TMBMSRV.exe

Trend Micro AEGIS

Trend Micro, Inc.

It runs as a separate (within the context of its own process) windows Service named “Trend Micro Unauthorized Change Prevention Service”.
Scan TMBMSRV.exe - Powered by Reason Core Security
Publisher:
Trend Micro Inc.  (signed by Trend Micro, Inc.)

Product:
Trend Micro AEGIS

Description:
Manages the Trend Micro unauthorized change prevention feature

Version:
2.63.0.1015

MD5:
4c25381607242cb7462a9875545b68db

SHA-1:
bcd7ebfc1ace3b87774350c1c2052a030e84cce5

SHA-256:
457cbf2e52508be998a877c86d8f56f845aa774e2703dc6a1c6f5e0c9dddaa49

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/5/2016 7:41:02 AM UTC  (today)

File size:
333.3 KB (341,256 bytes)

Product version:
2.63

Copyright:
Copyright (C) 2005-2009 Trend Micro Incorporated. All rights reserved.

Trademarks:
Copyright (C) Trend Micro Inc.

Original file name:
TMBMSRV.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\trend micro\bm\tmbmsrv.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
1/16/2008 8:00:00 AM

Valid to:
2/17/2011 7:59:59 AM

Subject:
CN="Trend Micro, Inc.", OU=RD, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Trend Micro, Inc.", L=Taipei, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
645212F783F4D7ABA3555729E99CE065

File PE Metadata
Compilation timestamp:
5/12/2009 7:21:09 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
8.0

CTPH (ssdeep):
6144:XY7LqlsVD6HNLThp5Is58lH8SUZgqaXBC:X4LQsV6NL9rIsM8JZgO

Entry address:
0x1E45E

Entry point:
E8, 73, A0, 00, 00, E9, 40, FE, FF, FF, 6A, 0C, 68, 60, D7, 44, 00, E8, 24, 3F, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, BC, 37, 45, 00, 77, 22, 6A, 04, E8, 45, 89, 00, 00, 59, 83, 65, FC, 00, 56, E8, EB, AD, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, 30, 3F, 00, 00, C3, 6A, 04, E8, 2A, 88, 00, 00, 59, C3, 83, 3D, 2C, 37, 45, 00, 00, 75, 18, E8, 43, 87, 00, 00, 6A, 1E, E8, 7C, 85, 00, 00, 68, FF, 00, 00, 00, E8, F1, F8, FF, FF, 59, 59, A1, CC, 37, 45, 00, 83...
 
[+]

Entropy:
6.3739

Code size:
256 KB (262,144 bytes)

Service
Display name:
Trend Micro Unauthorized Change Prevention Service

Service name:
TMBMServer

Description:
Manages the Trend Micro unauthorized change prevention feature

Type:
Win32OwnProcess

Group:
Extended Base

Depends on:
tmcomm tmevtmgr tmactmon


Scan TMBMSRV.exe - Powered by Reason Core Security