Jump to content

I may be infected, problem with Firefox on the newspaper site "Le Monde".


Recommended Posts

Hello,

 

When I installed Windows 10 I had not installed the Network Drivers (Ethernet) and Windows Update installed inadequate drivers. Subsequently I managed to install the DVD drivers I received with the motherboard but it does not work very well. I would like to reinstall the network drivers (Ethernet) proper for it to work better. Network drivers should be cleaned and properly reinstall them.

 

Thank you very much

Link to post
Share on other sites

  • Root Admin

At this point Microsoft should be offering the best available drivers. I would recommend at lest trying them.

I have to get to bed myself, but I will provide you a script to fully remove Firefox. Please make sure you backup anything you want from there though as once done you will not be able to undo the removal.

 

Link to post
Share on other sites

 

Good evening,

 

I thank you a lot for your good help.

I have to give up the porn tubes otherwise I will always be infected. I would have liked to continue navigating with Firefox on porn tubes to report infections on the forum.

I wish you a very good night.

 

Thank you very much

 

Link to post
Share on other sites

Hello,

 

I cleaned and repaired Firefox as you explained to me. I attach the reports.

 

Thank you very much

 

13 hours ago, AdvancedSetup said:

It supports some TLS ciphers that are no longer recommended. These things by themselves do not mean the site is infected. It simply means that whoever owns the site is not keeping up with the latest recommendations for security, thus you should not visit such sites.

All certificate, etc. type issues for any site - there is nothing any antivirus or other program can do to fix the issue. All they can do is warn you about the site. There is no controlling authority that can mandate what a server runs or does not run.

Keep a list of such sites for yourself and add them to your own local HOSTS file to prevent you or any of your applications from accessing these sites with certificate issues. Again, these are not infections, just poor security choice.

 

Now, let's go ahead and clean up your Firefox. Make sure you save, export any bookmarks, or passwords as the routine below may remove them.

Open your Firefox browser menu select Tools -> Add-ons   or you can input this into the address bar:   about:addons

Then write down the Extensions. If any of them have special settings you want to keep then export them and save the data to file.

Then remove all extensions.

Then go to Tools -> Options  or you can input this into the address bar:  about:preferences

Then go to Privacy & Security

Under: Cookies and Site Data  click on the Clear Data button. Make sure both check marks are enabled and delete the data by clicking the blue Clear button.

image.png

 

Then under History  click the Clear History button. Make sure that  you select everything (make sure you know your passwords to any site first, and use an external password management tool)

Click the Time range to clear and set it to Everything  - then click the OK button to clear all.

image.png

 

Next, click on the Help menu in Firefox and select Troubleshoot Information  

Under: Give Firefox a tune up - click on the Refresh Firefox button

image.png

 

Then restart the computer and run FRST again and click on SCAN and post back both new logs files. FRST and ADDITION.TXT

Thanks

 

 

 

 

 

 

Log5.txt FRST.txt Addition.txt

Link to post
Share on other sites

  • Root Admin

Are you using Thunderbird for your email as well?

If so then you need to save, export your mail if you have any local email. Forcing a removal of Mozilla Firefox will also cause a removal of Thunderbird email client. Any email not backed up or stored outside of a Mozilla folder will be permanently lost.

 

Let me know before we continue

 

Link to post
Share on other sites

  • Root Admin

 

WARNING!! - WARNING!! - WARNING!!
The following script will forcefully remove all Mozilla software including Firefox, Thunderbird, SeaMonkey, Mozilla VPN, etc. from the computer.
This script was written for @LeGamerInfini ONLY - DO NOT run this script on your own computer or you will lose everything related to Mozilla software and it cannot be undone.

 

STEP 1

Temporarily disable Bitdefender - do not forget --
Make sure that any bookmarks or other items from Firefox are saved and exported to a folder outside of the Mozilla Firefox folder structure. Anything left in one of these folders will be deleted.

 

STEP 2

Please go into Control Panel, Programs, Programs and Features and uninstall the following program

Mozilla Firefox 85.0.2

This  will remove the majority of Firefox for us safely. The fix script for FRST will do additional clean up that may have been missed by the uninstaller.

 

STEP 3

Save the attached file - FIXLIST.TXT - to the same location where the FRST program is located.
Close all open browsers and applications and then click the FIX button

image.png

 

 

Please download the attached fixlist.txt file and save it to the Desktop or location where you ran FRST from.
NOTE. It's important that both files, FRST or FRST64, and fixlist.txt are in the same location or the fix will not work.

Please make sure you disable any real-time antivirus or security software before running this script. Once completed making sure you re-enable it.

NOTICE: This script was written specifically for this user, for use on this particular machine.
Running this on another machine may cause damage to your operating system that cannot be undone.

Run FRST or FRST64 and press the Fix button just once and wait.
If the tool needs a restart please make sure you let the system restart normally and let the tool complete its run after restart.
The tool will make a log on the Desktop (Fixlog.txt) or wherever you ran FRST from. Please attach or post it to your next reply.

Note: If the tool warned you about an outdated version please download and run the updated version.

NOTE-1:  This fix will run a scan to check that all Microsoft operating system files are valid and not corrupt and attempt to correct any invalid files. It will also run a disk check on the restart to ensure disk integrity. Depending on the speed of your computer this fix may take 30 minutes or more.

NOTE-2: As part of this fix all temporary files will be removed. If you have any open web pages that have not been bookmarked please make sure you bookmark them now as all open applications will be automatically closed. Also, make sure you know the passwords for all websites as cookies will also be removed. The use of an external password manager is highly recommended instead of using your browser to store passwords.

The following directories are emptied:

  • Windows Temp
  • Users Temp folders
  • Edge, IE, FF, Chrome, and Opera caches, HTML5 storages, Cookies, and History
  • Recently opened files cache
  • Flash Player cache
  • Java cache
  • Steam HTML cache
  • Explorer thumbnail and icon cache
  • BITS transfer queue (qmgr*.dat files)
  • Recycle Bin

Important: items are permanently deleted. They are not moved to quarantine. If you have any questions or concerns please ask before running this fix.

The system will be rebooted after the fix has run.

fixlist.txt

Thanks

 

Link to post
Share on other sites

Hello,

 

Here is Search.txt

 

Thank you very much

5 minutes ago, AdvancedSetup said:

Please copy/paste the following into the Search box on top of FRST as shown. Then click the Search Files button


*mozilla*;*firefox* 

image.png

 

This will create a file named: Search.txt

Please attach that file on your next reply

 

 

Search.txt

Link to post
Share on other sites

  • Root Admin

Great, now do the following please

This time just copy/paste the following into the Search box and click on the Search Registry button.

FIREFOX 

 

image.png

 

Once completed it will create a file named:  SearchReg.txt

Please attach that log file on your next reply

 

 

Link to post
Share on other sites

 

Hello,

 

Here is SearchReg.txt

 

Thank you very much

 

4 minutes ago, AdvancedSetup said:

Great, now do the following please

This time just copy/paste the following into the Search box and click on the Search Registry button.


FIREFOX 

 

image.png

 

Once completed it will create a file named:  SearchReg.txt

Please attach that log file on your next reply

 

 

 

SearchReg.txt

Link to post
Share on other sites

  • Root Admin

Great, that looks good. We've already removed all the main files and registry entries for Firefox.

Let's do a Full Scan with Malwarebytes to double-check nothing else is found on your system. Please make sure to disable your Bitdefender before running this scan.

 

 

Please do the following.

  • Open Malwarebytes and click the cross-hair just above the word Scanner
  • Then near the bottom click the Advanced scanners link
  • Then under Custom Scan click on the Configure Scan button
  • Enable scan for rootkits
  • Place a checkmark on your C: volume hard drive and click the Scan button

This scan will take a long while to run but once completed please go to Reports and export the log to text or clipboard and post back the results.

 

Visually

Please open Malwarebytes and click on the cross-hair just above the word Scanner

image.png

 

Then click Advanced scanners

image.png

 

Then click the Configure Scan button

image.png

 

Enable all checked items as shown and select your C: drive and click the Scan button

image.png

 

Allow Malwarebytes to remove anything it finds and post back the log once completed.

 

Thanks

 

 

 

Link to post
Share on other sites

Hello,

 

Iobit Uninstaller allows you to uninstall Firefox very well, but Iobit Uninstaller installs Advanced SystemCare. if you uninstall Firefox with Iobit Uninstaller you will have the list of Firefox files and Firefox entries in the registry. I say this because this software monitors the installation of the software and it allows everything to be uninstalled without any error and no file or entry in the registry is missing.

 

Thank you very much

Link to post
Share on other sites

  • Root Admin

iObit is a Chinese company that long ago stole our database for use in their Advanced SystemCare product.

I personally don't see the need to use a 3rd party tool for uninstall unless you're specifically having an issue where a product will not remove itself and the company does not provide a method or support to do so. Most vendors supply other means to remove their software.

Whether you keep or use iObit is up to you

 

  • Thanks 1
Link to post
Share on other sites

Hello,

 

I didn't know, sorry to hear this information.

I like Malwarebytes and I'm going to need Malwarbytes to disinfect a second PC (a laptop with Windows 8.1). For now my priority is to disinfect my main PC.

 

Thank you very much

 

16 minutes ago, AdvancedSetup said:

iObit is a Chinese company that long ago stole our database for use in their Advanced SystemCare product.

I personally don't see the need to use a 3rd party tool for uninstall unless you're specifically having an issue where a product will not remove itself and the company does not provide a method or support to do so. Most vendors supply other means to remove their software.

Whether you keep or use iObit is up to you

 

 

Link to post
Share on other sites

Hello,

 

Thank you for your answer, we should also clean Microsoft Edge.

I will no longer be using synchronization in internet browsers. I'm waiting for your permission to reinstall Firefox.

 

Thank you very much

 

5 hours ago, AdvancedSetup said:

Sounds good. Tomorrow, please review the following and do a good clean up of Google Chrome that is also on your system.

Cheers

 

 

Link to post
Share on other sites

  • Root Admin

Please fully clean up MS Edge, and Google Chrome then go ahead and install Firefox and then go add the following extensions to Firefox

uBlock Origin
https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/

Malwarebytes Browser Guard
https://addons.mozilla.org/en-US/firefox/addon/malwarebytes/

Cookie AutoDelete
https://addons.mozilla.org/en-US/firefox/addon/cookie-autodelete/

HTTPS Everywhere
https://addons.mozilla.org/en-US/firefox/addon/https-everywhere/

 

Then, also make sure that Bitdefender is up to date and working properly as well as Malwarebytes

Set Cookie AutoDelete to automatically delete cookies for all sites that are not part of your known sites that you use and trust.

 

You can go to a site like this to check on SSL certificates
https://www.digicert.com/help/

 

You can also check the lock in the Address bar of Firefox. If a site is not secure it will be Yellow or Red indicating something is wrong.

image.png

That one says Connection secure for our forums here

 

Let me know if this helps improve the safety and security of your computer going forward

Thanks

 

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.