How to remove tbhelper2.exe
- File Details
- Overview
- Analysis
tbhelper2.exe
The module tbhelper2.exe has been detected as Adware.SBWatchman
File Details
| Product Name: |
|
| MD5: |
91272dfacd84f8a08343cfb249653ad0 |
| Size: |
199 KB |
| First Published: |
2017-05-22 11:14:46 (6 years ago) |
| Latest Published: |
2020-12-05 04:37:20 (3 years ago) |
| Status: |
Adware.SBWatchman (on last analysis) |
|
| Analysis Date: |
2020-12-05 04:37:20 (3 years ago) |
Overview
| %localappdata%\toolbar4\{0329e7d6-6f54-462d-93f6-f5c3118badf2} |
| %programfiles%\speedbit video downloader\toolbar |
| %temp%\svcinst |
| %profile%\oby11\application data\toolbar4\0329e7d6-6f54-462d-93f6-f5c3118badf2 |
| %temp%\svcinst\speedbitvideodownloader.cab |
| %sysdrive%\system volume information\_restore{9e2d7a47-042f-4d1a-a2bf-89477ae74b70}\rp455 |
| %programfiles%\speedbit video downloader\tbu7c |
| %sysdrive%\adwcleaner\quarantine\ozolmrbayf\{0329e7d6-6f54-462d-93f6-f5c3118badf2} |
| %sysdrive%\adwcleaner\quarantine\files\vsigoilzpazqonpslbxwqmlwfprndxut\{0329e7d6-6f54-462d-93f6-f5c3118badf2} |
| %sysdrive%\adwcleaner\quarantine\files\kdtgfzeocmxaizzongiopwxhjkcngjes\toolbar |
| TbHelper2.exe |
| tbhelper2.exe |
| A0120688.exe |
| TbHelper2.exe#08C34E12EF5ADF09 |
|
12.9% |
|
|
10.3% |
|
|
9.5% |
|
|
8.2% |
|
|
6.5% |
|
|
4.3% |
|
|
3.9% |
|
|
3.4% |
|
|
3.0% |
|
|
2.6% |
|
|
2.6% |
|
|
2.2% |
|
|
2.2% |
|
|
2.2% |
|
|
1.7% |
|
|
1.7% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
1.3% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.9% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
|
0.4% |
|
| Windows 10 |
46.0% |
|
| Windows 7 |
40.4% |
|
| Windows 8.1 |
7.2% |
|
| Windows XP |
3.0% |
|
| Windows Vista |
2.1% |
|
| Windows 8 |
1.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x000129a2 |
| Name |
Size of data |
MD5 |
| .text |
129536 |
25fcf56aa6696b4e67cad216432fcbd7 |
| .rdata |
30720 |
d269171d593970d68e43fc6a5b820a20 |
| .data |
10240 |
58f691ee8ac5ccd9caded79ccac1ce9f |
| .rsrc |
13312 |
e8f93e0e4e93c5bfdc4cd4e6133de4b7 |
| .reloc |
12800 |
153d2d8a48b58ac7f17c417296a06ef5 |
