Hello Dong.

It's possible that you are having a problem with some Firefox add-on that is hindering your Firefox's normal behavior. Have you tried disabling all add-ons (just to check), to see if Firefox goes back to normal?

Whenever you have a problem with Firefox, whatever it is, you should make sure it's not caused by one (or more than one) of your installed add-ons, be it an extension, a theme or a plugin. To do that easily and cleanly, run Firefox in safe mode (don't forget to select Disable all add-ons when you start safe mode). If the problem disappears, you know it's from an add-on. Disable them all in normal mode, and enable them one at a time until you find the source of the problem. See this article for information about troubleshooting extensions and theme and this one for plugins.

If you need support for one of your add-ons, you'll have to contact its author.

Also, be sure that your system is not infected. To scan for malware, install, update and run these programs in this order. They are all free for personal use, but some have limited functionality in their "free mode", but the features you'll miss are not really needed to find and remove the problem you have. Remember that not all programs detect the same malware!

Malwarebytes' Anti-Malware - malwarebytes.org/mbam.php SuperAntispyware - superantispyware.com AdAware - lavasoftusa.com/software/adaware Spybot Search & Destroy - safer-networking.org/en/index.html Windows Defender - microsoft.com/windows/products/winfamily/defender/default.mspx Dr. Web Cureit - freedrweb.com/cureit

If these don't find it or can't clear it, please tell me and I'll provide you with further assistance.

OK, If I'm getting tier one cut and paste I guess I am in the wrong forum. PLs advise where I can post a security issue so that some one technical will reply?

Did you click on the link? [WARNING- YOU SHOULD NOT CLICK ON THIS LINK IF YOU ARE NOT IN A TEST ENVIRONMENT]

dong

I did click on your links.

The first one, Firefox tells me that it's known to be a malicious site. The second one, I get a fake Google page "analyzing" the threat. The third one, I don't get anything because NoScript blocks the loading of a script. The last two I can see ok, but I have NoScript enabled, so any malicious script will not run at all.

Malware removal assistance available by those who specialize in such is available at the following links. Please carefully read and comply with their rules for posting!

Post in one of these forums for specialized malware removal help: http://www.spywareinfoforum.com/ http://bleepingcomputer.com http://www.spywarewarrior.com/index.php http://forum.aumha.org/

>>The first one, Firefox tells me that it's known to be a malicious site.

So here is the first problem- there is a way with redirects to prevent Firefox from detecting a malicious site??

>>The second one, I get a fake Google page "analyzing" the threat. >>The third one, I don't get anything because NoScript blocks the loading of a script. >>The last two I can see ok, but I have NoScript enabled, so any malicious script will not run at all.

Doesnt having no script make it pretty difficult to navegate these days? Most menus are built using javascript.. gmail, docs, calendar etc are all useless without script..

Activate the script on a test machine to see the next problem. There seems to be a way to hijack firefox completely. You shouldnt be able to hijack the browser completely using javascript. There was no way for me to escape using v.3.6.4 except killing the app.

BTW, there is no infection on my machine. VISTA protected me. I just compared the HD image with that taken Friday and the few changes are known.

Dong.

> So here is the first problem- there is a way with redirects to prevent Firefox from detecting a malicious site??

I doubt it. You may simply have that detection disabled. Go into Tools > Options > Security to check those options.

> Doesnt having no script make it pretty difficult to navegate these days? Most menus are built using javascript.. gmail, docs, calendar etc are all useless without script..

Yeah, you just have to allow the sites you trust to run scripts. Nothing major if you know how scripts work and what for, and if you don't mind a bit of extra clicking when you visit a new site that you trust.

As for the rest, I'm sorry, but I don't have a test machine at hand and won't allow scripts on those sites to run. If you think this is a bug, file it at bugzilla and please be as detailed as possible.

Set the pref browser.sessionstore.max_resumed_crashes to 0 on the about:config page to get the about:sessionrestore page immediately with the first restart after a crash has occurred or the Task Manager was used to close Firefox.

See https://wiki.mozilla.org/Session_Restore#Preferences http://kb.mozillazine.org/Browser.sessionstore.max_resumed_crashes

See also http://kb.mozillazine.org/Session_Restore#Firefox_keeps_crashing_after_restoring_a_session

sorry, what is this for?

I dont plan on returning to the infected website so Im not worried about crashes..