» videodownloadtoolbarintercept.dll
Overview
Analysis
File Details
Behaviors (1)
Programs (1)

videodownloadtoolbarintercept.dll

VideoDownloadToolbarIntercept

Sakysoft s.r.l.

The module videodownloadtoolbarintercept.dll by Sakysoft s.r.l has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘Video Download Toolbar Intercept’. This file is typically installed with the program Video Download Toolbar 2.0.0.0 by Conduit Ltd. which is a potentially unwanted software program.

File name:

Publisher:

Sakysoft s.r.l. uninominale (signed by Sakysoft s.r.l.)

Product:

VideoDownloadToolbarIntercept

Version:

1.9.0.0

MD5:

52e28d82acbde72fba680198d76c9379

SHA-1:

7d21f4591abf83cc937fea42ad3ac0840095a494

SHA-256:

dc34f1140d9ad097050b469a65cc273b5e9c6319914a660c0b2de294d70224ac

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

4/27/2024 1:43:02 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Optional.BHO.DD

14.4.25.16

File size:

330.5 KB (338,480 bytes)

Product version:

1.9.0.0

Sakysoft s.r.l. uninominale 2009-2011

Trademarks:

Sakysoft s.r.l. uninominale 2009-2011

Original file name:

VideoDownloadToolbarIntercept

File type:

Dynamic link library (Win32 DLL)

Language:

Russian (Russia)

Common path:

C:\Program Files\videodownloadtoolbar\videodownloadtoolbarintercept.dll

Digital Signature

Signed by:

Sakysoft s.r.l.

Authority:

The USERTRUST Network

Valid from:

2/2/2011 1:00:00 AM

Valid to:

2/3/2012 12:59:59 AM

Subject:

CN=Sakysoft s.r.l., O=Sakysoft s.r.l., STREET=Via Gorghi 6, L=Udine, S=UD, PostalCode=33100, C=IT

Issuer:

CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:

009C31E2D462BADDE1D363B1F6004DB4CC

File PE Metadata

Compilation timestamp:

2/5/2011 4:06:05 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

6144:vhVcEfKRks/u2F4v93fN+jUQVT0PRmnQ4WThu/2BeBp:vDfKqsq1f3QVT0PRAWF6ei

Entry address:

0x45A48

Entry point:

55, 8B, EC, 83, C4, C4, B8, 60, 49, 44, 00, E8, AC, 13, FC, FF, E8, FF, EF, FB, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

274 KB (280,576 bytes)

Internet Explorer BHO

CLSID:

{B29002A0-87A1-4DC4-AC55-5982034EB61E}

CLSID name:

Video Download Toolbar Intercept

The file videodownloadtoolbarintercept.dll has been discovered within the following program.

Video Download Toolbar 2.0.0.0 by Conduit Ltd.

This is a Conduit toolbar installed in the user's Web browsers (IE, Chrome and Firefox) that collects and stores information about your web browsing habits and sends this information to Conduit so they can suggest services or provide ads via the toolbar.

www.videodownloadtoolbar.com

70% remove it

Remove videodownloadtoolbarintercept.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.