» synertel.exe
Overview
Analysis
File Details

synertel.exe

GibMedia

The application synertel.exe by GibMedia has been detected as a potentially unwanted program by 22 anti-malware scanners.

File name:

synertel.exe

Publisher:

GibMedia (signed and verified)

MD5:

f594121ae8e5b2410aec77a9f9bf4cff

SHA-1:

b50675e199501351e33f4b81235dd538b7772f9e

SHA-256:

42c89f97158888e6c75c4307fafa0f7e05a7f7f3f7eedfac2785d2e9433a7bc3

Scanner detections:

22 / 68

Status:

Potentially unwanted

Analysis date:

4/26/2024 9:38:16 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

MemScan:Adware.GibMedia.A

836

Agnitum Outpost

PUA.Gibmed

7.1.1

Avira AntiVirus

ADSPY/Gibmed.B.3

7.11.180.122

avast!

Win32:Adware-gen [Adw]

2014.9-141022

Bitdefender

MemScan:Adware.GibMedia.A

1.0.20.1475

Dr.Web

infected with Trojan.Click3.8931

9.0.1.05190

Emsisoft Anti-Malware

MemScan:Adware.GibMedia

14.10.22

ESET NOD32

Win32/Adware.Gibmed.A application

7.0.302.0

F-Prot

W32/Medgib.A (exact, not disinfectable)

4.6.5.141

F-Secure

MemScan:Adware.GibMedia.A

11.2014-22-10_4

G Data

MemScan:Adware.GibMedia

14.10.24

IKARUS anti.virus

not-a-virus:AdWare.Win32.Gibmed

t3scan.1.7.8.0

Kaspersky

not-a-virus:AdWare.Win32.Gibmed

15.0.0.494

McAfee

Adware-GibMedia

5600.6970

MicroWorld eScan

MemScan:Adware.GibMedia.A

15.0.0.885

NANO AntiVirus

Trojan.Win32.Gibmedia.bbyuxw

0.28.2.62841

nProtect

MemScan:Adware.GibMedia.A

14.10.21.01

Reason Heuristics

PUP.GibMedia.L

14.11.21.23

Rising Antivirus

PE:Trojan.Win32.Generic.125A9EE2!307928802

23.00.65.141020

Trend Micro House Call

TROJ_AGENT.GQ

7.2.295

Vba32 AntiVirus

AdWare.Gibmed

3.12.26.3

VIPRE Antivirus

Threat.4669674

33706

File size:

395.1 KB (404,584 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\synertel.exe

Digital Signature

Signed by:

GibMedia

Authority:

VeriSign, Inc.

Valid from:

10/22/2008 2:00:00 AM

Valid to:

10/24/2011 1:59:59 AM

Subject:

CN=GibMedia, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=GibMedia, L=TOULOUSE, S=HAUTE GARONNE, C=FR

Issuer:

CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

44939D01473D3B6670AC2D6ED950BD0B

File PE Metadata

Compilation timestamp:

9/16/2008 4:17:44 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

5.0

CTPH (ssdeep):

6144:ETfFDbRnOTri9mGaAtGN9m6bBLvsVP6ljh+Lf1Ncx+2vJcoU6aOP6OUFAbT:25OYdZeeVSlt+LM3cT6aDF8

Entry address:

0x1000

Entry point:

E8, 6F, 2B, 00, 00, 50, E8, 73, 36, 01, 00, 00, 00, 00, 00, 90, 55, 8B, EC, 53, 56, 57, 8B, 7D, 10, 8B, 5D, 0C, 8B, 75, 08, 8B, D3, FF, 75, 14, 68, E5, 50, 41, 00, 6A, 00, 6A, 00, 8B, C6, 8B, CF, E8, 7A, 48, 00, 00, 81, EB, 10, 01, 00, 00, 74, 05, 4B, 74, 14, EB, 57, FF, 75, 14, 6A, 66, 56, E8, DE, 38, 01, 00, B8, 01, 00, 00, 00, EB, 47, 66, 81, E7, FF, FF, 66, FF, CF, 74, 07, 66, FF, CF, 74, 23, EB, 30, 68, 80, 00, 00, 00, 68, AC, 69, 41, 00, 6A, 65, 56, E8, 24, 38, 01, 00, 6A, 01, 56, E8, FE, 37, 01, 00... 
[+]

Code size:

80 KB (81,920 bytes)

Remove synertel.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.