Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Windows defender caught trojan in the cache2\entries folder

more options

I recently went to a website I normally visit but accidentally misspelled the url which took me to a deceptive website. Luckily, Firefox was able to detect the site as a security threat and did not allow connection.

About 5 mins after, my windows defender caught a Trojan:Script/Wacatac.B!ml in the \AppData\Local\Mozilla\Firefox\Profiles\0efjymat.default-release\cache2\entries\. I immediately quarantined and removed it.

I understand that it could be a false positive since I read that windows defender usually catches cache files that may look suspicious to it. I have to wonder though is it still possible for deceptive website cache files to get downloaded despite getting blocked by Firefox?

Note: I have ublock extension and my Firefox browser version is 131.0.2 64-bit

I recently went to a website I normally visit but accidentally misspelled the url which took me to a deceptive website. Luckily, Firefox was able to detect the site as a security threat and did not allow connection. About 5 mins after, my windows defender caught a Trojan:Script/Wacatac.B!ml in the \AppData\Local\Mozilla\Firefox\Profiles\0efjymat.default-release\cache2\entries\. I immediately quarantined and removed it. I understand that it could be a false positive since I read that windows defender usually catches cache files that may look suspicious to it. I have to wonder though is it still possible for deceptive website cache files to get downloaded despite getting blocked by Firefox? Note: I have ublock extension and my Firefox browser version is 131.0.2 64-bit

All Replies (2)

more options

This may be a older article but it still applies = Firefox cache file was infected with a virus

You are Not infected as it will either get overwritten over time as Cache gets used or deleted if you clear the Cache. The Trojan is harmless while in the Cache.

Helpful?

more options

Thank you for the reply. I was caught off guard by how the cache still got downloaded into the folder even though Firefox prevented me from accessing the fake website.

Helpful?

Ask a question

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.