browserdefender.exe
Application Manager by Bit89 Inc. (Signed)
Warning 36 antivirus scanners has detected malware in various versions of browserdefender.exe.
Overview
There are 2 versions of browserdefender.exe in the wild, the latest version being 2,6,1562,220. It is started as a Windows Service with the name 'BrowserDefendert' and described as “Your browser protector service”. . This is executed as a shared service (which simply means that this service can share a process with other Win32 services). The average file size is about 2.7 MB. The file is a digitally signed and issued to Bit89 Inc. by GoDaddy.com. Some variations of the file have been seen to be installed with the program BrowserDefender from Bit89 Inc. During the process's lifecycle, the typical CPU resource utilization is about 0.0080% including both foreground and background operations, the average private memory consumption is about 3.8 MB with the maximum memory reaching around 7.53 MB. Addionally, typically read and write I/O disk operations is about 496 Bytes per minute for reads and 22 Bytes per minute for writes.
 Details
|
| File name: | browserdefender.exe |
| Publisher: | PerformerSoft LLC |
| Product name: | Application Manager |
| Typical file path: | C:\ProgramData\browserdefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\browserdefender.exe |
| Certificate |
| Issued to: | Bit89 Inc. |
| Authority (CA): | GoDaddy.com |
| Effective date: | Tuesday, September 4, 2012 |
| Expiration date: | Friday, September 4, 2015 |
| Windows Service |
| Service name: | BrowserDefendert |
| Description: | “Your browser protector service” |
| Type: | Win32ShareProcess |
Programs installed in
(Note, the programs listed below are for all versions of Application Manager.)
PerformerSoft/Bit89 BrowserDefender, a variant of the Browser Protector Software is a web browser add-in classified mostly a potentially unwanted application that used to be bundled with PerformerSoft...
Behaviors
(Note, the behaviors below are for all versions of browserdefender.exe, select a unique version for details.)
Service
Runs under 'SYSTEM\CurrentControlSet\Services' as a shared service by the Service Host (svchost.exe)
Malware detections
Based on 40+ industry antivirus scanners, 36 of them detected the following malware.
| Antivirus engine | Engine version | Detection | File version |
| AhnLab V3 Internet Security |
2013.10.09 |
Downloader/Win32.MultiDl |
2,6,1562,220 |
| Avira AntiVir |
7.11.104.164 |
APPL/BProtector.Gen |
2,6,1339,144 |
| Avira AntiVir |
7.11.106.104 |
APPL/Bprotect.E |
2,6,1562,220 |
| Antiy Labs AVL |
2.0.3.7 |
Trojan/Win32.MultiDL |
2,6,1562,220 |
| avast! |
8.0.1489.320 |
Win32:BProtect-A [PUP] |
2,6,1339,144 |
| avast! |
8.0.1489.320 |
Win32:Adware-BAC [PUP] |
2,6,1562,220 |
| AVG |
13.0.0.3169 |
Generic5.AFZM |
2,6,1339,144 |
| AVG |
13.0.0.3169 |
Bprotect.B |
2,6,1562,220 |
| Comodo Internet Security |
17075 |
Application.Win32.Bprotect.~L |
2,6,1562,220 |
| Dr.Web |
8.13.9.29 |
Adware.BGuard.18 |
2,6,1339,144 |
| Dr.Web |
8.13.10.10 |
Adware.BGuard.27 |
2,6,1562,220 |
| ESET NOD32 |
7.8846 |
a variant of Win32/bProtector.A |
2,6,1339,144 |
| ESET NOD32 |
7.8893 |
a variant of Win32/bProtector.A |
2,6,1562,220 |
| Fortinet |
5.1.147.0 |
Riskware/BProtectBHO |
2,6,1562,220 |
| F-Secure |
11.0.19100.45 |
Application:W32/BProtector.A |
2,6,1562,220 |
| G Data |
13.9.22 |
Win32.Application.BHO.A |
2,6,1339,144 |
| G Data |
13.10.22 |
Win32.Application.BHO.A |
2,6,1562,220 |
| K7 AntiVirus |
9.173.9818 |
Riskware |
2,6,1562,220 |
| K7GW |
12.7.0.14 |
Riskware |
2,6,1562,220 |
| Kaspersky |
9.0.0.837 |
not-a-virus:AdWare.Win32.Bromngr.k |
2,6,1339,144 |
| Kaspersky |
9.0.0.837 |
Trojan-Downloader.Win32.MultiDL.k |
2,6,1562,220 |
| Kingsoft |
2013.4.9.267 |
Win32.Troj.Generic.a.(kcloud) |
2,6,1339,144 |
| Kingsoft |
2013.4.9.267 |
Win32.Troj.Generic.a.(kcloud) |
2,6,1562,220 |
| Malwarebytes |
1.75.0.1 |
PUP.Optional.PerformerSoft.A |
2,6,1339,144 |
| Malwarebytes |
1.75.0.1 |
PUP.Optional.BrowserProtect.A |
2,6,1562,220 |
| McAfee |
5.600.1067 |
Adware-Bprotect.b |
2,6,1339,144 |
| McAfee |
5.600.1067 |
Adware-Bprotect.b |
2,6,1562,220 |
| McAfee Gateway Anti-Malware |
v2013-dat |
Artemis!013A330F16B1 |
2,6,1339,144 |
| McAfee Gateway Anti-Malware |
v2013-dat |
Artemis!DAF56EC5E652 |
2,6,1562,220 |
| PC Tools |
9.0.0.2 |
Adware.GoonSquad!rem |
2,6,1339,144 |
| Sophos |
4.93.0 |
BProtector |
2,6,1339,144 |
| Sophos |
4.93.0 |
BProtector |
2,6,1562,220 |
| Symantec |
20131.1.5.61 |
Adware.GoonSquad |
2,6,1339,144 |
| Vba32 AntiVirus |
3.12.24.3 |
TrojanDownloader.MultiDL |
2,6,1562,220 |
| VIPRE Antivirus |
21842 |
Bprotector (fs) |
2,6,1339,144 |
| VIPRE Antivirus |
22222 |
Bprotector (fs) |
2,6,1562,220 |
All file variations of browserdefender.exe
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Ultimate |
35.56% |
|
| Microsoft Windows XP |
33.33% |
|
| Windows 8 |
8.89% |
|
| Windows 8 Pro |
6.67% |
|
| Windows Vista Home Premium |
6.67% |
|
| Windows 7 Home Premium |
4.44% |
|
| Windows Vista Ultimate |
2.22% |
|
| Windows 7 Professional |
2.22% |
|
Distribution by country
Vietnam installs about 14.29% of Application Manager.
Distribution by PC manufacturer
| PC Manufacturer | distribution |
| Dell |
37.74% |
|
| Acer |
22.64% |
|
| Hewlett-Packard |
15.09% |
|
| Intel |
11.32% |
|
| Toshiba |
7.55% |
|
| American Megatrends |
5.66% |
|
