All Products Community Forum

This is behind the scenes of course with me doing nothing to initiate contact. I previously contacted MB support about such warnings and they told me to uninstall two extensions--Video Download Helper and AddtoAny. I've used both for a long time, but uninstalling them did fix that particular problem wherein the browser kept trying to connect to techalert.com, a site that is (through research) apparently for shareware? I don't recall ever being on it. But that's stopped.

But there was another. See jpg attachment. This is pretty much every day that I'm being told FF is trying to connect to something that is offering up a Trojan--apparently through Instagram??? That also makes little sense.

Most recently, I have two MORE such attempts to connect in the background, this time with full IP addresses. Both of those seem to be compromised sites in Pakistan according to a little research I did. (I have no dealings with Pakistan.) Why these two latest have full IP addresses and the others (see image) only deal with an Instagram URL, have no idea.

So, I contacted MB support again. They said it was not a false positive and they couldn't be sure what was doing this, but "something on firefox is reaching out to the IP address." At first they suggested returning FF to a default state. I'm reluctant to do that considering how much time spent getting it where I want it. So, now, they suggest turning off extensions one-by-one. That's a better idea, but certainly labor intensive and something that may take awhile.

So before I undertake this potentially time consuming task, does anyone here have some idea of what's happening?

P.s. scans came up clean of my system, no trojans, malware detected.

Win11, latest updates, FF 133.03 64 bit

Hi,

I need to ask regardining this security.cert_pinning.enforcement_level. how can i set this value using the windwos server GPO? i could not find this even after copying the firefox.admx file. could someone please guide me how can i acheive it?

I would really appreciate the help!

Regards Sheras

FF 133.0.3 (64bit) OSX 13.6 Ventura

Am having trouble reliably accessing any site that uses Cloudflare.

No extensions are installed, no UA switching.

Have tried:

• Default settings as well as purposefully turning various settings "off", both with existing and brand new profiles.
• Disabling "Enhanced tracking protection", but it does appears to be hard-coded "on" as it appears as "Enabled" when any new site is visited, even even though about:protections clearly states "Enhanced Tracking Protection: OFF".
• Multiple DNS providers (Google -> 8.8.8.8, 8.8.4.4), (OpenDNS -> 208.67.222.222, 208.67.220.220), (Cloudflare -> 1.1.1.1, 1.0.0.1)

The issue with Cloudflare is getting past its endless "Verify you are human" turnstyle checkbox. As stated above ETP is supposedly "off". Even went ahead and added "https://cloudflare.com" and "https://challenges.cloudflare.com" to the ETP exceptions list (which should be unneccesary as ETP is supposedly "off").

Though this ticket was a few years old, followed all steps from https://support.mozilla.org/bm/questions/1273784 to no effect.

Double-checked:

Settings -> Privacy and Security: ETP -> Custom -> ALL unchecked (cookies, Tracking Content, Cryptominers, Known fingerprinters, Suspected fingerprinters) DNS over HTTPS -> Off

about:config: network.cookie.cookieBehavior -> 0 privacy.socialtracking.block_cookies.enabled => false privacy.trackingprotection.enabled privacy.trackingprotection.pbmode.enabled privacy.trackingprotection.cryptomining.enabled privacy.trackingprotection.fingerprinting.enabled

Going to any site and clicking the protection "Heart" icon still shows enhanced tracking protection to be "Enabled" (though it should not be). On any Cloudflare site, selecting "Disabled" immediately brings up the "Verify you are human" checkbox ad infinitum.

Just for fun, inspected a page a couple of times (the new serenity.ai search engine), clearing cookies & cache each time, noting the network tab via inspect. The only thing that appeared to change was the value of a cookie, and cloudflare's Ray ID. Two responses were in error, a 403 and a 401:

Request Headers (403): GET /search/new?q=pending&newFrontendContextUUID=4f32d4c2-d660-4ff0-9887-2a3aae266a9b HTTP/2 Host: www.perplexity.ai User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:133.0) Gecko/20100101 Firefox/133.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br, zstd Referer: https://www.perplexity.ai/ Connection: keep-alive Cookie: __cf_bm=DNF1kEWfzAVxab2PKJWFLyU0IXE4b5LNz.PIeoJOkOM-1734448407-1.0.1.1-cS8gMWSRlFpgYv_.cZdM9mQ9DGzIsHM9wFfeFHhXwA0zY1vtZPh0rn4dDiC63I.z.w93j4IcSXrQnpjOuNyM1w; AWSALB=lTKv0yx38yEkkWzEYB967kh1SykONJgcXE9Ge6jOe93Ty6rjgkH/Z3fBTxkSNUqRnXDgFFI+KYesnIBGiZH490IN/2pXP88ymp9yPPEyygVgD81friGNeJZgn45BTyocfNyYmsqEskUA+rHB0ltxa1YhhpxrUABoqY/udkHGsyL4vlSvuzYJ4MOWwWlS4g==; AWSALBCORS=lTKv0yx38yEkkWzEYB967kh1SykONJgcXE9Ge6jOe93Ty6rjgkH/Z3fBTxkSNUqRnXDgFFI+KYesnIBGiZH490IN/2pXP88ymp9yPPEyygVgD81friGNeJZgn45BTyocfNyYmsqEskUA+rHB0ltxa1YhhpxrUABoqY/udkHGsyL4vlSvuzYJ4MOWwWlS4g==; pplx.visitor-id=4bc3f08b-020e-439e-8e93-15f8b6af0f83; __cflb=02DiuDyvFMmK5p9jVbVnMNSKYZhUL9aGkVUmJ5FqcYiD2; _dd_s=rum=0&expire=1734449360079; cf_clearance=UZ9n6kS.QQutYN0gn.BNstdZs_YZ764L76SAZVNJPjk-1734448407-1.2.1.1-u9UM_ZNPiKyD4aznyWVe1SJiRAquh36ZYaCGE7Np4pK_beiYl.c4oV23VoufQ8xzQ72Z_Enav6x.H37HHoRduCFPk_BCdFRrpPi1qYVJmHbUmgqEcash1cfl9bMUkoimji9AgONyabWAOng7o4fvRcjRyf.HdQVDXij2eVr_zzxm1Yt484iGVG6cyelIgm.xkIAaHpnmiBlnJElUdeaH5ptdBjdprkgL6S9LmMq6cQSz1xYmef2gH7yyC.kkIcZypX7uazKwOnrpe3QJnJTN3YNG_8NddGw3UOdrU.3AWSTyVv7_TjskqV3GrvUImEISakVICmxuRDZ7v9xi5DdMwJ__ocBaSEghOpbpPAoYANE; next-auth.csrf-token=772ac4d1fe8dfdfc70db3336892bafe3e7738102b83aa8269663e3444d1a1aa6%7Cd4206f57d899feb21c14f1aff27d0ce596dfb06c928c52d7cda16f3dc9a52eec; next-auth.callback-url=https%3A%2F%2Fwww.perplexity.ai; __stripe_mid=d89f9abf-fdd8-4910-b012-9a0a1da2b3405fa7e8; __stripe_sid=b520bbae-1a2d-4363-9e2e-3f058998c945eff199; pplx.metadata={%22qc%22:1%2C%22qcu%22:0%2C%22qcm%22:0%2C%22qcc%22:0%2C%22qcd%22:0%2C%22hli%22:false%2C%22hcga%22:false%2C%22hcds%22:false%2C%22hso%22:false%2C%22hfo%22:false} Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Sec-Fetch-User: ?1 Priority: u=0, i TE: trailers

Response Headers (403): HTTP/2 403 date: Tue, 17 Dec 2024 15:14:20 GMT content-type: text/html; charset=UTF-8 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-content-options: nosniff x-frame-options: SAMEORIGIN cf-mitigated: challenge cf-chl-out: Gdpf2G2P84icaUc9eXBrWRoMXFniOcc94+Rt+ymiXoU/cQYKq8+xzyEgik2f0RThFUI4k5JP9g+7skl51OBeTGu39RBCR7yL/tmwF/QGgJBjDwK3EIC0tYjHpE5BW4phtvO78Z9jG2iIgdkLyHJdhw==$aGNrRFcXEu22z86D/jnmkA== cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT vary: Accept-Encoding server: cloudflare cf-ray: 8f37dcbbeae32e6a-DFW content-encoding: gzip X-Firefox-Spdy: h2

Fetch (403): await fetch("https://www.perplexity.ai/search/new?q=pending&newFrontendContextUUID=9d97fef3-8197-4a4a-841f-690468857281", {

   "credentials": "include",
   "headers": {
       "User-Agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:133.0) Gecko/20100101 Firefox/133.0",
       "Accept": "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8",
       "Accept-Language": "en-US,en;q=0.5",
       "Upgrade-Insecure-Requests": "1",
       "Sec-Fetch-Dest": "document",
       "Sec-Fetch-Mode": "navigate",
       "Sec-Fetch-Site": "same-origin",
       "Sec-Fetch-User": "?1",
       "Priority": "u=0, i"
   },
   "referrer": "https://www.perplexity.ai/",
   "method": "GET",
   "mode": "cors"

});

Request Headers (401): GET /cdn-cgi/challenge-platform/h/b/pat/8f37dcbe4d1e2836/1734448460780/74c530203e547de34250ba4b3b0818fccad4eb8dceb870bebc84a25ac4424ca4/8ST9YViz3dffgoY HTTP/2 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:133.0) Gecko/20100101 Firefox/133.0 Accept: */* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br, zstd Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/d8tib/0x4AAAAAAADnPIDROrmt1Wwj/dark/fbE/normal/auto/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Priority: u=4 Cache-Control: max-age=0 TE: trailers

Response Headers (401): HTTP/2 401 date: Tue, 17 Dec 2024 15:14:20 GMT content-type: text/plain; charset=utf-8 content-length: 1 www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gdMUwID5UfeNCULpLOwgY_MrU643OuHC-vISiWsRCTKQAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIHTFMCA-VH3jQlC6SzsIGPzK1OuNzrhwvryEolrEQkykABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIHTFMCA-VH3jQlC6SzsIGPzK1OuNzrhwvryEolrEQkykABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAnjx4ES9FK_7HoOz2eOuAOLsLJohAAACh84h85AqhAgNOQHBXgzvaRlSVTWSxbxqMaM7_mzi_nXEX7uTPY4QjDPwxO1-MTMRr9MTdbId3v2KeXk7Utq2UL3Sqq1pUAFuYr5f3iNWvcUTPA2uQnM5rA2Y6y4ihqGeKzjo4Ws3RUng4UG_XpnH7TLtkaQT2lSlx1KW3HVmqe3s2nErL6VnmuSSy2fq44coBInPp7ynWCw8_3S_-dcI8a5go7lg2mavoCR40euH5CdnAunVSViDwmvWwAp-1utTaVRH5Js528pcl79qQZBn4JNqyILi_Ymqw1LSnr8eYgV1xj4dzW1hJqQIDAQAB", max-age=20 server: cloudflare cf-ray: 8f37dcc06f682836-DFW alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

Fetch (401): await fetch("https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8f37e12ccc22e79a/1734448642308/b0f60510f953d7fa51138545e66632922718d191f21dd45996658b37e0dd46d0/BgNyxuJHfe5Ju1e", {

   "credentials": "omit",
   "headers": {
       "User-Agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:133.0) Gecko/20100101 Firefox/133.0",
       "Accept": "*/*",
       "Accept-Language": "en-US,en;q=0.5",
       "Sec-Fetch-Dest": "empty",
       "Sec-Fetch-Mode": "cors",
       "Sec-Fetch-Site": "same-origin",
       "Priority": "u=4",
       "Cache-Control": "max-age=0"
   },
   "referrer": "https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/2iqu9/0x4AAAAAAADnPIDROrmt1Wwj/dark/fbE/normal/auto/",
   "method": "GET",
   "mode": "cors"

});

Had also reported this issue over at Cloudflare a while back; they were not very forthcoming as to why this behavior might be occurring. Often their own forum would get the endless turnstyle with FF.

Other browsers do not have this issue, and while I very much like Firefox, in recent releases it has become all but unusable where Cloudflare is concerned.

Please advise how to reliable get past Cloudflare's endless "Verify you are human" turnstyle.

Thanks!

Hi, I'm a devoted Firefox user. But it seems I've been having some problems lately with things that are supposed to appear on webpages not appearing. I'm wondering if I have something enabled that is somehow hiding content. I'm contacting you about the firefox settings page itself, there's supposed to be a tab on there to manage my saved payment methods. I'm just trying to add a new credit card, but the tab is no where to be found.

I've watched instructional videos on it, it's supposed to appear above History and after passwords, I believe. But it's not showing on my page. I've attached a screen shot of what I see. I've also tried searching for 'saved payment methods' etc. No luck. What do you think is going on?

How can I activate a SPAM filter and SPAM folder in Thunderbird Mobile? Without SPAM protection, using Thunderbird Mobile would be critical.

I keep getting '500 error' when trying to login to my Evergy account. The Evergy support was helpful so I could use Google Chrome however I would like to use my Firefox browser. They had me clear browser history, cookies and other site data and cached images and files. Then restart the Google Chrome browser. How can I get the same data cleared in Firefox?

I have used the privacy and security settings in Firefox and cleared cache and history and cookies, but still can't log into my account.

This has been an issue since 12/01/2024

why have captcha at all....paypal usually send code after anyway...poor eyesight means the low res racist/usa images are not clear and there are apps for bypassing...i am fed up with doing them up to 10 times in a row

Hello. What the hell came out when I was watching the video on YouTube? I don't know this site and I don't visit anything except Pornhub. What could this be connected with?

Прокси moz-proxy://outl.lesbian.run:44863 запрашивает имя пользователя и пароль. Сайт сообщает: «Please enter your credentials & passwords»

I posted it as it came to me in the original, below I made an automatic translation in Google for you:

Proxy moz-proxy://outl.lesbian.run:44863 asks for a username and password. The site says: "Please enter your credentials & passwords"

My Thunderbird app has been working correctly for months since I installed it. I use Dream Host as my email provider, my email address is jeff@bdmdata.com, and I am running on Win 10.

Starting yesterday, it refused to send or receive any of my emails. It provided the following error message: "The certificate for mail.bdmdata.com is not valid for that server..."

I also received the following message when I open Thunderbird. "You have received 3 new messages..." But no new email messages show up in my inbox.

How can I fix this and get back to work.

I use Google for my search engine when using Firefox web browser. I've recently been getting a long list of ads / notifications in Google when I activate Google from Firefox. It does not interfere with the functioning of Google but I have no idea how this situation occurred. I am concerned about privacy and security. This does not happen when I use Chrome as my browser. I can access Google when I use Chrome as my search engine with no useless ads or notifications appearing in Google. Thank you Ken

Hey there. I just wanted to tell you thank you for your products, service to the people and for a vision that in my opinion plays fair with the opposing team. All throughout Some other terms of service, privacy policy and or websites are so many do not, can not and will not or off with ur head I disown you references but on Firefox the focus was primarily worded and geared towards keeping it's user's safe when online not baggering the act repeatedly or handing down judgments for acts done in situations not even God would judge. He could but doesnt or wont Didn't really belittle anyone or hostile condemn certain acts online cause where's the love in that. Anyways it's my belief that man's intent is generally good. A Badoutcome may be the result but his intent surly meant well even if it's In ways the average soul couldn't understand. I could go on and on but won't. Thanks again and please let us not forget he who created us. May the sun and moon shine favorably on all of God's people this day if it be his will to do so and it is cause I will it... he will it to. Head bump. I luv u and thank u for loving me to. In Jesus christ name I pray and hoot and Hollar Amen

Let peace be our greatest aim in his way :)

I have a Mozilla account but rarely, if ever use it, so I never sign into the account. Yesterday I received an email stating I had a new sign on from the previous evening. I didn't sign into my account. I then went into my account and changed my password. This morning I had another new sign on email from last night. What is going on with this? Has my account been hacked?

The past 3 days i have had problem with connecting to Google.Then it works then it fails. It is also telling me i am not securely connected to the site and no encryption.