Hi, I have several times when an attacker was able to send over an unrequested web page to my browser. Since I am using a NAT router, which only allows returning traffic from where ever I first sent a request to, I assume they must have to first determine where I am going to. Or did they simply spoof Google's address because many people go first to Google and then click a link. So that by spoofing Google's address, they can pass through my NAT. But Google must have many addresses, Or they spoofed several packets each spoofing one of Google's address? I don't understand? Eg, the last time, they sent over a page that shows a error message saying network failed - with a big button that says "Retry". I don't even need to think in order to guess that the button is malicious. Not to mention I have never seen a network error page that has a retry button.
Be more specific, please. What browser you are using? Can you post screenshot of that page so we can judge whether it is legit?
I am using Chrome. I have since deleted histroy so I can't send a screen shot. The screen is mostly greenish with a big green button labeled "Retry".
It is highly unlikely it has anything to do with hackers. Having said that, a screenshot would have helped identify the issue, but it shouldn't be anything to be concerned about.
Have you ever seen a network error message that has a Retry button ? Logically it should come from Chrome, which can detect a network error. I wasn't submitting anything; just clicking a link in a forum. If it were from Chrome then how come it is in greenish color?
I have seen this behavior in Firefox many times. Sometimes it is a problem with visiting a web page (GET request). I don't use Chrome, but I wouldn't be surprised it does something similar. Screenshot of entire browser window would be really helpful. You can blur other tabs, but preserve URL bar. Even better click in the left corner of the url bar, click certificate info and take second screenshot.
