Should I block it?

98%
Yes, 98% block recommendation.
Possible reasons:
Multiple malware detections
Performance resource utilization

VersionsAdditional versions

9, 4, 0, 2 1.69%
9, 3, 0, 4 1.69%
8, 9, 0, 3 1.69%
8, 8, 0, 3 1.69%
8, 2, 0, 3 1.69%
8, 1, 0, 2 8.47%
7, 6, 0, 2 11.86%
7, 2, 0, 1 6.78%
7, 2, 0, 1 1.69%
7, 1, 0, 3 1.69%
7, 0, 0, 1 3.39%
6, 9, 0, 1 13.56%
6, 7, 0, 4 3.39%
6, 6, 0, 4 5.08%
6, 5, 0, 3 8.47%
6, 3, 0, 3 1.69%
6, 2, 0, 2 23.73%
4, 9, 0, 5 1.69%

Relationships

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegEnumKeyExW, GetLengthSid, RegEnumValueW, GetSecurityDescriptorLength, MakeSelfRelativeSD, GetSecurityDescriptorControl, GetSecurityDescriptorOwner, GetSecurityDescriptorGroup, GetSecurityDescriptorDacl, GetSecurityDescriptorSacl, ConvertSidToStringSidW, ConvertStringSecurityDescriptorToSecurityDescriptorW, RegDeleteKeyW, RegDeleteValueW, RegCloseKey, RegCreateKeyExW, RegOpenKeyExW, RegSetValueExW, RegQueryInfoKeyW, CopySid, RegNotifyChangeKeyValue, RegQueryValueExW, OpenProcessToken, DuplicateTokenEx, GetTokenInformation, IsValidSid
comctl32.dll
PropertySheetW, InitCommonControlsEx
gdi32.dll
ExtTextOutW, SetBkColor, SetTextColor, GetObjectW, CreateFontIndirectW, GetStockObject, SetBkMode, SelectObject, DeleteObject
kernel32.dll
FlushFileBuffers, SetEndOfFile, GetFileSize, DeleteFileW, GetModuleHandleA, GetVersion, GetFileAttributesW, OutputDebugStringA, CreateFileMappingW, MapViewOfFile, UnmapViewOfFile, OpenEventW, PulseEvent, TerminateProcess, GetPrivateProfileStringW, GetTempPathW, WideCharToMultiByte, GetVersionExW, VerSetConditionMask, VerifyVersionInfoW, CreateToolhelp32Snapshot, Process32FirstW, Process32NextW, GetProcessHeap, HeapFree, FormatMessageW, HeapAlloc, DebugBreak, OutputDebugStringW, GetCurrentProcessId, FindFirstFileW, FindNextFileW, ExpandEnvironmentStringsW, CreateDirectoryW, SetFileAttributesW, SetFilePointer, GetTempFileNameW, FindClose, GetSystemTime, SystemTimeToFileTime, SetFileTime, GetFullPathNameW, GetFullPathNameA, CreateFileA, QueryPerformanceCounter, InterlockedCompareExchange, UnlockFile, LockFile, GetTickCount, UnlockFileEx, GetSystemTimeAsFileTime, FormatMessageA, GetFileAttributesA, LockFileEx, GetDiskFreeSpaceW, LoadLibraryA, GetDiskFreeSpaceA, GetSystemInfo, GetFileAttributesExW, GetTempPathA, AreFileApisANSI, DeleteFileA, CompareStringW, lstrcpyW, CreateThread, SetErrorMode, IsDebuggerPresent, SetUnhandledExceptionFilter, UnhandledExceptionFilter, GetStartupInfoW, InterlockedExchange, HeapSize, HeapReAlloc, HeapDestroy, VirtualAlloc, VirtualFree, IsProcessorFeaturePresent, WriteFile, ReadFile, Sleep, OpenMutexW, CreateFileW, ReadDirectoryChangesW, GetOverlappedResult, OpenProcess, CreateEventW, GetModuleFileNameW, LoadLibraryExW, LoadLibraryW, FreeLibrary, SetLastError, lstrcmpiW, GetModuleHandleW, InterlockedDecrement, InterlockedIncrement, lstrlenW, GetProcAddress, GetCurrentThreadId, lstrlenA, MultiByteToWideChar, WaitForSingleObject, ReleaseMutex, CreateMutexW, GetCurrentProcess, FlushInstructionCache, CloseHandle, FindResourceExW, FindResourceW, LoadResource, LockResource, SizeofResource, DeleteCriticalSection, InitializeCriticalSection, LeaveCriticalSection, EnterCriticalSection, RaiseException, GetLastError, CopyFileW, LocalFree, GetExitCodeProcess, IsWow64Process, DllMain
msvcp90.dll
DllMain
msvcr90.dll
DllMain
ole32.dll
CoInitialize, CoUninitialize, CoTaskMemFree, CoCreateInstance, CoTaskMemRealloc, CLSIDFromString, OleRun, CoCreateGuid, StringFromGUID2, CoTaskMemAlloc
psapi.dll
GetModuleBaseNameW, EnumProcessModules, EnumProcesses
shell32.dll
ShellExecuteW, SHGetFolderPathW, Shell_NotifyIconW, ShellExecuteExW
shlwapi.dll
PathFileExistsW, PathAppendW, PathIsDirectoryW, PathAddBackslashW, UrlEscapeW
user32.dll
GetClassNameW, LoadBitmapW, RealGetWindowClassW, ModifyMenuW, IsMenu, GetWindowDC, DrawTextExW, BeginPaint, EndPaint, FillRect, IsWindowEnabled, GetSysColor, GetFocus, DrawFocusRect, SetCursor, SetFocus, SetCapture, GetCapture, ReleaseCapture, GetDlgCtrlID, GetCursorPos, UpdateWindow, InvalidateRect, LoadCursorW, CreateWindowExW, GetWindowTextLengthW, GetWindowTextW, SetRectEmpty, EnableWindow, DrawTextW, OffsetRect, CallWindowProcW, SetActiveWindow, MoveWindow, ScreenToClient, UnregisterClassA, SetDlgItemTextW, wvsprintfW, LoadStringW, PtInRect, ReleaseDC, GetDC, CopyRect, IsWindow, GetDlgItem, PostMessageW, DefWindowProcW, DestroyWindow, CharNextW, RegisterWindowMessageW, GetActiveWindow, DialogBoxParamW, KillTimer, GetWindow, GetWindowRect, MonitorFromWindow, GetMonitorInfoW, GetClientRect, MapWindowPoints, EndDialog, SetWindowLongW, SetWindowTextW, SendMessageW, LoadImageW, GetSystemMetrics, SetTimer, GetWindowLongW, SendDlgItemMessageW, GetParent, SetWindowPos, SendMessageTimeoutW, GetDesktopWindow, GetWindowThreadProcessId, EnumWindows, CharLowerW, AdjustWindowRectEx, GetMenu, DrawEdge, InflateRect, ClientToScreen, SystemParametersInfoW
userenv.dll
UnloadUserProfile
wininet.dll
InternetGetConnectedState, InternetQueryOptionW, InternetCloseHandle, InternetOpenW, HttpQueryInfoW, InternetCrackUrlW, InternetReadFile, HttpSendRequestW, HttpOpenRequestW, InternetConnectW, InternetSetOptionW

SearchSettings.exe

Widgi Toolbar by Spigot (Signed)

Remove SearchSettings.exe
Version:   4, 9, 0, 5
MD5:   11395157c0b05a272e21bdcc3c4d8033
SHA1:   2875b9f73bf2a7ed7278c7509b362a93b26c0701
SHA256:   d8b6a24a1568a86ddc91579254f1a3f1e1a2b8abb96184c425b7fb31213a3354
Warning 6 antivirus scanners has detected malware.

What is SearchSettings.exe?

The Widgi Search Settings Toolbar is a toolbar built on the spigot platform. The toolbar is usually installed together with other software. Typically, PC owner is not careful enough and leave some checkboxes unchecked. That is how one of such Widgi toolbars land on their browser. The Widgi Toolbar displays advertisements, or change your browsers default search provider.

About SearchSettings.exe (from Spigot)

The Spigot Search Settings is an application which is part of the Spigot Toolbar. Spigot searchsettings.exe's purpose is to check periodically your default search engine and restore it to Yahoo in cas

DetailsDetails

File name:searchsettings.exe
Publisher:Spigot, Inc.
Product name:Widgi Toolbar
Description:Search Settings
Typical file path:C:\Program Files\common files\spigot\search settings\searchsettings.exe
File version:4, 9, 0, 5
Size:901.34 KB (922,976 bytes)
Certificate
Issued to:Spigot
Authority (CA):VeriSign
Expiration date:Saturday, March 28, 2015
Digital DNA
PE subsystem:Windows GUI
File packed:No
Code language:Microsoft Visual C++ 9.0
.NET CLR:No
More details

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'SearchSettings' → "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"

MalwareMalware detections

Based on 40+ industry antivirus scanners, 6 of them detected the following malware.
Antivirus engineEngine versionDetection
Comodo Internet Security 14045 UnclassifiedMalware
Emsisoft Anti-Malware 3.0.0.567 Adware.Win32.Toolbar.Dealio.AMN (A)
eSafe 7.0.17.0 Win32.Trojan
ESET NOD32 7.7647 a variant of Win32/Toolbar.Widgi
Norman 6.08.06 W32/Toolbar.A
Trend Micro HouseCall 9.700.0.1001 TROJ_GEN.RCEH1GH

Windows OS versionsDistribution by Windows OS

OS versiondistribution
Windows 7 Home Premium 22.03%
Windows 7 Ultimate N 22.03%
Windows 7 Ultimate 18.64%
Microsoft Windows XP 15.25%
Windows 8 Pro 5.08%
Windows 7 Professional 5.08%
Windows 8 3.39%
Windows Vista Ultimate 3.39%
Windows Vista Home Premium 1.69%
Windows 8 Pro with Media Center 1.69%
Windows 8 Single Language 1.69%

Distribution by countryDistribution by country

United States installs about 30.00% of Widgi Toolbar.

OEM distributionDistribution by PC manufacturer

PC Manufacturerdistribution
Acer 25.00%
Toshiba 22.22%
Hewlett-Packard 19.44%
Dell 11.11%
GIGABYTE 8.33%
Compaq 5.56%
ASUS 5.56%
American Megatrends 2.78%
Back to top
Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

Download it for FREE