Ceisteanna leis an gclib seo á dtaispeáint: Taispeáin gach ceist
  • Cartlannaithe

Remove sneakily installed saving option of download

Hi guys, I don't know when and how exactly this thing was added to my firefox behind my back, I don't like it, I don't like Baidu Pan either but I have to use it. I check… (tuilleadh eolais)

Hi guys,

I don't know when and how exactly this thing was added to my firefox behind my back, I don't like it, I don't like Baidu Pan either but I have to use it.

I checked the extensions and add-ons, nothing suspicious was found.

Can you please help me remove it?

Asked by 865285807 1 bhliain ó shin

Last reply by FredMcD 1 bhliain ó shin

  • Cartlannaithe

page hijack - alleged Flash player update

Just got a page hijack -- first in quite a while. I was on a car owner forum page when this took over it: (image attached) Note this rogue page is https! https://getakam… (tuilleadh eolais)

Just got a page hijack -- first in quite a while. I was on a car owner forum page when this took over it: (image attached)

Note this rogue page is https! https://getakamaigreattheclicks.best/u_9_f9g-ooEc-qICvlksjMFSmOtGxgos15KRASCIkXw?cid=whb5uaiequuqjjd2ida2f1se&sid=&uid=LBMtFKLEQFoRVia9qmWChgjj

Anyone else seeing this? McAfee did not pick up on this.


Troubleshooting information: Application Basics


Name: Firefox Version: 81.0 Build ID: 20200917005511 Distribution ID: Update Channel: release User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0 OS: Windows_NT 10.0 19041 Launcher Process: Enabled Multiprocess Windows: 4/4 Enabled by default Remote Processes: 11 Enterprise Policies: Inactive Google Location Service Key: Found Google Safebrowsing Key: Found Mozilla Location Service Key: Found Safe Mode: false

Crash Reports for the Last 3 Days


Firefox Features


Name: DoH Roll-Out Version: 2.0.0 ID: doh-rollout@mozilla.org

Name: Firefox Screenshots Version: 39.0.0 ID: screenshots@mozilla.org

Name: Form Autofill Version: 1.0 ID: formautofill@mozilla.org

Name: Web Compat Version: 14.0.0 ID: webcompat@mozilla.org

Name: WebCompat Reporter Version: 1.4.0 ID: webcompat-reporter@mozilla.org

Remote Processes


Type: Web Content Count: 8 / 8

Type: Privileged About Count: 1

Type: Extension Count: 1

Type: GPU Count: 1

Add-ons


Name: Amazon.com Type: extension Version: 1.3 Enabled: true ID: amazondotcom@search.mozilla.org

Name: Bing Type: extension Version: 1.2 Enabled: true ID: bing@search.mozilla.org

Name: DuckDuckGo Type: extension Version: 1.1 Enabled: true ID: ddg@search.mozilla.org

Name: eBay Type: extension Version: 1.2 Enabled: true ID: ebay@search.mozilla.org

Name: Google Type: extension Version: 1.1 Enabled: true ID: google@search.mozilla.org

Name: McAfee® WebAdvisor Type: extension Version: 8.1.0.122 Enabled: true ID: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}

Name: Wikipedia (en) Type: extension Version: 1.1 Enabled: true ID: wikipedia@search.mozilla.org

Name: WOT Web of Trust, Website Reputation Ratings Type: extension Version: 20200909.0wot Enabled: true ID: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

Name: McAfee® Web Boost Type: extension Version: 1.0.0.25006 Enabled: false ID: {EF0645D5-78D6-4B33-BC45-95B1874977AF}

Name: Norton Security Toolbar Type: extension Version: 2017.9.2.2 Enabled: false ID: {C1A2A613-35F1-4FCF-B27F-2840527B6556}

Security Software


Type: McAfee VirusScan

Type:

Type: McAfee Firewall

Graphics


Features Compositing: Direct3D 11 (Advanced Layers) Asynchronous Pan/Zoom: wheel input enabled; scrollbar drag enabled; keyboard enabled; autoscroll enabled WebGL 1 Driver WSI Info: EGL_VENDOR: Google Inc. (adapter LUID: 0000000000018273) EGL_VERSION: 1.4 (ANGLE 2.1.0.6c72b64f910d) EGL_EXTENSIONS: EGL_EXT_create_context_robustness EGL_ANGLE_d3d_share_handle_client_buffer EGL_ANGLE_d3d_texture_client_buffer EGL_ANGLE_surface_d3d_texture_2d_share_handle EGL_ANGLE_query_surface_pointer EGL_ANGLE_window_fixed_size EGL_ANGLE_keyed_mutex EGL_ANGLE_surface_orientation EGL_ANGLE_direct_composition EGL_NV_post_sub_buffer EGL_KHR_create_context EGL_EXT_device_query EGL_KHR_image EGL_KHR_image_base EGL_KHR_gl_texture_2D_image EGL_KHR_gl_texture_cubemap_image EGL_KHR_gl_renderbuffer_image EGL_KHR_get_all_proc_addresses EGL_KHR_stream EGL_KHR_stream_consumer_gltexture EGL_NV_stream_consumer_gltexture_yuv EGL_ANGLE_flexible_surface_compatibility EGL_ANGLE_stream_producer_d3d_texture EGL_ANGLE_create_context_webgl_compatibility EGL_CHROMIUM_create_context_bind_generates_resource EGL_CHROMIUM_sync_control EGL_EXT_pixel_format_float EGL_KHR_surfaceless_context EGL_ANGLE_display_texture_share_group EGL_ANGLE_create_context_client_arrays EGL_ANGLE_program_cache_control EGL_ANGLE_robust_resource_initialization EGL_ANGLE_create_context_extensions_enabled EGL_ANDROID_blob_cache EGL_ANDROID_recordable EGL_ANGLE_image_d3d11_texture EGL_ANGLE_create_context_backwards_compatible EGL_EXTENSIONS(nullptr): EGL_EXT_client_extensions EGL_EXT_platform_base EGL_EXT_platform_device EGL_ANGLE_platform_angle EGL_ANGLE_platform_angle_d3d EGL_ANGLE_device_creation EGL_ANGLE_device_creation_d3d11 EGL_ANGLE_experimental_present_path EGL_KHR_client_get_all_proc_addresses EGL_KHR_debug EGL_ANGLE_explicit_context EGL_ANGLE_feature_control WebGL 1 Driver Renderer: Google Inc. -- ANGLE (Intel(R) HD Graphics 620 Direct3D11 vs_5_0 ps_5_0) WebGL 1 Driver Version: OpenGL ES 2.0.0 (ANGLE 2.1.0.6c72b64f910d) WebGL 1 Driver Extensions: GL_ANGLE_client_arrays GL_ANGLE_depth_texture GL_ANGLE_explicit_context GL_ANGLE_explicit_context_gles1 GL_ANGLE_framebuffer_blit GL_ANGLE_framebuffer_multisample GL_ANGLE_instanced_arrays GL_ANGLE_lossy_etc_decode GL_ANGLE_memory_size GL_ANGLE_multi_draw GL_ANGLE_multiview_multisample GL_ANGLE_pack_reverse_row_order GL_ANGLE_program_cache_control GL_ANGLE_provoking_vertex GL_ANGLE_request_extension GL_ANGLE_robust_client_memory GL_ANGLE_texture_compression_dxt3 GL_ANGLE_texture_compression_dxt5 GL_ANGLE_texture_usage GL_ANGLE_translated_shader_source GL_CHROMIUM_bind_generates_resource GL_CHROMIUM_bind_uniform_location GL_CHROMIUM_color_buffer_float_rgb GL_CHROMIUM_color_buffer_float_rgba GL_CHROMIUM_copy_compressed_texture GL_CHROMIUM_copy_texture GL_CHROMIUM_lose_context GL_CHROMIUM_sync_query GL_EXT_blend_func_extended GL_EXT_blend_minmax GL_EXT_color_buffer_half_float GL_EXT_debug_marker GL_EXT_discard_framebuffer GL_EXT_disjoint_timer_query GL_EXT_draw_buffers GL_EXT_float_blend GL_EXT_frag_depth GL_EXT_instanced_arrays GL_EXT_map_buffer_range GL_EXT_occlusion_query_boolean GL_EXT_read_format_bgra GL_EXT_robustness GL_EXT_sRGB GL_EXT_shader_texture_lod GL_EXT_texture_compression_bptc GL_EXT_texture_compression_dxt1 GL_EXT_texture_compression_s3tc_srgb GL_EXT_texture_filter_anisotropic GL_EXT_texture_format_BGRA8888 GL_EXT_texture_rg GL_EXT_texture_storage GL_EXT_unpack_subimage GL_KHR_debug GL_KHR_parallel_shader_compile GL_KHR_robust_buffer_access_behavior GL_NV_EGL_stream_consumer_external GL_NV_fence GL_NV_pack_subimage GL_NV_pixel_buffer_object GL_OES_EGL_image GL_OES_EGL_image_external GL_OES_depth24 GL_OES_depth32 GL_OES_element_index_uint GL_OES_get_program_binary GL_OES_mapbuffer GL_OES_packed_depth_stencil GL_OES_rgb8_rgba8 GL_OES_standard_derivatives GL_OES_surfaceless_context GL_OES_texture_3D GL_OES_texture_border_clamp GL_OES_texture_float GL_OES_texture_float_linear GL_OES_texture_half_float GL_OES_texture_half_float_linear GL_OES_texture_npot GL_OES_vertex_array_object OES_compressed_EAC_R11_signed_texture OES_compressed_EAC_R11_unsigned_texture OES_compressed_EAC_RG11_signed_texture OES_compressed_EAC_RG11_unsigned_texture OES_compressed_ETC2_RGB8_texture OES_compressed_ETC2_RGBA8_texture OES_compressed_ETC2_punchthroughA_RGBA8_texture OES_compressed_ETC2_punchthroughA_sRGB8_alpha_texture OES_compressed_ETC2_sRGB8_alpha8_texture OES_compressed_ETC2_sRGB8_texture WebGL 1 Extensions: ANGLE_instanced_arrays EXT_blend_minmax EXT_color_buffer_half_float EXT_float_blend EXT_frag_depth EXT_shader_texture_lod EXT_sRGB EXT_texture_compression_bptc EXT_texture_filter_anisotropic MOZ_debug OES_element_index_uint OES_standard_derivatives OES_texture_float OES_texture_float_linear OES_texture_half_float OES_texture_half_float_linear OES_vertex_array_object WEBGL_color_buffer_float WEBGL_compressed_texture_s3tc WEBGL_compressed_texture_s3tc_srgb WEBGL_debug_renderer_info WEBGL_debug_shaders WEBGL_depth_texture WEBGL_draw_buffers WEBGL_lose_context WebGL 2 Driver WSI Info: EGL_VENDOR: Google Inc. (adapter LUID: 0000000000018273) EGL_VERSION: 1.4 (ANGLE 2.1.0.6c72b64f910d) EGL_EXTENSIONS: EGL_EXT_create_context_robustness EGL_ANGLE_d3d_share_handle_client_buffer EGL_ANGLE_d3d_texture_client_buffer EGL_ANGLE_surface_d3d_texture_2d_share_handle EGL_ANGLE_query_surface_pointer EGL_ANGLE_window_fixed_size EGL_ANGLE_keyed_mutex EGL_ANGLE_surface_orientation EGL_ANGLE_direct_composition EGL_NV_post_sub_buffer EGL_KHR_create_context EGL_EXT_device_query EGL_KHR_image EGL_KHR_image_base EGL_KHR_gl_texture_2D_image EGL_KHR_gl_texture_cubemap_image EGL_KHR_gl_renderbuffer_image EGL_KHR_get_all_proc_addresses EGL_KHR_stream EGL_KHR_stream_consumer_gltexture EGL_NV_stream_consumer_gltexture_yuv EGL_ANGLE_flexible_surface_compatibility EGL_ANGLE_stream_producer_d3d_texture EGL_ANGLE_create_context_webgl_compatibility EGL_CHROMIUM_create_context_bind_generates_resource EGL_CHROMIUM_sync_control EGL_EXT_pixel_format_float EGL_KHR_surfaceless_context EGL_ANGLE_display_texture_share_group EGL_ANGLE_create_context_client_arrays EGL_ANGLE_program_cache_control EGL_ANGLE_robust_resource_initialization EGL_ANGLE_create_context_extensions_enabled EGL_ANDROID_blob_cache EGL_ANDROID_recordable EGL_ANGLE_image_d3d11_texture EGL_ANGLE_create_context_backwards_compatible EGL_EXTENSIONS(nullptr): EGL_EXT_client_extensions EGL_EXT_platform_base EGL_EXT_platform_device EGL_ANGLE_platform_angle EGL_ANGLE_platform_angle_d3d EGL_ANGLE_device_creation EGL_ANGLE_device_creation_d3d11 EGL_ANGLE_experimental_present_path EGL_KHR_client_get_all_proc_addresses EGL_KHR_debug EGL_ANGLE_explicit_context EGL_ANGLE_feature_control WebGL 2 Driver Renderer: Google Inc. -- ANGLE (Intel(R) HD Graphics 620 Direct3D11 vs_5_0 ps_5_0) WebGL 2 Driver Version: OpenGL ES 3.0.0 (ANGLE 2.1.0.6c72b64f910d) WebGL 2 Driver Extensions: GL_ANGLE_client_arrays GL_ANGLE_copy_texture_3d GL_ANGLE_depth_texture GL_ANGLE_explicit_context GL_ANGLE_explicit_context_gles1 GL_ANGLE_framebuffer_blit GL_ANGLE_framebuffer_multisample GL_ANGLE_instanced_arrays GL_ANGLE_lossy_etc_decode GL_ANGLE_memory_size GL_ANGLE_multi_draw GL_ANGLE_multiview_multisample GL_ANGLE_pack_reverse_row_order GL_ANGLE_program_cache_control GL_ANGLE_provoking_vertex GL_ANGLE_request_extension GL_ANGLE_robust_client_memory GL_ANGLE_texture_compression_dxt3 GL_ANGLE_texture_compression_dxt5 GL_ANGLE_texture_multisample GL_ANGLE_texture_usage GL_ANGLE_translated_shader_source GL_CHROMIUM_bind_generates_resource GL_CHROMIUM_bind_uniform_location GL_CHROMIUM_color_buffer_float_rgb GL_CHROMIUM_color_buffer_float_rgba GL_CHROMIUM_copy_compressed_texture GL_CHROMIUM_copy_texture GL_CHROMIUM_lose_context GL_CHROMIUM_sync_query GL_EXT_blend_func_extended GL_EXT_blend_minmax GL_EXT_color_buffer_float GL_EXT_color_buffer_half_float GL_EXT_debug_marker GL_EXT_discard_framebuffer GL_EXT_disjoint_timer_query GL_EXT_draw_buffers GL_EXT_float_blend GL_EXT_frag_depth GL_EXT_instanced_arrays GL_EXT_map_buffer_range GL_EXT_occlusion_query_boolean GL_EXT_read_format_bgra GL_EXT_robustness GL_EXT_sRGB GL_EXT_shader_texture_lod GL_EXT_texture_compression_bptc GL_EXT_texture_compression_dxt1 GL_EXT_texture_compression_s3tc_srgb GL_EXT_texture_filter_anisotropic GL_EXT_texture_format_BGRA8888 GL_EXT_texture_norm16 GL_EXT_texture_rg GL_EXT_texture_storage GL_EXT_unpack_subimage GL_KHR_debug GL_KHR_parallel_shader_compile GL_KHR_robust_buffer_access_behavior GL_NV_EGL_stream_consumer_external GL_NV_fence GL_NV_pack_subimage GL_NV_pixel_buffer_object GL_OES_EGL_image GL_OES_EGL_image_external GL_OES_EGL_image_external_essl3 GL_OES_depth24 GL_OES_depth32 GL_OES_element_index_uint GL_OES_get_program_binary GL_OES_mapbuffer GL_OES_packed_depth_stencil GL_OES_rgb8_rgba8 GL_OES_standard_derivatives GL_OES_surfaceless_context GL_OES_texture_3D GL_OES_texture_border_clamp GL_OES_texture_float GL_OES_texture_float_linear GL_OES_texture_half_float GL_OES_texture_half_float_linear GL_OES_texture_npot GL_OES_vertex_array_object GL_OVR_multiview GL_OVR_multiview2 OES_compressed_EAC_R11_signed_texture OES_compressed_EAC_R11_unsigned_texture OES_compressed_EAC_RG11_signed_texture OES_compressed_EAC_RG11_unsigned_texture OES_compressed_ETC2_RGB8_texture OES_compressed_ETC2_RGBA8_texture OES_compressed_ETC2_punchthroughA_RGBA8_texture OES_compressed_ETC2_punchthroughA_sRGB8_alpha_texture OES_compressed_ETC2_sRGB8_alpha8_texture OES_compressed_ETC2_sRGB8_texture WebGL 2 Extensions: EXT_color_buffer_float EXT_float_blend EXT_texture_compression_bptc EXT_texture_filter_anisotropic MOZ_debug OES_texture_float_linear OVR_multiview2 WEBGL_compressed_texture_s3tc WEBGL_compressed_texture_s3tc_srgb WEBGL_debug_renderer_info WEBGL_debug_shaders WEBGL_lose_context Direct2D: true Off Main Thread Painting Enabled: true Off Main Thread Painting Worker Count: 3 Target Frame Rate: 60 DirectWrite: true (10.0.19041.388) GPU #1 Active: Yes Description: Intel(R) HD Graphics 620 Vendor ID: 0x8086 Device ID: 0x5916 Driver Version: 21.20.16.4542 Driver Date: 10-24-2016 Drivers: igdumdim64 igd10iumd64 igd10iumd64 igd12umd64 igdumdim32 igd10iumd32 igd10iumd32 igd12umd32 Subsys ID: 00000000 RAM: 0 GPU #2 Active: No Description: NVIDIA GeForce 940MX Vendor ID: 0x10de Device ID: 0x134d Driver Version: 27.21.14.5167 Driver Date: 7-5-2020 Drivers: C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumdx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumdx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumdx.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumdx.dll C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumd.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumd.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumd.dll,C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_ce46a61dd6580c07\nvldumd.dll Subsys ID: 00000000 RAM: 4096 Diagnostics AzureCanvasBackend: direct2d 1.1 AzureCanvasBackend (UI Process): skia AzureContentBackend: direct2d 1.1 AzureContentBackend (UI Process): skia AzureFallbackCanvasBackend (UI Process): none CMSOutputProfile: AAAMSExpbm8CEAAAbW50clJHQiBYWVogB84AAgAJAAYAMQAAYWNzcE1TRlQAAAAASUVDIHNSR0IAAAAAAAAAAAAAAAAAAPbWAAEAAAAA0y1IUCAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARY3BydAAAAVAAAAAzZGVzYwAAAYQAAABsd3RwdAAAAfAAAAAUYmtwdAAAAgQAAAAUclhZWgAAAhgAAAAUZ1hZWgAAAiwAAAAUYlhZWgAAAkAAAAAUZG1uZAAAAlQAAABwZG1kZAAAAsQAAACIdnVlZAAAA0wAAACGdmlldwAAA9QAAAAkbHVtaQAAA/gAAAAUbWVhcwAABAwAAAAkdGVjaAAABDAAAAAMclRSQwAABDwAAAgMZ1RSQwAABDwAAAgMYlRSQwAABDwAAAgMdGV4dAAAAABDb3B5cmlnaHQgKGMpIDE5OTggSGV3bGV0dC1QYWNrYXJkIENvbXBhbnkAAGRlc2MAAAAAAAAAEnNSR0IgSUVDNjE5NjYtMi4xAAAAAAAAAAAAAAASc1JHQiBJRUM2MTk2Ni0yLjEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFhZWiAAAAAAAADzUQABAAAAARbMWFlaIAAAAAAAAAAAAAAAAAAAAABYWVogAAAAAAAAb6IAADj1AAADkFhZWiAAAAAAAABimQAAt4UAABjaWFlaIAAAAAAAACSgAAAPhAAAts9kZXNjAAAAAAAAABZJRUMgaHR0cDovL3d3dy5pZWMuY2gAAAAAAAAAAAAAABZJRUMgaHR0cDovL3d3dy5pZWMuY2gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAZGVzYwAAAAAAAAAuSUVDIDYxOTY2LTIuMSBEZWZhdWx0IFJHQiBjb2xvdXIgc3BhY2UgLSBzUkdCAAAAAAAAAAAAAAAuSUVDIDYxOTY2LTIuMSBEZWZhdWx0IFJHQiBjb2xvdXIgc3BhY2UgLSBzUkdCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGRlc2MAAAAAAAAALFJlZmVyZW5jZSBWaWV3aW5nIENvbmRpdGlvbiBpbiBJRUM2MTk2Ni0yLjEAAAAAAAAAAAAAACxSZWZlcmVuY2UgVmlld2luZyBDb25kaXRpb24gaW4gSUVDNjE5NjYtMi4xAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB2aWV3AAAAAAATpP4AFF8uABDPFAAD7cwABBMLAANcngAAAAFYWVogAAAAAABMCVYAUAAAAFcf521lYXMAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAKPAAAAAnNpZyAAAAAAQ1JUIGN1cnYAAAAAAAAEAAAAAAUACgAPABQAGQAeACMAKAAtADIANwA7AEAARQBKAE8AVABZAF4AYwBoAG0AcgB3AHwAgQCGAIsAkACVAJoAnwCkAKkArgCyALcAvADBAMYAywDQANUA2wDgAOUA6wDwAPYA+wEBAQcBDQETARkBHwElASsBMgE4AT4BRQFMAVIBWQFgAWcBbgF1AXwBgwGLAZIBmgGhAakBsQG5AcEByQHRAdkB4QHpAfIB+gIDAgwCFAIdAiYCLwI4AkECSwJUAl0CZwJxAnoChAKOApgCogKsArYCwQLLAtUC4ALrAvUDAAMLAxYDIQMtAzgDQwNPA1oDZgNyA34DigOWA6IDrgO6A8cD0wPgA+wD+QQGBBMEIAQtBDsESARVBGMEcQR+BIwEmgSoBLYExATTBOEE8AT+BQ0FHAUrBToFSQVYBWcFdwWGBZYFpgW1BcUF1QXlBfYGBgYWBicGNwZIBlkGagZ7BowGnQavBsAG0QbjBvUHBwcZBysHPQdPB2EHdAeGB5kHrAe/B9IH5Qf4CAsIHwgyCEYIWghuCIIIlgiqCL4I0gjnCPsJEAklCToJTwlkCXkJjwmkCboJzwnlCfsKEQonCj0KVApqCoEKmAquCsUK3ArzCwsLIgs5C1ELaQuAC5gLsAvIC+EL+QwSDCoMQwxcDHUMjgynDMAM2QzzDQ0NJg1ADVoNdA2ODakNww3eDfgOEw4uDkkOZA5/DpsOtg7SDu4PCQ8lD0EPXg96D5YPsw/PD+wQCRAmEEMQYRB+EJsQuRDXEPURExExEU8RbRGMEaoRyRHoEgcSJhJFEmQShBKjEsMS4xMDEyMTQxNjE4MTpBPFE+UUBhQnFEkUahSLFK0UzhTwFRIVNBVWFXgVmxW9FeAWAxYmFkkWbBaPFrIW1hb6Fx0XQRdlF4kXrhfSF/cYGxhAGGUYihivGNUY+hkgGUUZaxmRGbcZ3RoEGioaURp3Gp4axRrsGxQbOxtjG4obshvaHAIcKhxSHHscoxzMHPUdHh1HHXAdmR3DHeweFh5AHmoelB6+HukfEx8+H2kflB+/H+ogFSBBIGwgmCDEIPAhHCFIIXUhoSHOIfsiJyJVIoIiryLdIwojOCNmI5QjwiPwJB8kTSR8JKsk2iUJJTglaCWXJccl9yYnJlcmhya3JugnGCdJJ3onqyfcKA0oPyhxKKIo1CkGKTgpaymdKdAqAio1KmgqmyrPKwIrNitpK50r0SwFLDksbiyiLNctDC1BLXYtqy3hLhYuTC6CLrcu7i8kL1ovkS/HL/4wNTBsMKQw2zESMUoxgjG6MfIyKjJjMpsy1DMNM0YzfzO4M/E0KzRlNJ402DUTNU01hzXCNf02NzZyNq426TckN2A3nDfXOBQ4UDiMOMg5BTlCOX85vDn5OjY6dDqyOu87LTtrO6o76DwnPGU8pDzjPSI9YT2hPeA+ID5gPqA+4D8hP2E/oj/iQCNAZECmQOdBKUFqQaxB7kIwQnJCtUL3QzpDfUPARANER0SKRM5FEkVVRZpF3kYiRmdGq0bwRzVHe0fASAVIS0iRSNdJHUljSalJ8Eo3Sn1KxEsMS1NLmkviTCpMcky6TQJNSk2TTdxOJU5uTrdPAE9JT5NP3VAnUHFQu1EGUVBRm1HmUjFSfFLHUxNTX1OqU/ZUQlSPVNtVKFV1VcJWD1ZcVqlW91dEV5JX4FgvWH1Yy1kaWWlZuFoHWlZaplr1W0VblVvlXDVchlzWXSddeF3JXhpebF69Xw9fYV+zYAVgV2CqYPxhT2GiYfViSWKcYvBjQ2OXY+tkQGSUZOllPWWSZedmPWaSZuhnPWeTZ+loP2iWaOxpQ2maafFqSGqfavdrT2una/9sV2yvbQhtYG25bhJua27Ebx5veG/RcCtwhnDgcTpxlXHwcktypnMBc11zuHQUdHB0zHUodYV14XY+dpt2+HdWd7N4EXhueMx5KnmJeed6RnqlewR7Y3vCfCF8gXzhfUF9oX4BfmJ+wn8jf4R/5YBHgKiBCoFrgc2CMIKSgvSDV4O6hB2EgITjhUeFq4YOhnKG14c7h5+IBIhpiM6JM4mZif6KZIrKizCLlov8jGOMyo0xjZiN/45mjs6PNo+ekAaQbpDWkT+RqJIRknqS45NNk7aUIJSKlPSVX5XJljSWn5cKl3WX4JhMmLiZJJmQmfyaaJrVm0Kbr5wcnImc951kndKeQJ6unx2fi5/6oGmg2KFHobaiJqKWowajdqPmpFakx6U4pammGqaLpv2nbqfgqFKoxKk3qamqHKqPqwKrdavprFys0K1ErbiuLa6hrxavi7AAsHWw6rFgsdayS7LCszizrrQltJy1E7WKtgG2ebbwt2i34LhZuNG5SrnCuju6tbsuu6e8IbybvRW9j74KvoS+/796v/XAcMDswWfB48JfwtvDWMPUxFHEzsVLxcjGRsbDx0HHv8g9yLzJOsm5yjjKt8s2y7bMNcy1zTXNtc42zrbPN8+40DnQutE80b7SP9LB00TTxtRJ1MvVTtXR1lXW2Ndc1+DYZNjo2WzZ8dp22vvbgNwF3IrdEN2W3hzeot8p36/gNuC94UThzOJT4tvjY+Pr5HPk/OWE5g3mlucf56noMui86Ubp0Opb6uXrcOv77IbtEe2c7ijutO9A78zwWPDl8XLx//KM8xnzp/Q09ML1UPXe9m32+/eK+Bn4qPk4+cf6V/rn+3f8B/yY/Sn9uv5L/tz/bf// Display0: 1920x1080@60Hz DisplayCount: 1 GPUProcessPid: 16856 ClearType Parameters: Gamma: 1.8 Pixel Structure: RGB ClearType Level: 100 Enhanced Contrast: 50 Decision Log HW_COMPOSITING: available by default D3D11_COMPOSITING: available by default DIRECT2D: available by default D3D11_HW_ANGLE: available by default GPU_PROCESS: available by default WEBRENDER: opt-in by default: WebRender is an opt-in feature WEBRENDER_QUALIFIED: available by default blocklisted by env: No qualified hardware WEBRENDER_COMPOSITOR: available by default unavailable by runtime: No DirectComposition usage WEBRENDER_ANGLE: opt-in by default: WebRender ANGLE is an opt-in feature WEBRENDER_DCOMP_PRESENT: opt-in by default: WebRender DirectComposition is an opt-in feature OMTP: available by default ADVANCED_LAYERS: available by default WEBGPU: disabled by default: Disabled by default blocked by runtime: WebGPU can only be enabled in nightly



Media


Audio Backend: wasapi Max Channels: 2 Preferred Sample Rate: 48000 Roundtrip latency (standard deviation): NaNms (NaN) Output Devices Name: Group Speaker/Headphone (Realtek High Definition Audio): HDAUDIO\FUNC_01&VEN_10EC&DEV_0290&SUBSYS_103C819F&REV_1000\4&b572dae&0&0001 Input Devices Name: Group Microphone (Realtek High Definition Audio): HDAUDIO\FUNC_01&VEN_10EC&DEV_0290&SUBSYS_103C819F&REV_1000\4&b572dae&0&0001 Microphone Array (Realtek High Definition Audio): HDAUDIO\FUNC_01&VEN_10EC&DEV_0290&SUBSYS_103C819F&REV_1000\4&b572dae&0&0001 Mic in at front panel (black) (Realtek High Definition Audio): HDAUDIO\FUNC_01&VEN_10EC&DEV_0290&SUBSYS_103C819F&REV_1000\4&b572dae&0&0001 Stereo Mix (Realtek High Definition Audio): HDAUDIO\FUNC_01&VEN_10EC&DEV_0290&SUBSYS_103C819F&REV_1000\4&b572dae&0&0001

Enumerate database

Environment Variables


MOZ_CRASHREPORTER_DATA_DIRECTORY: C:\Users\jsign\AppData\Roaming\Mozilla\Firefox\Crash Reports MOZ_CRASHREPORTER_EVENTS_DIRECTORY: C:\Users\jsign\AppData\Roaming\Mozilla\Firefox\Crash Reports\events MOZ_CRASHREPORTER_PING_DIRECTORY: C:\Users\jsign\AppData\Roaming\Mozilla\Firefox\Pending Pings MOZ_CRASHREPORTER_RESTART_ARG_0: C:\Program Files\Mozilla Firefox\firefox.exe MOZ_CRASHREPORTER_STRINGS_OVERRIDE: C:\Program Files\Mozilla Firefox\browser\crashreporter-override.ini MOZ_PLUGIN_PATH: C:\Program Files (x86)\Nuance\PDF Professional 8\Bin\

Experimental Features


about:home startup cache (browser.startup.homepage.abouthome_cache.enabled): false Cookies: SameSite=Lax by default (network.cookie.sameSite.laxByDefault): false Cookies: SameSite=None requires secure attribute (network.cookie.sameSite.noneRequiresSecure): false Cookies: Schemeful SameSite (network.cookie.sameSite.schemeful): false CSS: Constructable Stylesheets (layout.css.constructable-stylesheets.enabled): false CSS: Pseudo-class: :focus-visible (layout.css.focus-visible.enabled): false CSS: Masonry Layout (layout.css.grid-template-masonry-value.enabled): false Developer Tools: Color Scheme Simulation (devtools.inspector.color-scheme-simulation.enabled): false Developer Tools: Compatibility Panel (devtools.inspector.compatibility.enabled): false Developer Tools: Execution Context Selector (devtools.webconsole.input.context): false Developer Tools: Service Worker debugging (devtools.debugger.features.windowless-service-workers): false Graphics: Smooth Pinch Zoom (apz.allow_zooming): false Media: AVIF (image.avif.enabled): false Web API: Media Session API (dom.media.mediasession.enabled): false Print Preview Redesign (print.tab_modal.enabled): false Web API: beforeinput Event (dom.input_events.beforeinput.enabled): false Web API: inputmode (dom.forms.inputmode): false Web API: <link rel="preload"> (network.preload): false Web API: WebGPU (dom.webgpu.enabled): false

Important Modified Preferences


accessibility.typeaheadfind.flashBar: 0 browser.cache.disk.amount_written: 698667 browser.cache.disk.capacity: 1048576 browser.cache.disk.filesystem_reported: 1 browser.cache.disk.hashstats_reported: 1 browser.cache.disk.smart_size.first_run: false browser.cache.disk.smart_size.use_old_max: false browser.cache.disk.telemetry_report_ID: 7 browser.cache.frecency_experiment: 3 browser.contentblocking.category: standard browser.download.useDownloadDir: false browser.places.smartBookmarksVersion: 8 browser.search.region: US browser.search.useDBForOrder: true browser.sessionstore.upgradeBackup.latestBuildID: 20200917005511 browser.startup.homepage_override.buildID: 20200917005511 browser.startup.homepage_override.mstone: 81.0 browser.startup.page: 3 browser.tabs.remote.autostart.2: true browser.urlbar.lastSuggestionsPromptDate: 20171014 browser.urlbar.matchBuckets: general:5,suggestion:Infinity browser.urlbar.placeholderName: Google browser.urlbar.placeholderName.private: Google browser.urlbar.timesBeforeHidingSuggestionsHint: 0 browser.urlbar.tipShownCount.searchTip_onboard: 4 dom.forms.autocomplete.formautofill: true dom.ipc.processCount.web: 4 dom.push.userAgentID: a01c14fc1e7e41638271b67b87193680 extensions.formautofill.addresses.enabled: false extensions.formautofill.firstTimeUse: false extensions.lastAppVersion: 81.0 font.internaluseonly.changed: true gfx.crash-guard.d3d11layers.appVersion: 56.0.1 gfx.crash-guard.d3d11layers.deviceID: 0x5916 gfx.crash-guard.d3d11layers.driverVersion: 21.20.16.4542 gfx.crash-guard.d3d11layers.feature-d2d: true gfx.crash-guard.d3d11layers.feature-d3d11: true gfx.crash-guard.status.d3d11layers: 2 gfx.crash-guard.status.d3d11video: 2 gfx.crash-guard.status.wmfvpxvideo: 2 gfx.crash-guard.wmfvpxvideo.appVersion: 81.0 gfx.crash-guard.wmfvpxvideo.deviceID: 0x5916 gfx.crash-guard.wmfvpxvideo.driverVersion: 21.20.16.4542 idle.lastDailyNotification: 1601791856 layers.mlgpu.sanity-test-failed: false media.benchmark.vp9.fps: 127 media.benchmark.vp9.versioncheck: 3 media.gmp-gmpopenh264.abi: x86_64-msvc-x64 media.gmp-gmpopenh264.lastUpdate: 1572149051 media.gmp-gmpopenh264.version: 1.8.1.1 media.gmp-manager.buildID: 20200917005511 media.gmp-manager.lastCheck: 1601653244 media.gmp-widevinecdm.abi: x86_64-msvc-x64 media.gmp-widevinecdm.lastUpdate: 1582704048 media.gmp-widevinecdm.version: 4.10.1582.2 media.gmp.storage.version.observed: 1 media.hardware-video-decoding.failed: false network.cookie.prefsMigrated: true network.predictor.cleaned-up: true network.trr.blocklist_cleanup_done: true network.trr.disable-ECS: false network.trr.experimentalPerfInterval: 0 network.trr.experimentalPerfRepeatCount: 0 network.trr.experimentalRollout: -2 network.trr.uri: places.database.lastMaintenance: 1601791857 places.history.expiration.transient_current_max_pages: 112348 plugin.disable_full_page_plugin_for_types: application/pdf plugin.flash.arch: x86_64-msvc plugin.flash.blockliststate: 0 plugin.flash.desc: Shockwave Flash 32.0 r0 plugin.flash.lastmod_hi: 372 plugin.flash.lastmod_lo: 1898285106 plugin.flash.path: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_433.dll plugin.flash.version: 32.0.0.433 plugins.ctprollout.cohort: test plugins.ctprollout.cohortSample: 0.427068 privacy.cpd.cookies: false privacy.cpd.sessions: false privacy.purge_trackers.date_in_cookie_database: 0 privacy.sanitize.pending: [{"id":"newtab-container","itemsToClear":[],"options":{}}] privacy.socialtracking.notification.counter: 2 privacy.socialtracking.notification.enabled: false privacy.socialtracking.notification.lastShown: 1572406683766 security.remote_settings.crlite_filters.checked: 1601863349 security.remote_settings.intermediates.checked: 1601690286 security.sandbox.content.tempDirSuffix: {357d5be2-8042-4277-9c52-b3a1a7b5104f} security.sandbox.plugin.tempDirSuffix: {5c203efb-aa8f-44f9-9875-e4d9cd332b8c} security.ssl.errorReporting.automatic: true security.tls.version.enable-deprecated: true services.sync.declinedEngines: services.sync.engine.addresses.available: true signon.importedFromSqlite: true signon.rememberSignons: false signon.usage.hasEntry: false storage.vacuum.last.index: 1 storage.vacuum.last.places.sqlite: 1600991534 ui.osk.debug.keyboardDisplayReason: IKPOS: Touch screen not found.

Important Locked Preferences


fission.autostart: false

Places Database


Accessibility


Activated: false Prevent Accessibility: 0 Accessible Handler Used: true Accessibility Instantiator:

Library Versions


NSPR Expected minimum version: 4.28 Version in use: 4.28

NSS Expected minimum version: 3.56 Version in use: 3.56

NSSSMIME Expected minimum version: 3.56 Version in use: 3.56

NSSSSL Expected minimum version: 3.56 Version in use: 3.56

NSSUTIL Expected minimum version: 3.56 Version in use: 3.56

Sandbox


Content Process Sandbox Level: 6 Effective Content Process Sandbox Level: 6

Startup Cache


Disk Cache Path: C:\Users\jsign\AppData\Local\Mozilla\Firefox\Profiles\qzqpj3fh.default\startupCache\startupCache.8.little Ignore Disk Cache: false Found Disk Cache on Init: true Wrote to Disk Cache: true

Internationalization & Localization


Application Settings Requested Locales: ["en-US"] Available Locales: ["en-US"] App Locales: ["en-US"] Regional Preferences: ["en-US"] Default Locale: "en-US" Operating System System Locales: ["en-US"] Regional Preferences: ["en-US"]

Asked by punchcards 1 bhliain ó shin

Last reply by FredMcD 1 bhliain ó shin

  • Réitithe
  • Cartlannaithe

Getting pop-up for critical virus alert when running 96.0.3 on Win 10 Pro

I'm running 96.0.3 on a fully patched Win 10 Pro system - both O/S and programs. When Firefox is running I'm getting these pop-up error messages randomly with changing c… (tuilleadh eolais)

I'm running 96.0.3 on a fully patched Win 10 Pro system - both O/S and programs. When Firefox is running I'm getting these pop-up error messages randomly with changing content. They stay on screen for some seconds and then go away. Message states it's from (via) 5.back2yard.biz. I put that in my hosts file and I'm still getting them. My network is a cable modem hooked to Xfinity and then cable connected to another fully newer patched router. All addresses are 10. range. I ran both a Malwarebytes scan and a Windows Security scan - both are clean.

I'm unable to upload a small image after a hour so I'll give up on that right now.

Asked by oldserverguy 7 mí ó shin

Answered by oldserverguy 7 mí ó shin

  • Réitithe
  • Cartlannaithe

Old version of firefox keeps opening porn sites randomly

Hello. Im new to the Mozilla Support community I am running a Japanese Windows XP SP3 on VMWare Workstation 16, i have downloaded a old version of firefox, due to newer v… (tuilleadh eolais)

Hello. Im new to the Mozilla Support community

I am running a Japanese Windows XP SP3 on VMWare Workstation 16, i have downloaded a old version of firefox, due to newer versions not working on xp

And heres the issue: Firefox keeps opening tabs randomly which are related to pornographic websites like xxnx, pornhub, evilangel n' etc..

Heres things ive tried, but didnt work: -Install tdsskiller & scan -Scan with Avast Antivirus -Uninstalling Firefox and delete registry entries -Getting IE8 or G**gle Chr*me for Windows XP SP3

Any way to resolve this problem? i can't watch these things!

Asked by mm321 10 mí ó shin

Answered by James 10 mí ó shin

  • Réitithe
  • Cartlannaithe

Auto download without consent on some malicious websites

(Automatic translation in English ) As what happened in the title, when I was collecting information on the internet, the webpage was redirected twice to a malicious web… (tuilleadh eolais)

(Automatic translation in English ) As what happened in the title, when I was collecting information on the internet, the webpage was redirected twice to a malicious website. And then I closed an advertising module with "X " in the center of screen, my firefox started to automatically download apk files from a webpage

Asked by Ceesucc 1 bhliain ó shin

Answered by Scribe 1 bhliain ó shin

  • Réitithe
  • Cartlannaithe

pups prefs.js keep coming back found by malwarebytes plus several tries to hack my email account

I found some infos but I do not trust myself just deleting the files in question since they ared all over my system. The following I found per malwarebytes which found th… (tuilleadh eolais)

I found some infos but I do not trust myself just deleting the files in question since they ared all over my system. The following I found per malwarebytes which found the pups every day up to now:

PUP.Optional.DefaultSearch is Malwarebytes’ detection name for a family of browser hijackers targeting Chrome, Firefox and Internet Explorer. Symptoms The browsers’ default search engine was changed to one that belonged to the threat-actors. I am german so probably I need your patience in helping me to clean my system resp. Mozilla.

Looking forward Ingrid

Asked by iethomas 1 bhliain ó shin

Answered by jscher2000 - Support Volunteer 1 bhliain ó shin

  • Réitithe
  • Cartlannaithe

"New" Firefox Search Result Hijacker

Hi, I recently downloaded and installed some Android emulator named "Andy". Unfortunately, the .exe also installed all kinds of other Software on my Windows 7 system. I … (tuilleadh eolais)

Hi,

I recently downloaded and installed some Android emulator named "Andy". Unfortunately, the .exe also installed all kinds of other Software on my Windows 7 system.

I removed most of the unwanted Software but one problem remained: A search result hijacker was part of the package. It replaces the top 4 results with some cryptic redirect links that are luckily displayed in a different font, otherwise I wouldn't have noticed at all.

I tracked the issue down to a addon in Firefox (see attached screenshot) that I cannot remove, no matter what I try.

What I tried to remove it: - I tried to remove the addon via about:config - I tried to run Firefox in safe mode and uninstall it - I tried to factory reset Firefox - I Installed Avira and made a system scan - I installed MalwareBytes and made a system scan - I check all the extension folders for addons that I do not know but can't find anything - I checked my whole system for any xpi-files but couldn't find any.

I am out of ideas. I can disable the addon but thats about it. After a while Firefox will shut itself down and the next time I start it, the addon is on again. When I resinstall FIrefox, the same thing happens. The addon is always back.

When I inspect the element it loads some invisible icon file that is supposedly located in "src="jar:file:///C:/Windows/Installer/%7BB28AF4A4-C997-4A5B-A111-FD1E65138A8D%7D/%7B02E337C0-4D70-452D-AA64-92D0A8C5D953%7D.xpi!/icon48.png"", if that helps. But the location doesn't exist on my system.

Can anyone here help me? I alread sent a problem report via the official tool.

Sincerely Florian

Asked by flau 1 bhliain ó shin

Answered by flau 1 bhliain ó shin

  • Cartlannaithe

Crashes consistently

I've tried all the recommended fixes. Upgraded memory, file check, DISM, safe mode, refresh, update, etc. etc. Here are some of the infinite number of crash reports: Cr… (tuilleadh eolais)

I've tried all the recommended fixes. Upgraded memory, file check, DISM, safe mode, refresh, update, etc. etc. Here are some of the infinite number of crash reports: Crash ID: bp-ab045501-5c4f-439e-b01c-23afa0201116 Crash ID: bp-654606c6-6616-4cc4-a6c5-1ee420201116 Crash ID: bp-413dbf26-b713-4be2-b6b5-d88440201116 Crash ID: bp-1c6d93f2-17ad-4b6b-b223-4f0010201116

Asked by MEK 1 bhliain ó shin

Last reply by FredMcD 1 bhliain ó shin

  • Réitithe
  • Cartlannaithe

Firefox tries to access weird websites each time it starts

Hello Mozilla community! Merry Christmas! I have noticed since yesterday (but maybe it is related to the 95.0.2 Firefox update) that Firefox tries to access some weird we… (tuilleadh eolais)

Hello Mozilla community! Merry Christmas!

I have noticed since yesterday (but maybe it is related to the 95.0.2 Firefox update) that Firefox tries to access some weird websites each time it starts.

The websites Firefox tries to access are various (non-exhaustive list):

Kaspersky Internet Security blocks all those access attempts and notifies me with a "Download denied" event and a "Probability of unauthorized software download" message (see uploaded image).

I immediately suspected one of my Firefox extensions, so I disabled them all... But the issue kept on occurring. Could Firefox be infected? (I ran Kaspersky Internet Security through my whole PC, and it found nothing ; I did the same with the free version of MalwareBytes ; nothing again).

I find it hard to believe that this behavior is normal and that these alerts are false positives from Kaspersky Internet Security... What do you think guys?

Regards, Jerome.

Asked by Jerome 9 mí ó shin

Answered by Jerome 9 mí ó shin

  • Cartlannaithe

poshukach

good day. two days ago I was infected by poshukach probably when downloading Opera browser or a torrente file. So, whenever I initiate firefox I am redirected to poshukac… (tuilleadh eolais)

good day. two days ago I was infected by poshukach probably when downloading Opera browser or a torrente file. So, whenever I initiate firefox I am redirected to poshukach browser instead. Question is: how can I get rid of poshukach? Thanks a lot

Asked by mail1133 1 bhliain ó shin

Last reply by raotw.sq 10 mí ó shin

  • Cartlannaithe

Firefox 94.0.2 was hacked

Last night my Firefox 94.0.2 was hacked. When running Firefox, it would lock up my desktop. It disabled Norton Security, it disable other installed security software, an… (tuilleadh eolais)

Last night my Firefox 94.0.2 was hacked. When running Firefox, it would lock up my desktop. It disabled Norton Security, it disable other installed security software, and it disabled Windows System Restore. The hacker put up a message claiming to be Microsoft Support, with a phone number to call for help. This was a scam. I ran Firefox refresh, and that removed the hacker's program from Firefox, but then I had to do a full repair of my Window's installation. To protect my system, and prevent this from happening again, I added "xpinstall.enabled = false" into about.config. Please let me know if this will prevent a web site from installing a dangerous hack into Firefox, or if there is something else that I need to do. I have used Firefox for years, and have never encountered this problem before. Firefox is my favorite browser, but I am now afraid to use it. Please advise me what to do. Thanks, Jim

Asked by jimwest1 10 mí ó shin

Last reply by James 10 mí ó shin

  • Cartlannaithe

Bitdefender: suspicious connection blocked involving Firefox - signature-2.cdn.mozilla.net

Each morning, when I first cold boot my computer, the moment I open my Firefox browser, I receive numerous (10+) identical error messages from Bitdefender: Suspicious con… (tuilleadh eolais)

Each morning, when I first cold boot my computer, the moment I open my Firefox browser, I receive numerous (10+) identical error messages from Bitdefender:

Suspicious connection blocked: Feature: Online Threat Prevention

firefox.exe attempted to establish a connection relying on an unmatching security certificate to content-signature-2.cdn.mozilla.net. We blocked the connection to keep your data safe since the used certificate was issued for a different web address than the targeted one.

Question: Is this ACTUALLY coming from Firefox? If so, please match your security certificates! If that's impossible due to a technical issue, then please email me your confirmation so that I can add an exception to Bitdefender.

Question: If it's not coming from Firefox, please email me, letting me know what additional system information you require so that we can get to the bottom of who/what is masquerading as Firefox while attempting to establish an unauthorized Internet connection from my computer.

HP Envy laptop, Windows 10 OS, latest update.

This has been occurring for several months.

Thank you for your time.

Asked by swamper 1 bhliain ó shin

Last reply by jscher2000 - Support Volunteer 11 mí ó shin

  • Faoi Ghlas
  • Cartlannaithe

scam extensiom

Hello I sent a report of theft in the plugins section of your site some time ago, but I did not receive a response A robbery that robbed me of $ 42,600 I will explain it … (tuilleadh eolais)

Hello I sent a report of theft in the plugins section of your site some time ago, but I did not receive a response A robbery that robbed me of $ 42,600 I will explain it to you again and please take care so that more people do not fall victim This theft happened by Ledger live fake plugin eves in this theft, with small changes in the logo and the name of the Baba plugin, put it in the plugins section of your site and steal from the users' accounts. With a simple comparison between the fake plugins on your site and the original plugin, you can find out if the plugins in the plugins section of your site are fake or stolen. The name of the main plugin is Ledger live , and on your site, they are stealing with the same names and with a little change All plugins in this section of your site plugins are fake and thieves except SpeedLedger Which has a different topic and you can check https://addons.mozilla.org/fa/firefox/search/?platform=windows&q=ledger%20live I look forward to hearing from you to prevent further theft Thankful

Asked by chanchoa 1 bhliain ó shin

Last reply by AliceWyman 1 bhliain ó shin

  • Cartlannaithe

fake extension

Hello This is a warning for the plugins section In the plugins section, there are a number of fake plugins called ledger live l of these plugins are counterfeit and steal… (tuilleadh eolais)

Hello This is a warning for the plugins section In the plugins section, there are a number of fake plugins called ledger live l of these plugins are counterfeit and steal trapped users' money, and my $ 42,000 has been stolen this way. Sama, you can compare the samples in the plugins section of your site with the original sample to find out if the samples in your site are counterfeit. Thieves with small changes in the logo and name of this plugin have entered a fake version of it in the plugins section of your site and are engaged in stealing with titles like ledger live and similar in the plugins section of your site and steal Please prevent further theft and activity of these fake plugins In the following link, all plugins are fake except speedledger , and you can find out if they are fake with a simple research and comparison with the original plugin, and all Ledger live fake plugins to prevent further theft and security of users from the plugin section.

https://addons.mozilla.org/fa/firefox/search/?platform=windows&q=ledger%20live

Asked by chanchoa 2 bhliain ó shin

Last reply by James 1 bhliain ó shin

  • Cartlannaithe

My Firefox browser has been hijacked!! (both literally and figuratively)

Long story short: Whenever I open Firefox, apparently a Russian search engine named 'Poshukach' hijacks my homepage and doesn't let me use google(Image attached). Now to … (tuilleadh eolais)

Long story short: Whenever I open Firefox, apparently a Russian search engine named 'Poshukach' hijacks my homepage and doesn't let me use google(Image attached). Now to solve this I scoured the Internet. I refreshed Firefox, ran malware scans and even re-installed windows. Still it doesn't go away. I installed Firefox in another device with the same account but to no avail. They while roaming through Firefox settings I noticed in the top that it says 'Your browser settings is managed by your organization' or something like that. So, I figured bad guys took control of my browser's settings disguising as my so called "organization" So, I need help from Firefox's end to solve this. Remove this Organization management stuff from my account. I want my control back. Otherwise, I am afraid I gotta stop using Firefox altogether due to privacy reasons

Asked by turjoreal 10 mí ó shin

Last reply by FredMcD 10 mí ó shin

  • Réitithe
  • Cartlannaithe

In my browser is a pic of an ugly man. When you click on him it says Browser is under remote control (reason:De

That ugly man in the browser won't let me enter websites or pages within the website ,like sweepstakes entries on Cabela's website for example. My numbers are [phone numb… (tuilleadh eolais)

That ugly man in the browser won't let me enter websites or pages within the website ,like sweepstakes entries on Cabela's website for example. My numbers are [phone number]. Michael Lodsin When I open Firefox, there are 3 or 4 blue screens pop up to make excutible orders to my computer, I always click them off. but they we not always there. Is someone using my computer from afar, or worse tracking my keystrokes or monitoring me ?

Asked by nocowfarm2001 10 mí ó shin

Answered by FredMcD 10 mí ó shin

  • Cartlannaithe

How do I get rid of this? I've tried everything! goto-searchitnow.global.ssl.fastly.net/v1/hp?aid=437038&data=aWlkPTQ2JnVpZD03NTc5NzYxNg==&dt=17062493096&tb=1

I have tried everything that I can find to get rid of that damn searchitnow, which replaced my preferred Google Search. I've looked for downloads, extensions, everything.… (tuilleadh eolais)

I have tried everything that I can find to get rid of that damn searchitnow, which replaced my preferred Google Search. I've looked for downloads, extensions, everything. I've checked to make sure Google is my preferred search engine, and on and on. There is nothing. I have run Malwarebytes several times and it comes up clean.

How do I get this off my Mac? I am running OS X El Capitan 10.11.6.

Asked by tmcnamee 1 bhliain ó shin

Last reply by FredMcD 1 bhliain ó shin

  • Cartlannaithe

Firefox update proces is corrupted/hacked to install background update 308046B0AF4A39CB which provides Tr.Gen threat

I can't find anything about a compromised Firefox update while using the browser when you go to help and let the browser update itself. It seems you've been hacked becaus… (tuilleadh eolais)

I can't find anything about a compromised Firefox update while using the browser when you go to help and let the browser update itself. It seems you've been hacked because I can't otherwise explain the firefox background update 308046BoAF4A39CB, which is been detected by my systems. I obviously have more information about this if you like, but I see nowhere how to report this properly. This is the first time this has happened to me, at least as far as I know and so far I've only detected the Tr.Gen threat on my Windows computers. I would like an adequate response from Mozilla on how this could happen and what the repercussions are plus how to avoid this in the future. I've been using the Firefox browser on all my systems with various operating systems and would prefer to keep using it, but not if your own updating process is comprimised. I also think it's idiotic that I can't upload a bigger screenshot than 1024 kb because my very relevant picture is 3084 kb in size.

Sincerely,


J.L

Asked by Jayfl 8 mí ó shin

Last reply by FredMcD 7 mí ó shin

  • Réitithe
  • Cartlannaithe

site gamigo,desert operations keeps trying to connect.My anti virus stops it but i just want them to stop.

Hi.I would like to know how i can stop this site from constantley trying to connect with my P.C.luckeley my firewall stops it but eventully they will succeed.Iplayed it a… (tuilleadh eolais)

Hi.I would like to know how i can stop this site from constantley trying to connect with my P.C.luckeley my firewall stops it but eventully they will succeed.Iplayed it a long time ago.I stopt,deleted my account but they keep attacing several times a day.I,ll be gratefull with any help\advise about this.i tryed acsessing the page sourse and i think i,ve only made it worse.

Asked by scarrleg 8 mí ó shin

Answered by FredMcD 8 mí ó shin

  • Cartlannaithe

C&C Callback Address [Malware !!]

Im used Firefox (v91.0.2 32bit) on Windows 10 Pro and anti-virus (Trend micro) alert has malware on FF to open website. im open https://www.cloudflare.com and then my use… (tuilleadh eolais)

Im used Firefox (v91.0.2 32bit) on Windows 10 Pro and anti-virus (Trend micro) alert has malware on FF to open website. im open https://www.cloudflare.com and then my use Google Chrome to open https://www.cloudflare.com and the anti-virus not alert warning. The Admin talk to me firefox has malware.!!!! (sorry for bad Eng.)

Asked by khao_lek 1 bhliain ó shin

Last reply by FredMcD 1 bhliain ó shin