Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Lolu chungechunge lwabekwa kunqolobane. Uyacelwa ubuze umbuzo omusha uma udinga usizo.

You must remove this page 'https://support.mozilla.org/en-US/kb/profiles-where-firefox-stores-user-data' because hackers are misusing this info send virus there

  • 9 uphendule
  • 2 zinale nkinga
  • 78 views
  • Igcine ukuphendulwa ngu James

more options

You must remove this 'https://support.mozilla.org/en-US/kb/profiles-where-firefox-stores-user-data' because hackers are misusing this information to send virus in that location and changes search engine and locks it as a administrator. I unfortunity don't have any proof but I am so sure because as per Anti-malware bytes caught it at the same folder '..../mozilla..../../profiles.../ where it was attacking. Please see to it.

Okulungisiwe ngu sherkhan30452

Isisombululo esikhethiwe

Articles for users about how to find their profile folder are useful for solving problems with Firefox. I don't think it should be removed. As I already said, the information is well documented on other sites, so removing it from the official support site is not going to prevent malware authors from finding the folder.

Funda le mpendulo ngokuhambisana nalesi sihloko 👍 1

All Replies (9)

more options

This information is very widespread and hasn't changed for years, so I think removing it would not really help.

What exactly was detected in your profile folder -- can you get more information? Perhaps Malwarebytes Anti-Malware found a bad add-on in there -- that's where extensions you install often are saved -- but it might also have been a bad setting or settings file.

Okulungisiwe ngu jscher2000

more options

Please see the image

more options

The prefs.js file is what stores changes made to the defaults, after they are written back to disk. This normally occurs when you exit the Mozilla-based application.

http://kb.mozillazine.org/prefs.js_file https://support.mozilla.org/en-US/kb/how-to-fix-preferences-wont-save

The part before the Profile name or default if you did not create a new one in Profilemanager is a represents a random strung of characters. So users do not have the same Profile names unless by chance you get same random.

Okulungisiwe ngu James

more options

Hmm, at this point it might not be possible to see how those programs modified the preferences file. If you had an unwanted extension, it could have been settings for that extension. Or a change to your home page or another address. If there is a copy of that prefs.js file in a quarantine or elsewhere, it would be interesting to review.

One possible source would be in a Windows restore point. You can use the following program to check for old versions of prefs.js that Windows might have saved and extract one to your Documents folder or elsewhere for analysis. Please rename the .js extension to .txt before opening the file to avoid accidentally executing it. If Windows hides these extensions from you, you can set Windows to show all file extensions.

more options

James Sir, I am trying to tell this it was detected as threat and it hacked on Mozilla browser and please see the image properly which uploaded on left side of the image it shows PUP.Optional.Arabyonline and PUP.Optional.Vonteera are clearly shown which are famous for their changing and locking the default search engine and home page. So please remove the page what I said in First post. And I already solved that problem by using Malwarebytes antimalware.

Okulungisiwe ngu sherkhan30452

more options

This virus came as a host from a software from a website which is now blocked by anti malware.

Okulungisiwe ngu sherkhan30452

more options

Isisombululo Esikhethiwe

Articles for users about how to find their profile folder are useful for solving problems with Firefox. I don't think it should be removed. As I already said, the information is well documented on other sites, so removing it from the official support site is not going to prevent malware authors from finding the folder.

more options

And by the way it was caught at that location it may not be prefs.js the virus what everyone is thinking.

more options

sherkhan30452 said

So please remove the page what I said in First post.

Not sure how new you are to using Mozilla based applications such as Firefox however the concept of using a Profile for settings has existed for a couple decades now. The Mozilla suite (which is now SeaMonkey by a community after Mozilla disconnected the suite) came out back in 1998 for example. The browser Firefox has been around since Sept 2002 when it was originally called Phoenix 0.1.

It would do harm to remove the article as it used to help people on how to find where their Profiles are located on Windows, Mac OSX, and Linux and what the profiles is used for.

The use of Profiles in Firefox (also the community products Thunderbird and SeaMonkey) is not a secret as it is Very common Knowledge.

Note that is is not uncommon for various malware scanners and antivirus clients to have False Positives with something in a Profile you are using with Firefox. Also alot of times they make a big fuss about tracking cookies and also bad stuff found in the Cache (which is harmless while there) also and people panic on that.

Also to explain what PUP's are https://support.malwarebytes.org/customer/portal/articles/1834873-what-are-pup-detections-are-they-threats-and-should-they-be-deleted-?b_id=6438

Okulungisiwe ngu James