Etsi tuesta

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Lue lisää

Avast blocks JS:REDIRECTOR-BWW. Says it's in Firefox.exe. What can I do to correct this?

  • 10 vastausta
  • 1 henkilöllä on sama ongelma
  • 9 näyttöä
  • Viimeisin kirjoittaja FredMcD

more options

When I open Firefox browser, Avast blocks threat JS:Redirector-BWW. The program states that it is in Firefox.exe.

Due to Avast saying it has blocked this threat, I do not believe that my PC is infected however, even after uninstalling Java, Adobe Flash and Firefox and then reinstalling, the threat still continues. 
 This is not just isolated to "redirector-BWW", there have been others that have "js" in the infection, but "Redirector-BWW" is the most current. After researching these infections, many solutions recommended are to install more anti-malware programs but as I stated, Avast is blocking the infections, therefore I see no need to add more programs if my laptop is not compromised.
 I have Windows 7 64-bit premium as my Operating System.
 Any thoughts you may have would be greatly appreciated.
When I open Firefox browser, Avast blocks threat JS:Redirector-BWW. The program states that it is in Firefox.exe. Due to Avast saying it has blocked this threat, I do not believe that my PC is infected however, even after uninstalling Java, Adobe Flash and Firefox and then reinstalling, the threat still continues. This is not just isolated to "redirector-BWW", there have been others that have "js" in the infection, but "Redirector-BWW" is the most current. After researching these infections, many solutions recommended are to install more anti-malware programs but as I stated, Avast is blocking the infections, therefore I see no need to add more programs if my laptop is not compromised. I have Windows 7 64-bit premium as my Operating System. Any thoughts you may have would be greatly appreciated.

Kaikki vastaukset (10)

more options

hello, this sounds like a problem possibly caused by adware on your pc.

  1. please go to the firefox menu ≡ > addons > extensions & remove any suspicious entries (toolbars, things that you have not installed intentionally, don't know what purpose they serve, etc).
  2. also go to the windows control panel / programs and remove all toolbars or potentially unwanted software from there.
  3. finally, run a full scan of your system with different security tools like the free version of malwarebytes & adwcleaner, which are specialised in adware and browser hijackers.

Troubleshoot Firefox issues caused by malware

more options

I did not see anything suspicious in the add ons or extentions nor any questionable programs in control panel. With Avast blocking attempted entries, would there still be an infection? I have run Anti-Malware, Anti-Spyware and Defender-all resulting in nothing found.

more options

please try adwcleaner as well. i have the suspicion that there is already going on something malicious on your system, since firefox wouldn't call any dangerous content by default when you open it...

more options

OK....back to you with results.

more options

Start Firefox in Safe Mode {web Link} by holding down the <Shift (Mac Options) > key, and then starting Firefox. Is the problem still there?


Separate Issue; Your System Details shows;

Installed Plug-ins

Garmin Communicator Plug-In 4.2.0.0 BETA Garmin Communicator Plug-In 2.9.2.0

Having more than one version of a program may cause issues.

more options

I have run multiple programs again and then run them in safe mode. ( I did not open Firefox in safe mode. Will do so after this entry). After running in regular and safe mode and then opening up Firefox in normal windows, the infection is still blocked. Avast shows the following:

URL http://axp.zedo.com/asw/fmr.js?c=4580/1&a=..........(and so on) INFECTION JS:Redirector-BWW [Adw] PROCESS C:\Program Files (x86)\Mozilla Firefox\firefox.exe

I will wait for your reply and in the meantime, run Firefox in safe mode and see what happens.

more options

thanks, could you also go to the firefox menu ≡ > help ? > troubleshooting information, copy the contents of that page and paste them here into a reply on the forum? this might give further clues what is going on...

more options

Ok. This won't take place til tomorrow.

more options

Firefox in SafeMode had no issue. For the Crash Report below: Here are crashes that happened after beginning of new year. ( Didn't have an issue until New Year started). 89845c5b-5fc8-45af-9929-9c22705dc106 2/4/2015 4:24 PM 3a0d054d-f02b-4d5e-8dd3-90b1000533f0 1/25/2015 1:17 PM 730757c9-84e1-4f47-b632-cdfa59559edb 1/21/2015 4:20 PM 517e2877-6c53-4626-9cf1-3685d38f422f 1/19/2015 7:37 AM 120cfb87-9848-4301-a3e3-26f961973c3c 1/17/2015 6:34 PM 1be8ba9c-20c9-4e8d-9e15-4b135a10682a 1/7/2015 5:40 AM ec4f056c-11e8-4c8b-8722-21d9e9e490cb 1/5/2015 1:17 PM

Application Basics


Name: Firefox Version: 35.0.1 User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 Firefox/35.0 Multiprocess Windows: 0/1

Crash Reports for the Last 3 Days


All Crash Reports

Extensions


Name: Avast Online Security Version: 10.1.0.170 Enabled: true ID: wrc@avast.com

Name: Garmin Communicator Version: 4.2.0.0 Enabled: true ID: {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

Graphics


Adapter Description: Intel(R) HD Graphics Family Adapter Drivers: igdumd64 igd10umd64 igd10umd64 igdumdx32 igd10umd32 igd10umd32 Adapter RAM: Unknown Device ID: 0x0116 Direct2D Enabled: true DirectWrite Enabled: true (6.2.9200.16571) Driver Date: 4-4-2011 Driver Version: 8.15.10.2353 GPU #2 Active: false GPU Accelerated Windows: 1/1 Direct3D 11 (OMTC) Subsys ID: 00000000 Vendor ID: 0x8086 WebGL Renderer: Google Inc. -- ANGLE (Intel(R) HD Graphics Family Direct3D9Ex vs_3_0 ps_3_0) windowLayerManagerRemote: true AzureCanvasBackend: direct2d AzureContentBackend: direct2d AzureFallbackCanvasBackend: cairo AzureSkiaAccelerated: 0

Important Modified Preferences


browser.cache.disk.capacity: 358400 browser.cache.disk.smart_size_cached_value: 358400 browser.cache.disk.smart_size.first_run: false browser.cache.disk.smart_size.use_old_max: false browser.cache.frecency_experiment: 3 browser.places.smartBookmarksVersion: 7 browser.sessionstore.upgradeBackup.latestBuildID: 20150122214805 browser.startup.homepage: http://www.whec.com/index.shtml browser.startup.homepage_override.buildID: 20150122214805 browser.startup.homepage_override.mstone: 35.0.1 dom.mozApps.used: true extensions.lastAppVersion: 35.0.1 gfx.direct3d.last_used_feature_level_idx: 0 media.gmp-gmpopenh264.enabled: false media.gmp-gmpopenh264.lastUpdate: 1423171191 media.gmp-gmpopenh264.version: 1.3 media.gmp-manager.lastCheck: 1423351759 network.cookie.prefsMigrated: true places.database.lastMaintenance: 1423352416 places.history.expiration.transient_current_max_pages: 104858 plugin.disable_full_page_plugin_for_types: application/pdf plugin.importedState: true print.printer_WorkForce_520(Network).print_bgcolor: false print.printer_WorkForce_520(Network).print_bgimages: false print.printer_WorkForce_520(Network).print_colorspace: print.printer_WorkForce_520(Network).print_command: print.printer_WorkForce_520(Network).print_downloadfonts: false print.printer_WorkForce_520(Network).print_duplex: 0 print.printer_WorkForce_520(Network).print_edge_bottom: 0 print.printer_WorkForce_520(Network).print_edge_left: 0 print.printer_WorkForce_520(Network).print_edge_right: 0 print.printer_WorkForce_520(Network).print_edge_top: 0 print.printer_WorkForce_520(Network).print_evenpages: true print.printer_WorkForce_520(Network).print_footercenter: print.printer_WorkForce_520(Network).print_footerleft: &PT print.printer_WorkForce_520(Network).print_footerright: &D print.printer_WorkForce_520(Network).print_headercenter: print.printer_WorkForce_520(Network).print_headerleft: &T print.printer_WorkForce_520(Network).print_headerright: &U print.printer_WorkForce_520(Network).print_in_color: true print.printer_WorkForce_520(Network).print_margin_bottom: 0.5 print.printer_WorkForce_520(Network).print_margin_left: 0.5 print.printer_WorkForce_520(Network).print_margin_right: 0.5 print.printer_WorkForce_520(Network).print_margin_top: 0.5 print.printer_WorkForce_520(Network).print_oddpages: true print.printer_WorkForce_520(Network).print_orientation: 0 print.printer_WorkForce_520(Network).print_page_delay: 50 print.printer_WorkForce_520(Network).print_paper_data: 1 print.printer_WorkForce_520(Network).print_paper_height: 11.00 print.printer_WorkForce_520(Network).print_paper_name: print.printer_WorkForce_520(Network).print_paper_size_type: 0 print.printer_WorkForce_520(Network).print_paper_size_unit: 0 print.printer_WorkForce_520(Network).print_paper_width: 8.50 print.printer_WorkForce_520(Network).print_plex_name: print.printer_WorkForce_520(Network).print_resolution: 0 print.printer_WorkForce_520(Network).print_resolution_name: print.printer_WorkForce_520(Network).print_reversed: false print.printer_WorkForce_520(Network).print_scaling: 1.00 print.printer_WorkForce_520(Network).print_shrink_to_fit: true print.printer_WorkForce_520(Network).print_to_file: false print.printer_WorkForce_520(Network).print_unwriteable_margin_bottom: 0 print.printer_WorkForce_520(Network).print_unwriteable_margin_left: 0 print.printer_WorkForce_520(Network).print_unwriteable_margin_right: 0 print.printer_WorkForce_520(Network).print_unwriteable_margin_top: 0 privacy.sanitize.migrateFx3Prefs: true storage.vacuum.last.index: 1 storage.vacuum.last.places.sqlite: 1422479042

Important Locked Preferences


JavaScript


Incremental GC: true

Accessibility


Activated: false Prevent Accessibility: 0

Library Versions


NSPR Expected minimum version: 4.10.7 Version in use: 4.10.7

NSS Expected minimum version: 3.17.2 Basic ECC Version in use: 3.17.2 Basic ECC

NSSSMIME Expected minimum version: 3.17.2 Basic ECC Version in use: 3.17.2 Basic ECC

NSSSSL Expected minimum version: 3.17.2 Basic ECC Version in use: 3.17.2 Basic ECC

NSSUTIL Expected minimum version: 3.17.2 Version in use: 3.17.2

Experimental Features


more options

Some of your crash reports weren’t sent to the Mozilla Servers.

In the address bar, type about:crashes<enter>. Note: If any reports do not have BP in front of the numbers, click it and select Submit.

Using your mouse, mark the most resent 7 - 10 crash reports, and copy them. Now go to the reply box below and paste them in.


Some added toolbar and anti-virus add-ons are known to cause Firefox issues. Disable All of them.