JS:ScriptIP-inf [Trj] False positive?

AVG Protection
11

Here is the path. C:\Users\Myounis\AppData\Local\Mozilla\Firefox\Profiles\zk6bm3qb.default\cache2\entries\6872B5AF9D0A82D44D6303B21D98D3922EBAF4A5
I dont even use Firefox.

2

User-added image

1

Hello,
I have Malwarebytes premium and AVG premium running. I have a scheduled daily full scan on both. I noticed that my AVG was not performing it's daily scans. I still ran a deep scan everyday and today I used the repair tool on AVG to try to remedy the problem. After using it and scanning. It found a virus JS:ScriptIP-inf [Trj]. I don't download anything and I think I browse with caution. I also have both malwarebytes running and AVG. I dont know how I could have gotten a virus.

3

I'd request to click 'Send for analysis' from AVG quarantine to submit the file for analysis.
Click this link https://support.avg.com/SupportArticleView?urlname=Use-AVG-Quarantine on how to submit a quarantined file for analysis.
It looks like a browser hijacker which is a form of unwanted software that modifies a web browser's settings without a user's permission, to inject unwanted advertising into the user's browser. A browser hijacker may replace the existing home page, error page, or search engine with its own.

5

I'm also wondering if it is a real virus, what kind of damage am I looking at? What should I do to my accounts?

8

I ran the file through Virustotal and only avast/avg detected it. Here are the results 
VirusTotal
Does that mean that it is probably a false positive?

6

Here is the path. C:\Users\Myounis\AppData\Local\Mozilla\Firefox\Profiles\zk6bm3qb.default\cache2\entries\6872B5AF9D0A82D44D6303B21D98D3922EBAF4A5
I dont even use Firefox.

7

Thank You for answering. I want to know if this was a real infection or a false positive. I would also like to know what are the possible implications of having this virus for maybe a long time on my computer, what is copromised and what can be done moving forward?

9

Hello, 
I had the virus quarintined and I scanned the folder in the path. What else should I do?

10

M Y, it is likely to be a false positive but we cannot confirm it here.
As you have already submitted the file for analysis, our developers will get back to you via email.
Appreciate your patience meanwhile.

4

Thank you for replying.
I sent it for analysis. Seeing as it was on firefox which i already have uninstalled for months now. Do I need to change passwords, credit cards, etc?
Is my personal information stolen?
Thank you.