How to remove ChromeApproveTBPlugin.dll.vir

ChromeApproveTBPlugin.dll.vir

The module ChromeApproveTBPlugin.dll.vir has been detected as Adware.Conduit

ChromeApproveTBPlugin.dll.vir
Remove ChromeApproveTBPlugi

File Details

Product Name:

Conduit Chrome Approve TB Plugin
Company Name:

Conduit
MD5: 49030c334628ca5c2d961c077b5475d1
Size: 113 KB
First Published: 2018-09-12 23:10:21 (6 years ago)
Latest Published: 2020-03-26 12:14:39 (4 years ago)
Status: Adware.Conduit (on last analysis)
Analysis Date: 2020-03-26 12:14:39 (4 years ago)

Overview

Signed By: Conduit Ltd.
Status: Invalid (digital signature could be stolen or file could be patched)

Common Places:

%sysdrive%\cafrica\j\bobo\backup set 2013-01-29 055256\backup files 2013-02-10 190005\backup files 2.zip\c\users\äöä\appdata\local\google\chrome\user data\default\extensions\jfjhiccppafcjicfalobggnophliocpp\10.14.251.3_0
%sysdrive%\cafrica\j\bobo\backup set 2013-01-29 055256\backup files 2013-02-10 190005\backup files 2.zip\c\users\äöä\appdata\local\google\chrome\user data\default\extensions\pielejjfbdmjdfiimgiljjpmlpalgoeg\10.14.251.3_0
%sysdrive%\cafrica\j\bobo\backup set 2013-01-29 055256\backup files 2013-02-10 190005\backup files 2.zip\c\users\äöä\appdata\local\google\chrome\user data\default\extensions\kgbcbdejncdpahgapnmkjimfmlipdgdl\10.14.251.3_0
%sysdrive%\adwcleaner\quarantine\c\users\owner\appdata\local\torch\user data\default\extensions\jfjhiccppafcjicfalobggnophliocpp\10.14.251.3_0
%sysdrive%\stare documents and settings\aaa\local settings\data aplikací\google\chrome\user data\default\extensions\ggagiiobgjmfpdadhecbofeoelcpidec\10.14.251.3_0
%profile%\dmin\local settings\application data\google\chrome\user data\default\extensions\aijepembefkcbffniibfooclhgdjccne\10.14.251.3_0

File Names:

ChromeApproveTBPlugin.dll
ChromeApproveTBPlugin.dll.vir

Geography:

77.8%
11.1%
11.1%

OS Version:

Windows 10 87.5%
Windows XP 12.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x10000000
Entry Address: 0x00006e78

PE Sections:

Name Size of data MD5
.text 72704 6d199d249fe504b3c53b7e31034b1ca3
.rdata 21504 da960b8a414902861821c3d3fe115055
.data 5632 1f382a57a2d6a9904cf5d023160a1629
.rsrc 1536 c1e627d4b24a318a1f7563339551cff4
.reloc 8192 75038f024758d8e1a0768e00c1ef3e22

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for ChromeApproveTBPlugin.dll.vir
copyright for information about ChromeApproveTBPlugin.dll.vir