Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Is this legit ??? > https://veeposalesforceliveagent.org/262847288508/084c807137df6c5a29efbe4e91ef3dac/f05d49c1feef24d2912b0b647ca1cf40.html <

  • 3 iimpendulo
  • 3 inale ngxaki
  • 3 views
  • Impendulo yokugqibela ngu James

more options

I've gotten a required 'Firefox' Java update page several times in the past month or so ...

From: https://veeposalesforceliveagent.org/262847288508/084c807137df6c5a29efbe4e91ef3dac/f05d49c1feef24d2912b0b647ca1cf40.html

Here's the WHois domain lookup: Domain Name: VEEPOSALESFORCELIVEAGENT.ORG Domain ID: D402200000000570548-LROR WHOIS Server: Referral URL: http://www.PublicDomainRegistry.com Updated Date: 2016-11-11T10:23:26Z Creation Date: 2016-11-11T10:23:25Z Registry Expiry Date: 2017-11-11T10:23:25Z Sponsoring Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com Sponsoring Registrar IANA ID: 303 Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited Domain Status: addPeriod https://icann.org/epp#addPeriod Registrant ID: DI_49692548 Registrant Name: Chad N. Wessels Registrant Organization: NA Registrant Street: 4145 Diane Street Registrant City: Atascadero Registrant State/Province: California Registrant Postal Code: 93422 Registrant Country: US Registrant Phone: +1.8054618382 Registrant Phone Ext: Registrant Fax: Registrant Fax Ext: Registrant Email: wesselsch@tutanota.com Admin ID: DI_49692548 Admin Name: Chad N. Wessels Admin Organization: NA Admin Street: 4145 Diane Street Admin City: Atascadero Admin State/Province: California Admin Postal Code: 93422 Admin Country: US Admin Phone: +1.8054618382 Admin Phone Ext: Admin Fax: Admin Fax Ext: Admin Email: wesselsch@tutanota.com Tech ID: DI_49692548 Tech Name: Chad N. Wessels Tech Organization: NA Tech Street: 4145 Diane Street Tech City: Atascadero Tech State/Province: California Tech Postal Code: 93422 Tech Country: US Tech Phone: +1.8054618382 Tech Phone Ext: Tech Fax: Tech Fax Ext: Tech Email: wesselsch@tutanota.com Name Server: NS1.EUROPEDNS.NET Name Server: NS2.EUROPEDNS.NET DNSSEC: unsigned >>> Last update of WHOIS database: 2016-11-12T22:22:58Z <<<

I've gotten a required 'Firefox' Java update page several times in the past month or so ... From: https://veeposalesforceliveagent.org/262847288508/084c807137df6c5a29efbe4e91ef3dac/f05d49c1feef24d2912b0b647ca1cf40.html Here's the WHois domain lookup: Domain Name: VEEPOSALESFORCELIVEAGENT.ORG Domain ID: D402200000000570548-LROR WHOIS Server: Referral URL: http://www.PublicDomainRegistry.com Updated Date: 2016-11-11T10:23:26Z Creation Date: 2016-11-11T10:23:25Z Registry Expiry Date: 2017-11-11T10:23:25Z Sponsoring Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com Sponsoring Registrar IANA ID: 303 Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited Domain Status: addPeriod https://icann.org/epp#addPeriod Registrant ID: DI_49692548 Registrant Name: Chad N. Wessels Registrant Organization: NA Registrant Street: 4145 Diane Street Registrant City: Atascadero Registrant State/Province: California Registrant Postal Code: 93422 Registrant Country: US Registrant Phone: +1.8054618382 Registrant Phone Ext: Registrant Fax: Registrant Fax Ext: Registrant Email: wesselsch@tutanota.com Admin ID: DI_49692548 Admin Name: Chad N. Wessels Admin Organization: NA Admin Street: 4145 Diane Street Admin City: Atascadero Admin State/Province: California Admin Postal Code: 93422 Admin Country: US Admin Phone: +1.8054618382 Admin Phone Ext: Admin Fax: Admin Fax Ext: Admin Email: wesselsch@tutanota.com Tech ID: DI_49692548 Tech Name: Chad N. Wessels Tech Organization: NA Tech Street: 4145 Diane Street Tech City: Atascadero Tech State/Province: California Tech Postal Code: 93422 Tech Country: US Tech Phone: +1.8054618382 Tech Phone Ext: Tech Fax: Tech Fax Ext: Tech Email: wesselsch@tutanota.com Name Server: NS1.EUROPEDNS.NET Name Server: NS2.EUROPEDNS.NET DNSSEC: unsigned >>> Last update of WHOIS database: 2016-11-12T22:22:58Z <<<

All Replies (3)

more options

No it is not. You could know just looking at the domain name.

Please also see this question as well as the I found a fake Firefox update support article.

It may also be a good idea to run a scan for malware on your system. You can try these free programs to scan for malware, which work with your existing antivirus software:

Microsoft Security Essentials is a good permanent antivirus for Windows 7/Vista if you don't already have one. Windows 8/10 have antivirus protection built-in.

Further information can be found in the Troubleshoot Firefox issues caused by malware article.

more options

That is correct.

. Whenever you get a message / popup that software / files need to be updated;

DO NOT USE ANY OF THE PROVIDED LINKS

While this may be a legitimate message, it could also be Malware or a Virus. Any time you want or need to check for upgrades, go to the website of the True Owner of the program in question. For example, to check out Firefox, go to https://www.mozilla.org {web link}

You can report such a site at; Google Report Phishing Page {web link} which is the same when done while on site by going to Help > Report Web Forgery

Help us safeguard Mozilla’s trademarks by reporting misuse {web link}

more options

RLawrence said

I've gotten a required 'Firefox' Java update page several times in the past month or so ...

Was it a page with a ornage background and a large Firefox icon serving a firefox-patch.js file?. A .js file has nothing to do with the Java Plugin btw as JavaScript and Java are two different things.


This is not from Mozilla or the Firefox web browser. The fake firefox-patch.exe and firefox-patch.js files can install things like trojans, viruses, unwanted software or to download additional stuff onto Windows based on past reports if the user runs them. The random name of the websites alone should raise a flag that it was not legit.

The Firefox updates have not changed as they are done internally in Firefox (with a .mar type of file) whether on Windows, Mac OSX or Linux (since Firefox 1.5 almost eleven years ago) or by download from mozilla.org like say www.mozilla.org/firefox/all/

You could try using a adblocker extension like uBlock Origin to block theses fake ads if you keep getting them. https://addons.mozilla.org/firefox/addon/ublock-origin/

Unfortunately this has gone on for a while now with one or two new sites reported every so often though not as much in last couple weeks. https://support.mozilla.org/en-US/forums/contributors/712056/

Even if you were to download this firefox-patch.js file it is not a risk unless you were to try and run it.

https://support.mozilla.org/en-US/kb/i-found-fake-firefox-update