How to remove APISupport[7].dll
- File Details
- Overview
- Analysis
APISupport[7].dll
The module APISupport[7].dll has been detected as Adware.Conduit
File Details
| Product Name: |
|
| Company Name: |
|
| MD5: |
f9f5d64937d13eb0cb29a7f2b0295d56 |
| Size: |
1 MB |
| First Published: |
2017-07-14 15:10:28 (7 years ago) |
| Latest Published: |
2020-03-06 06:32:11 (5 years ago) |
| Status: |
Adware.Conduit (on last analysis) |
|
| Analysis Date: |
2020-03-06 06:32:11 (5 years ago) |
Overview
| %chromeprofile%\extensions\bhoidhegblcilgoohmnjllhkfafcjckl\10.33.0.5_0\apisupport |
| %sysdrive%\system volume information\systemrestore\frstaging\users\win7\appdata\local\google\chrome\user data\profile 1\extensions\kgbcbdejncdpahgapnmkjimfmlipdgdl\10.33.0.5_0\apisupport |
| %sysdrive%\system volume information\systemrestore\frstaging\users\win7\appdata\local\google\chrome\user data\default\extensions\kgbcbdejncdpahgapnmkjimfmlipdgdl\10.33.0.5_0\apisupport |
| %sysdrive%\system volume information\systemrestore\frstaging\users\win7\appdata\local\google\chrome\user data\profile 2\extensions\kgbcbdejncdpahgapnmkjimfmlipdgdl\10.33.0.5_0\apisupport |
| %sysdrive%\system volume information\systemrestore\frstaging\users\win7\appdata\local\chromium\user data\default\extensions\kgbcbdejncdpahgapnmkjimfmlipdgdl\10.33.0.5_0\apisupport |
| %sysdrive%\system volume information\systemrestore\frstaging\users\win7\appdata\local\google\chrome\user data\profile 3\extensions\kgbcbdejncdpahgapnmkjimfmlipdgdl\10.33.0.5_0\apisupport |
| %localappdata%\microsoft\windows\temporary internet files\content.ie5\c0ihy59w |
| %localappdata%\torch\user data\default\extensions\mahgaopgbalgbfohkikbdjfmaapiehaf\10.33.0.5_0 |
| %localappdata%\google\chrome\user data\profile 1\extensions\jllpjckabhalgdienlngoikeehalibei\10.33.0.5_0 |
| %localappdata%\tb |
| APISupport.dll |
| APISupport[7].dll |
| APISupport.old |
|
31.6% |
|
|
31.6% |
|
|
10.5% |
|
|
10.5% |
|
|
5.3% |
|
|
5.3% |
|
|
5.3% |
|
| Windows 7 |
57.9% |
|
| Windows 8.1 |
36.8% |
|
| Windows XP |
5.3% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x10000000 |
| Entry Address: |
0x000a701a |
| Name |
Size of data |
MD5 |
| .text |
841216 |
875de91dc8d7b150fa9eae8f3c079865 |
| .rdata |
145408 |
59634936a64b8c5a73e5e4f8b93339ec |
| .data |
15872 |
5e77be0ab3e613af97332d6a7487f3d0 |
| .rsrc |
1536 |
7c6d6fb0a3515916a056be1fa9ccc4a6 |
| .reloc |
70144 |
a92d1cf3fc9e871bf82ca07e8439a45c |
![APISupport[7].dll](/screens/screen-f9f5d64937d13eb0cb29a7f2b0295d56.png "Remove Adware.Conduit")
![copyright for information about APISupport[7].dll](/images/copyright.png)