How to remove Gretech_th_IBD_Bundle[1].exe

Gretech_th_IBD_Bundle[1].exe

The module Gretech_th_IBD_Bundle[1].exe has been detected as Adware.Downloader

Gretech_th_IBD_Bundle[1].exe
Remove Gretech_th_IBD_Bundl

File Details

Product Name:

toolmini Application
MD5: dc3091e8fb391c2ea8228f3dcb59db4b
Size: 612 KB
First Published: 2017-05-26 03:09:58 (7 years ago)
Latest Published: 2018-09-06 10:09:53 (6 years ago)
Status: Adware.Downloader (on last analysis)
Analysis Date: 2018-09-06 10:09:53 (6 years ago)

Overview

Signed By: MEIXIAN XIE
Status: Valid

Common Places:

%temp%\nsq1aa4.tmp
%localappdata%\microsoft\windows\temporary internet files\content.ie5\sribbua5
%localappdata%\microsoft\windows\inetcache\ie\v8pr42sp
%localappdata%\microsoft\windows\temporary internet files\content.ie5\28kdlidz
%localappdata%\microsoft\windows\inetcache\ie\nee3c54e
%localappdata%\microsoft\windows\inetcache\ie\3018qpps
%localappdata%\microsoft\windows\inetcache\ie\2ok1geuf
%localappdata%\microsoft\windows\temporary internet files\content.ie5\7g0vx1zm
%localappdata%\microsoft\windows\temporary internet files\content.ie5\ea7x5pq6
%localappdata%\microsoft\windows\temporary internet files\content.ie5\qi8vohh9

File Names:

nsf669E.tmp
Gretech_th_IBD_Bundle[1].exe

Geography:

100.0%

OS Version:

Windows 7 70.0%
Windows 10 15.0%
Windows 8.1 15.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x0003476a

PE Sections:

Name Size of data MD5
.text 313344 404f8a68bec9bf9311c478c650996e7e
.rdata 37888 90cafbe34f2b2016896535cd04671872
.data 7168 03a6f869a180cb535eeb8d2a1a792fbd
.rsrc 244736 d04f4f94b06c35233de765da5ea91dfc
.reloc 16896 518786d9be31de7f1fbdca267b2e7b5d

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for Gretech_th_IBD_Bundle[1].exe
copyright for information about Gretech_th_IBD_Bundle[1].exe