How to remove RunExtention.tpi

RunExtention.tpi

The module RunExtention.tpi has been detected as PUP.ChinAd

RunExtention.tpi
Remove RunExtention.tpi

File Details

Product Name:

RunExtension
MD5: 3d2e57c4806baa94da7a7ee8b1268bd3
Size: 529 KB
First Published: 2023-12-06 23:35:38 (2 years ago)
Latest Published: 2025-04-28 23:01:30 (9 months ago)
Status: PUP.ChinAd (on last analysis)
Analysis Date: 2025-04-28 23:01:30 (9 months ago)

Overview

Signed By: Chengdu Qilu Technology Co. Ltd.
Status: Valid

Common Places:

%programfiles%\ludashi
%programfiles%\ludashi

Geography:

50.0%
50.0%

OS Version:

Windows 10 100.0%

Analysis

Subsystem: Windows GUI
PE Type: pe
OS Bitness: 32
Image Base: 0x10000000
Entry Address: 0x000304fd

PE Sections:

Name Size of data MD5
.text 394752 d844ea7d073cdbdba9d65f88dfdbc45c
.rdata 107008 487733daded1e3bb094725f57d61af19
.data 11264 a79189d3c463b74f9ea41375c8a062aa
.rsrc 1536 85d720fa640a1c8006baae3e33a9ef44
.reloc 19456 8bf0701e5363d926ab0a2dae485fd999

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for RunExtention.tpi
copyright for information about RunExtention.tpi