Should I block it?

98%
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization

VersionsAdditional versions

1.1.151.43 50.00%
1.1.151.36 50.00%

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
GetSidSubAuthorityCount, RegCreateKeyExA, RegDeleteValueA, RegCloseKey, RegQueryValueExA, RegSetValueExA, RegQueryInfoKeyA, RegEnumKeyExA, RegQueryInfoKeyW, RegDeleteKeyA, GetTokenInformation, RegOpenKeyExA, GetSidSubAuthority, OpenProcessToken, LookupPrivilegeValueA, AdjustTokenPrivileges, RegEnumValueA
gdiplus.dll
GdiplusShutdown
kernel32.dll
FreeLibrary, LoadLibraryA, CloseHandle, GetLastError, GetCurrentProcess, OpenProcess, Sleep, TerminateProcess, WaitForSingleObject, CreateThread, RaiseException, EnterCriticalSection, LeaveCriticalSection, FlushInstructionCache, SetLastError, WideCharToMultiByte, LocalFree, FormatMessageA, InitializeCriticalSectionAndSpinCount, DeleteCriticalSection, MultiByteToWideChar, UnmapViewOfFile, SetEvent, MapViewOfFile, OpenFileMappingA, CreateFileMappingA, CreateEventA, lstrcpyA, LocalAlloc, InitializeCriticalSection, WriteFile, ReadFile, SetFilePointer, GetFileSize, CreateFileA, lstrlenW, ReleaseMutex, lstrcmpiA, DisableThreadLibraryCalls, GetModuleFileNameA, GetModuleHandleW, IsDBCSLeadByte, SizeofResource, LoadResource, GetCurrentProcessId, LoadLibraryExA, OpenMutexA, lstrlenA, GetVersion, ExpandEnvironmentStringsA, FreeEnvironmentStringsW, GetStartupInfoW, GetFileType, SetHandleCount, FlushFileBuffers, GetConsoleMode, GetConsoleCP, GetTimeZoneInformation, HeapDestroy, HeapCreate, GetLocaleInfoW, GetModuleFileNameW, GetStdHandle, ExitProcess, HeapSize, GetStringTypeW, IsDebuggerPresent, SetUnhandledExceptionFilter, UnhandledExceptionFilter, TlsFree, TlsSetValue, TlsGetValue, TlsAlloc, IsValidCodePage, GetOEMCP, GetACP, GetCPInfo, LCMapStringW, GetCommandLineA, VirtualQuery, GetSystemInfo, VirtualProtect, HeapReAlloc, GetLocalTime, GetSystemTimeAsFileTime, RtlUnwind, DecodePointer, EncodePointer, InterlockedExchange, GetCurrentThreadId, OutputDebugStringA, DebugBreak, InterlockedIncrement, FindResourceA, InterlockedDecrement, GetModuleHandleA, GetProcAddress, GetEnvironmentStringsW, QueryPerformanceCounter, GetTickCount, GetUserDefaultLCID, GetLocaleInfoA, EnumSystemLocalesA, IsValidLocale, LoadLibraryW, SetStdHandle, WriteConsoleW, CreateFileW, SetEndOfFile, CompareStringW, SetEnvironmentVariableA, GetStringTypeExA, InterlockedPopEntrySList, VirtualAlloc, VirtualFree, IsProcessorFeaturePresent, HeapAlloc, GetProcessHeap, HeapFree, InterlockedPushEntrySList, InterlockedCompareExchange, LCMapStringA, CreateMutexA
ole32.dll
CoGetClassObject, CoTaskMemAlloc, CoTaskMemRealloc, CoTaskMemFree, CoCreateInstance, StringFromGUID2, CoCreateGuid, CLSIDFromProgID
oleacc.dll
AccessibleObjectFromWindow
shell32.dll
ShellExecuteA, SHGetFolderPathA, ShellExecuteExA
urlmon.dll
URLDownloadToCacheFileA, CoInternetGetSession
user32.dll
LoadStringA, CharNextA, PostMessageA, GetWindowThreadProcessId, EnumWindows, SetWindowLongA, GetClassInfoExA, LoadCursorA, DefWindowProcA, RegisterClassExA, CreateWindowExA, GetWindowLongA, CallWindowProcA, DestroyWindow, GetDesktopWindow, DestroyIcon, SendMessageA, GetWindowRect, wvsprintfA, SetWindowPos, GetParent, FindWindowExA, UnhookWindowsHookEx, SetTimer, KillTimer, CharNextW, MessageBoxA, CharLowerA, GetWindowTextA, IsWindowVisible, UnregisterClassA
wininet.dll
InternetSetOptionA, InternetReadFile, HttpQueryInfoA, InternetGetCookieA, InternetSetCookieA, HttpSendRequestA, HttpOpenRequestA, InternetConnectA, InternetCloseHandle, InternetCrackUrlA, InternetOpenA
Export table
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Giant Savings.dll

Giant Savings by Awesome Apps (Signed)

Remove Giant Savings.dll
Version:   1.1.151.43
MD5:   fc419110c33fadd11a65f9bc95df322a
SHA1:   cc49f6c147736d0cfa50444897a1d60ab34842de
SHA256:   0d7933ba37f3e412c4de75d4096320d55265bfafb81142e0a3958a498efda89d
Warning 7 antivirus scanners has detected malware.

What is Giant Savings.dll?

Giant Savings BHO is the Browser Helper Object installed into Internet Explorer which has the ability to access and monitor all loaded and requested web pages and content. Giant Savings is an adware type program that has causes serious performance issues to your PC by installing a number of plug-ins and add-ins to your web browser and Windows. It injects ads directly by modifying web pages based on your surfing habits.

About Giant Savings.dll (from Awesome Apps)

Giant Savings takes couponing to the next level by providing users with an easy to use coupon list they can use to save as they browse. Savings in a single click. The sad truth about online shopping i

DetailsDetails

File name:giant savings.dll
Publisher:215 Apps
Product name:Giant Savings
Description:Giant Savings BHO
Typical file path:C:\Program Files\giant savings\giant savings.dll
File version:1.1.151.43
Size:602.38 KB (616,832 bytes)
Certificate
Issued to:Awesome Apps
Authority (CA):Thawte
Effective date:Tuesday, August 28, 2012
Expiration date:Thursday, August 29, 2013
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
Giant Savings
 215 Apps
  85% remove
Giant Savings from 215 Apps (Amazing Apps/50onRed) installs a web browser extension (Internet Explorer Browser Helper Object) to view web pages loaded and looks for affiliated merchants in order to possibly provide better pricing or alternative deals on a given product or merchant. Basically if Giant Savings (215 Apps) has a pre-arranged affiliate relationship with a similar merchant it will alert you when you visit through your web bro...

BehaviorsBehaviors

Internet Explorer Browser Helper Object
Located in the registry at 'SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects'
  • BHO CLSID: {11111111-1111-1111-1111-110011441179}

MalwareMalware detections

Based on 40+ industry antivirus scanners, 7 of them detected the following malware.
Antivirus engineEngine versionDetection
AVG 2014.0.3629 Suspicion: unknown virus
ESET NOD32 7.7850 a variant of Win32/Toolbar.CrossRider.A
PC Tools 8.0.0.5 Adware.Crossid!rem
Sophos 4.84.0 AppRider
Symantec 20121.2.1.2 Adware.Crossid
Trend Micro HouseCall 9.700.0.1001 TROJ_GEN.F47V1202
VIPRE Antivirus 14796 GamePlayLabs (v)

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 8 Enterprise 50.00%
Windows 7 Ultimate N 50.00%

Distribution by countryDistribution by country

Netherlands installs about 50.00% of Giant Savings.
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE