The domain fft.tbccint.com registered by ClientConnect LTD was initially registered in November of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in London, England within United Kingdom which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Conduit Ltd. who is located in Ness Ziona, Israel.
Registrar:
GODADDY.COM, LLC
Server location:
England, United Kingdom (GB)
Create date:
Thursday, November 21, 2013
Expires date:
Sunday, January 1, 2017
Updated date:
Monday, May 4, 2015
ASN:
AS1299 TELIANET TeliaSonera AB,SE
Google Safe Browsing:
unwanted
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.ClientConnect.H, PUP.ClientConnect.O, PUP.Conduit, PUP.Installer.Conduit, PUP.Conduit.Installer, PUP.Conduit.ClientConnect.Installer (M), PUP.Conduit.ClientCo.Installer (M), PUP.Conduit.Bundler (M)
100.00%
McAfee
Artemis!E351A5F965EF, Artemis!E34567B8E1DC, Artemis!50992AD4C7E0, Artemis!22708DEB1C44, Artemis!734137D72D01, Trojan.Artemis!82E5B87EF01E
26.00%
Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.ClientConnect
26.00%
VIPRE Antivirus
Conduit, Threat.4786236
26.00%
Comodo Security
Application.Win32.Conduit.~A
26.00%
G Data
Win32.Application.ConduitTB, Win32.Application.SearchProtect.AJ
26.00%
Fortinet FortiGate
Riskware/Conduit_SearchProtect
26.00%
AVG
Toolbar.Conduit, Potentially harmful program Toolbar.Conduit, SearchProtect.D
26.00%
Baidu Antivirus
Adware.Win32.Conduit, Trojan.Win32.ClientConnect, Adware.NSIS.Toolbar
26.00%
Trend Micro House Call
Suspicious_GEN.F47V0701, Suspici.43A0F718, Suspicious_GEN.F47V0629, Suspicious_GEN.F47V0814, Suspici.FA106BD6, Suspici.F856D58F
24.00%
Dr.Web
Adware.Conduit.45, Adware.Conduit.280
24.00%
Kaspersky
not-a-virus:Downloader.NSIS.Agent, not-a-virus:WebToolbar.NSIS.Agent, not-a-virus:WebToolbar.Win32.Agent
24.00%
ESET NOD32
Win32/ClientConnect (variant), Win32/Conduit.SearchProtect (variant), Win32/ClientConnect.A potentially unwanted (variant)
22.00%
avast!
Win32:Malware-gen, Win32:PUP-gen [PUP], Win32:Adware-gen [Adw]
20.00%
K7 AntiVirus
Unwanted-Program
20.00%
The domain fft.tbccint.com has been seen to resolve to the following 14 IP addresses.
a104-71-34-108.deploy.static.akamaitechnologies.com
August 30, 2016
a104-82-185-79.deploy.static.akamaitechnologies.com
June 28, 2016
a23-214-102-113.deploy.static.akamaitechnologies.com
April 13, 2016
a23-49-135-151.deploy.static.akamaitechnologies.com
April 12, 2016
a23-67-106-165.deploy.static.akamaitechnologies.com
April 5, 2016
a184-86-91-68.deploy.static.akamaitechnologies.com
February 28, 2016
a92-123-98-89.deploy.akamaitechnologies.com
February 27, 2016
a104-66-252-129.deploy.static.akamaitechnologies.com
February 26, 2016
a23-214-39-42.deploy.static.akamaitechnologies.com
February 21, 2016
a104-93-196-11.deploy.static.akamaitechnologies.com
February 8, 2016
a23-214-171-99.deploy.static.akamaitechnologies.com
February 6, 2016
a173-223-75-174.deploy.static.akamaitechnologies.com
February 2, 2016
a23-214-151-183.deploy.static.akamaitechnologies.com
January 4, 2016
File downloads found at URLs served by fft.tbccint.com.
Latest 30 of 105 download URLs
URL:
http://fft.tbccint.com/
SSL certificate subject:
CN=*.tbccint.com, OU=IT, O=ClientConnect LTD, L=Foster City, S=CA, C=US
SSL certificate issuer:
CN=Verizon Akamai SureServer CA G14-SHA1, OU=Cybertrust, O=Verizon Enterprise Solutions, L=Amsterdam, C=NL
Web server:
Microsoft-IIS/7.5 (ASP.NET)
Related Domains