home

ytdtoolbarie.dll

Widgi Toolbar

Spigot, Inc.

This component is part of the Spigot browser add-on, a web browser addition that is designed to modify the core search provider in order to redirect search queries through partner portals. The module ytdtoolbarie.dll, “Widgi Toolbar for Internet Explorer” by Spigot has been detected as adware by 5 anti-malware scanners. The program is a setup application that uses the Spigot Setup installer. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘YTD Toolbar’. This file is typically installed with the program BlueSprig Toolbar v7.3 by Spigot, Inc. which is a potentially unwanted software program.
Publisher:
Spigot, Inc.  (signed and verified)

Product:
Widgi Toolbar

Description:
Widgi Toolbar for Internet Explorer

Version:
7, 3, 0, 2

MD5:
7e82305ab82a855e769a39530073ed70

SHA-1:
48b5d4bfd6a336a1a090a1f4036331b003ef79db

SHA-256:
170b70ffd06c84338a6d360c0cac1f612576e727e9a06135b41699639c44c291

Scanner detections:
5 / 68

Status:
Adware

Analysis date:
4/24/2024 11:01:11 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Baidu Antivirus
Adware.Win32.Widgi
4.0.3.1487

Boost by Reason
Optional.BHO.Spigot.M
188838

ESET NOD32
Win32/Toolbar.Widgi (variant)
7.8725

Reason Heuristics
PUP.BHO.Spigot.M
14.8.7.21

Trend Micro House Call
TROJ_GEN.F47V0717
7.2.207

File size:
1.3 MB (1,356,096 bytes)

Product version:
7, 3, 0, 2

Copyright:
Copyright © 2005-2013 Spigot, Inc.

Original file name:
WidgiToolbarIE.dll

File type:
Dynamic link library (Win32 DLL)

Installer:
Spigot Setup

Language:
English (United States)

Common path:
C:\Program Files\ytd toolbar\ie\7.3\ytdtoolbarie.dll

Digital Signature
Signed by:
Spigot, Inc.

Authority:
VeriSign, Inc.

Valid from:
2/25/2012 4:00:00 PM

Valid to:
3/28/2015 4:59:59 PM

Subject:
CN="Spigot, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Spigot, Inc.", L=El Granada, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
494FF8E91607158CD480B23C615CFF8B

File PE Metadata
Compilation timestamp:
7/5/2013 2:27:09 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
24576:dMBHoOnjfTB/rjLjrcRBT9YUl/ak9jznuaWNOg:d8VbJ/Ljrc5YUlakBnuHNOg

Entry address:
0x9C118

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, DE, B0, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, CC, CC, CC, CC, CC, 55, 8B, EC, 57, 56, 8B, 75, 0C, 8B, 4D, 10, 8B, 7D, 08, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, A4, 01, 00, 00, 81, F9, 00, 01, 00, 00, 72, 1F, 83, 3D, 34, 0F, 0F, 10, 00, 74, 16, 57, 56, 83, E7, 0F, 83, E6, 0F, 3B, FE, 5E, 5F, 75, 08, 5E, 5F, 5D, E9, 1D, 5B, 00, 00, F7, C7, 03, 00, 00, 00, 75, 15, C1, E9, 02, 83, E2, 03, 83, F9, 08...
 
[+]

Code size:
756 KB (774,144 bytes)

2 Internet Explorer BHOs
CLSID:
{F3FEE66E-E034-436a-86E4-9690573BEE8A}

CLSID name:
YTD Toolbar

CLSID:
{03EB0E9C-7A91-4381-A220-9B52B641CDB1}

CLSID name:
IObit Apps Toolbar


Internet Explorer Toolbar
Display name:
YTD Toolbar

CLSID:
{F3FEE66E-E034-436a-86E4-9690573BEE8A}


Internet Explorer URL Search Hook
CLSID:
{F3FEE66E-E034-436a-86E4-9690573BEE8A}

CLSID name:
YTD Toolbar


The file ytdtoolbarie.dll has been discovered within the following program.

BlueSprig Toolbar v7.3  by Spigot, Inc.
BlueSprig Toolbar is a Spigot toolbar in your Web browser that collects and stores information about your web browsing habits and sends this information to Spigot so they can suggest services or provide ads via the toolbar. Dealio is operated by Vendio Services, Inc.
www.spigot.com
66% remove it
 
Powered by Should I Remove It?

Remove ytdtoolbarie.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.