The domain www.bitlordapp.com is registered by proxy through DOMAIN LIFESTYLE, LLC and was originally registered in June of 2015. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Belfast, Northern Ireland within United Kingdom which resides on the RIPE Network Coordination Centre network.
Registrant:
PERFECT PRIVACY, LLC
Registrar:
DOMAIN LIFESTYLE, LLC
Server location:
Northern Ireland, United Kingdom (GB)
Create date:
Thursday, June 4, 2015
Expires date:
Saturday, June 4, 2016
Updated date:
Thursday, June 4, 2015
Scanner detections:
Detections (98% detected)
Scan engine
Details
Detections
Dr.Web
Adware.Conduit.6, Trojan.Packed.24524, Adware.Conduit.27, Adware.Conduit.87, Adware.InstallCore.122, Adware.Conduit.101
71.43%
VIPRE Antivirus
Conduit, Trojan.Win32.Generic, InstallCore, Threat.4786018
67.35%
Reason Heuristics
PUP.Conduit.R, PUP.Installer.HouseofLife.M, PUP.Installer.ClientConnect.M, PUP.Installer.Coolapptech.M, PUP.ClientConnect.R, PUP.ClickRunSoftware.Y, PUP.installCore.HouseofLife.Installer (M), PUP.InstallCore.Installer (M), PUP.installCore.ClickRunSoftware.Installer (M), PUP.installCore.ClickRun (M), PUP.installCore.HouseofL (M), PUP.installCore.HouseofL.Installer (M), PUP.installCore.Clickrun.Installer (M)
65.31%
Sophos
Install Core Click run software, PUA 'Install Core Click run software', Install Core Click run software (PUA)
55.10%
McAfee
Artemis!A1B3298B13A2, Artemis!9384D2842805, Artemis!DF09182CD971, Artemis!3D6D0E8BB95B, Artemis!2BE523C7A21C, Artemis!4119657020E9, Artemis!7EB3FB7DE054, Artemis!43A983CB29DC, Artemis!AD83BA0F6EDC, Artemis!DE69C106225E, Artemis!573C4EC0FEE8, Artemis!DC2D09C18989, Artemis!4235322F75E0, Artemis!281AD51A159D
53.06%
ESET NOD32
Win32/Kryptik.BWAM (variant), Win32/Wajam (variant), Win32/InstallCore.DK (variant), Win32/InstallCore.CH (variant), Win32/InstallCore.GG
51.02%
F-Prot
W32/A-42c63c6c, W32/InstallCore.R2.gen, W32/InstallCore.R.gen, W32/InstallCore.R3.gen
48.98%
Avira AntiVirus
ADWARE/InstallCore.Gen7, APPL/InstallCore.AS.3, Adware/InstallCore.AS.3, PUA/InstallCore.Gen7
46.94%
Trend Micro House Call
TROJ_GEN.F47V0220, TROJ_GEN.F47V0402, TROJ_GEN.F47V0331, TROJ_GEN.F47V1018, TROJ_GEN.F47V1122, TROJ_GEN.F47V0204, TROJ_GEN.F47V1014
44.90%
Comodo Security
UnclassifiedMalware, ApplicUnwnt, Application.Win32.InstallCore.BWAN
44.90%
K7 AntiVirus
Unwanted-Program , Trojan
44.90%
Vba32 AntiVirus
Downware.InstallCore
40.82%
Panda Antivirus
PUP/Conduit.A, PUP/MultiToolbar.A
38.78%
Fortinet FortiGate
Riskware/Wajam, W32/Kryptik.BWAM!tr, Riskware/InstallCore, W32/InstallCore.GG, Riskware/Toolbar_Conduit, Riskware/Agent
38.78%
avast!
Win32:Malware-gen, Win32:Adware-BRM [PUP], Win32:InstallCore-HG [PUP], Win32:Adware-gen [Adw]
36.73%
The domain www.bitlordapp.com has been seen to resolve to the following 23 IP addresses.
60-80-162-69.static.reverse.lstn.net
August 2, 2016
ns513839.ip-167-114-156.net
October 26, 2015
unallocated.barefruit.co.uk
May 5, 2015
ec2-54-194-169-19.eu-west-1.compute.amazonaws.com
August 16, 2014
ec2-54-72-121-228.eu-west-1.compute.amazonaws.com
August 16, 2014
ec2-54-229-24-120.eu-west-1.compute.amazonaws.com
August 16, 2014
ec2-54-72-11-25.eu-west-1.compute.amazonaws.com
August 1, 2014
ec2-176-34-131-222.eu-west-1.compute.amazonaws.com
August 1, 2014
ec2-54-229-170-114.eu-west-1.compute.amazonaws.com
August 1, 2014
ec2-54-229-74-109.eu-west-1.compute.amazonaws.com
April 26, 2014
ec2-54-229-130-160.eu-west-1.compute.amazonaws.com
April 26, 2014
ec2-54-229-168-240.eu-west-1.compute.amazonaws.com
April 26, 2014
ec2-54-72-149-41.eu-west-1.compute.amazonaws.com
April 4, 2014
ec2-54-72-141-38.eu-west-1.compute.amazonaws.com
April 4, 2014
ec2-54-246-208-251.eu-west-1.compute.amazonaws.com
April 4, 2014
ec2-50-112-240-188.us-west-2.compute.amazonaws.com
December 22, 2013
ec2-50-112-94-132.us-west-2.compute.amazonaws.com
December 22, 2013
ec2-54-244-249-150.us-west-2.compute.amazonaws.com
December 22, 2013
File downloads found at URLs served by www.bitlordapp.com.
The following 268 files have been seen to comunicate with www.bitlordapp.com in live environments.
URL:
http://www.bitlordapp.com/
Title:
“bitlordapp.com - This website is for sale! - bitlordapp Resources and Information.”
Title (12/22/2013):
“BitLord”
Title (4/4/2014):
“bitlordapp.com”
Description:
“This website is for sale! bitlordapp.com is your first and best source for all of the information you’re looking for. From general topics to more of what you would expect to find here, bitlordapp.com has it all. We hope you find what you are sea...”
Web server:
Apache/2.2.22 (Debian)
Statistics are for the previous month.