Closed
Bug 917861
Opened 11 years ago
Closed 11 years ago
AntiVirus Security Pro Malware Add-on
Categories
(Toolkit :: Blocklist Policy Requests, defect)
Tracking
()
RESOLVED
FIXED
People
(Reporter: bugzilla, Unassigned)
Details
Attachments
(1 file)
|
3.87 KB,
application/octet-stream
|
Details |
Addons Engine 3.0.1 by Mozdev
dff137ae-1ffd-11e3-8277-b8ac6f996f26
Silent install.
It appears to have been installed with the AntiVirus Security Pro malware.
From what I can tell, it adds a script located at {todaysdate}.ff.feedmillppcsite.com to any search engine page. The requested page url is added as a parameter to the script. Also adds a X-Content-Security-Policy header to search engine responses to allow its scripts to be run.
|
||
Comment 1•11 years ago
|
||
Status: UNCONFIRMED → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
|
||
Comment 2•11 years ago
|
||
according to a forum entry in the support forum, this also comes under the ID & gets reinstalled after each reboot: {c54e16a7-29b3-11e3-8277-b8ac6f996f26}
|
|
||
Comment 4•11 years ago
|
||
It seems to be a different add-on, though, and I can't find anything online about it, which suggests the ID is randomized and we won't be able to block it effectively.
|
Reporter | |
Comment 5•11 years ago
|
||
Found another one with another ID. Looks like this one is indeed randomized.
{07901aa3-29db-11e3-8277-b8ac6f996f26}
This add-on also seems to be blocking image downloads which makes it rather annoying.
|
Assignee | |
Updated•9 years ago
|
Product: addons.mozilla.org → Toolkit
You need to log in
before you can comment on or make changes to this bug.
Description
•