Malware Warning – ShowIP Addon for Firefox

Quick FYI for anyone using the ShowIP Firefox addon

A new version was pushed out yesterday, v2.5, and it injects a request into every page load to a site thats seems to be well known for malware. I highly recommend disabling it or rolling back to v2.4 if you need it.

example request:

GET /coupons/deals?merchant=www.google.co.uk&referrer=&partner=ksod3 HTTP/1.1 Host: ads.panoramtech.net User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:34.0) Gecko/20100101 Firefox/34.0 Accept: application/json, text/javascript, */*; q=0.01 Accept-Language: en-gb,en;q=0.7,en-us;q=0.3 Accept-Encoding: gzip, deflate DNT: 1 Referer: https://www.google.co.uk/ Origin: https://www.google.co.uk Connection: keep-alive

Tags: addon, firefox, malware, security

This entry was posted by Gavin on Tuesday, July 29th, 2014 at 9:08 pm and is filed under T'Internet News.
You can follow any responses to this entry through the RSS 2.0 feed.

Malware Warning – ShowIP Addon for Firefox

Enough of me, let me know your thoughts below... Cancel reply