I have this avast warning on every page i go to URL: http://trending-fun-today.com/script.js Process: C:\Program Files\Mozilla Firefox\firefox... Infe
URL: http://trending-fun-today.com/script.js Process: C:\Program Files\Mozilla Firefox\firefox... Infection: URL:Mal
this is coming up on every one of my sites... facebook,yahoo, games on facebook ... so i tried to down load another mozilla firefox and it will not let me do so .. any suggestions?
Modificadas por cor-el el
Solución elegida
Do a malware check with some malware scanning programs on the Windows computer.
You need to scan with all programs because each program detects different malware.
Make sure that you update each program to get the latest version of their databases before doing a scan.
- http://www.malwarebytes.org/mbam.php - Malwarebytes' Anti-Malware
- http://www.superantispyware.com/ - SuperAntispyware
- http://www.microsoft.com/security/scanner/en-us/default.aspx - Microsoft Safety Scanner
- http://www.microsoft.com/windows/products/winfamily/defender/default.mspx - Windows Defender: Home Page
- http://www.safer-networking.org/en/index.html - Spybot Search & Destroy
You can also do a check for a rootkit infection with TDSSKiller.
See also:
- "Spyware on Windows": http://kb.mozillazine.org/Popups_not_blocked
Todas las respuestas (16)
Solución elegida
Do a malware check with some malware scanning programs on the Windows computer.
You need to scan with all programs because each program detects different malware.
Make sure that you update each program to get the latest version of their databases before doing a scan.
- http://www.malwarebytes.org/mbam.php - Malwarebytes' Anti-Malware
- http://www.superantispyware.com/ - SuperAntispyware
- http://www.microsoft.com/security/scanner/en-us/default.aspx - Microsoft Safety Scanner
- http://www.microsoft.com/windows/products/winfamily/defender/default.mspx - Windows Defender: Home Page
- http://www.safer-networking.org/en/index.html - Spybot Search & Destroy
You can also do a check for a rootkit infection with TDSSKiller.
See also:
- "Spyware on Windows": http://kb.mozillazine.org/Popups_not_blocked
solved
I have the same concern. How did you solve it? I have done a number of scans via some of the sites named above.
Les
I did a restore back 4 days ago... it fixed it and my malware was out dated and i updated it and ran it
I ran all of those tools and none of them detected a problem.
I ran a boot-time scan with Avast and it did not detect a problem.
I uninstalled Firefox, deleted the Mozilla folder from Program Files, deleted all restore points and emptied my Recycle Bin. I then installed a clean version of Firefox and still had the problem.
I uninstalled the latest version and installed an earlier version. I still have the problem.
I refuse to use Firefox until I get a resolution. Does anyone have any other ideas?
I have more information on this. I was able to download the http://trending-fun-today.com/script.js file. It writes a script that inserts two more scripts. One of them I could not download, but the other one detects when you have Facebook open and will post on all your Friends wall.
There is not a fix for this yet.
I am not getting the warning anymore. However, a look at the generated source shows the script has been injected into the code. I wonder what it post of facebook.
About a week ago it posted about a gift certificate to Starbucks. I don't even drink coffee.
I put a support ticket into avast yesterday. I am waiting for an answer. It seems odd it knows it is there, but, it will not pick it up on a scan.
I've thought about that and it actually makes sense. The script is acting maliciously, which is why the warning pops up. The avast staff doesn't know about it yet which is why a scan won't find it. Hopefully with our two tickets they'll get on it.
I only have this problem with my Aurora (Firefox) browser. I have run all malware and virus checkers as suggested and the problem still exists. THIS PROBLEM IS NOT SOLVED! Until I get an email from Mozzila showing me the fix I will stop using their software. Chrome and IE do not have this problem. Something has been written into the firefox.exe program and this breach in security needs to be plugged. This just started 2 days ago. Also, this malware screws up my SQL database when I am working with it inside of Aurora. Not Good!
Modificadas por gstell el
Lescar2, If you hear anything from AVAST please post it here. I only get this problem with Aurora, so I don't think it is an AVAST issue but rather there is a hole in the current Firefox release that let this thing in. When I use IE or Chrome all works well and no warning from AVAST. I think AVAST is doing what it is supposed to - warning us of problems.
Modificadas por gstell el
jrs74656, but why would a script be in Aurora that takes you to trending-fun-today.com?? That is the part that doesn't make sense.
I am currently not getting a warning from Avast.
However, I am still having an injection into the GENERATED SOURCE CODE. It is there when I view the generated source code. Does anyone know for sure if it is being injected into the generated source code of other browsers.
I completely uninstalled Firefox, including (this time) all personal data. When I reinstalled, the problem was gone.
Thanks, jrs74656, I will give it a try; but I think until I hear from Mozilla I will be sticking with Chrome. I haven't had the problem since I switched. When using Mozilla as an access point into my SQL databases and editing some of my PHP code they were all being screwed up as well. Lost a whole website because the database went FUBAR. May be just a coincidence, but I still say the problem is in Aurora and even if I re-install who says the problem won't return. It has just been since the last update of Aurora that I received that this has been happening. I am almost positive they have a security leak.