You are not logged in.
- Topics: Active | Unanswered
#1 2014-11-28 02:25:53
- herOldMan
- Member
- Registered: 2013-10-11
- Posts: 154
[solved] Firefox DNS query for dtex4kvbppovt.cloudfront.net
Hello,
In a recently installed Arch VBox guest I noticed that a dns query is occuring each time Firefox is started - before any page is loaded. The query is for the name:
dtex4kvbppovt.cloudfront.net
A typical response::
A 54.230.51.100 A 54.230.49.218 A 54.192.48.149 A 54.230.49.62 A 54.230.49.147 A 54.230.50.183 A 205.251.251.197 A 54.192.51.225
Primary name server: ns-1790.awsdns-31.co.uk
Responsible authority's mailbox: awsdns-hostmaster.amazon.com
Subsequently, an ssl conversation stream is initiated between my machine and dtex4kvbppovt.cloudfront.net.
I was suspicious of this and, not being satisfied with the information available concerning the site, I completely uninstalled firefox, deleted the profiles, and deleted .cache/mozilla/firefox. I then reinstalled firefox and found that the query and ensuing conversation continued to occur when firefox was started. (no addons, blank homepage, and no search engines other than google).
None of this occurs without starting Firefox and does not occur with lynx.
I have since found that my native machine also contacts this site occasionally.
Does anyone have any experience with this behavior? Is it malicious? Is it needed? Can it be stopped? Is there any advantage? etc
Last edited by herOldMan (2014-11-28 22:59:23)
Offline
#2 2014-11-28 02:30:37
- fukawi2
- Ex-Administratorino
- From: .vic.au
- Registered: 2007-09-28
- Posts: 6,231
- Website
Re: [solved] Firefox DNS query for dtex4kvbppovt.cloudfront.net
From I can gather through some Googling, it is related to the Firefox "Enhanced Tiles" (aka Sponsored Tiles) -- if you can disable that, perhaps that will stop it?
EDIT: https://support.mozilla.org/en-US/kb/ho … n-it-onoff
Last edited by fukawi2 (2014-11-28 02:31:34)
Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?
BlueHackers // fscanary // resticctl
Offline
#3 2014-11-28 17:21:58
- herOldMan
- Member
- Registered: 2013-10-11
- Posts: 154
Re: [solved] Firefox DNS query for dtex4kvbppovt.cloudfront.net
Thank you.
That was difficult to find. Hopefully other inquirers will find this thread... one of the few referencing dtex4kvbppovt.cloudfront.net without a big, red WOT symbol next to the link.
Disabling the tiles altogether completely quiets the traffic when firefox is started and eliminates the chatter with this site for the entire session. Simplicity is better and I never used these tab tiles.
Perhaps this is a good item for the firefox & firefox tweaks wiki, along with setting geo.enabled to false.
Offline
#4 2014-12-22 01:16:57
- hendry
- Member
- From: Singapore
- Registered: 2009-09-08
- Posts: 157
- Website
Re: [solved] Firefox DNS query for dtex4kvbppovt.cloudfront.net
Thanks for reporting this. I was wondering myself! http://s.natalian.org/2014-12-22/dtex4kvbppovt.png
Offline