ct2260173.ourtoolbar.com

ClientConnect LTD

Domain Information

The domain ct2260173.ourtoolbar.com registered by ClientConnect LTD was initially registered in June of 2005 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Mateo, California within the United States which resides on the Conduit USA, Inc. network.
Remove Malware from ct2260173.ourtoolbar.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Wednesday, June 22, 2005

Expires date:
Monday, June 22, 2015

Updated date:
Thursday, December 12, 2013

ASN:
AS56473 CONDUIT-NL Conduit Connect B.V.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Conduit.P, PUP.Conduit.O, PUP.ClientConnect.a, PUP.Conduit.J, PUP.Installer.ClientConnect.J
100.00%

Malwarebytes
PUP.Optional.OpenCandy, PUP.Optional.Conduit.A, PUP.Optional.ClientConnect
85.71%

VIPRE Antivirus
Conduit, Trojan.Win32.Generic
85.71%

ESET NOD32
Win32/OpenCandy, Win32/Wajam (variant), Win32/ClientConnect (variant)
85.71%

Dr.Web
Adware.Conduit.6, Trojan.PWS.Stealer.13174
71.43%

Trend Micro House Call
TROJ_GEN.F47V1208, TROJ_GEN.F47V1105, TROJ_GEN.F47V0402
57.14%

McAfee
Artemis!8643A0C80B29, Artemis!1BE9BEF28742, Artemis!0A96F9CEECFC
42.86%

McAfee Web Gateway
Artemis!8643A0C80B29, Artemis!1BE9BEF28742
42.86%

G Data
Win32.Application.ConduitBrothersoftTB
28.57%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud)
28.57%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
14.29%

Panda Antivirus
Adware/Conduit
14.29%

Zillya! Antivirus
Adware.Agent.Win32.9634
14.29%

K7 Gateway Antivirus
Unwanted-Program
14.29%

K7 AntiVirus
Unwanted-Program
14.29%

The domain ct2260173.ourtoolbar.com has been seen to resolve to the following IP address.

December 22, 2013

File downloads found at URLs served by ct2260173.ourtoolbar.com.

21 / 68    (Adware)

21 / 68    (Adware)

1 / 68      (PUP)

1 / 68      (PUP)

6 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swagbucks_brch.exe)

6 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swagbucks_brch.exe)

7 / 68      (Adware)
http://ct2260173.ourtoolbar.com/.../  (1be9bef287427176ab116de5890e6992.exe)

7 / 68      (Adware)
http://ct2260173.ourtoolbar.com/cre  (1be9bef287427176ab116de5890e6992.exe)

8 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swagbucks_brch.exe)

9 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swag_bucks_brch.exe)

8 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swagbucks_brch.exe)

7 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swag_bucks_brch.exe)

9 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swag_bucks_brch.exe)

7 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swag_bucks_brch.exe)

URL:
http://ct2260173.ourtoolbar.com/

Google Analytics:
UA-2839033

Title:
“Swagbucks Toolbar & Browser Plugins”

Description:
“Download the Swagbucks toolbar for easy access to Search with Swagbucks, Swag codes, SBTV, and browser plugins.”

SSL certificate subject:
CN=*.ourtoolbar.com, OU=IT, O=Conduit LTD, L=Ness-Ziona, S=Israel, C=IL

SSL certificate issuer:
CN=VeriSign Class 3 Secure Server CA - G3, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Facebook:
Likes:  7,689
Shares:  354
Comments:  461

Compete.com:
US visitors:  506

Statistics are for the previous month.

Remove Malware from ct2260173.ourtoolbar.com - Powered by Reason Core Security