bitly.com

bit.ly

Domain Information

The domain bitly.com registered by bit.ly was initially registered in November of 2003 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the Bitly Inc network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Wednesday, November 12, 2003

Expires date:
Saturday, November 12, 2016

Updated date:
Monday, March 05, 2012

ASN:
AS36351 SOFTLAYER - SoftLayer Technologies Inc., US

Scanner detections:
Detections  (55% detected)

Scan engine
Details
Detections

ESET NOD32
Win32/InstallIQ (variant), Win32/Amonetize.BN (variant), Win32/Toolbar.Babylon (variant), VBS/TrojanDownloader.Agent.NTW
58.62%

Reason Heuristics
PUP.Installer.SecureInstall.F, PUP.Installer.SecureInstall.K, PUP.Installer.SecureInstall.L, PUP.Installer.InstallX.T, PUP.Installer.SecureInstall.I, PUP.Adknowledge.Fileangels.Bundler (M), PUP.InstallCore.Sodamireh.Installer.Meta (M), PUP.InstallX.Installer (M), PUP.Adknowledge.SafeDown.Bundler (M), PUP.Adknowledge (M)
55.17%

VIPRE Antivirus
InstallIQ Installer, Babylon, Trojan.Win32.Generic, Backdoor.MSIL.Bladabindi.a, Threat.4657539
48.28%

McAfee
Artemis!EC55C10C057A, Artemis!FCBC8DD32212, Artemis!9B0EF7D18E01, Artemis!0A5C34E01EB3, Artemis!97A8B447B748, PUP-Amonetize, Artemis!226159AD828B
48.28%

McAfee Web Gateway
Artemis!EC55C10C057A, Heuristic.BehavesLike.Win32.Suspicious-BAY.K, Artemis!9B0EF7D18E01, Artemis!0A5C34E01EB3, Artemis!97A8B447B748
48.28%

Sophos
DomainIQ pay-per install, InstallQ, Generic PUA HJ, Mal/Generic-S, Troj/Bbindi-W, Troj/Delf-FYK
44.83%

Malwarebytes
PUP.Optional.SafeInstall.A, PUP.Optional.InstallIQ, PUP.Optional.Amonetize, Trojan.Agent, Backdoor.Bladabindi.Generic, Trojan.Banker.RND
41.38%

Kaspersky
not-a-virus:Downloader.NSIS.Agent, not-a-virus:AdWare.Win32.Amonetize, Trojan-Downloader.VBS.Agent, HEUR:Trojan.Win32.Generic
41.38%

Dr.Web
Adware.Searcher.2593, Adware.Downware.2512, Adware.W3i.32, Adware.Downware.2968, Adware.Downware.8379, Adware.Downware.1733, Adware.Babylon.36
37.93%

K7 Gateway Antivirus
Unwanted-Program , Trojan , Riskware, Trojan-Downloader
37.93%

K7 AntiVirus
Unwanted-Program , Riskware, Trojan-Downloader , Trojan
34.48%

AVG
MultiBundle, Skodna.Generic_r, Downloader.Banload2, PSW.ILUSpy
34.48%

Rising Antivirus
PE:PUF.InstallIQ!1.9E4F, PE:Hack.Win32.Agent.dc!1393754 [F], PE:Backdoor.MSIL.Bladabindi!1.9E49 [F]
31.03%

Fortinet FortiGate
Riskware/InstallIQ, Riskware/Toolbar_Babylon, VBS/Agent.AXQ!tr.dldr, W32/Banload.UKZ!tr.dldr, MSIL/Agent.LI!tr, MSIL/SpyBanker.DN!tr
31.03%

NANO AntiVirus
Riskware.Win32.Searcher.cjaztx, Riskware.Win32.Searcher.csnymk, Trojan.Win32.Downware.ctimdd, Trojan.Win32.Agent.dyxhtu
27.59%

The domain bitly.com has been seen to resolve to the following 4 IP addresses.

June 27, 2016

June 27, 2016

April 11, 2014

April 11, 2014

File downloads found at URLs served by bitly.com.

0 / 68
https://bitly.com/2aIITOi  (nfs-9998377363553000002016br.exe)

30 / 68    (Malware)
https://bitly.com/29wrK8G  (nf-was00003763677353520000000016br.exe)

4 / 68      (Malware)
http://bitly.com/2337XE8  (videos polemico zap zap.exe)

2 / 68      (Malware)
https://bitly.com/29hDz6e  (ne-fa55344366373635cv2016br.exe)

16 / 68    (Adware)
http://bitly.com/YrgHak  (vioplayer2_d3795769.exe)

1 / 68      (Adware)
https://bitly.com/jolylifesafe  (gamestation_setup.exe)

1 / 68      (inconclusive)
https://bitly.com/28SEXuD  (flash_player_2016_windows.exe)

0 / 68
http://bitly.com/PL88kU  (GraboidVideoInstaller-5.2.1.0.exe)

0 / 68
http://bitly.com/office2016x32  (setup.x86.pt-br_professionalretail_nkgg6-wbpcc-hxwmy-6dqgj-cpqvg_act_1_.exe)

0 / 68
https://bitly.com/291zLX3  (m1zgrzt1.exe)

2 / 68      (Adware)
https://bitly.com/b9lreq  (babylon10_setup_ns.exe)

0 / 68
http://bitly.com/office2016x64  (setup.x64.pt-br_professionalretail_nkgg6-wbpcc-hxwmy-6dqgj-cpqvg_act_1_.exe)

7 / 68      (Malware)
https://bitly.com/1S9955w  (planilha_pt.exe)

0 / 68

1 / 68      (inconclusive)
https://bitly.com/1NELkNv  (install_flash_player.exe)

0 / 68
http://bitly.com/1qpCE8q  (pixelthailand_setup_full.msi)

13 / 68    (Adware)
https://bitly.com/1dl0h5W  (safeinstall.exe)

0 / 68
https://bitly.com/office2016x32  (setup.x86.pt-br_professionalretail_nkgg6-wbpcc-hxwmy-6dqgj-cpqvg_act_1_.exe)

10 / 68    (Malware)
https://bitly.com/1NOSyjt  (mensagem 20129923834934935.exe)

0 / 68
https://bitly.com/office2016x64  (setup.x64.pt-br_professionalretail_nkgg6-wbpcc-hxwmy-6dqgj-cpqvg_act_1_.exe)

38 / 68    (Malware)
https://bitly.com/2337XE8  (videos polemico zap zap.exe)

0 / 68
http://bitly.com/bstkdo4  (bluestacks_hd_appplayerpro_setup_0.7.0.722_rel.msi)

0 / 68
https://bitly.com/1mZGvHa  (video polemico 2016 facebook.exe)

0 / 68

28 / 68    (Malware)
https://bitly.com/1SobzLa  (mensagem 234092308420842.exe)

8 / 68      (Malware)
https://bitly.com/1l6QSsk  (mensagem 34082083403428308.exe)

27 / 68    (Malware)
https://bitly.com/1IbgoH0  (ver - documentos.exe)

0 / 68
http://bitly.com/HostsBlockSetup  (hosts block setup.msi)

0 / 68
https://bitly.com/ODChfs  (GraboidVideoInstaller-3.58.exe)

 
Latest 30 of 51 download URLs

URL:
http://bitly.com/

Google Analytics:
UA-25224921

Title:
“Bitly | URL Shortener and Link Management Platform”

Description:
“Get the most out of your social and online marketing efforts. Own, understand and activate your best audience through the power of the link with Bitly Brand Tools.”

SSL certificate subject:
CN=*.bitly.com, O="bitly, Inc.", L=New York, S=New York, C=US

SSL certificate issuer:
CN=DigiCert SHA2 High Assurance Server CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Web server:
nginx

Facebook:
Likes:  288,931
Shares:  327,887
Comments:  310,242

Statistics above are for the previous month of November 2017.