- Jun 25, 2008
- 3
- 0
- 18,510
I have three browsers I use for various things. Edge, Firefox and Chrome
Edge and Firefox keeps getting randomly hijacked by something that diguises itself as a contest from my ISP, but the url is something along eu.whaterverlongprizenametheyuse.top and have shown at least 3 different ones so far.
Inspecting source elements shows conversation tree if I click the prize buttons but can't find any url links in there so makes it seem useless.
It happens constantly, wether page is actively being viewed or in a tab yet to be seen. Its happened on news sites, Imgur, google searches, comic pages etc.
Windows defender finds nothing
Adware finds nothing.
Adwcleaner found two "legacy" things related to an ISO creator but even after cleaning that and restarts it still happens.
I use very few extensions.
Edge has LastPass
Firefox has LastPass, Popup blocker, flash player and a youtube extension.
All extensions are at least two months since install and this hijack has only happened since start of july.
All I can think of that's been installed from a not mainstream/big site is that ISO creator (other thing is a GOG game) but even after a cleaning it should not be possible for a program that isn't running (have checked taskmanager) to create a new hijack.
EDIT: CHROME TOO NOW AAARGGHHHH!
doesn't seem to happen in incognit/private modes. Now me thoroughly confused.
Edge and Firefox keeps getting randomly hijacked by something that diguises itself as a contest from my ISP, but the url is something along eu.whaterverlongprizenametheyuse.top and have shown at least 3 different ones so far.
Inspecting source elements shows conversation tree if I click the prize buttons but can't find any url links in there so makes it seem useless.
It happens constantly, wether page is actively being viewed or in a tab yet to be seen. Its happened on news sites, Imgur, google searches, comic pages etc.
Windows defender finds nothing
Adware finds nothing.
Adwcleaner found two "legacy" things related to an ISO creator but even after cleaning that and restarts it still happens.
I use very few extensions.
Edge has LastPass
Firefox has LastPass, Popup blocker, flash player and a youtube extension.
All extensions are at least two months since install and this hijack has only happened since start of july.
All I can think of that's been installed from a not mainstream/big site is that ISO creator (other thing is a GOG game) but even after a cleaning it should not be possible for a program that isn't running (have checked taskmanager) to create a new hijack.
EDIT: CHROME TOO NOW AAARGGHHHH!
doesn't seem to happen in incognit/private modes. Now me thoroughly confused.
Last edited:
Facebook
Twitter
Instagram