home

imvuinc.ourtoolbar.com

ClientConnect LTD

Domain Information

The domain imvuinc.ourtoolbar.com registered by ClientConnect LTD was initially registered in June of 2005 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted server (195.78.120.93) is located in Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Netherlands (NL)

Create date:
Wednesday, June 22, 2005

Expires date:
Sunday, January 1, 2017

Updated date:
Tuesday, January 6, 2015

ASN:
AS56473 CONDUIT-NL Conduit Connect B.V.,NL

Root domain:
ourtoolbar.com

Whois:
2 ourtoolbar.com records

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.ClientConnect.E, PUP.Conduit.J, PUP.Conduit.E, PUP.Installer.ClientConnect.J, PUP.Installer.Conduit, Threat.Conduit.Installer, PUP.Conduit.Bundler (M), PUP.InstallCore.CMAAGProactiveAndInvestments.Installer (M), PUP.Conduit.ClientConnect.Installer (M), PUP.Conduit.ClientCo.Installer (M)
100.00%

VIPRE Antivirus
Trojan.Win32.Generic, Conduit
66.67%

Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.ClientConnect
63.64%

ESET NOD32
Win32/Toolbar.Conduit.AB (variant), Win32/OpenCandy, Win32/ClientConnect (variant), Win32/Toolbar.Conduit.AE, Win32/ClientConnect.A potentially unwanted (variant)
63.64%

Trend Micro House Call
TROJ_GE.D505A53B, TROJ_GEN.F47V0912, TROJ_GEN.F47V0525, Suspicious_GEN.F47V0716, TROJ_GEN.F47V0518, TROJ_GEN.F47V0504, TROJ_GE.4DCE9EB6, Suspicious_GEN.F47V1228
57.58%

Dr.Web
Adware.Conduit.6, Adware.Conduit.96, Trojan.PWS.Stealer.13174, Adware.Conduit.3, Adware.Conduit.87, Adware.Conduit.179
54.55%

McAfee
Artemis!5E38F0E26ED5, Artemis!184F1A584B1C, Artemis!51802AC33271, Artemis!216162DF29BB, Artemis!90E0D9E23E18, Artemis!0E8A546F695D, Artemis!DC5B4DCA609C, Artemis!69FA2877CA8E, Artemis!10DE8B4CE515, Artemis!67F51C46CB2E, Artemis!672D9AC883D8, Artemis!4E9DB671CF50, Artemis!53A93AACE5C1, Artemis!824461472DD8
51.52%

AVG
MalSign.Generic
48.48%

Fortinet FortiGate
Riskware/Toolbar_Conduit, Riskware/Wajam, Riskware/Agent, Riskware/ClientConnect
42.42%

Kaspersky
not-a-virus:WebToolbar.Win32.Agent, not-a-virus:Downloader.NSIS.Agent
39.39%

Baidu Antivirus
Adware.Win32.Conduit, Trojan.Win32.ClientConnect, Adware.Win32.Toolbar, PUA.Win32.ClientConnect
39.39%

K7 AntiVirus
Trojan , Unwanted-Program , Adware
36.36%

avast!
Win32:Adware-BRM [PUP]
36.36%

Agnitum Outpost
PUA.Toolbar.Conduit
36.36%

NANO AntiVirus
Riskware.Win32.Conduit.dbqqxi
33.33%

The domain imvuinc.ourtoolbar.com has been seen to resolve to the following 2 IP addresses.

195.78.120.93
February 1, 2016

199.101.114.28
May 31, 2014

File downloads found at URLs served by imvuinc.ourtoolbar.com.

1 / 68      (PUP)
http://imvuinc.ourtoolbar.com/exe  (imvu.exe)

18 / 68    (Adware)
http://imvuinc.ourtoolbar.com/.../  (IMVU.exe)

URL:
http://imvuinc.ourtoolbar.com/

Web server:
nginx/1.9.7 (PHP/5.6.16-0imvu1~precise)

Facebook:
Likes:  22,881
Shares:  1,874
Comments:  473

Statistics are for the previous month.

media-toolbar.com

myblogtoolbar.com

myradiotoolbar.com

toolbar.fm

communitytoolbars.com

greattoolbars.com

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.