What is Browser Guardian?
The Malwarebytes research team has determined that Browser Guardian is a browser hijacker. These so-called "hijackers" manipulate your browser(s), for example to change your startpage or searchscopes, so that the affected browser visits their site or one of their choice. This one also displays advertisements.
How do I know if my computer is affected by Browser Guardian?
You may see this icon in your start- and task-bar:
and this entry in your list of installed software:
Or these entries in your Scheduled Tasks :
and these browser add-ons:
This is the settings-site of the hijacker :
and you may see this prompt:
How did Browser Guardian get on my computer?
Browser hijackers use different methods for distributing themselves. This particular one was bundled with other software.
How do I remove Browser Guardian?
Our program Malwarebytes Anti-Malware can detect and remove this potentially unwanted program.
- Please download Malwarebytes Anti-Malware to your desktop.
- Double-click mbam-setup-version.exe and follow the prompts to install the program.
- At the end, be sure a check-mark is placed next to the following:
- Enable free trial of Malwarebytes Anti-Malware Premium
- Launch Malwarebytes Anti-Malware
- Then click Finish.
- If an update is found, you will be prompted to download and install the latest version.
- Once the program has loaded, select Scan now. Or select the Threat Scan from the Scan menu.
- When the scan is complete , make sure that everything is set to "Quarantine", and click Apply Actions.
- Reboot your computer if prompted.
- Browser Guardian replaces your hosts file, so you may have to restore the old one. You can find third-party hosts file alternatives at hpHosts or at mvps.org or you can simply reset the default hosts file as outlined here by Microsoft.
We hope our application and this guide have helped you eradicate this hijacker.
As you can see below the full version of Malwarebytes Anti-Malware would have protected you against the Browser Guardian hijacker. It would have warned you before the rogue could install itself, giving you a chance to stop it before it became too late.
Technical details for experts
Signs in a HijackThis log:
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:3128 O1 - Hosts: 54.225.95.126 jkmdneioiggpdolicemlcchhiepfhebm O2 - BHO: Browser Guardian BHO - {8EB46C6E-FBA0-4915-841F-48D7EE9EA777} - C:\Program Files\Browser Guardian\FrameworkBHO.dll O4 - HKLM\..\Run: [BService] C:\Program Files\Bench\BService\1.1\bservice.exe O4 - HKLM\..\Run: [Wd] C:\Program Files\Bench\Wd\wd.exe O4 - HKLM\..\Run: [Bench Communicator Watcher] C:\Program Files\Bench\Proxy\pwdg.exe O4 - HKLM\..\Run: [Bench Settings Cleaner] C:\Program Files\Bench\Proxy\cl.exe O4 - HKLM\..\RunOnce: [Browser Guardian-repairJob] wscript.exe "C:\Users\{username}\AppData\Local\Browser Guardian\repair.js" "Browser Guardian-repairJob"Alterations made by the installer:
File system details --------------------------------------------- Adds the folder C:\Program Files\Bench\BService\1.1 Adds the file bhelper.dll"="8/20/2014 5:14 PM, 53248 bytes, A Adds the file bservice.exe"="8/20/2014 5:14 PM, 52736 bytes, A Adds the folder C:\Program Files\Bench\NmHost Adds the file manifest.json"="1/5/2015 1:17 PM, 215 bytes, A Adds the file nmhost.exe"="8/20/2014 5:14 PM, 165376 bytes, A Adds the folder C:\Program Files\Bench\NmHost\data\installer Adds the file jkmdneioiggpdolicemlcchhiepfhebm"="1/5/2015 1:17 PM, 992 bytes, A Adds the folder C:\Program Files\Bench\Proxy Adds the file cl.exe"="11/6/2014 7:40 PM, 62464 bytes, A Adds the file icon.ico"="12/24/2014 1:44 AM, 32038 bytes, A Adds the file proc.exe"="12/2/2014 8:01 PM, 488448 bytes, A Adds the file pwdg.exe"="11/12/2014 10:13 PM, 123392 bytes, A Adds the folder C:\Program Files\Bench\Updater Adds the file products.xml"="1/5/2015 1:17 PM, 373 bytes, A Adds the file updater.exe"="10/14/2014 4:45 PM, 72192 bytes, A Adds the folder C:\Program Files\Bench\Updater\1.7.0.0 Adds the file updater.exe"="10/14/2014 4:45 PM, 371712 bytes, A Adds the folder C:\Program Files\Bench\Wd Adds the file wd.exe"="12/2/2014 8:01 PM, 98816 bytes, A Adds the folder C:\Program Files\Browser Guardian Adds the file background.html"="12/24/2014 1:44 AM, 157 bytes, A Adds the file config.xml"="12/24/2014 1:44 AM, 2242 bytes, A Adds the file extension_info.json"="1/5/2015 1:17 PM, 2459 bytes, A Adds the file FrameworkBHO.dll"="12/24/2014 1:44 AM, 356400 bytes, A Adds the file FrameworkBHO64.dll"="12/24/2014 1:44 AM, 576104 bytes, A Adds the file FrameworkEngine.exe"="12/24/2014 1:44 AM, 264936 bytes, A Adds the folder C:\Program Files\Browser Guardian\AppFramework Adds the file appAPI_bg.js"="12/24/2014 1:44 AM, 2591 bytes, A Adds the file appAPI_browseraction.js"="12/24/2014 1:44 AM, 799 bytes, A Adds the file appAPI_common.js"="12/24/2014 1:44 AM, 9871 bytes, A Adds the file appAPI_content.js"="12/24/2014 1:44 AM, 1247 bytes, A Adds the file appAPI_settings.js"="12/24/2014 1:44 AM, 83 bytes, A Adds the file appAPI_webrequest.js"="12/24/2014 1:44 AM, 138 bytes, A Adds the file jquery.min.js"="12/24/2014 1:44 AM, 93548 bytes, A Adds the folder C:\Program Files\Browser Guardian\CanvasFramework Adds the file canvas_bg.js"="12/24/2014 1:44 AM, 5651 bytes, A Adds the file canvasscript_engine.js"="12/24/2014 1:44 AM, 437 bytes, A Adds the file md5.js"="12/24/2014 1:44 AM, 3264 bytes, A Adds the file registry.js"="12/24/2014 1:44 AM, 908 bytes, A Adds the file webrequest.js"="12/24/2014 1:44 AM, 4190 bytes, A Adds the folder C:\Program Files\Browser Guardian\framework Adds the file backgroundscript_engine.js"="12/24/2014 1:44 AM, 1872 bytes, A Adds the file base.js"="12/24/2014 1:44 AM, 3113 bytes, A Adds the file browser.js"="12/24/2014 1:44 AM, 11200 bytes, A Adds the file console.js"="12/24/2014 1:44 AM, 489 bytes, A Adds the file framework.js"="12/24/2014 1:44 AM, 3542 bytes, A Adds the file global.js"="12/24/2014 1:44 AM, 1850 bytes, A Adds the file i18n.js"="12/24/2014 1:44 AM, 1661 bytes, A Adds the file initialize.js"="12/24/2014 1:44 AM, 316 bytes, A Adds the file invoke_async.js"="12/24/2014 1:44 AM, 2312 bytes, A Adds the file io.js"="12/24/2014 1:44 AM, 1308 bytes, A Adds the file json2.js"="12/24/2014 1:44 AM, 2791 bytes, A Adds the file lang.js"="12/24/2014 1:44 AM, 1633 bytes, A Adds the file legacy.js"="12/24/2014 1:44 AM, 1270 bytes, A Adds the file message_target.js"="12/24/2014 1:44 AM, 854 bytes, A Adds the file messaging.js"="12/24/2014 1:44 AM, 1507 bytes, A Adds the file storage.js"="12/24/2014 1:44 AM, 3603 bytes, A Adds the file timer.js"="12/24/2014 1:44 AM, 409 bytes, A Adds the file updater.js"="12/24/2014 1:44 AM, 2417 bytes, A Adds the file userscript_client.js"="12/24/2014 1:44 AM, 310 bytes, A Adds the file userscript_engine.js"="12/24/2014 1:44 AM, 3062 bytes, A Adds the file utils.js"="12/24/2014 1:44 AM, 2492 bytes, A Adds the file xhr.js"="12/24/2014 1:44 AM, 3081 bytes, A Adds the folder C:\Program Files\Browser Guardian\framework-ui Adds the folder C:\Program Files\Browser Guardian\icons In the existing folder C:\Users\{username}\AppData\Local Adds the file proxy.log"="1/5/2015 1:17 PM, 0 bytes, A Adds the folder C:\Users\{username}\AppData\Local\BenchUpdater Adds the file products.xml"="1/5/2015 1:17 PM, 447 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Browser Guardian Adds the file chrome_gp_update.js"="8/20/2014 5:15 PM, 2348 bytes, A Adds the file chrome_installer.js"="12/12/2014 7:16 PM, 6676 bytes, A Adds the file chrome_workaround.js"="11/12/2014 10:13 PM, 1105 bytes, A Adds the file clear_cache.js"="8/20/2014 5:14 PM, 522 bytes, A Adds the file common.js"="11/12/2014 10:13 PM, 15095 bytes, A Adds the file firefox_installer.js"="8/20/2014 5:14 PM, 6848 bytes, A Adds the file gpedit.exe"="8/20/2014 5:14 PM, 93184 bytes, A Adds the file icon.ico"="12/24/2014 1:44 AM, 32038 bytes, A Adds the file ie_installer.js"="8/20/2014 5:14 PM, 3685 bytes, A Adds the file installer.js"="8/20/2014 5:14 PM, 799 bytes, A Adds the file main_installer.js"="8/20/2014 5:15 PM, 1567 bytes, A Adds the file migrate.js"="8/20/2014 5:14 PM, 4746 bytes, A Adds the file projectInstaller.js"="9/10/2014 6:17 PM, 3036 bytes, A Adds the file repair.js"="8/20/2014 5:15 PM, 1735 bytes, A Adds the file repair_data.json"="1/5/2015 1:17 PM, 3090 bytes, A Adds the file SoftwareDetector.exe"="10/14/2014 4:45 PM, 122880 bytes, A Adds the file sqlite3.exe"="8/20/2014 5:14 PM, 492544 bytes, A Adds the file storageedit.exe"="8/20/2014 5:14 PM, 75264 bytes, A Adds the file uninstall.exe"="1/5/2015 1:17 PM, 191778 bytes, A Adds the folder C:\Users\{username}\AppData\Local\Browser Guardian\firefox Adds the folder C:\Users\{username}\AppData\LocalLow\Protect\Blocker Adds the file 212e90ffa529f5c99c44dc574c6f9a16"="1/5/2015 1:17 PM, 4306688 bytes, A Adds the file 8d3f613ded3421026a6b47abd4042139"="1/5/2015 1:17 PM, 8 bytes, A Adds the file b24f88eb229178ba93accf228dc5b280"="1/5/2015 1:17 PM, 70 bytes, A Adds the folder C:\Users\{username}\AppData\LocalLow\Protect\CanvasStorage Adds the file 7bf8e2b7288ee31947f028830fe682c3"="1/5/2015 1:17 PM, 28 bytes, A Adds the file 8ab1244a97308124c8207af9517ce460"="1/5/2015 1:17 PM, 94 bytes, A Adds the file a645fa10d3b7c3be385a23d8e9796994"="1/5/2015 1:17 PM, 30 bytes, A Adds the file c8ca0d6097bee7d978cc54b0e9075409"="1/5/2015 1:17 PM, 46 bytes, A Adds the file ee9adb2bad520b37c67f38edc62ec22d"="1/5/2015 1:17 PM, 230 bytes, A Adds the folder C:\Users\{username}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Guardian Adds the file Browser Guardian Settings.url"="1/5/2015 1:17 PM, 126 bytes, A Adds the file Browser Guardian.lnk"="1/5/2015 1:17 PM, 1974 bytes, A Adds the file Uninstall.lnk"="1/5/2015 1:17 PM, 1096 bytes, A In the existing folder C:\Windows\System32\drivers\etc Alters the file hosts 6/10/2009 11:39 PM, 824 bytes, A ==> 1/5/2015 1:17 PM, 872 bytes, A In the existing folder C:\Windows\System32\Tasks Adds the file bench-S-1-5-21-4016700205-1717049133-1125222536-1001"="1/5/2015 1:17 PM, 3234 bytes, A Adds the file bench-sys"="1/5/2015 1:17 PM, 3242 bytes, A In the existing folder C:\Windows\Tasks Adds the file bench-S-1-5-21-4016700205-1717049133-1125222536-1001.job"="1/5/2015 1:17 PM, 346 bytes, A Adds the file bench-sys.job"="1/5/2015 1:17 PM, 346 bytes, A Registry details ------------------------------------------ [HKEY_LOCAL_MACHINE\SOFTWARE] "38997"="REG_SZ", "Browser Guardian" [HKEY_LOCAL_MACHINE\SOFTWARE\AdvertisingSupport] "Existing"="REG_SZ", "1" "Seen"="REG_SZ", "1" "SeenDate"="REG_SZ", "1420460270" "SystemId"="REG_SZ", "619bdd98c7140d14e62a62d4922b6abd" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\BService] "Path"="REG_SZ", "C:\Program Files\Bench\BService\1.1" "Version"="REG_SZ", "1.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\BService\38997] "(Default)"="REG_SZ", "" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\InstalledExtensions] "38997"="REG_SZ", "" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\NmHost] "(Default)"="REG_SZ", "C:\Program Files\Bench\NmHost\nmhost.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\NmHost\38997] "(Default)"="REG_SZ", "" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\Updater] "path"="REG_SZ", "C:\Program Files\Bench\Updater\updater.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\Updater\38997] "(Default)"="REG_SZ", "" [HKEY_LOCAL_MACHINE\SOFTWARE\Bench\Wd\38997] "(Default)"="REG_SZ", "" [HKEY_LOCAL_MACHINE\SOFTWARE\Browser Guardian] "(Default)"="REG_SZ", "C:\Users\{username}\AppData\Local\Browser Guardian" "AllowProxy"="REG_SZ", "1" "CDN"="REG_SZ", "browserguardian-a.akamaihd.net" "InstallTime"="REG_SZ", "1420463870" "Pid"="REG_SZ", "2237" "Seen"="REG_SZ", "1" "SeenDate"="REG_SZ", "1420460270" "StrAOI"="REG_SZ", "jan 5, 2015" "SystemId"="REG_SZ", "619bdd98c7140d14e62a62d4922b6abd" "UTCInstallTime"="REG_SZ", "1420460270" "ZoneId"="REG_SZ", "13935283" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0C09CCC2-2DBD-4A14-9BD7-1BEAE267425D}] "(Default)"="REG_SZ", "Browser Guardian" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0C09CCC2-2DBD-4A14-9BD7-1BEAE267425D}\Implemented Categories\{59FB2056-D625-48D0-A944-1A85B5AB2640}] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0C09CCC2-2DBD-4A14-9BD7-1BEAE267425D}\InprocServer32] "(Default)"="REG_SZ", "C:\Program Files\Browser Guardian\FrameworkBHO.dll" "ThreadingModel"="REG_SZ", "Apartment" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0C09CCC2-2DBD-4A14-9BD7-1BEAE267425D}\Programmable] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0C09CCC2-2DBD-4A14-9BD7-1BEAE267425D}\TypeLib] "(Default)"="REG_SZ", "{DED35294-CC94-4B75-A129-BB01FB0142E6}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0C09CCC2-2DBD-4A14-9BD7-1BEAE267425D}\Version] "(Default)"="REG_SZ", "1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6AFEAD36-E887-4677-9CA4-0429A077C65D}] "(Default)"="REG_SZ", "Browser Guardian" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6AFEAD36-E887-4677-9CA4-0429A077C65D}\LocalServer32] "(Default)"="REG_SZ", ""C:\Program Files\Browser Guardian\FrameworkEngine.exe"" "ServerExecutable"="REG_SZ", "C:\Program Files\Browser Guardian\FrameworkEngine.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6AFEAD36-E887-4677-9CA4-0429A077C65D}\Programmable] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6AFEAD36-E887-4677-9CA4-0429A077C65D}\TypeLib] "(Default)"="REG_SZ", "{DEFF3486-FE02-4B66-8D7B-36DCE84A0F1C}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6AFEAD36-E887-4677-9CA4-0429A077C65D}\Version] "(Default)"="REG_SZ", "1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}] "(Default)"="REG_SZ", "Browser Guardian BHO" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}\Implemented Categories\{59FB2056-D625-48D0-A944-1A85B5AB2640}] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}\InprocServer32] "(Default)"="REG_SZ", "C:\Program Files\Browser Guardian\FrameworkBHO.dll" "ThreadingModel"="REG_SZ", "Apartment" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}\Programmable] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}\TypeLib] "(Default)"="REG_SZ", "{DED35294-CC94-4B75-A129-BB01FB0142E6}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}\Version] "(Default)"="REG_SZ", "1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0C20CC57-2D61-4A7F-B689-D0EAB767395D}] "(Default)"="REG_SZ", "IKangoToolbar" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0C20CC57-2D61-4A7F-B689-D0EAB767395D}\ProxyStubClsid] "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0C20CC57-2D61-4A7F-B689-D0EAB767395D}\ProxyStubClsid32] "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0C20CC57-2D61-4A7F-B689-D0EAB767395D}\TypeLib] "(Default)"="REG_SZ", "{DED35294-CC94-4B75-A129-BB01FB0142E6}" "Version"="REG_SZ", "1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AADAD6E-E88C-4650-BEBF-1429FD77825D}] "(Default)"="REG_SZ", "IKangoEngine" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AADAD6E-E88C-4650-BEBF-1429FD77825D}\ProxyStubClsid] "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AADAD6E-E88C-4650-BEBF-1429FD77825D}\ProxyStubClsid32] "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AADAD6E-E88C-4650-BEBF-1429FD77825D}\TypeLib] "(Default)"="REG_SZ", "{DEFF3486-FE02-4B66-8D7B-36DCE84A0F1C}" "Version"="REG_SZ", "1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8EE76C1D-FB50-49CF-8498-4CD7E89EEA77}] "(Default)"="REG_SZ", "IKangoBHO" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8EE76C1D-FB50-49CF-8498-4CD7E89EEA77}\ProxyStubClsid] "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8EE76C1D-FB50-49CF-8498-4CD7E89EEA77}\ProxyStubClsid32] "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{8EE76C1D-FB50-49CF-8498-4CD7E89EEA77}\TypeLib] "(Default)"="REG_SZ", "{DED35294-CC94-4B75-A129-BB01FB0142E6}" "Version"="REG_SZ", "1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DED35294-CC94-4B75-A129-BB01FB0142E6}\1.0] "(Default)"="REG_SZ", "Framework 1.0 Type Library" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DED35294-CC94-4B75-A129-BB01FB0142E6}\1.0\0\win32] "(Default)"="REG_SZ", "C:\Program Files\Browser Guardian\FrameworkBHO.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DED35294-CC94-4B75-A129-BB01FB0142E6}\1.0\FLAGS] "(Default)"="REG_SZ", "0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DED35294-CC94-4B75-A129-BB01FB0142E6}\1.0\HELPDIR] "(Default)"="REG_SZ", "C:\Program Files\Browser Guardian" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DEFF3486-FE02-4B66-8D7B-36DCE84A0F1C}\1.0] "(Default)"="REG_SZ", "EngineLib" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DEFF3486-FE02-4B66-8D7B-36DCE84A0F1C}\1.0\0\win32] "(Default)"="REG_SZ", "C:\Program Files\Browser Guardian\FrameworkEngine.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DEFF3486-FE02-4B66-8D7B-36DCE84A0F1C}\1.0\FLAGS] "(Default)"="REG_SZ", "0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{DEFF3486-FE02-4B66-8D7B-36DCE84A0F1C}\1.0\HELPDIR] "(Default)"="REG_SZ", "C:\Program Files\Browser Guardian" [HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.bench.nmhost] "(Default)"="REG_SZ", "C:\Program Files\Bench\NmHost\manifest.json" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION] "FrameworkEngine.exe"="REG_DWORD", 10000 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}] "(Default)"="REG_SZ", "Browser Guardian BHO" "NoExplorer"="REG_DWORD", 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID] "{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}"="REG_SZ", "1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Bench Communicator Watcher"="REG_SZ", "C:\Program Files\Bench\Proxy\pwdg.exe" "Bench Settings Cleaner"="REG_SZ", "C:\Program Files\Bench\Proxy\cl.exe" "BService"="REG_SZ", "C:\Program Files\Bench\BService\1.1\bservice.exe" "Wd"="REG_SZ", "C:\Program Files\Bench\Wd\wd.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Browser Guardian"="REG_SZ", "" "Browser Guardian-repairJob"="REG_SZ", "wscript.exe "C:\Users\{username}\AppData\Local\Browser Guardian\repair.js" "Browser Guardian-repairJob"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\38997_Browser Guardian] "DisplayIcon"="REG_SZ", "C:\Users\{username}\AppData\Local\Browser Guardian/icon.ico" "DisplayName"="REG_SZ", "Browser Guardian" "DisplayVersion"="REG_SZ", "1.0" "InstallLocation"="REG_SZ", "C:\Users\{username}\AppData\Local\Browser Guardian" "NoModify"="REG_DWORD", 1 "NoRepair"="REG_DWORD", 1 "Publisher"="REG_SZ", "Gratifying Apps" "UninstallString"="REG_SZ", "C:\Users\{username}\AppData\Local\Browser Guardian\uninstall.exe " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures] "bench-S-1-5-21-4016700205-1717049133-1125222536-1001.job"="REG_BINARY, ................................ "bench-S-1-5-21-4016700205-1717049133-1125222536-1001.job.fp"="REG_DWORD", 508443382 "bench-sys.job"="REG_BINARY, ................................ "bench-sys.job.fp"="REG_DWORD", -1171376320 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist] "1"="REG_SZ", "jkmdneioiggpdolicemlcchhiepfhebm;http://jkmdneioiggpdolicemlcchhiepfhebm/check/.eJwNyUkOgCAQBdG79JoY3XIZg_CVlmYIoDEx3l2W9eqlblogTdbXHEGKbtTGOQ1apnk0p9aNCCrpXi8owtNXduOfIboEznwcxWVhiyjWes8ou8cW6fsB3sohKQ.iAOJHhXLoZv1RwRaiO_HRe2x9bQ" [HKEY_LOCAL_MACHINE\SOFTWARE\Proxy\Installations\Browser Guardian] "aoi"="REG_SZ", "1420463870" "domain"="REG_SZ", "browserguardian-a.akamaihd.net" "ext"="REG_SZ", "Browser Guardian" "format"="REG_SZ", "//{domain}/loaders/{pid}/l.js?pid={pid}&systemid={systemid}&ext={ext}&aoi={aoi}&zoneid={zoneid}&crr={crr}&type=p" "more_info_url"="REG_SZ", "http://browserguardian.com" "pid"="REG_SZ", "2237" "protect_redirect_url"="REG_SZ", "http://browserguardian.com/warning.php?%blocked_url%" "settings_url"="REG_SZ", "http://browserguardian.com/settings.php" "straoi"="REG_SZ", "jan 5, 2015" "system_black_list_url"="REG_SZ", "http://browserguardian-a.akamaihd.net/protect/block.json" "zoneid"="REG_SZ", "13935283" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION] "FrameworkEngine.exe"="REG_DWORD", 10000 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}] "Flags"="REG_DWORD", 0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings] "ProxyEnable"="REG_DWORD", 1 "ProxyServer"="REG_SZ", "http=127.0.0.1:3128" [HKEY_CURRENT_USER\Software\Microsoft\Windows Script Host\Settings] [HKEY_CURRENT_USER\Software\Proxy] "app_name"="REG_SZ", "Browser Guardian" "AutoConfigURL"="REG_SZ", "" "disableChainProxy"="REG_DWORD", 0 "ProxyEnable"="REG_DWORD", 0 "ProxyServer"="REG_SZ", "" "totalFail"="REG_DWORD", 0Malwarebytes Anti-Malware log:
Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 1/5/2015 Scan Time: 1:28:58 PM Logfile: mbamBrowserGuardian.txt Administrator: Yes Version: 2.00.4.1028 Malware Database: v2015.01.05.05 Rootkit Database: v2014.12.30.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 7 Service Pack 1 CPU: x86 File System: NTFS User: Malwarebytes Scan Type: Threat Scan Result: Completed Objects Scanned: 286847 Time Elapsed: 3 min, 29 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 6 PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bservice.exe, 1828, Delete-on-Reboot, [e3e6ee05c3c6dd593bd7df87ef1402fe] PUP.Optional.Bench.A, C:\Program Files\Bench\Wd\wd.exe, 4060, Delete-on-Reboot, [bf0a599a4b3ec2749ba94958798ab14f] PUP.Optional.Bench.A, C:\Program Files\Bench\Proxy\pwdg.exe, 2008, Delete-on-Reboot, [3c8d82712e5b0d291812afe3976ccb35] PUP.Optional.Bench.A, C:\Program Files\Bench\Proxy\proc.exe, 288, Delete-on-Reboot, [3c8d9f5452370f278abb2b10e1229b65] PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\FrameworkEngine.exe, 2800, Delete-on-Reboot, [ebdee70c3d4cce68751a90bbe81b59a7] PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\FrameworkEngine.exe, 3244, Delete-on-Reboot, [ebdee70c3d4cce68751a90bbe81b59a7] Modules: 10 PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], Registry Keys: 22 PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\CLSID\{0C09CCC2-2DBD-4A14-9BD7-1BEAE267425D}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{DED35294-CC94-4B75-A129-BB01FB0142E6}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0C20CC57-2D61-4A7F-B689-D0EAB767395D}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{8EE76C1D-FB50-49CF-8498-4CD7E89EEA77}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\CLSID\{8EB46C6E-FBA0-4915-841F-48D7EE9EA777}\INPROCSERVER32, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\38997_Browser Guardian, Quarantined, [18b1777c7f0ab680d9ce431b5ca407f9], PUP.Optional.AdevertisingSupport.A, HKLM\SOFTWARE\AdvertisingSupport, Quarantined, [80492ac9fc8d989ebb83ce9dd82bd32d], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\Browser Guardian, Quarantined, [4386cf242c5d3afc52c64737c04307f9], PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\BService, Quarantined, [f1d8f6fd9aef78bebb563b2b3ec59e62], PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\InstalledExtensions, Quarantined, [20a99b5851387bbb8b8b632ab54e936d], PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\NmHost, Quarantined, [705932c11b6e8caa06117419877ca55b], PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\Updater, Quarantined, [26a3ab487c0d2e08bd5b0c8134cfa65a], PUP.Optional.Bench.A, HKLM\SOFTWARE\BENCH\Wd, Quarantined, [7b4eb340f89193a3b290570f808349b7], PUP.Optional.Bench.A, HKLM\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\com.bench.nmhost, Quarantined, [e3e621d2a1e8b87e73d4954105ffd52b], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\PROXY\INSTALLATIONS\Browser Guardian, Quarantined, [6e5b13e01079ba7cab72384620e3b34d], PUP.Optional.BrowserGuardian.A, HKCU\SOFTWARE\PROXY\INSTALLATIONS\Browser Guardian, Quarantined, [e1e8708324654de94fcdfb832dd6c838], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{DEFF3486-FE02-4B66-8D7B-36DCE84A0F1C}, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{6AADAD6E-E88C-4650-BEBF-1429FD77825D}, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], Registry Values: 6 PUP.Optional.Bench.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|BService, C:\Program Files\Bench\BService\1.1\bservice.exe, Quarantined, [e3e6ee05c3c6dd593bd7df87ef1402fe] PUP.Optional.Bench.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Wd, C:\Program Files\Bench\Wd\wd.exe, Quarantined, [bf0a599a4b3ec2749ba94958798ab14f] PUP.Optional.Bench.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Bench Communicator Watcher, C:\Program Files\Bench\Proxy\pwdg.exe, Quarantined, [3c8d82712e5b0d291812afe3976ccb35] PUP.Optional.Bench.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Bench Settings Cleaner, C:\Program Files\Bench\Proxy\cl.exe, Quarantined, [c6030fe4d9b0a88e94976f23e22132ce] PUP.Optional.SmartApps, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|Browser Guardian-repairJob, wscript.exe "C:\Users\{username}\AppData\Local\Browser Guardian\repair.js" "Browser Guardian-repairJob", Quarantined, [26a39d567811e551669f0ec9fa0a59a7] PUM.Bad.Proxy, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, http=127.0.0.1:3128, Quarantined, [8b3e6c87e7a25adc14be7e0dad565fa1] Registry Data: 0 (No malicious items detected) Folders: 34 PUP.Optional.BenchUpdater.A, C:\Users\{username}\AppData\Local\BenchUpdater, Quarantined, [9c2de31001881b1b861c9e0b9370b54b], PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater, Quarantined, [91382cc79fea0c2ac444f03f58abf709], PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\1.7.0.0, Quarantined, [91382cc79fea0c2ac444f03f58abf709], PUP.Optional.Bench.A, C:\Program Files\Bench\Wd, Delete-on-Reboot, [72570be8553488aed506b67bc043cc34], PUP.Optional.Bench.A, C:\Program Files\Bench\NmHost, Quarantined, [bf0a20d34b3ee650d00cdb567a897f81], PUP.Optional.Bench.A, C:\Program Files\Bench\NmHost\data, Quarantined, [bf0a20d34b3ee650d00cdb567a897f81], PUP.Optional.Bench.A, C:\Program Files\Bench\NmHost\data\installer, Quarantined, [bf0a20d34b3ee650d00cdb567a897f81], PUP.Optional.Bench.A, C:\Program Files\Bench\Proxy, Delete-on-Reboot, [3c8d9f5452370f278abb2b10e1229b65], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\CanvasFramework, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\icons, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\includes, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian, Delete-on-Reboot, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\CanvasFramework, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\icons, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian, Delete-on-Reboot, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\CanvasFramework, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\icons, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Guardian, Quarantined, [e6e3a74c107978bef1a2301b8d76738d], PUP.Optional.Bench.A, C:\Program Files\Bench\BService, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], Files: 207 PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\FrameworkBHO.dll, Quarantined, [f6d31cd7b0d91b1b5a956775a9596d93], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\Desktop\install.exe, Quarantined, [a62350a33b4e072f01a6421c817f669a], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\uninstall.exe, Quarantined, [18b1777c7f0ab680d9ce431b5ca407f9], PUP.Optional.Proxy.A, C:\Users\{username}\AppData\Local\proxy.log, Delete-on-Reboot, [bc0d8c6795f47db9469980fb857ebc44], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jkmdneioiggpdolicemlcchhiepfhebm_0.localstorage, Quarantined, [844560933e4bc86e88930f6f50b30df3], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jkmdneioiggpdolicemlcchhiepfhebm_0.localstorage-journal, Quarantined, [11b8c23197f25adcc457c2bc4db6fa06], PUP.Optional.BenchUpdater.A, C:\Windows\System32\Tasks\bench-S-1-5-21-4016700205-1717049133-1125222536-1001, Quarantined, [bc0d6b88c8c11125238a94f122e1ee12], PUP.Optional.BenchUpdater.A, C:\Windows\System32\Tasks\bench-sys, Quarantined, [b31610e33059d75f5d50483da75c41bf], PUP.Optional.BenchUpdater.A, C:\Windows\Tasks\bench-S-1-5-21-4016700205-1717049133-1125222536-1001.job, Quarantined, [5178b43f642575c120815257fc07738d], PUP.Optional.BenchUpdater.A, C:\Windows\Tasks\bench-sys.job, Quarantined, [7257d221e5a4ac8aa1004b5e27dcda26], PUP.Optional.BenchUpdater.A, C:\Users\{username}\AppData\Local\BenchUpdater\products.xml, Quarantined, [9c2de31001881b1b861c9e0b9370b54b], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bservice.exe, Delete-on-Reboot, [e3e6ee05c3c6dd593bd7df87ef1402fe], PUP.Optional.Bench.A, C:\Program Files\Bench\Wd\wd.exe, Delete-on-Reboot, [bf0a599a4b3ec2749ba94958798ab14f], PUP.Optional.Bench.A, C:\Program Files\Bench\Proxy\pwdg.exe, Delete-on-Reboot, [3c8d82712e5b0d291812afe3976ccb35], PUP.Optional.Bench.A, C:\Program Files\Bench\Proxy\cl.exe, Quarantined, [c6030fe4d9b0a88e94976f23e22132ce], PUP.Optional.SmartApps, C:\Users\{username}\AppData\Local\Browser Guardian\repair.js, Quarantined, [26a39d567811e551669f0ec9fa0a59a7], PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\products.xml, Quarantined, [91382cc79fea0c2ac444f03f58abf709], PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\updater.exe, Quarantined, [91382cc79fea0c2ac444f03f58abf709], PUP.Optional.AdwarePlugin, C:\Program Files\Bench\Updater\1.7.0.0\updater.exe, Quarantined, [91382cc79fea0c2ac444f03f58abf709], PUP.Optional.Bench.A, C:\Program Files\Bench\NmHost\manifest.json, Quarantined, [bf0a20d34b3ee650d00cdb567a897f81], PUP.Optional.Bench.A, C:\Program Files\Bench\NmHost\nmhost.exe, Quarantined, [bf0a20d34b3ee650d00cdb567a897f81], PUP.Optional.Bench.A, C:\Program Files\Bench\NmHost\data\installer\jkmdneioiggpdolicemlcchhiepfhebm, Quarantined, [bf0a20d34b3ee650d00cdb567a897f81], PUP.Optional.Bench.A, C:\Program Files\Bench\Proxy\icon.ico, Quarantined, [3c8d9f5452370f278abb2b10e1229b65], PUP.Optional.Bench.A, C:\Program Files\Bench\Proxy\proc.exe, Delete-on-Reboot, [3c8d9f5452370f278abb2b10e1229b65], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\background.html, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\extension_info.json, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\manifest.json, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework\appAPI_bg.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework\appAPI_browseraction.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework\appAPI_common.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework\appAPI_content.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework\appAPI_settings.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework\appAPI_webrequest.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\AppFramework\jquery.min.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\CanvasFramework\canvasscript_engine.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\CanvasFramework\canvas_bg.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\CanvasFramework\webrequest.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\backgroundscript_engine.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\base.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\browser.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\console.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\framework.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\i18n.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\initialize.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\invoke_async.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\io.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\lang.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\legacy.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\message_target.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\messaging.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\storage.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\timer.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\userscript_client.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\userscript_engine.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\utils.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework\xhr.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\browser_button.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\context_menu.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\framework_api.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\notifications.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\options.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\remote_popup_host.html, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\remote_popup_host.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\framework-ui\ui_base.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\icons\button.png, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\icons\icon100.png, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\icons\icon128.png, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\icons\icon32.png, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\icons\icon48.png, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkmdneioiggpdolicemlcchhiepfhebm\1.0_0\includes\content.js, Quarantined, [5d6c4ea5addcf3435d2de06bdd2615eb], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\chrome_gp_update.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\chrome_installer.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\chrome_workaround.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\clear_cache.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\common.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox_installer.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\gpedit.exe, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\icon.ico, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\ie_installer.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\installer.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\main_installer.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\migrate.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\projectInstaller.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\repair_data.json, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\SoftwareDetector.exe, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\sqlite3.exe, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\storageedit.exe, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\background.html, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\bootstrap.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\chrome.manifest, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\extension_info.json, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\install.rdf, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework\appAPI_bg.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework\appAPI_browseraction.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework\appAPI_common.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework\appAPI_content.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework\appAPI_settings.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework\appAPI_webrequest.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\AppFramework\jquery.min.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\CanvasFramework\canvasscript_engine.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\CanvasFramework\canvas_bg.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\CanvasFramework\md5.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\CanvasFramework\registry.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\CanvasFramework\webrequest.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\backgroundscript_engine.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\base.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\browser.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\chrome_windows.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\console.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\content_proxy.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\framework.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\i18n.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\invoke_async.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\io.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\lang.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\legacy.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\message_target.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\messaging.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\storage.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\timer.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\uninstall.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\userscript_client.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\userscript_engine.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\utils.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework\xhr.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\browser_button.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\contentNotification.tmpl, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\contentNotificationStyle.tmpl, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\content_notifications.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\context_menu.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\framework_api.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\notifications.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\options.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\framework-ui\ui_base.js, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\icons\button.png, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\icons\icon100.png, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\icons\icon128.png, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\icons\icon32.png, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Local\Browser Guardian\firefox\icons\icon48.png, Quarantined, [d2f751a20485c274266889c2758e649c], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\background.html, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\config.xml, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\extension_info.json, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\FrameworkBHO64.dll, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\FrameworkEngine.exe, Delete-on-Reboot, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework\appAPI_bg.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework\appAPI_browseraction.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework\appAPI_common.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework\appAPI_content.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework\appAPI_settings.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework\appAPI_webrequest.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\AppFramework\jquery.min.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\CanvasFramework\canvasscript_engine.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\CanvasFramework\canvas_bg.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\CanvasFramework\md5.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\CanvasFramework\registry.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\CanvasFramework\webrequest.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\backgroundscript_engine.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\base.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\browser.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\console.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\framework.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\global.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\i18n.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\initialize.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\invoke_async.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\io.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\json2.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\lang.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\legacy.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\message_target.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\messaging.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\storage.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\timer.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\updater.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\userscript_client.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\userscript_engine.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\utils.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework\xhr.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\browser_button.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\context_menu.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\context_menu_item_handler.html, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\framework_api.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\notification.html, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\notifications.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\options.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\ui_base.js, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\bottom-left.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\bottom-middle.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\bottom-right.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\middle-left.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\middle-right.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\tail-bottom.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\tail-left.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\tail-right.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\tail-top.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\top-left.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\top-middle.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\framework-ui\theme\bubble\top-right.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\icons\button.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\icons\icon100.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\icons\icon128.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\icons\icon32.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Program Files\Browser Guardian\icons\icon48.png, Quarantined, [ebdee70c3d4cce68751a90bbe81b59a7], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Guardian\Browser Guardian Settings.url, Quarantined, [e6e3a74c107978bef1a2301b8d76738d], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Guardian\Browser Guardian.lnk, Quarantined, [e6e3a74c107978bef1a2301b8d76738d], PUP.Optional.BrowserGuardian.A, C:\Users\{username}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Browser Guardian\Uninstall.lnk, Quarantined, [e6e3a74c107978bef1a2301b8d76738d], PUP.Optional.Bench.A, C:\Program Files\Bench\BService\1.1\bhelper.dll, Delete-on-Reboot, [4e7b39ba1d6ccd6970ddfa66b15254ac], Physical Sectors: 0 (No malicious items detected) (end)As mentioned before the full version of Malwarebytes Anti-Malware could have protected your computer against this threat.
We use different ways of protecting your computer(s):
- Dynamically Blocks Malware Sites & Servers
- Malware Execution Prevention