How to remove TbHelper2.exe

» File
File Details
Overview
Analysis

TbHelper2.exe

The module TbHelper2.exe has been detected as Adware.Toolbar

Remove TbHelper2.exe

File Details

Main Info:

Product Name:	Toolbar Helper
MD5:	b4e47fe871459f56aef9ea673a245c34
Size:	193 KB
First Published:	2017-06-08 02:11:36 (6 years ago)
Latest Published:	2017-11-06 01:07:34 (6 years ago)

Analysis:

Status:	Adware.Toolbar (on last analysis)
Analysis Date:	2017-11-06 01:07:34 (6 years ago)

Common Places:

%ffprofile%\extensions\{c9b68337-e93a-44ea-94dc-cb300ec06444}\chrome\content\id_imbooster4web_v6

%appdata%\profiles\drhatherdrerght.default\extensions\{c9b68337-e93a-44ea-94dc-cb300ec06444}\chrome\content\id_imbooster4web_v6

%appdata%\profiles\reofochhulise.default\extensions\{c9b68337-e93a-44ea-94dc-cb300ec06444}\chrome\content\id_imbooster4web_v6

%desktop%\vincsi mentés\asztal\régi firefox adatok\xlzy3i75.default\extensions\chrome\content\id_imbooster4web_v6

%desktop%\asztal\asztal\régi firefox adatok\xlzy3i75.default\extensions\chrome\content\id_imbooster4web_v6

%desktop%\vincsi mentés\backup disk 1\documents and settings\judit\application data\mozilla\firefox\profiles\xlzy3i75.default\extensions\chrome\content\id_imbooster4web_v6

%desktop%\anciennes données de firefox\rhp1u9kf.default\extensions\{c9b68337-e93a-44ea-94dc-cb300ec06444}\chrome\content\id_imbooster4web_v6

%desktop%\datos antiguos de firefox\hfndw94v.default\extensions\{c9b68337-e93a-44ea-94dc-cb300ec06444}\chrome\content\id_imbooster4web_v6

%profile%\recuperadodesktop 2\dados anteriores do firefox\yns70wxf.default\extensions\{c9b68337-e93a-44ea-94dc-cb300ec06444}\chrome\content\id_imbooster4web_v6

%desktop%\altes zeugs\desktop\vimh0zzq.default\extensions\{c9b68337-e93a-44ea-94dc-cb300ec06444}\chrome\content\id_imbooster4web_v6

Geography:

	27.3%
	18.2%
	9.1%
	9.1%
	9.1%
	9.1%
	9.1%

OS Version:

Windows 7	53.8%
Windows 8.1	23.1%
Windows Vista	15.4%
Windows 10	7.7%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x000129a2

PE Sections:

Name	Size of data	MD5
.text	129536	bef4a4bf954af008d364ca12c57d5d9d
.rdata	30720	915b5a0ef3d0186b138374a055321ca8
.data	10240	2aa2f639b1c0741eda5ec222427e8d58
.rsrc	13312	05ec3c4b81d276015baf3c85510b2e63
.reloc	12800	c0e719528653396226f66f45160ce735

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for TbHelper2.exe

copyright for information about TbHelper2.exe