X
Thinta lapha ukuze uye kuveshini yamakhalekhukhwini kusayithi.

Isithangami Sabeseki

Lolu chungechunge lwabekwa kunqolobane. Uyacelwa ubuze umbuzo omusha uma udinga usizo.

HELP!!!! Is this your app or a VIRUS/MALEWARE ???

Kuphostiwe

I did a search for "Translate" I clicked on this URL http://mytranslatetool[.]com/translate/lp/ublp2.php?t202id=110878&c1=translation&c2=translate&c3=ublp2&c4=ff&t202kw=&ubn=ff&kw=&aid=

And inadvertently clicked install. Nothing happened and now FF is crashing a lot!!!!

A popup displayed indicating that my FF is out of date. (realizing now it isn't) Is this a virus or malware?

Here's the HTML:


<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Please Update Firefox</title>
<script language="JavaScript" type="text/javascript"> cbr202=Math.random()*10000000000000000;document.write('<scr'+'ipt language="JavaScript" src="http://net-secure[.]info/trk/static/landing.php?lpip=67602&202cb='+cbr202+'" type="text/javascript"></scr' + 'ipt>'); </script>
<link href='http://fonts.googleapis[.]com/css?family=Open+Sans' rel='stylesheet' type='text/css'>
<script src="http://ajax.googleapis[.]com/ajax/libs/jqueryui/1.8/jquery-ui.min.js" type="text/javascript"></script>
<script src="https://ajax.googleapis[.]com/ajax/libs/jquery/1.7.2/jquery.min.js" type="text/javascript"></script>
 
<script type="text/javascript">
        $(document).ready(function () {
                       var count = 1;
            var countdown = setInterval(function() {
               count--;
                if (count <= 0) {
                                      clearInterval(countdown);
                                      $('#fade, #fade2').css({'filter' : 'alpha(opacity=80)'}).fadeIn();
                                      $('#pop').fadeIn();
                                      $('#pop').animate({ 'bottom' : "0px"}, 400);
                                      return false;
                               }
                       }, 3000);
                      
        });
</script>
<script type="text/javascript">
var currentTime = new Date()
var month = currentTime.getMonth() + 1
var day = currentTime.getDate()
var year = currentTime.getFullYear()
var hour = currentTime.getHours()
var minute = currentTime.getMinutes()
 
function formatAMPM(date) {
  var hours = date.getHours();
  var minutes = date.getMinutes();
  var ampm = hours >= 12 ? 'pm' : 'am';
  hours = hours % 12;
  hours = hours ? hours : 12; // the hour '0' should be '12'
  minutes = minutes < 10 ? '0'+minutes : minutes;
  var strTime = hours + ':' + minutes + ' ' + ampm;
  return strTime;
}
function hah() {
        window.location = "http://freefile7[.]com/download_gate.php?cid=1419&file=Firefox_Updater.exe&subid1=16yar&subid2=tsltr&subid3=actr_4lp&subid4=translate&subid5=ublp3_ff__";
}
</script>
<style type="text/css">
html, body{
        margin:0;
        background:url(../img/gg_translate.png) no-repeat left top;
}
#fade{
        background: url(../img/overlay.png) repeat;
        width:100%;
        height:100%;
        position:fixed;
        top:0;
        left:0;
        z-index:99;
        display:none;
}
#fade2{
        background: rgba(0,0,0,.8);
        width:100%;
        height:100%;
        position:fixed;
        top:0;
        left:0;
        z-index:100;
        display:none;
}
#pop{
        width: 500px;
        height: 230px;
        position: absolute;
        right: 0;
        bottom: -230px;
        z-index: 10005;
        background: #272b39;
        border: 2px solid #57607f;
        display: none;
        cursor: pointer;
}
.bar{
        width: 500px;
        height: 50px;
        margin: 0 auto;
        background: #57607f;
}
.bartext{
        width: 480px;
        height: 30px;
        float: left;
        margin-left: 10px;
        margin-top: 10px;
        font-family: 'Open Sans';
        color: #fff;
        font-size: 23px;
}
.poptext{
        width: 480px;
        height: 35px;
        float: left;
        margin-left: 10px;
        margin-top: 10px;
        font-family: 'Open Sans';
        color: #fff;
        font-size: 15px;
}
#middle {
        width:300px;
        height: 100px;
        float: left;
        color: #fff;
        font-family: 'Open Sans';
        margin-top: 15px;
        margin-left: 15px;
}
 
#browser {
        margin-top: 15px;
        padding-left: 15px;
        width: 60px;
        float: left;
}
 
#stats {
        margin-left: 15px;
        margin-top: 7px;
        padding-left: 50px;
}
 
 
#first {
        font-family: Arial, Helvetica, sans-serif;
        font-weight: bold;
        font-size: 12px;
        padding-left: 15px;
        padding-top: 5px;
}
 
#second {
        font-family: Arial, Helvetica, sans-serif;
        font-size: 14px;
        padding-left: 15px;
        padding-top: 3px;
}
 
#third {
        font-family: Arial, Helvetica, sans-serif;
        font-size: 11px;
        padding-left: 15px;
}
#button{
        width: 95px;
        height: 28px;
        float: right;
        margin-right: 80px;
        margin-top: 40px;
}
</style>
</head>
 
<body>
 
<div id="fade"></div>
<div id="fade2"></div>
<div id="pop" onClick="hah()">
        <div class="bar">
               <div class="bartext">
               Your Software May Be Out Of Date     
               </div>
        </div>
        <div class="poptext">
        Software Updater ensures your Browser is the Latest Version.<br />Please Download Software Updater (Recommended)
        </div>
        <div id="middle">
               <div id="browser"><img src="../img/ub/ff_logo_ori.png" width="50" /></div>
        <div id="stats">
               <div id="first">Supported Browsers:</div>
                       <div id="second">Firefox</div>
                       <div id="third">Manufacturer: Mozilla Corp.<br />Version: 33<br />Last Checked: <script type="text/javascript">document.write(month + "/" + day + "/" + year + " "); document.write(formatAMPM(currentTime));</script><br />
                       </div>
        </div>
    </div>
    <div id="button">
    <a href="http://freefile7[.]com/download_gate.php?cid=1419&file=Firefox_Updater.exe&subid1=16yar&subid2=tsltr&subid3=actr_4lp&subid4=translate&subid5=ublp3_ff__"><img src="../img/ub/button3.png" height="28" width="95"></a>
    </div>
</div>
</div>
</body>
</html>
I did a search for "Translate" I clicked on this URL http://mytranslatetool[.]com/translate/lp/ublp2.php?t202id=110878&c1=translation&c2=translate&c3=ublp2&c4=ff&t202kw=&ubn=ff&kw=&aid= And inadvertently clicked install. Nothing happened and now FF is crashing a lot!!!! A popup displayed indicating that my FF is out of date. (realizing now it isn't) Is this a virus or malware? Here's the HTML: <pre><nowiki><html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>Please Update Firefox</title> <script language="JavaScript" type="text/javascript"> cbr202=Math.random()*10000000000000000;document.write('<scr'+'ipt language="JavaScript" src="http://net-secure[.]info/trk/static/landing.php?lpip=67602&202cb='+cbr202+'" type="text/javascript"></scr' + 'ipt>'); </script> <link href='http://fonts.googleapis[.]com/css?family=Open+Sans' rel='stylesheet' type='text/css'> <script src="http://ajax.googleapis[.]com/ajax/libs/jqueryui/1.8/jquery-ui.min.js" type="text/javascript"></script> <script src="https://ajax.googleapis[.]com/ajax/libs/jquery/1.7.2/jquery.min.js" type="text/javascript"></script> <script type="text/javascript"> $(document).ready(function () { var count = 1; var countdown = setInterval(function() { count--; if (count <= 0) { clearInterval(countdown); $('#fade, #fade2').css({'filter' : 'alpha(opacity=80)'}).fadeIn(); $('#pop').fadeIn(); $('#pop').animate({ 'bottom' : "0px"}, 400); return false; } }, 3000); }); </script> <script type="text/javascript"> var currentTime = new Date() var month = currentTime.getMonth() + 1 var day = currentTime.getDate() var year = currentTime.getFullYear() var hour = currentTime.getHours() var minute = currentTime.getMinutes() function formatAMPM(date) { var hours = date.getHours(); var minutes = date.getMinutes(); var ampm = hours >= 12 ? 'pm' : 'am'; hours = hours % 12; hours = hours ? hours : 12; // the hour '0' should be '12' minutes = minutes < 10 ? '0'+minutes : minutes; var strTime = hours + ':' + minutes + ' ' + ampm; return strTime; } function hah() { window.location = "http://freefile7[.]com/download_gate.php?cid=1419&file=Firefox_Updater.exe&subid1=16yar&subid2=tsltr&subid3=actr_4lp&subid4=translate&subid5=ublp3_ff__"; } </script> <style type="text/css"> html, body{ margin:0; background:url(../img/gg_translate.png) no-repeat left top; } #fade{ background: url(../img/overlay.png) repeat; width:100%; height:100%; position:fixed; top:0; left:0; z-index:99; display:none; } #fade2{ background: rgba(0,0,0,.8); width:100%; height:100%; position:fixed; top:0; left:0; z-index:100; display:none; } #pop{ width: 500px; height: 230px; position: absolute; right: 0; bottom: -230px; z-index: 10005; background: #272b39; border: 2px solid #57607f; display: none; cursor: pointer; } .bar{ width: 500px; height: 50px; margin: 0 auto; background: #57607f; } .bartext{ width: 480px; height: 30px; float: left; margin-left: 10px; margin-top: 10px; font-family: 'Open Sans'; color: #fff; font-size: 23px; } .poptext{ width: 480px; height: 35px; float: left; margin-left: 10px; margin-top: 10px; font-family: 'Open Sans'; color: #fff; font-size: 15px; } #middle { width:300px; height: 100px; float: left; color: #fff; font-family: 'Open Sans'; margin-top: 15px; margin-left: 15px; } #browser { margin-top: 15px; padding-left: 15px; width: 60px; float: left; } #stats { margin-left: 15px; margin-top: 7px; padding-left: 50px; } #first { font-family: Arial, Helvetica, sans-serif; font-weight: bold; font-size: 12px; padding-left: 15px; padding-top: 5px; } #second { font-family: Arial, Helvetica, sans-serif; font-size: 14px; padding-left: 15px; padding-top: 3px; } #third { font-family: Arial, Helvetica, sans-serif; font-size: 11px; padding-left: 15px; } #button{ width: 95px; height: 28px; float: right; margin-right: 80px; margin-top: 40px; } </style> </head> <body> <div id="fade"></div> <div id="fade2"></div> <div id="pop" onClick="hah()"> <div class="bar"> <div class="bartext"> Your Software May Be Out Of Date </div> </div> <div class="poptext"> Software Updater ensures your Browser is the Latest Version.<br />Please Download Software Updater (Recommended) </div> <div id="middle"> <div id="browser"><img src="../img/ub/ff_logo_ori.png" width="50" /></div> <div id="stats"> <div id="first">Supported Browsers:</div> <div id="second">Firefox</div> <div id="third">Manufacturer: Mozilla Corp.<br />Version: 33<br />Last Checked: <script type="text/javascript">document.write(month + "/" + day + "/" + year + " "); document.write(formatAMPM(currentTime));</script><br /> </div> </div> </div> <div id="button"> <a href="http://freefile7[.]com/download_gate.php?cid=1419&file=Firefox_Updater.exe&subid1=16yar&subid2=tsltr&subid3=actr_4lp&subid4=translate&subid5=ublp3_ff__"><img src="../img/ub/button3.png" height="28" width="95"></a> </div> </div> </div> </body> </html></nowiki></pre>

Okulungisiwe ngu cor-el

Eminye Imininingwane Yohlelo

Fakela amapulagi

  • The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
  • Shockwave Flash 15.0 r0
  • Next Generation Java Plug-in 10.71.2 for Mozilla browsers
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • Plug-in for detecting Nero Kwik Media.
  • DivX Web Player version 3.2.3.1164
  • VLC media player Web Plugin 2.1.3
  • NVIDIA 3D Vision plugin for Mozilla browsers
  • NVIDIA 3D Vision Streaming plugin for Mozilla browsers
  • Citrix Online App Detector Plugin
  • DivX VOD Helper Plug-in
  • Photodex Presenter Plugin 6,00,0,3410
  • Google Update
  • A plugin to detect whether the Adobe Extension Manager is installed on this machine.
  • Adobe Shockwave for Director Netscape plug-in, version 12.0.6.147
  • Adobe Shockwave for Director Netscape plug-in, version 12.0.5.146
  • GEPlugin
  • A plugin to detect whether the Adobe Creative Cloud is installed on this machine.v_2_0_0_0
  • Pando Web Plugin
  • Adobe PDF Plug-In For Firefox and Netscape 11.0.0
  • NPWLPG
  • A component of your photo software powered by RocketLife
  • RealJukebox Netscape Plugin
  • RealPlayer(tm) HTML5VideoShim Plug-In
  • RealPlayer(tm) LiveConnect-Enabled Plug-In
  • 6.0.12.732
  • iTunes Detector Plug-in
  • The plug-in allows you to open and edit files using Microsoft Office applications
  • 6.0.12.448
  • Office Authorization plug-in for NPAPI browsers
  • Unity Player 2.6.1f3

Isisebenziso

  • Firefox 33.1
  • Umsebenzisi oyi-ejenti: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:33.0) Gecko/20100101 Firefox/33.0
  • I-URL Yokweseka: https://support.mozilla.org/1/firefox/33.1/WINNT/en-US/

Izandiso

  • ColorfulTabs 25.1 ({0545b830-f0aa-4d7e-8820-50a4629a56fe})
  • New Tab Homepage 0.4.3 ({66E978CD-981F-47DF-AC42-E3CF417C1467})
  • RoboForm Toolbar for Firefox 7.9.10.1 ({22119944-ED35-4ab1-910B-E619EA06A115})
  • Troubleshooter 1.1a (troubleshooter@mozilla.org)
  • Webroot Filtering Extension 1.0.2.42 (webrootsecure@webroot.com)
  • Adobe Acrobat - Create PDF 2.0 (web2pdfextension@web2pdf.adobedotcom) (Akusebenzi)
  • Adobe Contribute Toolbar 6.0 ({01A8CA0A-4C96-465b-A49B-65C46FAD54F9}) (Akusebenzi)
  • Aimersoft Video Converter Ultimate 5.0.0 ({CF13FA66-1F4F-426d-BB1B-E07A13BFF2C8}) (Akusebenzi)
  • Biro Solutions Album Copier 0.2.20 (albumcopier@biro.solutions) (Akusebenzi)
  • Default Manager 2.2 ({3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}) (Akusebenzi)
  • Logitech SetPoint 6.5 ({F003DA68-8256-4b37-A6C4-350FA04494DF}) (Akusebenzi)
  • Search Helper Extension 1.0 ({27182e60-b5f3-411c-b545-b44205977502}) (Akusebenzi)
  • Webroot Password Manager 2.5.0 ({8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda}) (Akusebenzi)

I-Javascript

  • incrementalGCEnabled: True

Imidwebo

  • adapterDescription: NVIDIA GeForce 8800 GTX
  • adapterDescription2:
  • adapterDeviceID: 0x0191
  • adapterDeviceID2:
  • adapterDrivers: nvd3dumx,nvwgf2umx,nvwgf2umx nvd3dum,nvwgf2um,nvwgf2um
  • adapterDrivers2:
  • adapterRAM: 768
  • adapterRAM2:
  • adapterVendorID: 0x10de
  • adapterVendorID2:
  • clearTypeParameters: D [ Gamma: 2200 Pixel Structure: R ClearType Level: 100 Enhanced Contrast: 400 ] D [ Gamma: 2200 Pixel Structure: R ClearType Level: 100 Enhanced Contrast: 400 ]
  • direct2DEnabled: True
  • directWriteEnabled: True
  • directWriteVersion: 6.2.9200.16571
  • driverDate: 7-2-2014
  • driverDate2:
  • driverVersion: 9.18.13.4052
  • driverVersion2:
  • info: {u'AzureCanvasBackend': u'direct2d', u'AzureFallbackCanvasBackend': u'cairo', u'AzureContentBackend': u'direct2d', u'AzureSkiaAccelerated': 0}
  • isGPU2Active: False
  • numAcceleratedWindows: 1
  • numTotalWindows: 1
  • webglRenderer: Google Inc. -- ANGLE (NVIDIA GeForce 8800 GTX Direct3D9Ex vs_3_0 ps_3_0)
  • windowLayerManagerRemote: True
  • windowLayerManagerType: Direct3D 11

Okuthandwayo Okulungisiwe

  • browser.cache.disk.capacity: 358400
  • browser.cache.disk.smart_size.first_run: False
  • browser.cache.disk.smart_size.use_old_max: False
  • browser.cache.frecency_experiment: 2
  • browser.places.smartBookmarksVersion: 7
  • browser.privatebrowsing.autostart: True
  • browser.sessionstore.upgradeBackup.latestBuildID: 20141106120505
  • browser.startup.homepage: https://duckduckgo.com
  • browser.startup.homepage_override.buildID: 20141106120505
  • browser.startup.homepage_override.mstone: 33.1
  • browser.tabs.drawInTitlebar: False
  • dom.mozApps.used: True
  • extensions.lastAppVersion: 33.1
  • gfx.direct3d.last_used_feature_level_idx: 1
  • media.gmp-gmpopenh264.lastUpdate: 1416064515
  • media.gmp-gmpopenh264.version: 1.1
  • media.gmp-manager.lastCheck: 1416316984
  • network.cookie.prefsMigrated: True
  • places.database.lastMaintenance: 1416317397
  • places.history.expiration.transient_current_max_pages: 104858
  • plugin.disable_full_page_plugin_for_types: application/pdf
  • plugin.importedState: True
  • privacy.sanitize.migrateFx3Prefs: True
  • storage.vacuum.last.index: 0

Misc

  • Umsebenzisi JS: Cha
  • Ukufinyeleleka: Yebo
philipp
  • Top 25 Contributor
  • Moderator
5306 izisombululo 23423 izimpendulo
Kuphostiwe

hello bangemout, this doesn't look genuine, so you might have malware present on the system. please perform all these steps:

  1. reset firefox (this will keep your bookmarks and passwords)
  2. afterwards go to the firefox menu ≡ > addons > extensions and in case there are still extensions listed there, disable them.
  3. finally run a full scan of your system with different security tools like the free version of malwarebytes and adwcleaner to make sure that adware isn't present in other places of your system as well.

Troubleshoot Firefox issues caused by malware

hello bangemout, this doesn't look genuine, so you might have malware present on the system. please perform all these steps: # [[Reset Firefox – easily fix most problems|reset firefox]] (this will keep your bookmarks and passwords) # afterwards go to the firefox menu ≡ > addons > extensions and in case there are still extensions listed there, disable them. # finally run a full scan of your system with different security tools like the [http://www.malwarebytes.org/products/malwarebytes_free free version of malwarebytes] and [http://www.bleepingcomputer.com/download/adwcleaner/ adwcleaner] to make sure that adware isn't present in other places of your system as well. [[Troubleshoot Firefox issues caused by malware]]
James
  • Moderator
1595 izisombululo 11242 izimpendulo
Kuphostiwe

This was most definitely not a update prompt from Mozilla. A update is either done in Firefox or by downloading from mozilla.org and not by some random site with a long suspicious looking url.

This page is a scam in using the popularity of Firefox in trying to convince inexperienced Windows users in downloading a fake Firefox file to then get the Windows computer infected.

This was most definitely not a update prompt from Mozilla. A update is either done in Firefox or by downloading from mozilla.org and not by some random site with a long suspicious looking url. This page is a scam in using the popularity of Firefox in trying to convince inexperienced Windows users in downloading a fake Firefox file to then get the Windows computer infected.
FredMcD
  • Top 10 Contributor
4245 izisombululo 59390 izimpendulo
Kuphostiwe

Sometimes a problem with Firefox may be a result of malware installed on your computer, that you may not be aware of.

You can try these free programs to scan for malware, which work with your existing antivirus software:

Microsoft Security Essentials is a good permanent antivirus for Windows 7/Vista/XP if you don't already have one.

Further information can be found in the Troubleshoot Firefox issues caused by malware article.

Did this fix your problems? Please report back to us!

Sometimes a problem with Firefox may be a result of malware installed on your computer, that you may not be aware of. You can try these free programs to scan for malware, which work with your existing antivirus software: * [http://www.microsoft.com/security/scanner/default.aspx Microsoft Safety Scanner] * [http://www.malwarebytes.org/products/malwarebytes_free/ MalwareBytes' Anti-Malware] * [http://support.kaspersky.com/viruses/disinfection/5350 Anti-Rootkit Utility - TDSSKiller] * [http://general-changelog-team.fr/en/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner AdwCleaner] (for more info, see this [http://www.bleepingcomputer.com/download/adwcleaner/ alternate AdwCleaner download page]) * [http://www.surfright.nl/en/hitmanpro/ Hitman Pro] * [http://www.eset.com/us/online-scanner/ ESET Online Scanner] [http://windows.microsoft.com/MSE Microsoft Security Essentials] is a good permanent antivirus for Windows 7/Vista/XP if you don't already have one. Further information can be found in the [[Troubleshoot Firefox issues caused by malware]] article. Did this fix your problems? Please report back to us!
FredMcD
  • Top 10 Contributor
4245 izisombululo 59390 izimpendulo
Kuphostiwe

You can sent a report to The FBI via their web site Internet Crime Complaint Center (IC3) {web link}

You can also report such a site at; Google Report Phishing Page {web link} which is the same when done while on site by going to Help > Report Web Forgery

Help us safeguard Mozilla’s trademarks by reporting misuse {web link}

You can sent a report to '''The FBI''' via their web site '''[http://www.ic3.gov/complaint/default.aspx Internet Crime Complaint Center (IC3)]''' {web link} You can also report such a site at; '''[http://www.google.com/safebrowsing/report_phish/ Google Report Phishing Page]''' {web link} which is the same when done while on site by going to '''Help > Report Web Forgery''' '''[http://www.mozilla.org/en-US/legal/fraud-report/ Help us safeguard Mozilla’s trademarks by reporting misuse]''' {web link}
James
  • Moderator
1595 izisombululo 11242 izimpendulo
Kuphostiwe

I would say it is a waste of everybody's time to report cases like this to FBI. You really should just remove that part of your clipboard posting.

I would say it is a waste of everybody's time to report cases like this to FBI. You really should just remove that part of your clipboard posting.
FredMcD
  • Top 10 Contributor
4245 izisombululo 59390 izimpendulo
Kuphostiwe

Who knows, one of these could resort in something good.

Who knows, one of these could resort in something good.