Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
"dear user, congratulations"-redirect but only on certain sites
Message
<blockquote data-quote="alp0" data-source="post: 818219" data-attributes="member: 80216"><p>*windows 8.1</p><p></p><p>approx a week ago i checked a site that i haven't visited in a good while (100down org), there was a redirect. didn't think about it much, until the other day i checked another site (shaveclub fi) and had a similar pop-up. i then experimented googling some other sites and those are the only ones so far that redirect. i have not noticed anything else being wrong.</p><p></p><p></p><p>more detailed info:</p><p></p><p>redirects once, then can be visited normally until switching the router off and back on. just cutting the connection temporarily does not make the ads come back, so i assume it's probably once per ip thing, since i have a dynamic ip address.</p><p></p><p>seems to occur on both opera and ie, google and bing. it seems i can visit both sites without the pop-up if i go straight to the site from address bar.</p><p></p><p>there are no ads on 100down org according to opera adblock.</p><p></p><p>opera adblock seems to block one item on shaveclub fi.</p><p></p><p></p><p>programs i've used and results:</p><p></p><p>malwarebytes: normal and more thorough search for hidden malware, found stuff related to booking com on normal, nothing on thorough search. nothing malicious.</p><p></p><p>adwcleaner: pokki and booking files, also at first run it detected but didn't delete C:\Users\Koti\AppData\Local\SweetLabs App Platform. i didn't think much about it, just that it probably had a reason not to delete it, but when i ran adw the second time before i registered here, it did delete it (to no effect). nothing malicious here either.</p><p></p><p>hitmanpro: seemed to find only tracking cookies, nothing malicious.</p><p></p><p>zemana: only found "yhs4.search.yahoo com". not malicious</p></blockquote><p></p>
[QUOTE="alp0, post: 818219, member: 80216"] *windows 8.1 approx a week ago i checked a site that i haven't visited in a good while (100down org), there was a redirect. didn't think about it much, until the other day i checked another site (shaveclub fi) and had a similar pop-up. i then experimented googling some other sites and those are the only ones so far that redirect. i have not noticed anything else being wrong. more detailed info: redirects once, then can be visited normally until switching the router off and back on. just cutting the connection temporarily does not make the ads come back, so i assume it's probably once per ip thing, since i have a dynamic ip address. seems to occur on both opera and ie, google and bing. it seems i can visit both sites without the pop-up if i go straight to the site from address bar. there are no ads on 100down org according to opera adblock. opera adblock seems to block one item on shaveclub fi. programs i've used and results: malwarebytes: normal and more thorough search for hidden malware, found stuff related to booking com on normal, nothing on thorough search. nothing malicious. adwcleaner: pokki and booking files, also at first run it detected but didn't delete C:\Users\Koti\AppData\Local\SweetLabs App Platform. i didn't think much about it, just that it probably had a reason not to delete it, but when i ran adw the second time before i registered here, it did delete it (to no effect). nothing malicious here either. hitmanpro: seemed to find only tracking cookies, nothing malicious. zemana: only found "yhs4.search.yahoo com". not malicious [/QUOTE]
Insert quotes…
Verification
Post reply
Top