We received the file TBVERIFIER.DLL and detected that TBVERIFIER.DLL is not good.
TBVERIFIER.DLL is Adware. You should remove the file TBVERIFIER.DLL.
Kill the process TBVERIFIER.DLL and remove TBVERIFIER.DLL from Windows.
Malware Analysis of TBVERIFIER.DLL
Full path on a computer: %Program Files%\Conduit\CT895289\plugins\TBVerifier.dll
Detected by UnHackMe:
TBVERIFIER.DLL
Default location: %Program Files%\Conduit\CT895289\plugins\TBVerifier.dll
Removal Results: Success
Number of reboot: 1
TBVERIFIER.DLL is known as:
Adware.Smartbar.I, Adware.Smartbar.I (B), Conduit (fs)
TBVERIFIER.DLL hash:
- MD5: 3ca86879f256ec90214f57555b831357
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect TBVERIFIER.DLL presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Classes\CLSID\{1AD541F1-45EB-4C79-A3B1-9BBBF3C7C337}\InprocServer32\: “%Program Files%\KeyBar\prxtbKeyB.dll”
- HKLM\Software\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}\InprocServer32\: “%Program Files%\Conduit\Community Alerts\Alert.dll”
- HKLM\Software\Classes\CLSID\{5D880985-7CD9-4153-BC03-E0C4D601CB05}\InprocServer32\: “%Program Files%\KeyBar\prxtbKeyB.dll”
- HKLM\Software\Classes\CLSID\{9F862359-0D3C-4094-B1FA-406EBB4D570B}\InprocServer32\: “%Program Files%\KeyBar\prxtbKeyB.dll”
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ConduitFloatingPlugin_ncdepabgpjbhjimmdbefdlikcgnlmofe: “”%SysDir%\Rundll32.exe” “%Program Files%\Conduit\CT895289\plugins\TBVerifier.dll”,RunConduitFloatingPlugin ncdepabgpjbhjimmdbefdlikcgnlmofe”
Folders:- %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\{5d880985-7cd9-4153-bc03-e0c4d601cb05}
- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\ncdepabgpjbhjimmdbefdlikcgnlmofe
- %Local Appdata%\Conduit
- %Local Appdata%\CRE
- %Local Appdata%\KeyBar
- %Local Appdata%\Temp
- %Common Appdata%\Conduit
- %Program Files%\Conduit
- %Program Files%\KeyBar
Files:- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\ncdepabgpjbhjimmdbefdlikcgnlmofe\10.19.2.5_0\plugins\np-cwmp.dll
- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\ncdepabgpjbhjimmdbefdlikcgnlmofe\10.19.2.5_0\plugins\np-mswmp.dll
- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\ncdepabgpjbhjimmdbefdlikcgnlmofe\10.19.2.5_0\plugins\TBVerifier.dll
- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\ncdepabgpjbhjimmdbefdlikcgnlmofe\10.19.2.5_0\profileName.txt
- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\ncdepabgpjbhjimmdbefdlikcgnlmofe\10.19.2.5_0\Search\html\SearchBackground.html
- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\ncdepabgpjbhjimmdbefdlikcgnlmofe\10.19.2.5_0\Search\html\searchInNewTabAPI.js
- %Local Appdata%\CRE\ncdepabgpjbhjimmdbefdlikcgnlmofe.crx
- %Temp%\ct895289\plugins\TBVerifier.dll
- %Program Files%\Conduit\Community Alerts\Alert.dll
- %Program Files%\Conduit\CT895289\plugins\TBVerifier.dll
- %Program Files%\KeyBar\GottenAppsContextMenu.xml
- %Program Files%\KeyBar\hk64tbKeyB.dll
- %Program Files%\KeyBar\hktbKeyB.dll
- %Program Files%\KeyBar\KeyBarToolbarHelper.exe
- %Program Files%\KeyBar\ldrtbKeyB.dll
- %Program Files%\KeyBar\OtherAppsContextMenu.xml
- %Program Files%\KeyBar\prxtbKeyB.dll
- %Program Files%\KeyBar\SharedAppsContextMenu.xml
- %Program Files%\KeyBar\tbKeyB.dll
- %Program Files%\KeyBar\toolbar.cfg
- %Program Files%\KeyBar\ToolbarContextMenu.xml