weird redirect to aprox-osn.com
I have a new toshiba laptop i got in december, it has some weird redirect/tracking thing and i don't know how to remove it. Basically anytime i put in a new website address, i type it out, then it redirects to some version of the website: aprox-osn.com and then goes to the site i typed in. It's really bothering me. I did a malware/spyware scan and nothing shows up. Any ideas what might be causing this?
Chosen solution
Your ISP must be OnShore Networks, or at least has a direct affiliation with them, as mine does (Access Media 3). As a result, I myself see this issue when I'm connecting to sites directly through their network (and not a problem when I'm using a VPN connection to my workplace and elsewhere, so it's not a function of the browser).
I'm not sure myself exactly why they're doing this, perhaps to gain some extra revenue from Google AdWords or such, but I have seen it break some sites on initial load. I have not yet tested using alternate DNS servers to work around their system, so that may be a means to defeat it.
Read this answer in context 👍 2All Replies (4)
http://www.ip-adress.com/whois/aprox-osn.com
Description: With Cash Back Rebates at RewardFinds, its easy to save money. Find online coupons, coupon codes and promo codes at over 1200 online stores.
Something you have installed is causing that redirected connection.
First place to look is the Control Panel > Add & remove Programs for a "cash back" or "rewards program".
Then try the Firefox SafeMode to see how it works there.
A troubleshooting mode, which disables most Add-ons.
(If you're not using it, switch to the Default Theme.)
- You can open the Firefox 4/5/6/7 SafeMode by holding the Shft key when you use the Firefox desktop or Start menu shortcut.
- Or use the Help menu item, click on Restart with Add-ons Disabled... while Firefox is running.
Don't select anything right now, just use "Continue in SafeMode."
To exit the Firefox Safe Mode, just close Firefox and wait a few seconds before using the Firefox shortcut (without the Shft key) to open it again.
If it is good in the Firefox SafeMode, your problem is probably caused by an extension, and you need to figure out which one.
http://support.mozilla.com/en-US/kb/troubleshooting+extensions+and+themes
Chosen Solution
Your ISP must be OnShore Networks, or at least has a direct affiliation with them, as mine does (Access Media 3). As a result, I myself see this issue when I'm connecting to sites directly through their network (and not a problem when I'm using a VPN connection to my workplace and elsewhere, so it's not a function of the browser).
I'm not sure myself exactly why they're doing this, perhaps to gain some extra revenue from Google AdWords or such, but I have seen it break some sites on initial load. I have not yet tested using alternate DNS servers to work around their system, so that may be a means to defeat it.
You are absolutely correct. I was using OnShore/Access Media when i posted this question. I switched over to AT&T and it's no longer an issue. Thank you.
I have done some additional research into this matter, and I have found that changing DNS servers does not help. It seems that they are altering the traffic between you and the website you are attempting to visit, redirecting through a couple of different servers. I notice breakages on a few sites, such as abt.com, etc., particularly when you omit the "www".
The server it sends you to is owned by Aspira Networks, which uses a business model of inserting commission-oriented redirects, so the provider may derive an income stream on commissions for what you purchase at participating retailers. This is very similar to cookie stuffing, and in my own opinion, is highly unethical, and questionably legal (though, I am not a lawyer). I'm fine with someone earning a commission on an ad that I clicked through, but this has the potential to override legitimate commissions.
The only method I am aware of to fully work around this behavior is to use HTTPS when connecting to a website, if possible, since the encrypted session limits the ability for someone in the middle to intercept and change your communications. I doubt disabling third-party cookies will mitigate the issue, due to the redirects.