home

radiogtoolbar.ourtoolbar.com

ClientConnect LTD

Domain Information

The domain radiogtoolbar.ourtoolbar.com registered by ClientConnect LTD was initially registered in June of 2005 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted server (195.78.120.93) is located in Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
GODADDY.COM, LLC

Server location:
Netherlands (NL)

Create date:
Wednesday, June 22, 2005

Expires date:
Sunday, January 1, 2017

Updated date:
Tuesday, January 6, 2015

ASN:
AS56473 CONDUIT-NL Conduit Connect B.V.,NL

Root domain:
ourtoolbar.com

Whois:
2 ourtoolbar.com records

Google Safe Browsing:
unwanted

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.138613120401.Conduit.L, PUP.Conduit.G, PUP.ClientConnect.a, PUP.138713122301.Conduit.G, PUP.Installer.ClientConnect.G, PUP.Conduit.Bundler (M), PUP.Conduit.Installer (M), PUP.Conduit.ClientCo.Installer (M), PUP.Conduit (M)
95.65%

VIPRE Antivirus
Conduit, Trojan.Win32.Generic
52.17%

Malwarebytes
PUP.Optional.Conduit, PUP.Optional.Conduit.A, PUP.Optional.OpenCandy, PUP.Optional.ClientConnect
47.83%

ESET NOD32
Win32/Wajam (variant), Win32/Toolbar.Conduit.AB (variant), Win32/OpenCandy, Win32/ClientConnect (variant), Win32/Toolbar.Conduit.AE (variant)
47.83%

Dr.Web
Adware.Conduit.6, Adware.Conduit.36, Adware.Conduit.43, Trojan.PWS.Stealer.13174, Win32.Sector.30
43.48%

McAfee
Artemis!ADD5C23CB479, Artemis!EF72B22F2079, Artemis!FBEFBAF24D27, Artemis!C55054EB90CA, Artemis!E04DCCFD16C2, Artemis!D4F890068A40, Artemis!40F32DC40785
34.78%

Trend Micro House Call
TROJ_GEN.F47V0331, TROJ_GEN.F47V1228, TROJ_GEN.F47V0913, TROJ_GEN.F47V0504, TROJ_GEN.F47V1128, TROJ_GEN.F47V0827
30.43%

Panda Antivirus
PUP/Conduit.A
17.39%

Kaspersky
not-a-virus:WebToolbar.Win32.Agent, Virus.Win32.Sality
13.04%

AVG
Generic, MalSign.Generic, Win32/Sality
13.04%

Agnitum Outpost
PUA.Toolbar.Conduit
8.70%

Fortinet FortiGate
Riskware/Toolbar_Conduit
8.70%

K7 AntiVirus
Unwanted-Program
8.70%

avast!
Win32:Adware-BRM [PUP], Win32:SaliCode
8.70%

G Data
Win32.Application.Conduit, Win32.Adware.Conduit
8.70%

The domain radiogtoolbar.ourtoolbar.com has been seen to resolve to the following 2 IP addresses.

195.78.120.93
February 8, 2016

199.101.114.28
February 20, 2014

File downloads found at URLs served by radiogtoolbar.ourtoolbar.com.

1 / 68      (Adware)
http://radiogtoolbar.ourtoolbar.com/crx  (RadioG.exe)

1 / 68      (PUP)
http://radiogtoolbar.ourtoolbar.com/exe  (radiog_brch.exe)

7 / 68      (PUP)
http://radiogtoolbar.ourtoolbar.com/.../  (radiog.exe)

7 / 68      (PUP)
http://radiogtoolbar.ourtoolbar.com/.../  (RadioG.exe)

URL:
http://radiogtoolbar.ourtoolbar.com/

Google Analytics:
UA-2137160

Title:
“סרגל רדיו G - סרגל כלים עם כל תחנות הרדיו של ישראל”

Description:
“הורידו עכשיו בחינם את סרגל הכלים של G ותוכלו לשמוע כל תחנת רדיו שתרצו ולחפש בקלות באינטרנט, לתרגם עם בבילון ולהיות מעודכנים בכל מה שחם ברשת!”

Web server:
Apache/6.6.6

Facebook:
Likes:  358
Shares:  277
Comments:  28

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.