Avast blocks JS:REDIRECTOR-BWW. Says it's in Firefox.exe. What can I do to correct this?
When I open Firefox browser, Avast blocks threat JS:Redirector-BWW. The program states that it is in Firefox.exe.
Due to Avast saying it has blocked this threat, I do not believe that my PC is infected however, even after uninstalling Java, Adobe Flash and Firefox and then reinstalling, the threat still continues. This is not just isolated to "redirector-BWW", there have been others that have "js" in the infection, but "Redirector-BWW" is the most current. After researching these infections, many solutions recommended are to install more anti-malware programs but as I stated, Avast is blocking the infections, therefore I see no need to add more programs if my laptop is not compromised. I have Windows 7 64-bit premium as my Operating System.
Any thoughts you may have would be greatly appreciated.
تمام جوابات (10)
hello, this sounds like a problem possibly caused by adware on your pc.
- please go to the firefox menu ≡ > addons > extensions & remove any suspicious entries (toolbars, things that you have not installed intentionally, don't know what purpose they serve, etc).
- also go to the windows control panel / programs and remove all toolbars or potentially unwanted software from there.
- finally, run a full scan of your system with different security tools like the free version of malwarebytes & adwcleaner, which are specialised in adware and browser hijackers.
I did not see anything suspicious in the add ons or extentions nor any questionable programs in control panel. With Avast blocking attempted entries, would there still be an infection? I have run Anti-Malware, Anti-Spyware and Defender-all resulting in nothing found.
please try adwcleaner as well. i have the suspicion that there is already going on something malicious on your system, since firefox wouldn't call any dangerous content by default when you open it...
OK....back to you with results.
Start Firefox in Safe Mode {web Link} by holding down the <Shift (Mac Options) > key, and then starting Firefox. Is the problem still there?
Separate Issue; Your System Details shows;
Installed Plug-ins
Garmin Communicator Plug-In 4.2.0.0 BETA Garmin Communicator Plug-In 2.9.2.0
Having more than one version of a program may cause issues.
I have run multiple programs again and then run them in safe mode. ( I did not open Firefox in safe mode. Will do so after this entry). After running in regular and safe mode and then opening up Firefox in normal windows, the infection is still blocked. Avast shows the following:
URL http://axp.zedo.com/asw/fmr.js?c=4580/1&a=..........(and so on) INFECTION JS:Redirector-BWW [Adw] PROCESS C:\Program Files (x86)\Mozilla Firefox\firefox.exe
I will wait for your reply and in the meantime, run Firefox in safe mode and see what happens.
thanks, could you also go to the firefox menu ≡ > help ? > troubleshooting information, copy the contents of that page and paste them here into a reply on the forum? this might give further clues what is going on...
Ok. This won't take place til tomorrow.
Firefox in SafeMode had no issue. For the Crash Report below: Here are crashes that happened after beginning of new year. ( Didn't have an issue until New Year started). 89845c5b-5fc8-45af-9929-9c22705dc106 2/4/2015 4:24 PM 3a0d054d-f02b-4d5e-8dd3-90b1000533f0 1/25/2015 1:17 PM 730757c9-84e1-4f47-b632-cdfa59559edb 1/21/2015 4:20 PM 517e2877-6c53-4626-9cf1-3685d38f422f 1/19/2015 7:37 AM 120cfb87-9848-4301-a3e3-26f961973c3c 1/17/2015 6:34 PM 1be8ba9c-20c9-4e8d-9e15-4b135a10682a 1/7/2015 5:40 AM ec4f056c-11e8-4c8b-8722-21d9e9e490cb 1/5/2015 1:17 PM
Application Basics
Name: Firefox Version: 35.0.1 User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 Firefox/35.0 Multiprocess Windows: 0/1
Crash Reports for the Last 3 Days
All Crash Reports
Extensions
Name: Avast Online Security Version: 10.1.0.170 Enabled: true ID: wrc@avast.com
Name: Garmin Communicator Version: 4.2.0.0 Enabled: true ID: {195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
Graphics
Adapter Description: Intel(R) HD Graphics Family Adapter Drivers: igdumd64 igd10umd64 igd10umd64 igdumdx32 igd10umd32 igd10umd32 Adapter RAM: Unknown Device ID: 0x0116 Direct2D Enabled: true DirectWrite Enabled: true (6.2.9200.16571) Driver Date: 4-4-2011 Driver Version: 8.15.10.2353 GPU #2 Active: false GPU Accelerated Windows: 1/1 Direct3D 11 (OMTC) Subsys ID: 00000000 Vendor ID: 0x8086 WebGL Renderer: Google Inc. -- ANGLE (Intel(R) HD Graphics Family Direct3D9Ex vs_3_0 ps_3_0) windowLayerManagerRemote: true AzureCanvasBackend: direct2d AzureContentBackend: direct2d AzureFallbackCanvasBackend: cairo AzureSkiaAccelerated: 0
Important Modified Preferences
browser.cache.disk.capacity: 358400 browser.cache.disk.smart_size_cached_value: 358400 browser.cache.disk.smart_size.first_run: false browser.cache.disk.smart_size.use_old_max: false browser.cache.frecency_experiment: 3 browser.places.smartBookmarksVersion: 7 browser.sessionstore.upgradeBackup.latestBuildID: 20150122214805 browser.startup.homepage: http://www.whec.com/index.shtml browser.startup.homepage_override.buildID: 20150122214805 browser.startup.homepage_override.mstone: 35.0.1 dom.mozApps.used: true extensions.lastAppVersion: 35.0.1 gfx.direct3d.last_used_feature_level_idx: 0 media.gmp-gmpopenh264.enabled: false media.gmp-gmpopenh264.lastUpdate: 1423171191 media.gmp-gmpopenh264.version: 1.3 media.gmp-manager.lastCheck: 1423351759 network.cookie.prefsMigrated: true places.database.lastMaintenance: 1423352416 places.history.expiration.transient_current_max_pages: 104858 plugin.disable_full_page_plugin_for_types: application/pdf plugin.importedState: true print.printer_WorkForce_520(Network).print_bgcolor: false print.printer_WorkForce_520(Network).print_bgimages: false print.printer_WorkForce_520(Network).print_colorspace: print.printer_WorkForce_520(Network).print_command: print.printer_WorkForce_520(Network).print_downloadfonts: false print.printer_WorkForce_520(Network).print_duplex: 0 print.printer_WorkForce_520(Network).print_edge_bottom: 0 print.printer_WorkForce_520(Network).print_edge_left: 0 print.printer_WorkForce_520(Network).print_edge_right: 0 print.printer_WorkForce_520(Network).print_edge_top: 0 print.printer_WorkForce_520(Network).print_evenpages: true print.printer_WorkForce_520(Network).print_footercenter: print.printer_WorkForce_520(Network).print_footerleft: &PT print.printer_WorkForce_520(Network).print_footerright: &D print.printer_WorkForce_520(Network).print_headercenter: print.printer_WorkForce_520(Network).print_headerleft: &T print.printer_WorkForce_520(Network).print_headerright: &U print.printer_WorkForce_520(Network).print_in_color: true print.printer_WorkForce_520(Network).print_margin_bottom: 0.5 print.printer_WorkForce_520(Network).print_margin_left: 0.5 print.printer_WorkForce_520(Network).print_margin_right: 0.5 print.printer_WorkForce_520(Network).print_margin_top: 0.5 print.printer_WorkForce_520(Network).print_oddpages: true print.printer_WorkForce_520(Network).print_orientation: 0 print.printer_WorkForce_520(Network).print_page_delay: 50 print.printer_WorkForce_520(Network).print_paper_data: 1 print.printer_WorkForce_520(Network).print_paper_height: 11.00 print.printer_WorkForce_520(Network).print_paper_name: print.printer_WorkForce_520(Network).print_paper_size_type: 0 print.printer_WorkForce_520(Network).print_paper_size_unit: 0 print.printer_WorkForce_520(Network).print_paper_width: 8.50 print.printer_WorkForce_520(Network).print_plex_name: print.printer_WorkForce_520(Network).print_resolution: 0 print.printer_WorkForce_520(Network).print_resolution_name: print.printer_WorkForce_520(Network).print_reversed: false print.printer_WorkForce_520(Network).print_scaling: 1.00 print.printer_WorkForce_520(Network).print_shrink_to_fit: true print.printer_WorkForce_520(Network).print_to_file: false print.printer_WorkForce_520(Network).print_unwriteable_margin_bottom: 0 print.printer_WorkForce_520(Network).print_unwriteable_margin_left: 0 print.printer_WorkForce_520(Network).print_unwriteable_margin_right: 0 print.printer_WorkForce_520(Network).print_unwriteable_margin_top: 0 privacy.sanitize.migrateFx3Prefs: true storage.vacuum.last.index: 1 storage.vacuum.last.places.sqlite: 1422479042
Important Locked Preferences
JavaScript
Incremental GC: true
Accessibility
Activated: false Prevent Accessibility: 0
Library Versions
NSPR Expected minimum version: 4.10.7 Version in use: 4.10.7
NSS Expected minimum version: 3.17.2 Basic ECC Version in use: 3.17.2 Basic ECC
NSSSMIME Expected minimum version: 3.17.2 Basic ECC Version in use: 3.17.2 Basic ECC
NSSSSL Expected minimum version: 3.17.2 Basic ECC Version in use: 3.17.2 Basic ECC
NSSUTIL Expected minimum version: 3.17.2 Version in use: 3.17.2
Experimental Features
Some of your crash reports weren’t sent to the Mozilla Servers.
In the address bar, type about:crashes<enter>. Note: If any reports do not have BP in front of the numbers, click it and select Submit.
Using your mouse, mark the most resent 7 - 10 crash reports, and copy them. Now go to the reply box below and paste them in.
Some added toolbar and anti-virus add-ons are known to cause Firefox issues. Disable All of them.