Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Trojan:HTML/Phish!pz

  • 1 freagra
  • 0 leis an bhfadhb seo
  • 21 views
  • Freagra is déanaí ó James

RodmanB
RodmanB
more options

Below are communication I have had with both Glarysoft Support and Hideaway VPN by Firetrust Limited. I have narrowed the issue of detection of Trojan:HTML/Phish!pz by MS Defender While running Glary Utilities. (see screenshot).

Jeremy, Thank you for your rapid response. I connected to 3 different VPN servers, and used the link you provided (https://user-support.firetrust.com/Tickets/Reply/36314) below via Firefox, Chrome, and Edge. Connections to Seattle, Dallas, and Washington DC all produced the same result as before ONLY with Firefox. The issue WAS NOT reproduced by Chrome or Edge. I hope this helps resolve the problem because, I have issues with both Edge and Chrome. Particularly with their self-serving propensities.

Rodman L Browning [edited] @hotmail.com ________________________________________ -System: -Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz 3.40 GHz -Installed RAM: 32.0 GB -Device ID 3B29AE3B-C784-4651-9123-A91B7C41393A -Product ID 00330-80000-00000-AA737 -System OS: Windows 10 Pro 64-bit operating system, x64-based processor - -MS Defender v1.403.1528.0 -Created 1/2/2024 3:58am -Last updated 01/02/2024 11:51am - -Glary Utilities Pro v6.4.0.7 -VPN: Hideaway by Firetrust Limited v4.20.4

- - This MS Defender notice occurred during a 1-Click Maintenance/Temporary File Cleaner; - file: C:\Users\Rodman\AppData\Local\Mozilla\Firefox\Profiles\wg6stjgb.default-release-1640201893394 \cache2\entries\08D20F0659D23D2EF0621F044374EA076FED5146 -An immediate 1-Click Maintenance/Temporary File Cleaner produces no notices (I assume because the Trojan has been quarantined). However, on further investigation I discovered that this notice occurs when the VPN (Hideaway by -Firetrust Limited) is active. Turning off the VPN then opening Firefox and visiting the same site produced "No notice" from MS Defender during a 1-Click Maintenance/Temporary File Cleaner procedure. -Therefore, I am CCing a copy of this to Hideaway Support. Please contact them ([edited] @firetrust.com) to see if together a resolution can be obtained. -

From: Firetrust Support <[edited] @firetrust.com> Sent: Tuesday, January 2, 2024 4:52 PM To: [edited] @hotmail.com Subject: New reply added to Ticket # 36314 - Trojan:HTML/Phish!pz on version 6.4.0.7 Pro - Further investigation

  1. -- Please type your reply above this line --#

Hi there, Yes, that is odd, as nothing in Hideaway itself could cause this, possibly however it is due to the IP address of the server you are connected to via Hideaway?

You can see what IP address it is in Hideaway while it is connected on the main Hideaway screen, eg the below screenshot for the NZ server:

You can reply to this email to add your response or you can view/answer the ticket by clicking here: https://user-support.firetrust.com/Tickets/Reply/36314 .


Current email has been sent to the next addresses: [edited] @glarysoft.com


Jeremy Clark :. Firetrust Support firetrust INTERNET SECURITY Christchurch, New Zealand www.firetrust.com

[ref#:e2aab13a-9be6-48d1:ref]

Below are communication I have had with both Glarysoft Support and Hideaway VPN by Firetrust Limited. I have narrowed the issue of detection of Trojan:HTML/Phish!pz by MS Defender While running Glary Utilities. (see screenshot). -------------------------------------------------------------------------------------------------------------- Jeremy, Thank you for your rapid response. I connected to 3 different VPN servers, and used the link you provided (https://user-support.firetrust.com/Tickets/Reply/36314) below via Firefox, Chrome, and Edge. Connections to Seattle, Dallas, and Washington DC all produced the same result as before ONLY with Firefox. The issue WAS NOT reproduced by Chrome or Edge. I hope this helps resolve the problem because, I have issues with both Edge and Chrome. Particularly with their self-serving propensities. Rodman L Browning [edited] @hotmail.com ________________________________________ -System: -Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz 3.40 GHz -Installed RAM: 32.0 GB -Device ID 3B29AE3B-C784-4651-9123-A91B7C41393A -Product ID 00330-80000-00000-AA737 -System OS: Windows 10 Pro 64-bit operating system, x64-based processor - -MS Defender v1.403.1528.0 -Created 1/2/2024 3:58am -Last updated 01/02/2024 11:51am - -Glary Utilities Pro v6.4.0.7 -VPN: Hideaway by Firetrust Limited v4.20.4 - <img> - This MS Defender notice occurred during a 1-Click Maintenance/Temporary File Cleaner; - file: C:\Users\Rodman\AppData\Local\Mozilla\Firefox\Profiles\wg6stjgb.default-release-1640201893394 \cache2\entries\08D20F0659D23D2EF0621F044374EA076FED5146 -An immediate 1-Click Maintenance/Temporary File Cleaner produces no notices (I assume because the Trojan has been quarantined). However, on further investigation I discovered that this notice occurs when the VPN (Hideaway by -Firetrust Limited) is active. Turning off the VPN then opening Firefox and visiting the same site produced "No notice" from MS Defender during a 1-Click Maintenance/Temporary File Cleaner procedure. -Therefore, I am CCing a copy of this to Hideaway Support. Please contact them ([edited] @firetrust.com) to see if together a resolution can be obtained. - From: Firetrust Support <[edited] @firetrust.com> Sent: Tuesday, January 2, 2024 4:52 PM To: [edited] @hotmail.com Subject: New reply added to Ticket # 36314 - Trojan:HTML/Phish!pz on version 6.4.0.7 Pro - Further investigation #-- Please type your reply above this line --# Hi there, Yes, that is odd, as nothing in Hideaway itself could cause this, possibly however it is due to the IP address of the server you are connected to via Hideaway? You can see what IP address it is in Hideaway while it is connected on the main Hideaway screen, eg the below screenshot for the NZ server: <img> You can reply to this email to add your response or you can view/answer the ticket by clicking here: https://user-support.firetrust.com/Tickets/Reply/36314 . Current email has been sent to the next addresses: [edited] @glarysoft.com ---- Jeremy Clark :. Firetrust Support firetrust INTERNET SECURITY Christchurch, New Zealand www.firetrust.com [ref#:e2aab13a-9be6-48d1:ref]
Attached screenshots

Athraithe ag James ar

All Replies (1)

James
James
  • Top 25 Contributor
  • Moderator
more options

You are not infected if this was only found in the Cache folder as it is harmless if left alone there. It will either get overwritten over time as Cache gets used or deleted if you clear the Cache. https://support.mozilla.org/en-US/kb/how-clear-firefox-cache

This old KB article was for older versions of Firefox in mind with the settings, however still relevant. https://support.mozilla.org/en-US/kb/Firefox%20cache%20file%20was%20infected%20with%20a%20virus

Microsoft Defender was the only scanner doing this Trojan found in Cache issue in last while. Check for definitions updates if any in your scanner.

Athraithe ag James ar

Helpful?

Cuir ceist

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.