![](https://infosec.pub/pictrs/image/8cd64929-b649-4aff-a91c-d04f9f742f64.jpeg)
![](https://fry.gs/pictrs/image/c6832070-8625-4688-b9e5-5d519541e092.png)
Thought of that as well, but all ads are blocked and I get this popup even with the browser closed and after a full reboot (not just suspend and reactivate), so it must happen on system level, I assume. Checked my run on startup applications and services, and they appear to be clean as well.
Yep I can access the hosts file, that’s a great idea. Will give it a shot. I just hope those aren’t IPs that MS is using for genuine requests of applications I have to use such as Teams or Outlook… But will give it a try, at least if anything else breaks, I know what to do to resolve that. Thanks for the tip!