=== No Mozilla Firefox does not use that method === === It is Malware. === Please do not open or run such files. If downloaded do not click on the file in the download folder as it will probably run. The correct way to update is from the Firefox menu. Please see * [[Update Firefox to the latest version]] We are trying to track down what sites theses come from. The page you see is you said from haeranasscom.org however what we need is the details of the popup or advert not that splashscreen. (There have been suggestions a time delay could be involved, so that would make it dificult to figure out.). The lonk you posted will have been personalosed and will be from a temporary site, other users following those links do not see the fake updates. if you do see an ad with this in it please try to follow these instructions and let us know the url {address) you discover. <blockquote> {[https://bugzilla.mozilla.org/show_bug.cgi?id=1282106#c16 #c16]}If ... affected users) could tell us what the ad URLs are, that would be helpful. <br/> They would need to right-click on the ad image, choose "This Frame -> View Frame Info", and copy/paste the following info: <br/>General tab: Address (URL) <br/>Media tab: Location (URL) of each item in the list of media in that frame.<br/>This will help us isolate the affected ad networks so we can contact them and inform them of the malware. <br/>Thanks!</blockquote> Please also report the sites these fake updates come from there are two places to report them # virustotal.com the AV industry will follow the reports there # https://www.stopbadware.org/report-badware {That feeds into the Firefox blocklisting) add a note about Firefox fake update, and report as a drive by download. There is the possibility you already have malware and it may be worthwhile to scan with all the tools mentioned in * [[Troubleshoot Firefox issues caused by malware]] I do wonder if many of the people see this because ther already have adware or malware on their computers. if you have clicked on or run the update you may have malware that is particularly dificult to detect and remove. If so pleaswe also run this tool to remove any kovter trojan * Instructions and download link '''[https://www.symantec.com/security_response/writeup.jsp?docid=2015-092321-2230-99 Kovter removal]''' There are some suggestions ublock origin may prevent these popups. Personally I have been using windows without ublock origin to try to catch these but so far have not seen any.