We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Virus/Hi-Jack or just normal?
Options
Legacy_user
Posts: 0 Newbie
Hi
2 laptops both suffering the same problem. HP and Acer.
FireFox displays screens that an update needed to ensure our safety.
usually Ctrl + Alt + Del and Task Manager closes Firefox and it doesn't run on a restart.
I run BitDefender, Wife runs Avira. Malwarebytes RootKit Revealer finds nothing.
The site changes its name, so HOSTS blocking is failing.
So is it a FireFox thing asking for my user name and password?
Trying and being blocked by Firefox.
The notappficat.cool was deviceextff.cool
the nearest I can get is
a http site that flashes up briefly , something like
lz4p???.com
Recent installs, Wife an update to 1803 and it survived that. Me FireFox latest version (added data mining blocker) and ZoneAlarm.
So what am I missing?
2 laptops both suffering the same problem. HP and Acer.
FireFox displays screens that an update needed to ensure our safety.
usually Ctrl + Alt + Del and Task Manager closes Firefox and it doesn't run on a restart.
I run BitDefender, Wife runs Avira. Malwarebytes RootKit Revealer finds nothing.
The site changes its name, so HOSTS blocking is failing.
So is it a FireFox thing asking for my user name and password?
Trying and being blocked by Firefox.
The notappficat.cool was deviceextff.cool
the nearest I can get is
a http site that flashes up briefly , something like
lz4p???.com
Recent installs, Wife an update to 1803 and it survived that. Me FireFox latest version (added data mining blocker) and ZoneAlarm.
So what am I missing?
0
Comments
-
If more than 1 client affected, I'd suspect the router. Is it old? Factory reset and admin password changed?If you put your general location in your Profile, somebody here may be able to come and help you.0
-
It's a HUB3 from VM and it does not the default settings.
The thing seems to be localised to FireFox.
HOWEVER running W10 and having stuff like AllJoyn running would let the thing spread.
I have VM safe device or whatever on the HUB3, and currently re-installing F-Safe in case it gets lucky.
But the ID is an issue that makes it hard to trap.This is a system account and does not represent a real person. To contact the Forum Team email forumteam@moneysavingexpert.com0 -
Is this happening when visiting certain website?
If it is what i think you are talking about (post is unclear) then it is a specially crafted webpage and nothing to do woth your security ..
Does it show with a blue background , and not let you click the red cross ?0 -
Hi
Well an update.
I am currently using Debian and imported the link and it also ran and produced the error page.
So it may just be FireFox specific and not security.
Got a screenshot, which obviously I can't post.
So then I tried the install and overrode the security warning and it appears to install an add-on.
Which goes thru to youtube. Deleted link & page.
So we wait and see.
Thanks for the help/interest.This is a system account and does not represent a real person. To contact the Forum Team email forumteam@moneysavingexpert.com0 -
Hi
Well it appears it is real.
I need to ring an 0 800 number with my credit card, I don't have a credit card.
So much for MalwareBytes, BitDefender and E-Safe.
So it may just be localised to FireFox.
More later, if I can navigate here.
So more re-search is needed.This is a system account and does not represent a real person. To contact the Forum Team email forumteam@moneysavingexpert.com0 -
Sounds like a real pain. As you have Windows10 (on one of the computers at least) perhaps a refresh is best? (whether you keep MS Store apps/data or do a clean install).I need to ring an 0 800 number with my credit card, I don't have a credit card.[I assume this is the pop-up message]If you put your general location in your Profile, somebody here may be able to come and help you.0 -
You need to post a screenshot so we can help you ..
it is not real0 -
Am I missing something here?....If it only happens within FF, can you not run another browser to check?
Have you tried FF in safe mode?
To be honest, the thread isn't making it exactly clear as to what's happening. As AndyPix says, a screenshot would be helpful.Drinking Rum before 10am makes you
A PIRATE
Not an Alcoholic...!0 -
Hi
Well an update.
The day I make sense is a day to worry.
So I used Kaspersky Rescue Disk to little effect. I did hack around the registry.
So I have removed F-Safe, and the Add-On for Bit Coin mining.
Then I got another unwanted program in FireFox.
Next was a few more lines in me HOSTS file.
#Phishing
127.0.0.1 deviceextff.cool
127.0.0.1 lzpv4smat.com
127.0.0.1 dohehuslade.com
127.0.0.1 tradebay.com
127.0.0.1 googletagmanager.com
127.0.0.1 certify-js.alexametrics.com
127.0.0.1 certify.alexametrics.com
127.0.0.1 r.remarketingpixel.com
127.0.0.1 linkedin.com/company/tradebay/
127.0.0.1 instagram.com/tradebayexchange/
127.0.0.1 t.me/tradebay
127.0.0.1 twitter.com/_TRADEBAY_
127.0.0.1 facebook.com/tradebayexchange
A lot more hacking into the registry, doing a bit of damage as you would expect of a Clumsy Charlie like me, and so far no re-occurrence.
Back to BitDefender as my A/V of choice.
So all's well that ends well.
Thank for all the help and support.
I am now the the proud owner of a 4 year old Badger thank to MSE.This is a system account and does not represent a real person. To contact the Forum Team email forumteam@moneysavingexpert.com0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351.1K Banking & Borrowing
- 253.2K Reduce Debt & Boost Income
- 453.6K Spending & Discounts
- 244.1K Work, Benefits & Business
- 599.1K Mortgages, Homes & Bills
- 177K Life & Family
- 257.5K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards