home

bit.ly

Domain Information

Server location:
Virginia, United States (US)

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc., US

Scanner detections:
Detections  (74% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Sien (M), PUP.Adknowledge (M), PUP.Somoto (M), PUP.Bundler (M), Threat.Generic.Variant, Threat.Win.Reputation.IMP, PUP.ICLoader (M), PUP (M), TrojanDownloader.Banload
85.71%

ESET NOD32
MSIL/TrojanDownloader.Banload.FF trojan, Win32/Jeefo.A virus
7.14%

K7 AntiVirus
Trojan , Riskware
4.76%

Qihoo 360 Security
HEUR/QVM03.0.Malware.Gen
2.38%

AVG
Win32/Hidrag.A
2.38%

Bkav FE
HW32.Packed
2.38%

MicroWorld eScan
Gen:Variant.Kazy.557603
2.38%

Quick Heal
(Suspicious) - DNAScan
2.38%

McAfee
Artemis!61882EB05D15
2.38%

Trend Micro House Call
TROJ_GEN.R02SH09BK15
2.38%

Kaspersky
not-a-virus:AdWare.Win32.Amonetize
2.38%

Bitdefender
Gen:Variant.Kazy.557603
2.38%

Lavasoft Ad-Aware
Gen:Variant.Kazy.557603
2.38%

F-Secure
Gen:Variant.Kazy.557603
2.38%

Emsisoft Anti-Malware
Gen:Variant.Kazy.557603
2.38%

The domain bit.ly has been seen to resolve to the following 10 IP addresses.

67.199.248.11
June 18, 2016

67.199.248.10
June 18, 2016

174.129.169.56
ec2-174-129-169-56.compute-1.amazonaws.com
May 17, 2016

54.197.101.230
ec2-54-197-101-230.compute-1.amazonaws.com
May 17, 2016

54.166.177.12
ec2-54-166-177-12.compute-1.amazonaws.com
May 17, 2016

54.80.61.206
ec2-54-80-61-206.compute-1.amazonaws.com
May 17, 2016

50.19.130.176
ec2-50-19-130-176.compute-1.amazonaws.com
May 17, 2016

50.19.18.253
ec2-50-19-18-253.compute-1.amazonaws.com
May 17, 2016

69.58.188.39
December 18, 2013

69.58.188.40
December 18, 2013

File downloads found at URLs served by bit.ly.

1 / 68      (Malware)
http://bit.ly/1UlMse8  (flashwindowsupdate_21_0042002.exe)

1 / 68      (inconclusive)
http://bit.ly/1UiIa4f  (adobe_flash_player_ 2016 .exe)

0 / 68
http://bit.ly/28PfCDT  (adobe flash player - 2016 -.exe)

1 / 68      (PUP)
http://bit.ly/1VAwXQH  (1stbrowser.exe)

1 / 68      (Malware)
http://bit.ly/getAndy  (andy_46.2_207_x86bit.exe)

1 / 68      (Adware)
http://bit.ly/1fnAyNm  (setup.exe)

1 / 68
http://bit.ly/294aR9j  (adobe _ flash _ player _ 2016.exe)

1 / 68      (Malware)
http://bit.ly/1WeLPWW  (hack tool.exe)

1 / 68      (PUP)
http://bit.ly/1qw4TSV  (1stbrowser.exe)

0 / 68
http://bit.ly/1V40p2e  (teamspeak_x86_3.19.exe)

1 / 68      (Adware)
http://bit.ly/1kjiqbX  (downloadcharles_downloader-a54pqppa.exe)

15 / 68    (PUP)
http://bit.ly/1wcDznL  (installer16__7934_il22258.exe)

1 / 68      (PUP)
http://bit.ly/2aTSkdX  (gta v key generator.exe)

1 / 68      (Malware)
http://bit.ly/ZsT6Eu  (babylon10_setup.exe)

1 / 68      (Adware)
http://bit.ly/jolylifesafe  (gamestation_setup.exe)

1 / 68      (Adware)
http://bit.ly/safeandrock  (androck_setup.exe)

0 / 68
http://bit.ly/1Y0xApV  (pathofdiablolauncher.msi)

1 / 68      (PUP)
http://bit.ly/1q9cBC4  (1stbrowser.exe)

0 / 68
http://bit.ly/nmxfbdl  (playparkdownloader_v0.3.6.1.msi)

2 / 68      (inconclusive)
http://bit.ly/1P99hvB  (adobeflashplayer2016.exe)

1 / 68      (Adware)
http://bit.ly/PCwhatsapp  (whatsapp.exe)

0 / 68
http://bit.ly/28JttH6  (adobe flash player _ 2016.exe)

1 / 68      (PUP)
http://bit.ly/1RZL2oe  (1stbrowser.exe)

0 / 68
http://bit.ly/2awWPhU  (app_adobe_flash_player_27_07_2016_.exe)

2 / 68
http://bit.ly/1QjCoyY  (Trainer Maker.exe)

0 / 68
http://bit.ly/1ZeJLej  (prime factorization 1.3.3.exe)

1 / 68      (Adware)
http://bit.ly/1ciKIhJ  (bluestacks-splitinstaller_native_downloader-bq0jte4l.exe)

1 / 68      (inconclusive)
http://bit.ly/1NgieTp  (boleto_pdf - 733449208402899.exe)

1 / 68      (PUP)
http://bit.ly/21jeuI0  (1stbrowser.exe)

June 5, 2016
www.bit.ly

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.