chrome.exe

What is chrome.exe?

Bomgar-host is the remote support host component used by BeyondTrust Bomgar deployments. It runs on user endpoints to establish secure, permission-controlled connections with approved technicians, enabling live assistance, screen sharing, and file transfer. The agent coordinates session setup, auditing, and policy enforcement while remaining unobtrusive.

Bomgar-host operates as a background service that authenticates to the Bomgar gateway and negotiates a TLS-encrypted channel for remote control. It respects local policy, prompts for user consent when required, and registers session IDs for audit trails.

Is bomgar-host Safe?

Bomgar-host, when installed from official BeyondTrust/Bomgar sources, is a legitimate enterprise remote-support component. It runs with controlled privileges, communicates exclusively with approved Bomgar gateways, and adheres to strict access policies and auditing. In standard enterprise deployments it supports consent prompts, role-based access, and centralized logging, reducing risk during remote sessions. Unusual configuration or unsigned executables should trigger an IT security review.

Is bomgar-host a Virus?

Like any legitimate remote-support agent, bomgar-host can be misrepresented by malware if downloaded from untrusted sources or tampered with. A malicious version would attempt to disguise its path, signing, and network destinations. Always confirm publisher, digital signature, and install path, and verify with your security team before allowing it to run. If doubts remain, isolate the device and run a full malware scan.

How to Verify Legitimacy

1. Check File Location: Verify the executable resides in a sanctioned Bomgar install directory, such as C:\Program Files\Bomgar\Bomgar Host\bomgar-host.exe.
2. Verify Digital Signature: Inspect the certificate; it should show BeyondTrust or Bomgar as the publisher.
3. Check File Hash: Compare the file’s SHA-256 hash against the hash published by your IT department.
4. Scan for Malware: Run a current antivirus/malware scan and confirm no related UM.dldr, droppers, or suspicious network activity.

Why is it Running?

Reasons it's running:

• Active remote support session: A technician is connected to the endpoint to assist with troubleshooting, screen sharing, or file transfers during a defined session.
• Administrative maintenance: The host runs to apply policy updates, reauthenticate, or prep for scheduled maintenance windows managed by the help desk.
• Startup and persistence: Bomgar-host may be configured to start at user login to ensure quick access for future sessions, under enterprise policy.
• Policy-compliant auditing: The process registers session IDs and logs actions to meet security and compliance requirements.
• Network connectivity checks: It maintains a heartbeat to Bomgar gateways and may retry connections to ensure availability for authorized sessions.

Can I Disable or Remove It?

Common Problems

Common Causes & Solutions

• Inadequate session capture or glitchy screen sharing; may occur when the host is connecting to a poor network.: Update to the latest Bomgar version; reduce screen sharing fidelity; ensure network stability.
• Startup entry disabled; services misconfigured; group policy restricted startup.: Check startup items, service name Bomgar Host Service, and re-enable startup or re-install under admin rights.
• Network instability; firewall blocks on outbound TLS port; gateway unreachable.: Verify outbound TLS (443) access to Bomgar gateway; check firewall rules; test with a different network.
• Consent prompt configuration; credential provider issue; outdated client.: Confirm consent prompts are enabled; update client; verify credentials and access policies.
• Update channel blocked; missing prerequisites; insufficient permissions.: Run updater with admin rights; verify update server reachability; ensure system time is synchronized.
• remnants left in registry or scheduled tasks.: Run official uninstall in control panel; use cleanup script from IT; reboot and re-check for leftovers.

Related Processes