home

analytics.filehostcdn.com

TRUSTED SOFTWARE APS

Domain Information

The domain analytics.filehostcdn.com registered by TRUSTED SOFTWARE APS was initially registered in December of 2014 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Digital Ocean, Inc. network.
Registrar:
ENOM, INC.

Server location:
New York, United States (US)

Create date:
Thursday, December 4, 2014

Expires date:
Sunday, December 4, 2016

Updated date:
Wednesday, November 4, 2015

ASN:
AS393406 DIGITALOCEAN-ASN-NY3 - Digital Ocean, Inc.,US

Root domain:
filehostcdn.com

Whois:
3 filehostcdn.com records

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.DownloadAssistant.T, PUP.Installer.Air Software, PUP.Bundler.Air Software, PUP.Air Software.Bundler, PUP.Air Software.DownloadAssistant.Bundler (M), PUP.Vittalia.Bundler.Installer.Meta (M), PUP.Air Software.Download.Bundler (M), PUP.AirSoftware.Bundler.Installer.Meta (M), PUP.Air Software (M)
92.00%

ESET NOD32
Win32/DownloadAssistant.A potentially unwanted application
56.00%

VIPRE Antivirus
Threat.4782985
48.00%

Dr.Web
Trojan.Vittalia.7, Trojan.DownLoader12.11416, Trojan.DownLoader12.13577, Trojan.Vittalia.5, Trojan.Vittalia.34, Trojan.Vittalia.30
44.00%

G Data
Gen:Variant.Application.Bundler.32, Win32.Application.DownloadAssistant, Gen:Variant.Application.Bundler.AirInstaller, Gen:Trojan.Heur.JP.8u0@aGe9EZpi
40.00%

NANO AntiVirus
Trojan.Win32.Vittalia.dljetu, Trojan.Win32.DownloadAssistant.dmjgez, Trojan.Win32.DownLoader12.dncixg, Trojan.Win32.Vittalia.dmorxk
40.00%

Avira AntiVirus
APPL/Downloader.Gen, TR/Crypt.XPACK.Gen
40.00%

Emsisoft Anti-Malware
Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.AirInstaller, Gen:Trojan.Heur.JP.8u0@aGe9EZpi
32.00%

Lavasoft Ad-Aware
Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.AirInstaller.5, Gen:Trojan.Heur.JP.8u0@aGe9EZpi
32.00%

F-Secure
Riskware.Gen:Variant.Application.Bundler, Gen:Trojan.Heur.JP.8u0@aGe9EZpi
32.00%

MicroWorld eScan
Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.AirInstaller.5, Gen:Trojan.Heur.JP.8u0@aGe9EZpi
32.00%

Malwarebytes
PUP.Optional.DownloadAssistant, PUP.Optional.BundleInstaller.A
32.00%

Bitdefender
Gen:Variant.Application.Bundler.32, Gen:Variant.Application.Bundler.AirInstaller.5, Gen:Trojan.Heur.JP.8u0@aGe9EZpi
32.00%

AVG
Generic
32.00%

AhnLab V3 Security
PUP/Win32.Bundler
32.00%

The domain analytics.filehostcdn.com has been seen to resolve to the following 3 IP addresses.

159.203.253.236
fd-04-do-w-sf-1.gtdlrfwd.com
July 21, 2016

159.203.107.180
fd-03-do-e-ny-3.gtdlrfwd.com
November 18, 2015

104.131.2.201
useast.gtdlrfwd.com
January 13, 2015

File downloads found at URLs served by analytics.filehostcdn.com.

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/00de934ec06dcdf9de2e70492e757e3f-ChromeSetup.exe&key=9f0bf30dd39d1821519043c4d36874822e0b4f263622b35828217d8a08292367&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Google Chrome&filename=GoogleChromeSetup-25979363  (googlechromesetup-25979363.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/2f3b1dd634f95d265c4b30faf8ec2082-AdobeAIRInstaller.exe&key=25b94a347fa62f15d67bec03a2c43179a5c3ec08a014b926776b208cb553f7f1&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Adobe AIR&filename=AdobeAIRSetup-22256851  (AdobeAIRSetup-22256851.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/f667464aa0f0f59fff8770b8bf2f0818-SkypeSetup.exe&key=12dce11d78575fdc6d3e6ec06923c9fd4131165171aa509a14121842415b3226&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Skype&filename=SkypeSetup-22729582  (SkypeSetup-22729582.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/39d59c4ea34cb364faf81ebd3d2ae714-AdobeAIRInstaller.exe&key=fdb156cae5eede53554ef3fe28e5018b752abca71bcbd1a457ba1e2bc557ae44&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Adobe AIR&filename=AdobeAIRSetup-23448261  (AdobeAIRSetup-23448261.exe)

1 / 68      (PUP)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://mysoftwareupdates.com/dl/redir/inst/8f061e42a33d2017af3f0f7d5245d4eb-jre-8u51-windows-i586.exe&key=30eaaecd6fe9e43caf733c94f13860ed8012f66448f2f7965deaa2a9ba74f134&sid=&uid=&affiliate_image=&product_image=http://mysoftwareupdates.com/.../empty.gif&n=Java Platform SE&filename=JavaPlatformSESetup-26222750  (javaplatformsesetup-26222750.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/7d3479b9007f3c0670940c1b10a3615f-IE11-Windows6.1-x86-en-us.exe&key=0d954d0da25f1301dd9748a82359818391a888f52ea4ebddeff2b0a2e27c3972&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Internet Explorer&filename=InternetExplorerSetup-13204601  (InternetExplorerSetup-13204601.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/972ec636cccc11ce6a40c72fa668f2da-npp.6.7.4.Installer.exe&key=989ba0af8d1063c96e82978983e064d31931f24d4304f51219a53ec6cc9d2a9f&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Notepad &filename=Notepad Setup-23405378  (Notepad Setup-23405378.exe)

0 / 68
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/8a9b1484d309fa338688ec12fd1402f9-S-CNX2__-020300WF-EUREN-ALL___.exe&key=01c7cce89aeb54bb591f0529dc2c35f01dbe9aa3705cf89664f4ff69f50970e4&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Capture NX&filename=CaptureNXSetup-236552  (capturenxsetup-236552.zip)

1 / 68      (PUP)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://mysoftwareupdates.com/dl/redir/inst/035c0b5da1cfe02625a814e7698b8cbe-install_reader11_en_mssd_aaa_aih.exe&key=bac23c683f42a8142df47937fc564dbded9d0c8412b1e107e8352399a2653425&sid=&uid=&affiliate_image=&product_image=http://mysoftwareupdates.com/.../empty.gif&n=Adobe Reader&filename=AdobeReaderSetup-22796854  (adobereadersetup-22796854.exe)

7 / 68      (PUP)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/6085d89042d3fb77779b31869ada2cc4-Apache_OpenOffice_4.0.0_Win_x86_install_en-US.exe&key=d482c29a264f34eeb848caeb1866f4fb7a38fdaee8298c61608495927e7a5382&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=OpenOffice Calc&filename=OpenOfficeCalcSetup-10585461  (openofficecalcsetup-10585461.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/b8c997e772be343e1664fee14c1fb9b7-vlc-2.2.1-win32.exe&key=fd0e083aa8447b97ccb83cb62c5421ed0e26181d7194b42cfcb6c10efa1dc48e&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=VLC media player&filename=VLCmediaplayerSetup-24899989  (VLCmediaplayerSetup-24899989.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/22c082a6211e1772e4ac8f9d32566653-install_flash_player_18_active_x.exe&key=7c45ee9484fbb06af2d0d9fd630922a67df9c8d3398527c4e094729dad9de5ed&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Adobe Flash Player ActiveX&filename=AdobeFlashPlayerActiveXSetup-25809583  (adobeflashplayeractivexsetup-25809583.exe)

19 / 68    (PUP)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/c4b91587d2cb64d3a397df59365c200a-Silverlight.exe&key=06de71c6c3a682d269fdecafcc8b2b91e36547ca490090370db019f21027fde6&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Microsoft Silverlight&filename=MicrosoftSilverlightSetup-26084991  (MicrosoftSilverlightSetup-26084991.exe)

22 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/6feee2b252bb6f09ed3efef7ddbf656e-GOMPLAYERENSETUP.EXE&key=f01f0cda21f6354ef57e6194212a080ea6f4802b9919ef3dd79f02fd3bba5813&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=GOM Player&filename=GOMPlayerSetup-19688844  (GOMPlayerSetup-19688844.exe)

11 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/82bffbeb5515cb43089299d111125ce4-QuickTimeInstaller.exe&key=b8f7010913fa5b34d9ee6a4ad5ee76f8915dce1f238c67e3967b3b1eb8ff7249&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=QuickTime&filename=QuickTimeSetup-21908437  (QuickTimeSetup-21908437.exe)

14 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/da195eb29474c79eee34ac5f9c791d17-PDFCreator-1_7_3_setup.exe&key=0f37a2bff526fcd9294accc2d3ecbfbc2708d9a6aa083336da71457e9ce808e7&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=PDFCreator&filename=PDFCreatorSetup-18404137  (PDFCreatorSetup-18404137.exe)

19 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/73ad2f723ef58f184f6ffb7e50668d5b-ChromeSetup.exe&key=5fedf8000c620b62c26d66c7108ba361d10c0c9a34399d9a74ae2e881b60b988&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Google Chrome&filename=GoogleChromeSetup-23692206  (GoogleChromeSetup-23692206.exe)

18 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/035c0b5da1cfe02625a814e7698b8cbe-install_reader11_en_mssd_aaa_aih.exe&key=c03781f7b3bc0ba7a1b7a4ebf97c9e462e8cca933a56f843f27613c4d7621976&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Adobe Reader&filename=AdobeReaderSetup-22796854  (AdobeReaderSetup-22796854.exe)

18 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/2cdd85286c5531557f3f20a7cafa7291-jre-8u25-windows-i586.exe&key=5c2473066170336591e2b293b18d90ae46ad21ab32872bd6ecbdb51060910c02&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Java Platform SE&filename=JavaPlatformSESetup-21763966  (JavaPlatformSESetup-21763966.exe)

19 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/caec7ccc58390c704f895819b177f87e-install_flash_player_16_active_x.exe&key=fbc2e1bc5d9f93661a3ee46c899cfe9c103e7c08d88acdfc3e46643da6345a83&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Adobe Flash Player ActiveX&filename=AdobeFlashPlayerActiveXSetup-22796401  (AdobeFlashPlayerActiveXSetup-22796401.exe)

10 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/df463b4c69c1531d1da7da3e30e7f8b5-vlc-2.1.3-win32.exe&key=73873507c06051ae5a7519ed467cc7229643482630dbaebb6d8dad2b3b2433c9&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=VLC media player&filename=VLCmediaplayerSetup-15872931  (VLCmediaplayerSetup-15872931.exe)

9 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/035c0b5da1cfe02625a814e7698b8cbe-install_reader11_en_mssd_aaa_aih.exe&key=c03781f7b3bc0ba7a1b7a4ebf97c9e462e8cca933a56f843f27613c4d7621976&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Adobe Reader&filename=AdobeReaderSetup-22796854  (AdobeReaderSetup-22796854.exe)

23 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/f667464aa0f0f59fff8770b8bf2f0818-SkypeSetup.exe&key=12dce11d78575fdc6d3e6ec06923c9fd4131165171aa509a14121842415b3226&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Skype&filename=SkypeSetup-22729582  (SkypeSetup-22729582.exe)

1 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/fdd91fde01fde54651c4f2b37b0b577f-calibre-2.18.0.msi&key=5b7a46e57b01650a498db0e3a424d09422d52e5e78c52921fc01735f946c051e&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=calibre - E-book management&filename=calibre-E-bookmanagementSetup-23766725  (calibre-E-bookmanagementSetup-23766725.exe)

5 / 68      (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/ddceaa6ca4b8c31a9d225ecf5752e742-KindleForPC-installer.exe&key=17d35225574fe5f4967541a89e65735f9c1440fd9981ef4d7ac09c1bb75decd7&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Amazon Kindle&filename=AmazonKindleSetup-23572336  (AmazonKindleSetup-23572336.exe)

13 / 68    (Adware)
http://analytics.filehostcdn.com/v2/click/8t0lhg4x/?d=http://file.org/dl/redir/inst/e6dc1d04d2acffdfb67d11012a592a76-SkypeSetup.exe&key=cf6399efbc50f4aa7815ba2f97f07dfbbfd56e328b4ef5c706e498be360148d1&sid=&uid=&affiliate_image=&product_image=http://file.org/.../empty.gif&n=Skype&filename=SkypeSetup-22863024  (SkypeSetup-22863024.exe)

The following 46 files have been seen to comunicate with analytics.filehostcdn.com in live environments.

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
setup_imgburn_2.5.8.0_download.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
kik for computer setup-efb5180a561c2ec1.exe

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
mpc-hc.1.7.10.x86_download.exe (Media Player Classic HomeCinema Edition by Software Assistant)

TCP » 159.203.253.236:80
setupimgburn_2.5.8.0_installer.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
microsoft toolkit-4f2c4058580128b8.exe

TCP » 159.203.253.236:80
setup.exe (Chrome by Software Assistant)

TCP » 159.203.253.236:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 159.203.253.236:80
chrome setup.exe (Chrome by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (Minecraft by Software Assistant)

TCP » 159.203.253.236:80
n.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 159.203.253.236:80
setup.exe (FIFA 15 by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (Chrome by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 104.131.2.201:80
setup.exe (Google Chrome by Download Assistant)

TCP » 104.131.2.201:80
setup.exe (DVD Shrink by Download Publisher)

TCP » 104.131.2.201:80
setup.exe (Java Runtime by Download Assistant)

 
Latest 20 of 47 files

URL:
http://analytics.filehostcdn.com/

Title:
“Welcome to nginx!”

Web server:
nginx/1.4.6 (Ubuntu)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.