I get those captcha or VPN messages if I wanna access some sites using my real IP and this pretty sucks of course.The problem are the IPs itself which seems to be blacklistet anyhow for something for some sites "WhateverBecause" etc and now I have that crap IP to work with. :( In this case I only can try to use any proxy or VPN / TOR with any IP which works without to get those trash to bypass first also if I dont wanna use a proxy (but I am getting forced to use it).Nothing with free internet for free people.You just getting crap and you have to pay for it.My ISP also sucks and has many bad hops = I just get a minimum download speed and also here I am getting forced again to use any accelerator tool to get my full bandwith speed.Always those stupid de-tours we have to do pissed me really off.

The best way is to get a good VPN and use it. Most of us do that.

  • Like 1
Link to comment

How ISPs assign IP addresses and how long those leases or reservations are held for is an interesting question and one which is going to be unfortunately specific to each provider.  Its even possible that to unplug the router and go to sleep and wait until the morning to plug it back in could help if the lease is being refreshed by renewal and so forth.  Or perhaps its done on a last IP if still available or otherwise first available slot basis and you need to wait for another customer to get that IP assigned so you cannot get it again.  Its hard to be sure.  Rebooting is enough sometimes, or leaving it off for a period of time.  Otherwise there is really nothing one can to do get a new IP.  Plus your new IP could also be tainted if someone else on your ISP has been making trouble getting the IPs detected by cloudflare.

Of course some people hide behind VPNs too, and this is recommended apparently and mostly by those stealing their neighbors WiFi and still driving around doing war chalking.

Edited by Progman
  • Like 1
Link to comment
2 hours ago, Progman said:

How ISPs assign IP addresses and how long those leases or reservations are held for is an interesting question and one which is going to be unfortunately specific to each provider.  Its even possible that to unplug the router and go to sleep and wait until the morning to plug it back in could help if the lease is being refreshed by renewal and so forth.  Or perhaps its done on a last IP if still available or otherwise first available slot basis and you need to wait for another customer to get that IP assigned so you cannot get it again.  Its hard to be sure.  Rebooting is enough sometimes, or leaving it off for a period of time.  Otherwise there is really nothing one can to do get a new IP.  Plus your new IP could also be tainted if someone else on your ISP has been making trouble getting the IPs detected by cloudflare.

Of course some people hide behind VPNs too, and this is recommended apparently and mostly by those stealing their neighbors WiFi and still driving around doing war chalking.

These days many providers in the US do not change the IP often, in order to make their record-keeping and surveillance easier. I hear its the same for many European countries as well. So simpley turning it off for a while or even overnight does not help, at least not for me.

When I call my ISP I am asked a dozen questions and they sometimes give me a new IP, sometimes don't.

  • Like 1
Link to comment

Hi guys,

yes, using TOR isnt pretty good to prevent that captcha stuff.

What is a good VPN and where to get it?Mostly I try using any proxy IPs I can read from any list and enter this manually but most of them arent working for total slow etc.Otherwise I can use TOR but this browser is real slow and even slower than using TOR build-in in Brave.I tried already diffrent things but didnt found any good method yet to have all.

- using TOR is pretty slow but I can use Firefox AddOns

- using TOR in Brave is faster but I can't use AddOns (also IDM dosent work)

@Teddy Rogers

Ok I have test this AddOn for FF & Chrome out now.Good thing is it seems to work to create some tokens and bypassing that captcha just by clicking on "I am a human" to get the Site I wanna visit loaded.After 5 minutes I get captcha again but just need to press "I am a human" again without to make that image loop.But also here I have a master question using this AddOn.I tried to increase the passes count but this dosent work and I only can get 5 passes and thats all.Pretty less, on YT I found video of some who using that AddOn who getting 30 passes after doing that image loop.So why are we just getting 5 passes now?5x5= 25 minutes only.What means I get interrupted 5 times in 25 minutes what is pretty much.I mean its more than get interrupted by watching any TV show to watch the commercial breaks.So I am not a gamer but shouldnt  be pretty well if you do play any online game somewhere and the game  stops all 5 minutes because you need to re-fresh the site with that captcha trash etc.How to handle that stuff?Or if you do watch any stream in browser and it hangs then etc.Anyhow is the whole idea about that captcha verify thing a bad one.Also I dont check why only special IPs and IP ranges get forced to do that crap on CF hosted sites whats again unequal and not fair.In that case I would really like to donate some free ass kicks into some CF asses. :yes:

greetz

Link to comment

Well CF is trying to block DoS attacks so slowing traffic with captchas and banning IPs is their business.  Unequal and not fair for sure but it's all about containment and mitigation techniques.  It's not fair people are quarantined because their friend they saw recently got sick.   But it contains the virus and mitigates the risk.  I think captchas and many systems nowadays can measure mouse movement and use some AI algorithms to determine if it's natural or artificial, which has made captchas generally more easy and convenient, and really can require simulating a good deal of the system to fake.

  • Like 1
Link to comment

There are a few VPN addons for Firefox, I have used THIS when I need to change IP or country for access / new download

only restriction I think, is it limits you to 1gb a day so you wouldn't be able to do massive amounts of streaming or downloading

  • Like 1
Link to comment
1 hour ago, NOP said:

There are a few VPN addons for Firefox, I have used THIS when I need to change IP or country for access / new download

only restriction I think, is it limits you to 1gb a day so you wouldn't be able to do massive amounts of streaming or downloading

Using free add-ons is not a good idea in most cases. Either they track and use your info (sell in some cases) or they swap the IPs of their users depending on the users meeting each others' country IP requirements. Either way I say that better to go for a paid one.

1 hour ago, Progman said:

Well CF is trying to block DoS attacks so slowing traffic with captchas and banning IPs is their business. 

Cloudflare does not generally block IPs unless in extreme cases. We use CF commercially now and even with the free plan that was not the issue. The Captchas are mainly Google's products and they tend to be a real PITA!

2 hours ago, LCF-AT said:

What is a good VPN and where to get it?Mostly I try using any proxy IPs I can read from any list and enter this manually but most of them arent working for total slow etc.Otherwise I can use TOR but this browser is real slow and even slower than using TOR build-in in Brave.I tried already diffrent things but didnt found any good method yet to have all.

Free solutions generally are either slow or have already been seriously abused (mostly by spammers). So they will actually add to your problem. At a certain point of time you would need to decide if you should go for paid solutions and then go for them. They give you a lot of peace of mind in the long run.

@LCF-AT, in the end it all boils down to the fact that your IP had been heavily abused in the past (by spammers in most cases, but also by hackers in some cases).

This is generally the solution that solves your problem, albeit that it costs you a little money:

You can try talking to your ISP. Many ISPs sell you static IPs at a reasonable price. Just buy one and keep using it. This is what some of my friends do and it solves the problems related to "Bad IPs" when the other solutions did not.

Edited by Gorina
  • Like 1
Link to comment

Hi again,

thank you guys for new answers so far.So it seems I have to live with that kind of problems more or less.So of course its not a real problem but just annoying.

Sounds not good that my IPs I do get was used to abuse them in the past but also in that case its past and not presence anymore.Do they dont check that?Maybe they could blacklist any IPs for a specific time (few days or what) and whitelist them again but this dosent seems to be the case.As  I said my IPs I do get are very limited and similar and almost all of them arent working without that captcha.Maybe the whole IP range is blacklistet or whatever.

greetz

Link to comment
44 minutes ago, Gorina said:

Using free add-ons is not a good idea in most cases. Either they track and use your info (sell in some cases) or they swap the IPs of their users depending on the users meeting each others' country IP requirements. Either way I say that better to go for a paid one.

Yes I realise that a free VPN is far from secure but normally I only use when I access a site I use which UK ISP's have banned totally or if I need to change IP for download restrictions

I would not use for anything like onlne banking or anything secure

:)

Link to comment
24 minutes ago, NOP said:

I would not use for anything like onlne banking or anything secure

But services like HolaVPN which swap the IPs of their users could put you in serious trouble if the other user using your IP address does something seriously illegal like CC fraud or download child porn. See this for example.

32 minutes ago, LCF-AT said:

Sounds not good that my IPs I do get was used to abuse them in the past but also in that case its past and not presence anymore.Do they dont check that?Maybe they could blacklist any IPs for a specific time (few days or what) and whitelist them again but this dosent seems to be the case.As  I said my IPs I do get are very limited and similar and almost all of them arent working without that captcha.Maybe the whole IP range is blacklistet or whatever.

You can check your IPs to see if they are blacklisted using sites like this. There are many similar ones if you google them. Problem is that if you have dynamic IP system from your ISP then your IP would keep changing.

As I said above, best would be to purchase a good static IP and then keep using it for all your genuine work...

Link to comment
1 hour ago, Gorina said:

But services like HolaVPN which swap the IPs of their users could put you in serious trouble if the other user using your IP address does something seriously illegal like CC fraud or download child porn. See this for example.

Thanks for the advise. i am aware of this and they were doing this by an Android app with malware and also had P2P in their terms which used idle resources for this

I use a Firefox addon which is basically javascript through the browser. I'm not saying that javascript cant be malicious but it's very different to an installed app containing malware running all the time while constantly connected

Yes there is some risk by me using a free vpn but its very minimal usage, no idle resource and only run as an FF addon for a task I need it for and then its stopped

Link to comment
20 hours ago, NOP said:

Thanks for the advise. i am aware of this and they were doing this by an Android app with malware and also had P2P in their terms which used idle resources for this

I use a Firefox addon which is basically javascript through the browser. I'm not saying that javascript cant be malicious but it's very different to an installed app containing malware running all the time while constantly connected

Yes there is some risk by me using a free vpn but its very minimal usage, no idle resource and only run as an FF addon for a task I need it for and then its stopped

Well, good for you but many others here could possibly use the free VPNs without knowing all that. You'd be surprised at how many users still do not know the dangers of using a free VPN. The warning was mainly for them. Which FF add-on are you using, by the way?

 

Link to comment

Paid for VPNs also carry a whole variety of risks.  It is not that they too are untraceable.  There is little you can do about traceability especially if agencies are involved.  For petty spammers and flame war starters though its probably fine, as they can do hit and runs on forums and stir up trouble without drawing too much attention.

Obviously the chain of trust is every single hop from ISP through to the destination including any VPN in between.  So basically you do not control anything on that whole route, and you would have to find jurisdictions or shady businesses that truly keep no logs or would never share them.  Even if you had 50 zombies all VPNing to each other or a covertly and professionally installed device behind wall panels of someone else's home which connects secretly to their WiFi, enough time and enough energy can track this down.  Though with enough physical surveillance capability, perhaps you could detect compromise of the final link before the Bluetooth or WiFi signal itself is traced in and around the building or structure.

Basically if you are not a trained professional operative, who has a lot of resources to detect compromise, just assume everything you do online can very easily be traced.  As simple as that.  Or if you know certain sovereignties or entities which you trust to that high a degree, perhaps you could be untraceable but this is a trust that can be compromised any time in the right scenarios be it political, financial or other forms of coercion, and again if you could not detect such compromise forget about it.

Of course they would only go through such trouble if you are doing something highly illegal so you should definitely not do that.  My guess is that the various organized crime groups out there are using a lot of resources to pull off anonymity such as guns and threats against normal people and constantly rotating internet connection points.  Although higher up the technology ladder with spy satellites and the like, there is no one doing any sort of secret actions anymore who is not surveilled and details understood.  Generally even if they are serious bad people, they will get categorized as "assets" who could be manipulated to do something to drive some shady political agenda at the right moment.  The higher up you go in the true power structure, the more power and control are of importance, and justice and doing what's right becomes a totally forgotten idea.

If you are doing something like whistleblowing or fighting those in power doing illegal things, then best you make sure your exposure of these crimes is done in a very concise, fast, single action scenario so that by the time the tracing has occurred, you can have some form of protection due to public exposure though probably you want to have found a safe sovereign nation with resources to protect you as we have seen happen on at least one major occasion in the past few years.

Link to comment
10 hours ago, Gorina said:

Which FF add-on are you using, by the way?

SetupVPN  (I linked it in my original reply in this topic above)

:)

  • Thanks 1
Link to comment
  • 1 year later...

Hi guys,

just have another question about that "G" captchas you need to solve manually or using AddOns to bypass them.A while ago I found that AddOn called "Buster: Captcha Solver for Humans" what also works in most cases but since a while I don't see that AddOn icon anymore in my browser bar (AddOn is enabled) and if I go to a captcha then I also don't see that icon anymore in the Captcha window itself anymore what means that the AddOn isn't active (but it is in AddOn list).So does anyone still use this AddOn for Firefox (latest)?The same AddOn / Extension still works in Chrome.Thats bad that I can't use it anymore in Firefox and I also found no alternativ AddOn yet.The "I'm a robot captcha clicker" AddOn also dosen't work / shows any icon etc.Are there any newer working AddOns to bypass that captchas?Or any script I could use with Tampermonkey?

greetz

Link to comment
whoknows

the Buster: Captcha author writes @ chrome.google.com/webstore/detail/buster-captcha-solver-for/mpbjkejclgfgadiemmefgebjfooflfhl?hl=en

Quote

Solving more than a couple of reCAPTCHA challenges a day may lead to a temporary block, regardless of your use of the extension. Visit the wiki for more details.

https://github.com/dessant/buster/wiki/Inaccessible-reCAPTCHA-audio-challenge

driving you to install an executable app.

  • Like 1
Link to comment

Hi,

the questions is why its no more working for Firefox to see anything of that AddOn.No icon / no options, only in AddOn list its to see.Is it a bug or really no more supported Firefox brwoser?

greetz

Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...