Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

Link inserted onto webpage

hannahanistra
hannahanistra
more options

I regularly visit a blog The scrollable page ends with a grey banner. One day the page scrolled past to reveal an image with a link. It is not on all pages of this site and we do not know how long it's been active (who scrolls past the end of the page?) It is like a pirate link, not meant to be there The content of the links changes, chinese characters web page, choose a girl, log in for porn type ect. Names like NSA flirts.

I have told the site about this issue via email, sent screen shots A couple of times i have not been able to get on the site due to a 'reconfigering' page. This is not the site owners!

This sneaky insertion is running smoothly in the background, under a radar.

Do i really need to reinstall firefox, switch to another browser? use a vpn

Thanks, feedback appreciated. Defo time for an upgrade

Linux mint, fire fox browser

I regularly visit a blog The scrollable page ends with a grey banner. One day the page scrolled past to reveal an image with a link. It is not on all pages of this site and we do not know how long it's been active (who scrolls past the end of the page?) It is like a pirate link, not meant to be there The content of the links changes, chinese characters web page, choose a girl, log in for porn type ect. Names like NSA flirts. I have told the site about this issue via email, sent screen shots A couple of times i have not been able to get on the site due to a 'reconfigering' page. This is not the site owners! This sneaky insertion is running smoothly in the background, under a radar. Do i really need to reinstall firefox, switch to another browser? use a vpn Thanks, feedback appreciated. Defo time for an upgrade Linux mint, fire fox browser
Attached screenshots

All Replies (1)

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 10 Contributor
more options

Usually this is a server hack, but if you think it might be something in your Firefox, you could try this:

New Profile Test

This takes about 3 minutes, plus the time to test problem site(s).

Inside Firefox, type or paste about:profiles in the address bar and press Enter/Return to load it.

Take a quick glance at the page and make a mental note of which Profile has this notation: This is the profile in use and it cannot be deleted. That is your current default profile.

Click the "Create a New Profile" button, then click Next. Assign a name like Jan2021, ignore the option to relocate the profile folder, and click the Finish button.

Firefox will switch your default profile to the new one, so click the Set as Default Profile button for your regular one to avoid an unwanted surprise at your next startup.

Scroll down to Jan2021 and click its Launch profile in new browser button.

Firefox should open a new window that looks like a brand new, uncustomized installation. (Your existing Firefox window(s) should not be affected.) Please ignore any tabs enticing you to connect to a Sync account or to activate extensions found on your system to get a clean test.

Does the problem site look any cleaner in the new profile? Note that hacked servers often only inject garbage to people visiting from a search engine or other site (referring site header is populated) to try to evade detection by the owner, who usually could enter using autocomplete or a bookmark.

When you are done with the experiment, you can close the extra window without affecting your regular Firefox profile. (Jan2021 will remain available for future testing.)