www.bitlordapp.com

PERFECT PRIVACY, LLC  (Proxy Registrant)

Domain Information

The domain www.bitlordapp.com is registered by proxy through DOMAIN LIFESTYLE, LLC and was originally registered in June of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrar:
DOMAIN LIFESTYLE, LLC

Server location:
Northern Ireland, United Kingdom (GB)

Create date:
Thursday, June 4, 2015

Expires date:
Saturday, June 4, 2016

Updated date:
Thursday, June 4, 2015

Root domain:

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Dr.Web
Adware.Conduit.6, Trojan.Packed.24524, Adware.Conduit.27, Adware.Conduit.87, Adware.InstallCore.122, Adware.Conduit.101
71.43%

VIPRE Antivirus
Conduit, Trojan.Win32.Generic, InstallCore, Threat.4786018
67.35%

Reason Heuristics
PUP.Conduit.R, PUP.Installer.HouseofLife.M, PUP.Installer.ClientConnect.M, PUP.Installer.Coolapptech.M, PUP.ClientConnect.R, PUP.ClickRunSoftware.Y, PUP.installCore.HouseofLife.Installer (M), PUP.InstallCore.Installer (M), PUP.installCore.ClickRunSoftware.Installer (M), PUP.installCore.ClickRun (M), PUP.installCore.HouseofL (M), PUP.installCore.HouseofL.Installer (M), PUP.installCore.Clickrun.Installer (M)
65.31%

Sophos
Install Core Click run software, PUA 'Install Core Click run software', Install Core Click run software (PUA)
55.10%

McAfee
Artemis!A1B3298B13A2, Artemis!9384D2842805, Artemis!DF09182CD971, Artemis!3D6D0E8BB95B, Artemis!2BE523C7A21C, Artemis!4119657020E9, Artemis!7EB3FB7DE054, Artemis!43A983CB29DC, Artemis!AD83BA0F6EDC, Artemis!DE69C106225E, Artemis!573C4EC0FEE8, Artemis!DC2D09C18989, Artemis!4235322F75E0, Artemis!281AD51A159D
53.06%

ESET NOD32
Win32/Kryptik.BWAM (variant), Win32/Wajam (variant), Win32/InstallCore.DK (variant), Win32/InstallCore.CH (variant), Win32/InstallCore.GG
51.02%

F-Prot
W32/A-42c63c6c, W32/InstallCore.R2.gen, W32/InstallCore.R.gen, W32/InstallCore.R3.gen
48.98%

Avira AntiVirus
ADWARE/InstallCore.Gen7, APPL/InstallCore.AS.3, Adware/InstallCore.AS.3, PUA/InstallCore.Gen7
46.94%

Trend Micro House Call
TROJ_GEN.F47V0220, TROJ_GEN.F47V0402, TROJ_GEN.F47V0331, TROJ_GEN.F47V1018, TROJ_GEN.F47V1122, TROJ_GEN.F47V0204, TROJ_GEN.F47V1014
44.90%

Comodo Security
UnclassifiedMalware, ApplicUnwnt, Application.Win32.InstallCore.BWAN
44.90%

K7 AntiVirus
Unwanted-Program , Trojan
44.90%

Vba32 AntiVirus
Downware.InstallCore
40.82%

Panda Antivirus
PUP/Conduit.A, PUP/MultiToolbar.A
38.78%

Fortinet FortiGate
Riskware/Wajam, W32/Kryptik.BWAM!tr, Riskware/InstallCore, W32/InstallCore.GG, Riskware/Toolbar_Conduit, Riskware/Agent
38.78%

avast!
Win32:Malware-gen, Win32:Adware-BRM [PUP], Win32:InstallCore-HG [PUP], Win32:Adware-gen [Adw]
36.73%

The domain www.bitlordapp.com has been seen to resolve to the following 23 IP addresses.

60-80-162-69.static.reverse.lstn.net
August 2, 2016

June 7, 2016

June 6, 2016

April 2, 2016

February 22, 2016

ns513839.ip-167-114-156.net
October 26, 2015

June 19, 2015

unallocated.barefruit.co.uk
May 5, 2015

ec2-54-194-169-19.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-72-121-228.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-229-24-120.eu-west-1.compute.amazonaws.com
August 16, 2014

ec2-54-72-11-25.eu-west-1.compute.amazonaws.com
August 1, 2014

ec2-176-34-131-222.eu-west-1.compute.amazonaws.com
August 1, 2014

ec2-54-229-170-114.eu-west-1.compute.amazonaws.com
August 1, 2014

ec2-54-229-74-109.eu-west-1.compute.amazonaws.com
April 26, 2014

ec2-54-229-130-160.eu-west-1.compute.amazonaws.com
April 26, 2014

ec2-54-229-168-240.eu-west-1.compute.amazonaws.com
April 26, 2014

ec2-54-72-149-41.eu-west-1.compute.amazonaws.com
April 4, 2014

ec2-54-72-141-38.eu-west-1.compute.amazonaws.com
April 4, 2014

ec2-54-246-208-251.eu-west-1.compute.amazonaws.com
April 4, 2014

ec2-50-112-240-188.us-west-2.compute.amazonaws.com
December 22, 2013

ec2-50-112-94-132.us-west-2.compute.amazonaws.com
December 22, 2013

ec2-54-244-249-150.us-west-2.compute.amazonaws.com
December 22, 2013

File downloads found at URLs served by www.bitlordapp.com.

1 / 68      (Adware)

3 / 68      (Adware)

1 / 68      (Adware)
http://www.bitlordapp.com/d/se/.../?dl=1  (counter_strike_source__online_full__games4theworld__bitlord.exe)

1 / 68      (Adware)

1 / 68      (Adware)

7 / 68      (Adware)
http://www.bitlordapp.com/d/si/.../?dl=1  (downton_abbey.2012_christmas_special.a_journey_to_the_highlands._bitlord.exe)

16 / 68    (PUP)
http://www.bitlordapp.com/d/sb/.../?dl=1  (games-of-thrones-season-3_bitlord.exe)

The following 268 files have been seen to comunicate with www.bitlordapp.com in live environments.

 
Latest 20 of 277 files

URL:
http://www.bitlordapp.com/

Title:
“bitlordapp.com - This website is for sale! - bitlordapp Resources and Information.”

Title (12/22/2013):
“BitLord”

Title (4/4/2014):
“bitlordapp.com”

Description:
“This website is for sale! bitlordapp.com is your first and best source for all of the information you’re looking for. From general topics to more of what you would expect to find here, bitlordapp.com has it all. We hope you find what you are sea...”

Web server:
Apache/2.2.22 (Debian)

Facebook:
Shares:  13

Statistics are for the previous month.