Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

mozilla updated to 50.0 and avg gave me a notification that a file of mozilla is signed with a broken digital signature. Is it bad?

  • 11 replies
  • 6 have this problem
  • 113 views
  • Last reply by Davik03

more options

November 16 mozilla updated to 50.0. When I run a whole computer scan avg gave me the following notification :

Threat: The file is signed with a broken digital signature, issued by: AVG technologies

Object name: c:/users/user/appdata/local/mozilla/firefox/profiles/2dq9g2pq.default/cache2/ entries/D0A23281D4B51CD3D3525DF4C91B8CE28F1EC36F

I tried to find the location but i couldn't. Can you Help me?

Chosen solution

It is Mozilla Firefox or Firefox for short as Mozilla is the company.

The file location you posted in the Cache so anything there is harmless.

Read this answer in context 👍 3

All Replies (11)

more options

Chosen Solution

It is Mozilla Firefox or Firefox for short as Mozilla is the company.

The file location you posted in the Cache so anything there is harmless.

more options

I'm sorry but i don't understand your reply. Should i be worried or it's fine? Should i get rid of it?

more options

The Cache is where Firefox stores temporary information. If the are worried,

https://support.mozilla.org/en-US/kb/how-clear-firefox-cache

more options

If i do what the article says i'll be ok?

more options

It can't hurt and may solve the problem.

more options

fotedeme said

I'm sorry but i don't understand your reply. Should i be worried or it's fine? Should i get rid of it?

As I said anything in Cache is harmless if left alone as it will get overwritten. Firefox cache file was infected with a virus

more options

I have this problem too. The replies to previous questions don't address the issue, so I'll re-phrase... 1. Downloads of executable files using FF versions prior to last November 2017 have no issues with the AVG security suite. 2. Since Dec 2017 every download of a software executable using FF has been reported by an AVG scan as having "a broken digital signature". Further detail of the notice suggests that this means the file was corrupted. A screenshot of one report is attached. It has occurred with downloads from Corel, and Adobe (flashplayer updates), and reported by other several users (friends) of FF 3. The reported file is the download weblink stored in the browsers cache. Following the path\folder to that file (difficult since the cache files are all hex decimal numbered, errkkkkk) and delete - problem fixed. Next download, scan and issue returns. 4. I've used FF and AVG together for years, both updated regularly. Firefox never previously did this. What have you done to change things?? What will you do to fix it?

Davidk03

more options

If it was something that Mozilla did to Firefox then this particular thing would be a common thing posted on forum instead of just this one thread.

You both have not stated what AVG version you have and if definitions have been updated. Older versions of AVG particular ones not maintained anymore can cause problems also based on past threads.

more options

Not Common? multiple people posting and hundreds reading suggests otherwise.

I did say both FF and AVG updated regularly. Maybe you missed that. But to the details: FF - current version 50.1.0 , and it's happened with this as the browser platform downloading the exe files. AVG - Internet security version 16.141.7998, which is the one reporting the issue per the screenshot previously posted. Patterns updated daily - minimum once, on boot, and every 4 hrs of "on" time after that.

It's not gonna go away. Maybe mozilla should get with AVG to sort it out?

Davidk03

more options

Nothing further from mozilla of this. . . but I've found an interesting press article extolling the benefits of version 50 - the one released late last year and after which all these signature errors are being reported: see this is link http://www.pcauthority.com.au/News/441495,firefox-50-trims-start-up-times-widens-download-protection.aspx and in particular the para that says "Firefox 50 also widens its download protection support to cover a much broader range of executable files found on Windows, Linux and Mac systems – now everything from compressed files and generic exe/bin/app packages to Office executables and scripts will be subject to the download scan." Funny that the errors only occur with/after version 50? These articles not just 'invented' - always based on vendors press information. Sometimes the vendor even writes it. The timing fits and it looks like FF does have something to do with the error.

Davidk03

more options

As it happens, one of the "broken" signature files was a program downloaded from AVG. So I sent them a bug report with the screenshot of the notification/detection, and the actual file that was "broken" (theirs).

The reply from was that "There is no infection with the files. The possible reason for the issue . . included corrupted part of system - something with certificates and file could be corrupted during download".

Since this issue only appeared with FF v 50 and that change to provide extra download protection support for executables (my last post quoting benefits in Version release materials) FF v 50 is just about guaranteed the cause.

Since then, v 51.0.1 has arrived, but there's nothing in the release notes that even remotely addresses this. So the issue remains . .

Modified by Davik03