» videodownloadtoolbar.exe
Overview
Analysis
File Details
Programs (1)

videodownloadtoolbar.exe

Video Download Toolbar

Sakysoft s.r.l.

The application videodownloadtoolbar.exe by Sakysoft s.r.l has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Video Download Toolbar 2.0.0.0 by Conduit Ltd. which is a potentially unwanted software program.

File name:

Publisher:

Sakysoft s.r.l. uninominale (signed by Sakysoft s.r.l.)

Product:

Video Download Toolbar

Version:

2.2.0.0

MD5:

51d45b65a741711f3ad623807b1c0c8f

SHA-1:

543d2a3b454bce0d396680d6262bef9cde0ecde0

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/27/2024 1:30:35 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Optional.Toolbar.U

14.4.25.16

File size:

4.5 MB (4,670,976 bytes)

Product version:

2.2.0.0

Sakysoft s.r.l. uninominale 2009-2012

Trademarks:

Sakysoft s.r.l. uninominale 2009-2012

Original file name:

Video Download Toolbar

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\videodownloadtoolbar\videodownloadtoolbar.exe

Digital Signature

Signed by:

Sakysoft s.r.l.

Authority:

The USERTRUST Network

Valid from:

2/2/2011 7:00:00 AM

Valid to:

2/3/2012 6:59:59 AM

Subject:

CN=Sakysoft s.r.l., O=Sakysoft s.r.l., STREET=Via Gorghi 6, L=Udine, S=UD, PostalCode=33100, C=IT

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

009C31E2D462BADDE1D363B1F6004DB4CC

File PE Metadata

Compilation timestamp:

11/9/2011 3:00:32 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

98304:ViByfnpQZj6aNjceIY9XoSBTakGqvaFRmwekFCFqn:uZHNjbIiQFJ

Entry address:

0x390754

Entry point:

55, 8B, EC, 83, C4, F0, B8, 58, 06, 78, 00, E8, 30, A6, C7, FF, 33, C0, 55, 68, 4E, 08, 79, 00, 64, FF, 30, 64, 89, 20, A1, 70, 31, 7A, 00, 8B, 00, E8, 92, FF, D6, FF, 33, C0, 55, 68, 39, 08, 79, 00, 64, FF, 30, 64, 89, 20, E8, D3, FD, FE, FF, 68, 5C, 08, 79, 00, 6A, FF, 6A, 00, E8, 65, BE, C7, FF, A3, D8, CD, 82, 00, E8, DB, BF, C7, FF, 3D, B7, 00, 00, 00, 75, 24, 6A, 00, 68, 98, 08, 79, 00, E8, E0, C8, C7, FF, A3, DC, CD, 82, 00, 83, 3D, DC, CD, 82, 00, 00, 74, 05, E8, 2D, FD, FE, FF, E8, 88, 61, C7, FF... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

3.6 MB (3,733,504 bytes)

The file videodownloadtoolbar.exe has been discovered within the following program.

Video Download Toolbar 2.0.0.0 by Conduit Ltd.

This is a Conduit toolbar installed in the user's Web browsers (IE, Chrome and Firefox) that collects and stores information about your web browsing habits and sends this information to Conduit so they can suggest services or provide ads via the toolbar.

www.videodownloadtoolbar.com

70% remove it

Remove videodownloadtoolbar.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.