We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Avatar for Username

Sök i support

Akta dig för supportbedrägerier: Vi kommer aldrig att be dig att ringa eller skicka ett sms till ett telefonnummer eller dela personlig information. Rapportera misstänkt aktivitet med alternativet "Rapportera missbruk".

Läs mer

Windows defender caught trojan in the cache2\entries folder

thebigduck
thebigduck
more options

I recently went to a website I normally visit but accidentally misspelled the url which took me to a deceptive website. Luckily, Firefox was able to detect the site as a security threat and did not allow connection.

About 5 mins after, my windows defender caught a Trojan:Script/Wacatac.B!ml in the \AppData\Local\Mozilla\Firefox\Profiles\0efjymat.default-release\cache2\entries\. I immediately quarantined and removed it.

I understand that it could be a false positive since I read that windows defender usually catches cache files that may look suspicious to it. I have to wonder though is it still possible for deceptive website cache files to get downloaded despite getting blocked by Firefox?

Note: I have ublock extension and my Firefox browser version is 131.0.2 64-bit

I recently went to a website I normally visit but accidentally misspelled the url which took me to a deceptive website. Luckily, Firefox was able to detect the site as a security threat and did not allow connection. About 5 mins after, my windows defender caught a Trojan:Script/Wacatac.B!ml in the \AppData\Local\Mozilla\Firefox\Profiles\0efjymat.default-release\cache2\entries\. I immediately quarantined and removed it. I understand that it could be a false positive since I read that windows defender usually catches cache files that may look suspicious to it. I have to wonder though is it still possible for deceptive website cache files to get downloaded despite getting blocked by Firefox? Note: I have ublock extension and my Firefox browser version is 131.0.2 64-bit

Alla svar (2)

James
James
  • Moderator
  • Top 10 Contributor
more options

This may be a older article but it still applies = Firefox cache file was infected with a virus

You are Not infected as it will either get overwritten over time as Cache gets used or deleted if you clear the Cache. The Trojan is harmless while in the Cache.

Hjälpsam?

thebigduck
thebigduck Frågans ägare
more options

Thank you for the reply. I was caught off guard by how the cache still got downloaded into the folder even though Firefox prevented me from accessing the fake website.

Hjälpsam?

Ställ en fråga

Du måste logga in på ditt konto för att svara på inlägg. Vänligen starta en ny fråga om du inte har ett konto ännu.