How to remove TBMessagingHost.exe.vir

TBMessagingHost.exe.vir

The module TBMessagingHost.exe.vir has been detected as Adware.Gen

TBMessagingHost.exe.vir
Remove TBMessagingHost.exe.

File Details

Product Name:

TBMessagingHost
Company Name:

Conduit Ltd.
MD5: 73adf0cb000288f2c61314a77cf4b888
Size: 366 KB
First Published: 2017-06-22 17:02:17 (7 years ago)
Latest Published: 2020-03-27 07:32:10 (4 years ago)
Status: Adware.Gen (on last analysis)
Analysis Date: 2020-03-27 07:32:10 (4 years ago)

Overview

Signed By: Conduit Ltd.
Status: Valid

Common Places:

%localappdata%\nativemessaging\ct3225826\1_0_0_4
%localappdata%\nativemessaging\ct3289075\1_0_0_4
%localappdata%\nativemessaging\ct3220468\1_0_0_4
%system%\config\systemprofile\appdata\local\google\chrome\user data\default\extensions\bejbohlohkkgompgecdcbbglkpjfjgdj\10.22.3.518_0
%system%\config\systemprofile\appdata\local\google\chrome\user data\default\extensions\bejbohlohkkgompgecdcbbglkpjfjgdj\10.22.3.518_1
%localappdata%\nativemessaging\ct3287811
%sysdrive%\ifan-pc\backup set 2016-10-04 153757\backup files 2016-10-04 153757\backup files 7.zip\c\users\ifan\appdata\local\nativemessaging\ct3316632
%localappdata%\nativemessaging\ct3205709
%localappdata%\nativemessaging\ct3303930
%chromeprofile%\extensions\hgiifhjbblnglipdbpdgagphlcbililb\10.22.3.18_1

File Names:

TBMessagingHost.exe
TBMessagingHost.exe.vir

Geography:

18.2%
13.6%
9.1%
9.1%
9.1%
4.5%
4.5%
4.5%
4.5%
4.5%
4.5%
4.5%
4.5%
4.5%

OS Version:

Windows 7 50.0%
Windows 10 40.9%
Windows 8.1 4.5%
Windows Server 2008 R2 4.5%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x000224e8

PE Sections:

Name Size of data MD5
.text 256000 547d4cf62c472700c3b232b7a101e504
.rdata 55296 25f8cc6a25175125765db95f6054cdd2
.data 10240 9314819b382418a0bb746fb347964f8c
.rsrc 1536 81d60279c1ca95a71617d57988d9428a
.reloc 44544 8e6eedc15ca5c8ad842fb8553aaf69a4

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for TBMessagingHost.exe.vir
copyright for information about TBMessagingHost.exe.vir