X
Tap here to go to the mobile version of the site.

Support Forum

Firefox connects to IP address of a website automatically on starting

Posted

Not talking about connecting to Amazon cloud and the like, it connects to a website that threw a pop-under once. Not in favorites and FF is set to start to a blank page.

Added the site to my HOSTS file to redirect to localhost, still loads but of course sending a few bytes back and forth to mypc.mydomain.local

Attached is image of what happened before modifying the HOSTS file

This is odd behaviour. Not happening with any other FF used by others in the office.

Let me add, that sporadically it also establish a connection that can't be blocked via HOSTS file as it's an IP address connection that resolves to verisondigitalmedia.com - and we're in Europe, not USA so what the...is Verizon doing showing up?

Note also, no extensions or add-ins other then UBlock Origin. Machine runs Avast and also scanned with Malwarebytes for sanity-check. All clean.

This is odd, yes?

VR

PS - Was unable to upload an image showing the connection. It automatically connects to clicktripz.com

Not talking about connecting to Amazon cloud and the like, it connects to a website that threw a pop-under once. Not in favorites and FF is set to start to a blank page. Added the site to my HOSTS file to redirect to localhost, still loads but of course sending a few bytes back and forth to mypc.mydomain.local Attached is image of what happened before modifying the HOSTS file This is odd behaviour. Not happening with any other FF used by others in the office. Let me add, that sporadically it also establish a connection that can't be blocked via HOSTS file as it's an IP address connection that resolves to verisondigitalmedia.com - and we're in Europe, not USA so what the...is Verizon doing showing up? Note also, no extensions or add-ins other then UBlock Origin. Machine runs Avast and also scanned with Malwarebytes for sanity-check. All clean. This is odd, yes? VR PS - Was unable to upload an image showing the connection. It automatically connects to clicktripz.com

Additional System Details

Application

  • Firefox 60.0.1
  • User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:60.0) Gecko/20100101 Firefox/60.0
  • Support URL: https://support.mozilla.org/1/firefox/60.0.1/WINNT/en-US/

Extensions

  • uBlock Origin 1.16.8 (uBlock0@raymondhill.net)

Javascript

  • incrementalGCEnabled: True

Graphics

  • adapterDescription: NVIDIA GeForce GTX 775M
  • adapterDescription2:
  • adapterDeviceID: 0x119d
  • adapterDeviceID2:
  • adapterDrivers: C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumdx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumdx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumdx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumdx.dll C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumd.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumd.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumd.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvaoi.inf_amd64_d917710a015961c0\nvldumd.dll
  • adapterDrivers2:
  • adapterRAM: 2048
  • adapterRAM2:
  • adapterSubsysID: 0120106b
  • adapterSubsysID2:
  • adapterVendorID: 0x10de
  • adapterVendorID2:
  • clearTypeParameters: DISPLAY1 [ Gamma: 2.2 Pixel Structure: RGB ClearType Level: 100 Enhanced Contrast: 200 ] DISPLAY5 [ Gamma: 2.2 Pixel Structure: RGB ClearType Level: 100 Enhanced Contrast: 50 ]
  • crashGuards: []
  • direct2DEnabled: True
  • directWriteEnabled: True
  • directWriteVersion: 10.0.16299.334
  • driverDate: 5-22-2018
  • driverDate2:
  • driverVersion: 24.21.13.9793
  • driverVersion2:
  • featureLog: {u'fallbacks': [], u'features': [{u'status': u'available', u'description': u'Compositing', u'log': [{u'status': u'available', u'type': u'default'}], u'name': u'HW_COMPOSITING'}, {u'status': u'available', u'description': u'Direct3D11 Compositing', u'log': [{u'status': u'available', u'type': u'default'}], u'name': u'D3D11_COMPOSITING'}, {u'status': u'available', u'description': u'Direct2D', u'log': [{u'status': u'available', u'type': u'default'}], u'name': u'DIRECT2D'}, {u'status': u'available', u'description': u'Direct3D11 hardware ANGLE', u'log': [{u'status': u'available', u'type': u'default'}], u'name': u'D3D11_HW_ANGLE'}, {u'status': u'available', u'description': u'GPU Process', u'log': [{u'status': u'available', u'type': u'default'}], u'name': u'GPU_PROCESS'}, {u'status': u'unavailable', u'description': u'WebRender', u'log': [{u'status': u'opt-in', u'message': u'WebRender is an opt-in feature', u'type': u'default'}, {u'status': u'unavailable', u'message': u"Build doesn't include WebRender", u'type': u'runtime'}], u'name': u'WEBRENDER'}, {u'status': u'available', u'description': u'Off Main Thread Painting', u'log': [{u'status': u'available', u'type': u'default'}], u'name': u'OMTP'}, {u'status': u'available', u'description': u'Advanced Layers', u'log': [{u'status': u'available', u'type': u'default'}], u'name': u'ADVANCED_LAYERS'}]}
  • info: {u'AzureContentBackend (UI Process)': u'skia', u'AzureCanvasBackend (UI Process)': u'skia', u'ApzWheelInput': 1, u'ApzDragInput': 1, u'ApzKeyboardInput': 1, u'AzureFallbackCanvasBackend (UI Process)': u'cairo', u'ApzAutoscrollInput': 1, u'AzureCanvasAccelerated': 0, u'AzureCanvasBackend': u'Direct2D 1.1', u'AzureContentBackend': u'Direct2D 1.1'}
  • isGPU2Active: False
  • numAcceleratedWindows: 1
  • numTotalWindows: 1
  • offMainThreadPaintEnabled: True
  • offMainThreadPaintWorkerCount: 0
  • usesTiling: False
  • webgl1DriverExtensions: GL_ANGLE_client_arrays GL_ANGLE_depth_texture GL_ANGLE_framebuffer_blit GL_ANGLE_framebuffer_multisample GL_ANGLE_instanced_arrays GL_ANGLE_lossy_etc_decode GL_ANGLE_pack_reverse_row_order GL_ANGLE_program_cache_control GL_ANGLE_request_extension GL_ANGLE_robust_client_memory GL_ANGLE_texture_compression_dxt3 GL_ANGLE_texture_compression_dxt5 GL_ANGLE_texture_usage GL_ANGLE_translated_shader_source GL_CHROMIUM_bind_generates_resource GL_CHROMIUM_bind_uniform_location GL_CHROMIUM_color_buffer_float_rgb GL_CHROMIUM_color_buffer_float_rgba GL_CHROMIUM_copy_compressed_texture GL_CHROMIUM_copy_texture GL_CHROMIUM_sync_query GL_EXT_blend_minmax GL_EXT_color_buffer_half_float GL_EXT_debug_marker GL_EXT_discard_framebuffer GL_EXT_disjoint_timer_query GL_EXT_draw_buffers GL_EXT_frag_depth GL_EXT_map_buffer_range GL_EXT_occlusion_query_boolean GL_EXT_read_format_bgra GL_EXT_robustness GL_EXT_sRGB GL_EXT_shader_texture_lod GL_EXT_texture_compression_dxt1 GL_EXT_texture_compression_s3tc_srgb GL_EXT_texture_filter_anisotropic GL_EXT_texture_format_BGRA8888 GL_EXT_texture_rg GL_EXT_texture_storage GL_EXT_unpack_subimage GL_KHR_debug GL_NV_EGL_stream_consumer_external GL_NV_fence GL_NV_pack_subimage GL_NV_pixel_buffer_object GL_OES_EGL_image GL_OES_EGL_image_external GL_OES_compressed_ETC1_RGB8_texture GL_OES_depth32 GL_OES_element_index_uint GL_OES_get_program_binary GL_OES_mapbuffer GL_OES_packed_depth_stencil GL_OES_rgb8_rgba8 GL_OES_standard_derivatives GL_OES_surfaceless_context GL_OES_texture_float GL_OES_texture_float_linear GL_OES_texture_half_float GL_OES_texture_half_float_linear GL_OES_texture_npot GL_OES_vertex_array_object
  • webgl1Extensions: ANGLE_instanced_arrays EXT_blend_minmax EXT_color_buffer_half_float EXT_frag_depth EXT_sRGB EXT_shader_texture_lod EXT_texture_filter_anisotropic EXT_disjoint_timer_query OES_element_index_uint OES_standard_derivatives OES_texture_float OES_texture_float_linear OES_texture_half_float OES_texture_half_float_linear OES_vertex_array_object WEBGL_color_buffer_float WEBGL_compressed_texture_s3tc WEBGL_compressed_texture_s3tc_srgb WEBGL_debug_renderer_info WEBGL_debug_shaders WEBGL_depth_texture WEBGL_draw_buffers WEBGL_lose_context
  • webgl1Renderer: Google Inc. -- ANGLE (NVIDIA GeForce GTX 775M Direct3D11 vs_5_0 ps_5_0)
  • webgl1Version: OpenGL ES 2.0 (ANGLE 2.1.0.7edc21933ef1)
  • webgl1WSIInfo: EGL_VENDOR: Google Inc. (adapter LUID: 000000000000833f) EGL_VERSION: 1.4 (ANGLE 2.1.0.7edc21933ef1) EGL_EXTENSIONS: EGL_EXT_create_context_robustness EGL_ANGLE_d3d_share_handle_client_buffer EGL_ANGLE_d3d_texture_client_buffer EGL_ANGLE_surface_d3d_texture_2d_share_handle EGL_ANGLE_query_surface_pointer EGL_ANGLE_window_fixed_size EGL_ANGLE_keyed_mutex EGL_ANGLE_surface_orientation EGL_ANGLE_direct_composition EGL_NV_post_sub_buffer EGL_KHR_create_context EGL_EXT_device_query EGL_KHR_image EGL_KHR_image_base EGL_KHR_gl_texture_2D_image EGL_KHR_gl_texture_cubemap_image EGL_KHR_gl_renderbuffer_image EGL_KHR_get_all_proc_addresses EGL_KHR_stream EGL_KHR_stream_consumer_gltexture EGL_NV_stream_consumer_gltexture_yuv EGL_ANGLE_flexible_surface_compatibility EGL_ANGLE_stream_producer_d3d_texture EGL_ANGLE_create_context_webgl_compatibility EGL_CHROMIUM_create_context_bind_generates_resource EGL_CHROMIUM_sync_control EGL_EXT_pixel_format_float EGL_KHR_surfaceless_context EGL_ANGLE_display_texture_share_group EGL_ANGLE_create_context_client_arrays EGL_ANGLE_program_cache_control EGL_ANGLE_robust_resource_initialization EGL_EXTENSIONS(nullptr): EGL_EXT_client_extensions EGL_EXT_platform_base EGL_EXT_platform_device EGL_ANGLE_platform_angle EGL_ANGLE_platform_angle_d3d EGL_ANGLE_device_creation EGL_ANGLE_device_creation_d3d11 EGL_ANGLE_experimental_present_path EGL_KHR_client_get_all_proc_addresses
  • webgl2DriverExtensions: GL_ANGLE_client_arrays GL_ANGLE_depth_texture GL_ANGLE_framebuffer_blit GL_ANGLE_framebuffer_multisample GL_ANGLE_instanced_arrays GL_ANGLE_lossy_etc_decode GL_ANGLE_multiview GL_ANGLE_pack_reverse_row_order GL_ANGLE_program_cache_control GL_ANGLE_request_extension GL_ANGLE_robust_client_memory GL_ANGLE_texture_compression_dxt3 GL_ANGLE_texture_compression_dxt5 GL_ANGLE_texture_usage GL_ANGLE_translated_shader_source GL_CHROMIUM_bind_generates_resource GL_CHROMIUM_bind_uniform_location GL_CHROMIUM_color_buffer_float_rgb GL_CHROMIUM_color_buffer_float_rgba GL_CHROMIUM_copy_compressed_texture GL_CHROMIUM_copy_texture GL_CHROMIUM_sync_query GL_EXT_blend_minmax GL_EXT_color_buffer_float GL_EXT_color_buffer_half_float GL_EXT_debug_marker GL_EXT_discard_framebuffer GL_EXT_disjoint_timer_query GL_EXT_draw_buffers GL_EXT_frag_depth GL_EXT_map_buffer_range GL_EXT_occlusion_query_boolean GL_EXT_read_format_bgra GL_EXT_robustness GL_EXT_sRGB GL_EXT_shader_texture_lod GL_EXT_texture_compression_dxt1 GL_EXT_texture_compression_s3tc_srgb GL_EXT_texture_filter_anisotropic GL_EXT_texture_format_BGRA8888 GL_EXT_texture_norm16 GL_EXT_texture_rg GL_EXT_texture_storage GL_EXT_unpack_subimage GL_KHR_debug GL_NV_EGL_stream_consumer_external GL_NV_fence GL_NV_pack_subimage GL_NV_pixel_buffer_object GL_OES_EGL_image GL_OES_EGL_image_external GL_OES_EGL_image_external_essl3 GL_OES_compressed_ETC1_RGB8_texture GL_OES_depth32 GL_OES_element_index_uint GL_OES_get_program_binary GL_OES_mapbuffer GL_OES_packed_depth_stencil GL_OES_rgb8_rgba8 GL_OES_standard_derivatives GL_OES_surfaceless_context GL_OES_texture_float GL_OES_texture_float_linear GL_OES_texture_half_float GL_OES_texture_half_float_linear GL_OES_texture_npot GL_OES_vertex_array_object
  • webgl2Extensions: EXT_color_buffer_float EXT_texture_filter_anisotropic EXT_disjoint_timer_query OES_texture_float_linear WEBGL_compressed_texture_s3tc WEBGL_compressed_texture_s3tc_srgb WEBGL_debug_renderer_info WEBGL_debug_shaders WEBGL_lose_context
  • webgl2Renderer: Google Inc. -- ANGLE (NVIDIA GeForce GTX 775M Direct3D11 vs_5_0 ps_5_0)
  • webgl2Version: OpenGL ES 3.0 (ANGLE 2.1.0.7edc21933ef1)
  • webgl2WSIInfo: EGL_VENDOR: Google Inc. (adapter LUID: 000000000000833f) EGL_VERSION: 1.4 (ANGLE 2.1.0.7edc21933ef1) EGL_EXTENSIONS: EGL_EXT_create_context_robustness EGL_ANGLE_d3d_share_handle_client_buffer EGL_ANGLE_d3d_texture_client_buffer EGL_ANGLE_surface_d3d_texture_2d_share_handle EGL_ANGLE_query_surface_pointer EGL_ANGLE_window_fixed_size EGL_ANGLE_keyed_mutex EGL_ANGLE_surface_orientation EGL_ANGLE_direct_composition EGL_NV_post_sub_buffer EGL_KHR_create_context EGL_EXT_device_query EGL_KHR_image EGL_KHR_image_base EGL_KHR_gl_texture_2D_image EGL_KHR_gl_texture_cubemap_image EGL_KHR_gl_renderbuffer_image EGL_KHR_get_all_proc_addresses EGL_KHR_stream EGL_KHR_stream_consumer_gltexture EGL_NV_stream_consumer_gltexture_yuv EGL_ANGLE_flexible_surface_compatibility EGL_ANGLE_stream_producer_d3d_texture EGL_ANGLE_create_context_webgl_compatibility EGL_CHROMIUM_create_context_bind_generates_resource EGL_CHROMIUM_sync_control EGL_EXT_pixel_format_float EGL_KHR_surfaceless_context EGL_ANGLE_display_texture_share_group EGL_ANGLE_create_context_client_arrays EGL_ANGLE_program_cache_control EGL_ANGLE_robust_resource_initialization EGL_EXTENSIONS(nullptr): EGL_EXT_client_extensions EGL_EXT_platform_base EGL_EXT_platform_device EGL_ANGLE_platform_angle EGL_ANGLE_platform_angle_d3d EGL_ANGLE_device_creation EGL_ANGLE_device_creation_d3d11 EGL_ANGLE_experimental_present_path EGL_KHR_client_get_all_proc_addresses
  • windowLayerManagerRemote: True
  • windowLayerManagerType: Direct3D 11
  • windowUsingAdvancedLayers: True

Modified Preferences

Misc

  • User JS: No
  • Accessibility: No
FredMcD
  • Top 10 Contributor
4260 solutions 59653 answers

https://support.mozilla.org/en-US/kb/how-to-set-the-home-page

Type about:config<enter> in the address bar. If a warning screen comes up, press the I Accept the Risk button. At the top of the screen is a search bar. Type browser.startup.homepage

What is the value? Right-click and select Reset to restore its default value; about:home

https://support.mozilla.org/en-US/kb/how-to-set-the-home-page Type '''about:config'''<enter> in the address bar. If a warning screen comes up, press the '''I Accept the Risk''' button. At the top of the screen is a search bar. Type '''browser.startup.homepage''' What is the value? Right-click and select '''Reset''' to restore its default value; '''about:home'''

Question owner

Not the issue - homepage is set to about:home.

You can bump this up from 'consumer' level advise. Have tech company, been in IT since the 90s (yes, really).

Thanks VR

Not the issue - homepage is set to about:home. You can bump this up from 'consumer' level advise. Have tech company, been in IT since the 90s (yes, really). Thanks VR
WestEnd 60 solutions 5387 answers

It sounds like those sites uses or are connected to the advertiser and link with their site. So doesn't look like you can remove that otherwise you need to talk to Verizon and Amazon about that issue. FF doesn't control what Verizon and Amazon and their associate sites do when you visit their site.

It sounds like those sites uses or are connected to the advertiser and link with their site. So doesn't look like you can remove that otherwise you need to talk to Verizon and Amazon about that issue. FF doesn't control what Verizon and Amazon and their associate sites do when you visit their site.

Question owner

Wow, did you read this? I did not visit Verizon at all, the other was a pop-under months ago.

These IPs are contacted the moment you launch FF with NO websites loaded or displayed. Nothing. Just start it to the blank home page and these connections are started by FF.

Something is triggering FF to connect to websites that are not bookmarked or opened. I know, sounds impossible but there it is.

If there's a security forum or something else that doesn't treat us like idoits as your last response, do let me know.

Wow, did you read this? I did not visit Verizon at all, the other was a pop-under months ago. These IPs are contacted the moment you launch FF with NO websites loaded or displayed. Nothing. Just start it to the blank home page and these connections are started by FF. Something is triggering FF to connect to websites that are not bookmarked or opened. I know, sounds impossible but there it is. If there's a security forum or something else that doesn't treat us like idoits as your last response, do let me know.
Tyler Downer
  • Top 25 Contributor
  • Moderator
1535 solutions 10714 answers

https://support.mozilla.org/kb/how-stop-firefox-making-automatic-connections

What are the IP addresses? Have you tested in a fresh profile?

https://support.mozilla.org/kb/how-stop-firefox-making-automatic-connections What are the IP addresses? Have you tested in a fresh profile?

Question owner

Hi Tyler,

Tried a fresh profile - no changes to it. Ran it and got similar results (see attached fresh-profile.PNG.

To be clear, I understand the Amazon stuff is your CDN for whatever - Sync, telemetry, updates, etc.

Checked launching Chrome to "prove" to myself at least this isn't some systemic issue. Chrome, clean.

So points to something FF is doing that's initiating connections to sites never visited (verisondigitalmedia.com), sites that launched as a pop-under (and since blocked via UBlock Origin).

And again, machines where this happens (fresh profile was on another PC that has no software installed on it from OOB except AV - and different AV as mine (we have heterogeneous AV setup - if only one and it misses something that spreads, another may catch it.)

No other app that connects to the internet (checks many using both MS Resource Monitor, and a NirSoft tool that's more customizable) - same results.

Very odd and concerning. This is in a corporate use environment and so not some tinfoil hat black helicopter paranoid user.

Thanks

Hi Tyler, Tried a fresh profile - no changes to it. Ran it and got similar results (see attached fresh-profile.PNG. To be clear, I understand the Amazon stuff is your CDN for whatever - Sync, telemetry, updates, etc. Checked launching Chrome to "prove" to myself at least this isn't some systemic issue. Chrome, clean. So points to something FF is doing that's initiating connections to sites never visited (verisondigitalmedia.com), sites that launched as a pop-under (and since blocked via UBlock Origin). And again, machines where this happens (fresh profile was on another PC that has no software installed on it from OOB except AV - and different AV as mine (we have heterogeneous AV setup - if only one and it misses something that spreads, another may catch it.) No other app that connects to the internet (checks many using both MS Resource Monitor, and a NirSoft tool that's more customizable) - same results. Very odd and concerning. This is in a corporate use environment and so not some tinfoil hat black helicopter paranoid user. Thanks
FredMcD
  • Top 10 Contributor
4260 solutions 59653 answers

You may have ad/mal-ware. Further information can be found in this article; https://support.mozilla.org/en-US/kb/troubleshoot-firefox-issues-caused-malware?cache=no

Run most or all of the listed malware scanners. Each works differently. If one program misses something, another may pick it up.

You may have ad/mal-ware. Further information can be found in this article; https://support.mozilla.org/en-US/kb/troubleshoot-firefox-issues-caused-malware?cache=no Run most or all of the listed malware scanners. Each works differently. If one program misses something, another may pick it up.

Question owner

No the case. Again, do you read this? We use multiple malware products - no two PCs the same. So if one missises something the chances are better than zero that another would. Plus ALL are checked via stand-alone scanners like Malwarebytes or EMISOFT Emergency Toolkit. We are 100% on constant check, double-check.

It can't be malware when Chrome doesn't do it, and no other program that dials home does it. Just FF.

So perhaps as I've said, this needs a bump up from "consumer" support to security,

ONLY FF has this problem - and on multiple PCs with totally dissimilar usage scenarios and users.

For now I have to accept that this is your "solution" or best advice. Hopefully someone will Google this and say "Me too."

Tech needs a #MeToo about how they shirk responsibility for the lack of ability to support the vast markets/users they pursue.

That means "we want numbers, not quality or security."

No the case. Again, do you read this? We use multiple malware products - no two PCs the same. So if one missises something the chances are better than zero that another would. Plus ALL are checked via stand-alone scanners like Malwarebytes or EMISOFT Emergency Toolkit. We are 100% on constant check, double-check. It can't be malware when Chrome doesn't do it, and no other program that dials home does it. Just FF. So perhaps as I've said, this needs a bump up from "consumer" support to security, ONLY FF has this problem - and on multiple PCs with totally dissimilar usage scenarios and users. For now I have to accept that this is your "solution" or best advice. Hopefully someone will Google this and say "Me too." Tech needs a #MeToo about how they shirk responsibility for the lack of ability to support the vast markets/users they pursue. That means "we want numbers, not quality or security."
cor-el
  • Top 10 Contributor
  • Moderator
17539 solutions 158588 answers
See also: *https://support.mozilla.org/en-US/kb/Firefox+makes+unrequested+connections

Question owner

Same canned answers that do not apply here. These have been addressed.

Seriously, this is becoming like Microsoft support where whatever the issue the answer is sfc /scannow

No. NOTHING in that addresses it and was already sent there.

This is FF problem. There is definitely some hole somewhere that's being exploited.

Hate Chrome, Google - use FF as company policy. This may change that.

Even assuming some DNS pollution here somehow somewhere - vague by design, the fact that ONLY Firefox is affected makes it a Mozilla problem.

So, does that not merit more than "consumer clueless" help advice?

There's a hole - and FF is it whatever else is the case.

Same canned answers that do not apply here. These have been addressed. Seriously, this is becoming like Microsoft support where whatever the issue the answer is sfc /scannow No. NOTHING in that addresses it and was already sent there. This is FF problem. There is definitely some hole somewhere that's being exploited. Hate Chrome, Google - use FF as company policy. This may change that. Even assuming some DNS pollution here somehow somewhere - vague by design, the fact that ONLY Firefox is affected makes it a Mozilla problem. So, does that not merit more than "consumer clueless" help advice? There's a hole - and FF is it whatever else is the case.
cor-el
  • Top 10 Contributor
  • Moderator
17539 solutions 158588 answers

If it comes from Firefox then it should be covered in the article. Otherwise external software is responsible, but if it happens on multiple setups then there should be a common factor, either software or something else in the connection that acts as a man-in-the-middle.


Do a malware check with several malware scanning programs on the Windows computer.

Please scan with all programs because each program detects different malware. All these programs have free versions.

Make sure you update each program to get the latest version of their databases before doing a scan.

You can also do a check for a rootkit infection with TDSSKiller.


https://support.kaspersky.com/viruses/utility

See also:

If it comes from Firefox then it should be covered in the article. Otherwise external software is responsible, but if it happens on multiple setups then there should be a common factor, either software or something else in the connection that acts as a man-in-the-middle. ---- Do a malware check with several malware scanning programs on the Windows computer. *https://support.mozilla.org/en-US/kb/troubleshoot-firefox-issues-caused-malware Please scan with all programs because each program detects different malware. All these programs have free versions. Make sure you update each program to get the latest version of their databases before doing a scan. *Malwarebytes' Anti-Malware:<br>http://www.malwarebytes.org/mbam.php *AdwCleaner:<br>http://www.bleepingcomputer.com/download/adwcleaner/<br>http://www.softpedia.com/get/Antivirus/Removal-Tools/AdwCleaner.shtml *SuperAntispyware:<br>http://www.superantispyware.com/ *Microsoft Safety Scanner:<br>https://www.microsoft.com/security/scanner/en-us/default.aspx *Windows Defender:<br>https://windows.microsoft.com/en-us/windows/using-defender *Spybot Search & Destroy:<br>http://www.safer-networking.org/en/index.html *Kasperky Free Security Scan:<br>https://www.kaspersky.com/security-scan You can also do a check for a rootkit infection with TDSSKiller. *Anti-rootkit utility TDSSKiller:<br>https://support.kaspersky.com/viruses/disinfection/5350 <br>https://support.kaspersky.com/viruses/utility See also: *"Spyware on Windows": http://kb.mozillazine.org/Popups_not_blocked

Question owner

Closing this issue.

Every answer is aimed at grandma that has never used a PC. Read the opening question and see we're not. Read the rest and know we're not. Answers are dumb-consumer level answers, which by the way insult the average consumer of FF.

We've been a 100% FF company for years because we trust you more than we'd trust Chrome with our kids.

This is so pathetically poor that guess we'll have to go Chrome since that issue don't happen when using Chrome in the same PCs - so as stated: is a FF problem.

With about 5% market share, you might want to do better.

Chrome sucks, and Google IS evil. But they seem to be more secure, albeit as sharing our lives for their evil AI domination of the planet.

Ooops, sounds tin-hat conspiracy crazy. No. It's not. That's their whole business model.

What is YOUR business model? None.

That's what was good.

But when there's no way to say (scream) "You've got some serious problem that allows connections not requested by the user, that's bad." and there's no "Wow" moment but assumption that grandma has an toolbar, or little-Timmy has surfed poorly, or that you have no good AV...

Pathetic.

Google is evil. Chrome renders pages like s*it. Has NO support.

But at least it doesn't load a bunch of connections that are unrelated to THEM.

Any chance one of you volunteers might think "Huh, maybe there's something here that Dev/security should check out?

Because one more grandma explanation of how to use antivirus or clear cache of whatever...

Closing this issue. Every answer is aimed at grandma that has never used a PC. Read the opening question and see we're not. Read the rest and know we're not. Answers are dumb-consumer level answers, which by the way insult the average consumer of FF. We've been a 100% FF company for years because we trust you more than we'd trust Chrome with our kids. This is so pathetically poor that guess we'll have to go Chrome since that issue don't happen when using Chrome in the same PCs - so as stated: is a FF problem. With about 5% market share, you might want to do better. Chrome sucks, and Google IS evil. But they seem to be more secure, albeit as sharing our lives for their evil AI domination of the planet. Ooops, sounds tin-hat conspiracy crazy. No. It's not. That's their whole business model. What is YOUR business model? None. That's what was good. But when there's no way to say (scream) "You've got some serious problem that allows connections not requested by the user, that's bad." and there's no "Wow" moment but assumption that grandma has an toolbar, or little-Timmy has surfed poorly, or that you have no good AV... Pathetic. Google is evil. Chrome renders pages like s*it. Has NO support. But at least it doesn't load a bunch of connections that are unrelated to THEM. Any chance one of you volunteers might think "Huh, maybe there's something here that Dev/security should check out? Because one more grandma explanation of how to use antivirus or clear cache of whatever...
Tyler Downer
  • Top 25 Contributor
  • Moderator
1535 solutions 10714 answers

Have you posted your about:support data for one of the machines here?

Have you posted your about:support data for one of the machines here?