home

ct2260173.ourtoolbar.com

ClientConnect LTD

Domain Information

The domain ct2260173.ourtoolbar.com registered by ClientConnect LTD was initially registered in June of 2005 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in San Mateo, California within the United States which resides on the Conduit USA, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
California, United States (US)

Create date:
Wednesday, June 22, 2005

Expires date:
Monday, June 22, 2015

Updated date:
Thursday, December 12, 2013

ASN:
AS56473 CONDUIT-NL Conduit Connect B.V.

Root domain:
ourtoolbar.com

Whois:
2 ourtoolbar.com records

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Conduit.P, PUP.Conduit.O, PUP.ClientConnect.a, PUP.Conduit.J, PUP.Installer.ClientConnect.J
100.00%

Malwarebytes
PUP.Optional.OpenCandy, PUP.Optional.Conduit.A, PUP.Optional.ClientConnect
85.71%

VIPRE Antivirus
Conduit, Trojan.Win32.Generic
85.71%

ESET NOD32
Win32/OpenCandy, Win32/Wajam (variant), Win32/ClientConnect (variant)
85.71%

Dr.Web
Adware.Conduit.6, Trojan.PWS.Stealer.13174
71.43%

Trend Micro House Call
TROJ_GEN.F47V1208, TROJ_GEN.F47V1105, TROJ_GEN.F47V0402
57.14%

McAfee
Artemis!8643A0C80B29, Artemis!1BE9BEF28742, Artemis!0A96F9CEECFC
42.86%

G Data
Win32.Application.ConduitBrothersoftTB
28.57%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
14.29%

Panda Antivirus
Adware/Conduit
14.29%

Zillya! Antivirus
Adware.Agent.Win32.9634
14.29%

K7 AntiVirus
Unwanted-Program
14.29%

NANO AntiVirus
Riskware.Win32.Conduit.dbqqxi
14.29%

Total Defense
Win32/Tnega.ALHeNWC
14.29%

avast!
Win32:Adware-BRM [PUP]
14.29%

The domain ct2260173.ourtoolbar.com has been seen to resolve to the following IP address.

199.101.114.28
December 22, 2013

File downloads found at URLs served by ct2260173.ourtoolbar.com.

18 / 68    (Adware)
http://ct2260173.ourtoolbar.com/.../  (SwagBucks.exe)

18 / 68    (Adware)
http://ct2260173.ourtoolbar.com/cre  (SwagBucks.exe)

1 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swagbucks.exe)

1 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swagbucks.exe)

5 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swagbucks_brch.exe)

5 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swagbucks_brch.exe)

6 / 68      (Adware)
http://ct2260173.ourtoolbar.com/.../  (1be9bef287427176ab116de5890e6992.exe)

6 / 68      (Adware)
http://ct2260173.ourtoolbar.com/cre  (1be9bef287427176ab116de5890e6992.exe)

8 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swagbucks_brch.exe)

7 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swag_bucks_brch.exe)

8 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swagbucks_brch.exe)

7 / 68      (PUP)
http://ct2260173.ourtoolbar.com/.../  (swag_bucks_brch.exe)

7 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swag_bucks_brch.exe)

7 / 68      (PUP)
http://ct2260173.ourtoolbar.com/cre  (swag_bucks_brch.exe)

URL:
http://ct2260173.ourtoolbar.com/

Google Analytics:
UA-2839033

Title:
“Swagbucks Toolbar & Browser Plugins”

Description:
“Download the Swagbucks toolbar for easy access to Search with Swagbucks, Swag codes, SBTV, and browser plugins.”

SSL certificate subject:
CN=*.ourtoolbar.com, OU=IT, O=Conduit LTD, L=Ness-Ziona, S=Israel, C=IL

SSL certificate issuer:
CN=VeriSign Class 3 Secure Server CA - G3, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Facebook:
Likes:  7,689
Shares:  354
Comments:  461

Compete.com:
US visitors:  506

Statistics are for the previous month.

swagbucks.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.