We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Malware bytes keeps telling me FF is trying to connect to sites with a trojan

  • 1 tontu
  • 0 am na jafe-jafe bii
  • i mujjee tontu mooy monsieurms

more options

This is behind the scenes of course with me doing nothing to initiate contact. I previously contacted MB support about such warnings and they told me to uninstall two extensions--Video Download Helper and AddtoAny. I've used both for a long time, but uninstalling them did fix that particular problem wherein the browser kept trying to connect to techalert.com, a site that is (through research) apparently for shareware? I don't recall ever being on it. But that's stopped.

But there was another. See jpg attachment. This is pretty much every day that I'm being told FF is trying to connect to something that is offering up a Trojan--apparently through Instagram??? That also makes little sense.

Most recently, I have two MORE such attempts to connect in the background, this time with full IP addresses. Both of those seem to be compromised sites in Pakistan according to a little research I did. (I have no dealings with Pakistan.) Why these two latest have full IP addresses and the others (see image) only deal with an Instagram URL, have no idea.

So, I contacted MB support again. They said it was not a false positive and they couldn't be sure what was doing this, but "something on firefox is reaching out to the IP address." At first they suggested returning FF to a default state. I'm reluctant to do that considering how much time spent getting it where I want it. So, now, they suggest turning off extensions one-by-one. That's a better idea, but certainly labor intensive and something that may take awhile.

So before I undertake this potentially time consuming task, does anyone here have some idea of what's happening?

P.s. scans came up clean of my system, no trojans, malware detected.

Win11, latest updates, FF 133.03 64 bit

This is behind the scenes of course with me doing nothing to initiate contact. I previously contacted MB support about such warnings and they told me to uninstall two extensions--Video Download Helper and AddtoAny. I've used both for a long time, but uninstalling them did fix that particular problem wherein the browser kept trying to connect to techalert.com, a site that is (through research) apparently for shareware? I don't recall ever being on it. But that's stopped. But there was another. See jpg attachment. This is pretty much every day that I'm being told FF is trying to connect to something that is offering up a Trojan--apparently through Instagram??? That also makes little sense. Most recently, I have two MORE such attempts to connect in the background, this time with full IP addresses. Both of those seem to be compromised sites in Pakistan according to a little research I did. (I have no dealings with Pakistan.) Why these two latest have full IP addresses and the others (see image) only deal with an Instagram URL, have no idea. So, I contacted MB support again. They said it was not a false positive and they couldn't be sure what was doing this, but "something on firefox is reaching out to the IP address." At first they suggested returning FF to a default state. I'm reluctant to do that considering how much time spent getting it where I want it. So, now, they suggest turning off extensions one-by-one. That's a better idea, but certainly labor intensive and something that may take awhile. So before I undertake this potentially time consuming task, does anyone here have some idea of what's happening? P.s. scans came up clean of my system, no trojans, malware detected. Win11, latest updates, FF 133.03 64 bit
Nataali seetu yiñ ci takkaale

monsieurms moo ko soppali ci

All Replies (1)

more options

deleted

monsieurms moo ko soppali ci

Helpful?

Laajal dara

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.