Yesterday, I tried to install some critical Firefox updates. Webroot immediately detected a threat, so I scanned my computer. It said if found 2 trojans, plus detected the update installer as a threat.
Today, I was using Chrome and it said my Chrome was outdated and to download a newer version. Webroot said this was a threat (even tho I said it was OK to install) and this time it just detected the Chrome updater as a threat, but didn't detect any viruses. Can someone help as to how I can install updated browsers for Firefox & Chrome? I've never had this happen before.
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.
During these updates of Chrome, WSA has never issued a single complaint. It would be normal for the new Chrome files to enter Monitored status upon install, but I have never received any warnings from WSA about an infected file.
May I ask what settings you use on WSA? Defaults or have you bumped them up all the way to maximum?
Are you allowing Chrome to update itself or were you using a 3rd party download site?
I tried updating Firefox because of something I read on Kim Komando's email about critical Firefox updates. I don't know if those normally update themselves.
I am not sure if FireFox autoupdates or not.. I do not usually use that browser.
The latest Firefox is 24.0 all you need to do with both is use the internal updater in Firefox Click Help>Click About Firefox>Check for Updates. But please Submit a support ticket as David asked to make sure your system is clean. ;)
Kim Komando is a legitimate source though, so as long as you're sure the email is actually from her, whatever she sent is probably ok. It looks like this case is with one of our threat researchers, and he's investigating. I'll be curious to know the results.
What TripleHelix said is correct though. Updating Firefox via that method should work fine, and that's the only method you should ever need to use.
I also updated the Firefox updates just now, per the suggestion given from TripleHelix, for which thanks.
My only other concern is one thing Webroot quarantined with the rest of this stuff was this: ie 9 windows vista X86-enu-exe. usually use internet explorer as my browser, but had seen that all versions of explorer had some kind of problem that windows was trying to fix, some patch they were working on to correct this. Is this thing Webroot quarantined possibly the fix for internet explorer and should I restore this? I think everything has been resolved. So much thanks to everyone here, much appreciated.
Start > Control Panel > Windows Update should take you to a screen that will tell you whether or not you need to update Windows. It should look something like this:
If it says that you need to download and apply updates, you can do that through this screen itself. Windows can also be configured to automatically download and apply updates through this screen, which is the preferable option for most people.
If Webroot quarantined a file that originated through this update method, we definitely want to know about it, because that would almost certainly be a false positive. However, if Windows Updates says you're already up to date or allows you to get up to date by following prompts on this screen, I'd trust that Webroot found a threat in quarantining the file you had mentioned before. The threat researcher working the case can provide additional detail once he's finished looking at the logs he had requested as well.
Interesting side note: The name of a file is usually not very helpful in determining whether or not it's an infection most of the time. A file can always be renamed in order to hide its true nature and trick people into running it if it's malicious. However, since it has "Vista" in the title in this case, it does kind of beg the question, are you running Windows Vista? If not, I'd treat that as a red flag on this file and avoid running it. If however you are running Vista and if Windows Update tells you that you're not up to date and it just can't seem to update using that screen, we may be looking at a false positive, which the Threat Researcher can confirm through the support case.