Related blog content
Explained: security certificates
Trojan.Egguard.PrxySvrRST is Malwarebytes’ detection name for a type of trojan that injects downloaded JavaScript (JS) files into browser sessions.
Trojan.Egguard.PrxySvrRST sets a proxy accompanied with a false SSL certificate to perform a man-in-the-middle (MITM) attack.
The installer for this Trojan was included in bundlers.
Proxy settings by Trojan.Egguard.PrxySvrRST
Malwarebytes protects users from Trojan.Egguard by using real-time protection:
Malwarebytes blocks Trojan.Egguard
As well as the Anti-Exploit module:
Malwarebytes blocks the Trojan.Egguard exploit
Malwarebytes can detect and remove Trojan.Egguard.PrxySvrRST without further user interaction.
Malwarebytes removes the proxy completely, so if you were using a proxy before the infection, this will have to be reset.
Associated folder:
%APPDATA%\Microsoft\Network\Dsq
Select your language