home

cht.tbccint.com

Conduit Ltd.

Domain Information

The domain cht.tbccint.com registered by ClientConnect LTD was initially registered in November of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in London, England within United Kingdom. The domain is associated with the publisher Conduit Ltd. who is located in Ness Ziona, Israel.
Registrar:
GODADDY.COM, LLC

Server location:
England, United Kingdom (GB)

Create date:
Thursday, November 21, 2013

Expires date:
Sunday, January 1, 2017

Updated date:
Monday, May 4, 2015

ASN:
AS1273 CW Cable and Wireless Worldwide plc,GB

Root domain:
tbccint.com

Whois:
1 tbccint.com record

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Toolbar.ClientConnect.H, PUP.Toolbar.Conduit.H, PUP.Installer.Conduit, PUP.Toolbar.Bundler.Conduit, PUP.Conduit.Installer, PUP.Conduit.ClientConnect.Installer (M), PUP.Conduit.ClientConnect.Bundler (M), PUP.Conduit.ClientCo.Installer (M), PUP.Conduit.ClientCo.Bundler (M), PUP.Conduit.Bundler (M), PUP.Conduit (M)
100.00%

McAfee
Artemis!4DDB65E92464, Trojan.Artemis!EAC7D43B8BC3, Artemis!FA1957AA5C2D, Artemis!DE1D57C6F2AF, Artemis!66FFEDA7BCCC, Artemis!A19D7793DD85, Artemis!A92199FC0F49, Artemis!336E58A79577
53.19%

Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.ClientConnect
53.19%

NANO AntiVirus
Riskware.Nsis.Downloader.ddbdbi
53.19%

Trend Micro House Call
Suspici.688DA4DB, Suspicious_GEN.F47V0826, Suspici.12797D5E, Suspicious_GEN.F47V0707, Suspicious_GEN.F47V0706, Suspicious_GEN.F47V0324
53.19%

Kaspersky
not-a-virus:WebToolbar.NSIS.Agent, not-a-virus:WebToolbar.Win32.Agent
53.19%

Agnitum Outpost
Riskware.SearchProtect, PUA.Toolbar.Conduit
53.19%

Sophos
Conduit Search Protect, PUA 'Conduit Search Protect', SearchProtect
53.19%

Comodo Security
Application.Win32.Conduit.~A
53.19%

VIPRE Antivirus
Conduit
53.19%

G Data
Win32.Application.ConduitTB, Trojan.Generic.11702542, Win32.Adware.Conduit, Win32.Application.SearchProtect.AJ
53.19%

Baidu Antivirus
PUA.Win32.ClientConnect, Adware.NSIS.Toolbar, Adware.Win32.Toolbar, Adware.Win32.Conduit
53.19%

Fortinet FortiGate
Riskware/Conduit_SearchProtect
53.19%

AVG
Toolbar.Conduit, Potentially harmful program Toolbar.Conduit, SearchProtect.D
53.19%

Panda Antivirus
Trj/Genetic.gen, PUP/Conduit.A, Trj/CI.A, Generic Suspicious
53.19%

The domain cht.tbccint.com has been seen to resolve to the following 6 IP addresses.

104.66.252.129
a104-66-252-129.deploy.static.akamaitechnologies.com
April 16, 2016

104.93.196.11
a104-93-196-11.deploy.static.akamaitechnologies.com
April 7, 2016

23.67.106.165
a23-67-106-165.deploy.static.akamaitechnologies.com
February 29, 2016

173.223.75.174
a173-223-75-174.deploy.static.akamaitechnologies.com
February 27, 2016

2.22.76.182
February 1, 2016

23.214.151.183
a23-214-151-183.deploy.static.akamaitechnologies.com
January 4, 2016

File downloads found at URLs served by cht.tbccint.com.

1 / 68      (Adware)
http://cht.tbccint.com/69/241/CT2411669/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../TenchisTV.exe  (6ab29c969b01d5acf4cf7fd8440d523a)

31 / 68    (PUP)
http://cht.tbccint.com/53/328/CT3284953/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../YesStreamer_Bar_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/53/328/CT3284953/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../YesStreamer_Bar_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/53/328/CT3284953/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../YesStreamer_Bar_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/53/328/CT3284953/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../YesStreamer_Bar_wpf.exe  (chlogic.exe)

33 / 68    (Adware)
http://cht.tbccint.com/51/292/CT2928751/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Icy_Tower.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/87/224/CT2247187/Downloads/ChromeWebToolbar/Releases/2.5.0.1/.../Mario_Forever_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/65/283/CT2830765/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../BitLord_Security_Bar_wpf.exe  (chlogic.exe)

1 / 68      (Adware)
http://cht.tbccint.com/16/142/CT1425416/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Radio_G.exe  (2d63af92cdb2f7066b5cee4f8ba0dec4)

1 / 68      (PUP)
http://cht.tbccint.com/43/320/CT3202343/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Nana10_wpf.exe  (chlogic.exe)

20 / 68    (Adware)
http://cht.tbccint.com/69/261/CT2612669/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../IMVU_Inc.exe  (5b0f1a184fabb0498a398139d3c6bd8408d28e03b132461ac02a21dc6b6b5977)

1 / 68      (Adware)
http://cht.tbccint.com/43/320/CT3202343/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Nana10.exe  (chlogic.exe)

35 / 68    (PUP)
http://cht.tbccint.com/53/328/CT3284953/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../YesStreamer_Bar_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/53/328/CT3284953/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../YesStreamer_Bar_wpf.exe  (chlogic.exe)

32 / 68    (Adware)
http://cht.tbccint.com/43/320/CT3202343/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Nana10.exe  (chlogic.exe)

1 / 68      (Adware)
http://cht.tbccint.com/99/267/CT2670199/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Free_Lunch_Design_TB.exe  (b1479374f7132bcec2140c4effc515c3)

1 / 68      (Adware)
http://cht.tbccint.com/40/331/CT3317940/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../RadioTotal3.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/4/323/CT3239904/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../SocialSearchBar_App_wpf.exe  (chlogic.exe)

35 / 68    (PUP)
http://cht.tbccint.com/87/224/CT2247187/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Mario_Forever_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/22/328/CT3282722/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../FreeOnlineRadioPlayerRecorder_V1_wpf.exe  (chlogic.exe)

1 / 68      (Adware)
http://cht.tbccint.com/51/292/CT2928751/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Icy_Tower.exe  (chlogic.exe)

1 / 68      (Adware)
http://cht.tbccint.com/15/283/CT2836015/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Stardoll.exe  (chlogic.exe)

1 / 68      (Adware)
http://cht.tbccint.com/51/292/CT2928751/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Icy_Tower.exe  (e71ea7fc9dbbf989ce9dbbf8bc0870b6)

32 / 68    (Adware)
http://cht.tbccint.com/15/283/CT2836015/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Stardoll.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/92/288/CT2886192/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Web_de_Recursos_Cristianos_wpf.exe  (64bfcb9303ac5d0578cb667d28b2bf05)

35 / 68    (PUP)
http://cht.tbccint.com/87/224/CT2247187/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Mario_Forever_wpf.exe  (chlogic.exe)

35 / 68    (PUP)
http://cht.tbccint.com/96/328/CT3282496/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../NCH_ES_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/58/273/CT2737658/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../FreeOnlineRadioPlayerRecorder_wpf.exe  (chlogic.exe)

35 / 68    (PUP)
http://cht.tbccint.com/89/170/CT1700389/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../IsoBuster_wpf.exe  (chlogic.exe)

1 / 68      (PUP)
http://cht.tbccint.com/87/224/CT2247187/Downloads/ChromeWebToolbar/Releases/10.33.0.5/.../Mario_Forever_wpf.exe  (fef2fda50a9f3c47deb57caef9b2a864)

 
Latest 30 of 47 download URLs

URL:
http://cht.tbccint.com/

SSL certificate subject:
CN=*.tbccint.com, OU=IT, O=ClientConnect LTD, L=Foster City, S=CA, C=US

SSL certificate issuer:
CN=Verizon Akamai SureServer CA G14-SHA1, OU=Cybertrust, O=Verizon Enterprise Solutions, L=Amsterdam, C=NL

Web server:
Microsoft-IIS/7.5 (ASP.NET)

conduit.com

getu.com

conduit-services.com

greattoolbars.com

communitytoolbars.com

forumtoolbar.com

myblogtoolbar.com

mycitytoolbar.com

mycollegetoolbar.com

myfamilytoolbar.com

myforumtoolbar.com

myradiotoolbar.com

toolbar.fm

ourbusinesstoolbar.com

loyaltytoolbar.com

media-toolbar.com

qasite-services.com

installldownload.com

trovi.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.