Don't fall for the Firefox-patch.js

By Hum
in Smart Home, Network & Security

 Share

Recommended Posts

Grand Master

Hum

Posted
Posted (edited)

I saw this pop-up many times.

 

This time I foolish downloaded, virus-scanned, then installed.

 

The file disappears after installing.

 

I knew that was not a good sign.

 

I closed Firefox and uninstalled the FF program.

 

I downloaded Malwarebytes rootkit scanner.

 

It found and cleaned out a Trojan.

 

I then reinstalled Firefox.

 

All seems OK.

 

More info here:

 

Firefox-patch.js is a terrible Trojan infection which can wreak havoc on your Windows computer. Firefox-patch.js virus is usually distributed via spam emails, pornographic websites, malicious torrents and cracked games. Once it invades your system, you will experience a series of PC problems.

 

You will notice that your system performance become very slow and sluggish. This is because the stinky Firefox-patch.js Trojan eats up lots of system resources. In addition, it can corrupt your routine applications, especially antivirus software. By doing this, it attempts to stop you from removing it from your computer.

 

http://fixpcviruses.com/remove-firefox-patch-js-virus-step-by-step/

 

https://forums.malwarebytes.org/topic/188364-firefox-patchjs/

 

FFalert.jpg

Edited by Hum
Link to comment
Share on other sites
Grand Master

Hum

Posted
  • Author
Posted (edited)

^ I have seen it pop-up at various web sites, but usually ignore it.

 

I search for something, a product, or News story, then it over-rides what I wanted to look at, and tries to get me to click on it.

 

I think I was looking around E-bay ... not sure.

Link to comment
Share on other sites
Grand Master

oldtimefighter

Posted
Posted

Why are you getting popups at all? Do you not use an ad-blocker?

Link to comment
Share on other sites
Grand Master

Hum

Posted
  • Author
Posted (edited)

No ad blockers.

 

I thought Firefox had a pop-up blocker in it.

 

[It was a full-on window/tab with the patch message.]

 

I reckon Malwarebytes took care of the trojan.

 

Went out for a few hours.

 

Nothing odd going on with my Win10 computer.

 

I musta did something right. :)

Link to comment
Share on other sites
Grand Master

+Warwagon MVC

Posted
  • MVC
Posted

wait.. .what .... why would you ever in a million years install that? :laugh:

 

for future reference, I recommend create a new blank notepad document and saving it has test.js. Then right click the file, open with and select always use this application, then select notepad.

 

There is no reason any average user aside from a web developer to deal with Javascript js files. Now in the future, instead of  infecting your system it will just open notepad.

Link to comment
Share on other sites
Grand Master

HoochieMamma

Posted
Posted

First things first, install an Adblocker right now. Then get something like WOT which will guide you on dodgy sites before you go to them etc

Link to comment
Share on other sites
Grand Master

HoochieMamma

Posted
Posted
10 minutes ago, xendrome said:

use common sense.

Obviously, but you can't protect against say for example an ad server that might get compromised on a legitimate site and use an exploit to install something on someones machine using common sense.

 

Adblockers have become a security necessity nowadays.

Link to comment
Share on other sites
Grand Master

oldtimefighter

Posted
Posted
1 hour ago, Hum said:

No ad blockers.

 

I thought Firefox had a pop-up blocker in it.

Firefox only blocks popups that follow web standards which of course one looking to spread malware won't be doing. You should have an ad-blocker...

Link to comment
Share on other sites
Grand Master

+Warwagon MVC

Posted
  • MVC
Posted
4 hours ago, Yorak said:

All the years on Neowin did you no good? How do you have 65,000+ posts in a technology forum and not know how to detect malware?

 

I think a better word would be discern.

Link to comment
Share on other sites
Grand Master

neufuse Veteran

Posted
  • Veteran
Posted
On ‎9‎/‎22‎/‎2016 at 10:14 AM, Jason S. said:

Hum - i think you have bigger issues if youre getting that popup just browsing ebay. you have a virus, or some cookie that keeps redirecting to that file.

I wouldn't be too sure of that, I've seen ebay serve malicious content in their ad's in the past, nothings to say they haven't had one get in again.. they even had a problem once with content injection you'd view an item and the item would have javascript embedded into it and launch something

Link to comment
Share on other sites
Grand Master

Jim K Global Moderator

Posted
  • Global Moderator
Posted
1 minute ago, Hum said:

^ Question: If you do not have Java installed, would that make you immune ?

I've only skimmed through this thread ... sorry.  But .js is a javascript file (not related to Java)

 

You have other issues going on if you're getting these types of attacks frequently.  I would most certainly scan your system with Malwarebytes and maybe even Bitdefender Adware Removal.

Link to comment
Share on other sites
Grand Master

Hum

Posted
  • Author
Posted
16 minutes ago, jjkusaf said:

I've only skimmed through this thread ... sorry.  But .js is a javascript file (not related to Java)

 

You have other issues going on if you're getting these types of attacks frequently.  I would most certainly scan your system with Malwarebytes and maybe even Bitdefender Adware Removal.

I really was not 'attacked'.

 

I chose to click & download it, this time.

 

[odd that Avast did not detect a threat]

 

This is a window that opens sometimes on other computers, at various web sites.

 

And I believe that my special program that prevents malware from executing saved me -- nothing really happened.

 

I also immediately ran a Malwarebytes rootkit scan, which caught and removed a Trojan.

 

In the end, I learned to be more careful, and maybe steered others from falling for the patch. ;)

Link to comment
Share on other sites
This topic is now closed to further replies.
 Share
Go to topic listing