letitbit.net

Whois Privacy (enumDNS dba)

Domain Information

The domain letitbit.net registered by Whois Privacy (enumDNS dba) was initially registered in June of 2007 through EURODNS S.A. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Utrecht, Utrecht within Netherlands which resides on the RIPE Network Coordination Centre network.
Registrar:
EURODNS S.A

Server location:
Utrecht, Netherlands (NL)

Create date:
Wednesday, June 06, 2007

Expires date:
Monday, June 06, 2016

Updated date:
Monday, November 19, 2012

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Dr.Web
Tool.Skymonk.14, Adware.Downware.144, Tool.Skymonk.3, Tool.Skymonk.6, Tool.Skymonk.12, Tool.Skymonk.9, Tool.Skymonk.39
89.47%

Reason Heuristics
PUP.SkymonkSolutionsLimited.i, PUP.SkymonkSolutionsLimited.d, PUP.SkymonkSolutionsLimited.V, PUP.SkymonkSolutionsLimited.k, PUP.SkymonkSolutions.Installer (M), PUP (M)
84.21%

VIPRE Antivirus
Win32.Malware!Drop, Trojan.Win32.Generic, Adware.Win32.Skyli, Babylon
47.37%

Quick Heal
(Suspicious) - DNAScan
47.37%

ESET NOD32
Win32/Skymonk, Win32/Toolbar.Babylon (variant), Win32/Skymonk.A potentially unwanted
42.11%

Kaspersky
not-a-virus:AdWare.Win32.Skyli
42.11%

Trend Micro House Call
TROJ_GEN.F47V0507, TROJ_SPNR.22JK12, TROJ_SPNR.03IJ12, TROJ_SPNR.03JC12, TROJ_AGENT.JDSM, Suspici.436E6684
31.58%

McAfee
Artemis!CFE6B19F9703, Artemis!FDC9B6F97907, Artemis!50946C6B6867, GenericTRA-BM!CE8363D01F2C, Artemis!BB8E69680FC8, Artemis!FFA5F2B4730B
31.58%

Antiy Labs AVL
GrayWare[AdWare:not-a-virus]/Win32.Skyli, Trojan[Packed]/Win32.Katusha, GrayWare[AdWare]/Win32.Skyli.a
31.58%

McAfee Web Gateway
Artemis!CFE6B19F9703, Artemis!FDC9B6F97907, Artemis!50946C6B6867, Heuristic.BehavesLike.Win32.Suspicious-PKR.G, Artemis!PUP
26.32%

Bkav FE
W32.Clod287.Trojan, W32.Clodf32.Trojan, W32.Clod243.Trojan, W32.Clode63.Trojan, W32.HfsAdware
26.32%

Kingsoft AntiVirus
Win32.Troj.Generic.a.(kcloud), Win32.Troj.Generic.z.(kcloud), VIRUS_UNKNOWN, Win32.Troj.Agent.xb.(kcloud)
21.05%

XVirus List
Win32.Detected, Win.Detected
21.05%

Norman
Suspicious_Gen4.ATMAZ, Skymonk.B, Skymonk.A, Suspicious_Gen4.CKPMK
21.05%

NANO AntiVirus
Riskware.Win32.Skyli.cyqwmj, Riskware.Win32.Skyli.cufdrj, Riskware.Win32.Skyli.cyukel, Riskware.Win32.Skyli.dagokb
21.05%

The domain letitbit.net has been seen to resolve to the following 12 IP addresses.

February 7, 2014

v-5-20-30-d4764-03.webazilla.com
January 24, 2014

v-5-20-30-d4763-01.webazilla.com
January 24, 2014

v-5-20-30-d4765-129.webazilla.com
January 24, 2014

January 22, 2014

January 22, 2014

ReasonOne
January 12, 2014

v-5-312-d3742-59.webazilla.com
December 18, 2013

v-5-312-d3735-36.webazilla.com
December 18, 2013

v-5-312-d3734-35.webazilla.com
December 18, 2013

v-5-312-d3733-34.webazilla.com
December 18, 2013

v-5-312-d3732-61.webazilla.com
December 18, 2013

File downloads found at URLs served by letitbit.net.

5 / 68      (Adware)

3 / 68      (Adware)
http://letitbit.net/skymonk_15432348_74_sha2.exe  (skymonk_10536933_96_leta.exe)

1 / 68      (Adware)
http://letitbit.net/skymonk_br_9400793_89.exe  (skymonk_br_8791473_12.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_11988723_84_letF.exe  (get-premium-from-mipony_14715663_72_let1.exe)

16 / 68    (PUP)
http://letitbit.net/skymonk_11237433_13.exe  (skymonk_12588003_51.exe)

11 / 68    (Adware)

7 / 68      (Adware)
http://letitbit.net/skymonk21865211.exe  (safe.2012.multi.1080p.bluray.x264-ulshd-libertyland.tv.mkv_18765923_57_shab.exe)

1 / 68      (Adware)
http://letitbit.net/skymonk_10226418_85_let7.exe  (118edada0ae50ffe68d24bf98c25cc7c)

9 / 68      (Adware)
http://letitbit.net/downloader_14000393_69_letF.exe  (get-premium-from-mipony_14715663_72_let1.exe)

8 / 68      (Adware)
http://letitbit.net/downloader_23385983_18_letB.exe  (new-york-city-panorama.rar_13741813_01_letf.exe)

9 / 68      (Adware)

9 / 68      (Adware)
http://.../downloader_http://.../Sublimedvdripesp.avi_117641733_00_vid1.exe  (get-premium-from-mipony_14715663_72_let1.exe)

3 / 68      (Adware)

11 / 68    (Adware)

7 / 68      (Adware)
http://letitbit.net/skymonk27842352.exe  (dof.rar_3878_16_lete.exe)

6 / 68      (Adware)
http://letitbit.net/downloader_22152913_41_letF.exe  (glary-utilities-pro-v2.51.0.1666.rar_13680508_23_letc.exe)

12 / 68    (Adware)
http://letitbit.net/downloader_12090568_83_let1.exe  (bigboobnuts2012-digitaljournals.ru.pdf_11454183_96_letc.exe)

9 / 68      (Adware)
http://letitbit.net/skymonk_11965233_36.exe  (get-premium-from-mipony_14715663_72_let1.exe)

15 / 68    (Adware)
http://letitbit.net/skymonk_13104418_78.exe  (skymonk_29252608_52.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_2033708_26_letF.exe  (get-premium-from-mipony_14715663_72_let1.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_14546943_55_letF.exe  (get-premium-from-mipony_14715663_72_let1.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_14688073_76_p9ef.exe  (get-premium-from-mipony_14715663_72_let1.exe)

7 / 68      (Adware)
http://letitbit.net/downloader_12528123_35_letF.exe  (windows-mdia-player-12-for-7.rar_5780858_22_letf.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_15484763_58_let1.exe  (get-premium-from-mipony_14715663_72_let1.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_14492085_36_letF.exe  (get-premium-from-mipony_14715663_72_let1.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_12826913_11_letF.exe  (get-premium-from-mipony_14715663_72_let1.exe)

9 / 68      (Adware)
http://letitbit.net/downloader_11336818_01_letF.exe  (pcblurchilalo1_15008338_33_letf.exe)

8 / 68      (Adware)
http://letitbit.net/downloader_26427913_02_letF.exe  (new-york-city-panorama.rar_13741813_01_letf.exe)

7 / 68      (Adware)
http://letitbit.net/downloader_13294148_21_letD.exe  (safe.2012.multi.1080p.bluray.x264-ulshd-libertyland.tv.mkv_18765923_57_shab.exe)

 
Latest 30 of 280 download URLs

The following file have been seen to comunicate with letitbit.net in live environments.

September 13, 2016

URL:
http://letitbit.net/

Google Analytics:
UA-1744487

Title:
“File hosting Letitbit.net › Home”

Description:
“Free hosting of your files to share files with your friends, with the ability to capitalize on these files.”

SSL certificate subject:
CN=*.letitbit.net, OU=PremiumSSL Wildcard, O=Naggem Production Limited, STREET="Vasileos Pavlou, 60", L=Nicosia, PostalCode=2360, C=CY

SSL certificate issuer:
CN=COMODO RSA Organization Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
nginx (PHP/5.3.10-1ubuntu3.21)

Facebook:
Likes:  156
Shares:  661
Comments:  254

Statistics above are for the previous month of May 2017.