home

analytics.freewareflow.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain analytics.freewareflow.com is registered by proxy through GODADDY.COM, LLC and was originally registered in October of 2012. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in New York City, New York within the United States which resides on the Digital Ocean, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
New York, United States (US)

Create date:
Wednesday, October 10, 2012

Expires date:
Monday, October 10, 2016

Updated date:
Thursday, October 15, 2015

ASN:
AS393406 DIGITALOCEAN-ASN-NY3 - Digital Ocean, Inc.,US

Root domain:
freewareflow.com

Whois:
2 freewareflow.com records

Scanner detections:
Detections  (97% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Bundler.Vittalia, PUP.Bundler.Air Software, Threat.Air Software.Bundler, PUP.Air Software.DownloadAssistant.Bundler (M), PUP.Vittalia.InstallHelper (M), PUP.AirSoftware.Bundler.Installer.Meta (M), PUP.Vittalia.SoftwareAssistant.Installer (M), PUP.Air Software.Download.Bundler (M), PUP.Vittalia.InstallH.Installer (M), PUP.Vittalia.Software.Installer (M)
96.43%

ESET NOD32
Win32/DownloadAssistant.B potentially unwanted application, Win32/DownloadAssistant.A potentially unwanted application, Win32/DownloadAssistant.C potentially unwanted application
35.71%

avast!
Win32:Adware-CKN [PUP], Win32:Adware-CKD [PUP], Win32:Adware-CKC [PUP], Win32:Adware-CKE [PUP]
32.14%

Dr.Web
Trojan.Vittalia.16, Trojan.Vittalia.18, Trojan.DownLoader12.11416, Trojan.Vittalia.17, Trojan.Vittalia.30, infected with Trojan.Vittalia.587
28.57%

Rising Antivirus
PE:Malware.XPACK-HIE/Heur!1.9C48, PE:Malware.Graftor!6.1D1F
28.57%

AVG
Generic, Potentially harmful program DownloadAssistant.A
28.57%

K7 AntiVirus
Unwanted-Program , Trojan
21.43%

Avira AntiVirus
TR/Crypt.XPACK.Gen7, APPL/Downloader.Gen, PUA/DownloadAssistant.Gen
17.86%

VIPRE Antivirus
Threat.4782985, AirInstaller
17.86%

Panda Antivirus
Trj/Genetic.gen
14.29%

NANO AntiVirus
Trojan.Win32.ZPACK.dmubjo, Trojan.Win32.Vittalia.dqfrig, Trojan.Win32.DownloadHelper.dpgylc, Trojan.Win32.Vittalia.dljetu
14.29%

IKARUS anti.virus
Trojan.Win32.Rimecud
10.71%

F-Secure
Gen:Variant.Adware.Mikey, Gen:Variant.Graftor.181023, Riskware.Gen:Variant.Application.Bundler
10.71%

AhnLab V3 Security
PUP/Win32.Bundler
10.71%

Bkav FE
W32.HfsAdware
10.71%

The domain analytics.freewareflow.com has been seen to resolve to the following 3 IP addresses.

159.203.253.236
fd-04-do-w-sf-1.gtdlrfwd.com
July 26, 2016

159.203.107.180
fd-03-do-e-ny-3.gtdlrfwd.com
December 15, 2015

104.131.2.201
useast.gtdlrfwd.com
April 4, 2015

File downloads found at URLs served by analytics.freewareflow.com.

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141107_2.0.0.6512.exe&key=3d38fe486358d2aa2032aaf6069211ee0a0c10562c16010f2d2e57a3531cfba5&sid=USA-FB-GGL&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (Fitbit_Setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141107_2.0.0.6512.exe&key=3d38fe486358d2aa2032aaf6069211ee0a0c10562c16010f2d2e57a3531cfba5&sid=USA-FB-GGL&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (Fitbit_Setup.exe)

1 / 68      (PUP)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://app.pc.kakao.com/talk/win32/KakaoTalk_Setup.exe&key=5f29efcb193771e88312c797072a491b3fbdb4dcb3ccd861d25d5f172c07c6cb&sid=USA-KKT-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../installerlogo.png&product_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../productlogo.png&n=KakaoTalk for PC&filename=KakaoTalk_PC_Setup  (kakaotalk_pc_setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://www.e-sword.net/files/setup1040.exe&key=c96a0e3467516e75dede45a37ef90ed6d4b6c4b02f913794718b6f84911dcb03&sid=USA-ESB-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../logoimage.jpg&product_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../productimage.jpg&n=E-Sword Free Bible&filename=E-Sword_Setup  (e-sword_setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://www.e-sword.net/files/setup1040.exe&key=c96a0e3467516e75dede45a37ef90ed6d4b6c4b02f913794718b6f84911dcb03&sid=USA-ESB-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../logoimage.jpg&product_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../productimage.jpg&n=E-Sword Free Bible&filename=E-Sword_Setup  (e-sword_setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://www.e-sword.net/files/setup1040.exe&key=c96a0e3467516e75dede45a37ef90ed6d4b6c4b02f913794718b6f84911dcb03&sid=USA-ESB-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../logoimage.jpg&product_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../productimage.jpg&n=E-Sword Free Bible&filename=E-Sword_Setup  (E-Sword_Setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141212_2.0.0.6518.exe&key=06dd2741f08cd37c99d2394d4bed5144713e196e5ddf1a97a878e2eb0f0c4578&sid=USA-FB-BNG&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (fitbit_setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://download.garmin.com/omt/express/GarminExpress.exe&key=9b210129a08ce75b44d07fc467a791af20c51e97f95a64e09737924f2c2bef3b&sid=USA-GRMN-GGL&uid=&affiliate_image=http://.../AePwfIv.png&product_image=http://.../VEzVxSp.png&n=Garmin Express&filename=Garmin_Express  (e2aafbec.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://go.nike.com/connectpc5.exe&key=d15f38f8ccaee734c2dc720e297b4458ce7e30dbe5ece70a425b6367634eed74&sid=USA-NC-BNG&uid=&affiliate_image=http://.../mGeelsV.jpg&product_image=http://.../basJQKk.jpg&n=Nike Connect Setup&filename=NikeConnect_Setup  (nikeconnect_setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://go.nike.com/connectpc5.exe&key=d15f38f8ccaee734c2dc720e297b4458ce7e30dbe5ece70a425b6367634eed74&sid=USA-NC-BNG&uid=&affiliate_image=http://.../mGeelsV.jpg&product_image=http://.../basJQKk.jpg&n=Nike Connect Setup&filename=NikeConnect_Setup  (nikeconnect_setup.exe)

0 / 68
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://www.e-sword.net/files/setup1040.exe&key=c96a0e3467516e75dede45a37ef90ed6d4b6c4b02f913794718b6f84911dcb03&sid=USA-ESB-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../logoimage.jpg&product_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../productimage.jpg&n=E-Sword Free Bible&filename=E-Sword_Setup  (e-sword_setup.zip)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://app.pc.kakao.com/talk/win32/KakaoTalk_Setup.exe&key=5f29efcb193771e88312c797072a491b3fbdb4dcb3ccd861d25d5f172c07c6cb&sid=USA-KKT-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../installerlogo.png&product_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../productlogo.png&n=KakaoTalk for PC&filename=KakaoTalk_PC_Setup  (kakaotalk_pc_setup.exe)

1 / 68      (PUP)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141212_2.0.0.6518.exe&key=06dd2741f08cd37c99d2394d4bed5144713e196e5ddf1a97a878e2eb0f0c4578&sid=USA-FB-BNG&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (fitbit_setup.exe)

23 / 68    (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://download.tomtom.com/sweet/application/home2latest/TomTomHOME2winlatest.exe&key=e021a0942527fc554041ed17ea1a8f91491b2efb7f5ade11376721142701ec1f&sid=USA-TTH-BNG&uid=&affiliate_image=http://.../yUdXNKO.png&product_image=http://.../yqWAGZU.png&n=TomTom HOME&filename=TomTom_HOME  (TomTom_HOME.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://downloadplugins.citrix.com/Windows/CitrixReceiver.exe&key=d29b017dbabacd41a8d2b13bcdde798bbafe36222780b46362bc923c3d07d685&sid=USA-CTR-BNG&uid=&affiliate_image=http://.../XBaafUX.jpg&product_image=http://.../Tl9QePT.jpg&n=Citric Receiver 4.1.2&filename=Citrix_Reciever_Setup  (citrix_reciever_setup.exe)

13 / 68    (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://download.tomtom.com/sweet/application/home2latest/TomTomHOME2winlatest.exe&key=e021a0942527fc554041ed17ea1a8f91491b2efb7f5ade11376721142701ec1f&sid=USA-TTH-GGL&uid=&affiliate_image=http://.../yUdXNKO.png&product_image=http://.../yqWAGZU.png&n=TomTom HOME&filename=TomTom_HOME  (TomTom_HOME.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141212_2.0.0.6518.exe&key=06dd2741f08cd37c99d2394d4bed5144713e196e5ddf1a97a878e2eb0f0c4578&sid=USA-FB-BNG&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (fitbit_setup.exe)

1 / 68      (PUP)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141212_2.0.0.6518.exe&key=06dd2741f08cd37c99d2394d4bed5144713e196e5ddf1a97a878e2eb0f0c4578&sid=USA-FB-BNG&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (fitbit_setup.exe)

7 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://download.tomtom.com/sweet/application/home2latest/TomTomHOME2winlatest.exe&key=e021a0942527fc554041ed17ea1a8f91491b2efb7f5ade11376721142701ec1f&sid=USA-TTH-GGL&uid=&affiliate_image=http://.../yUdXNKO.png&product_image=http://.../yqWAGZU.png&n=TomTom HOME&filename=TomTom_HOME  (TomTom_HOME.exe)

7 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://download.tomtom.com/sweet/application/home2latest/TomTomHOME2winlatest.exe&key=e021a0942527fc554041ed17ea1a8f91491b2efb7f5ade11376721142701ec1f&sid=USA-TTH-GGL&uid=&affiliate_image=http://.../yUdXNKO.png&product_image=http://.../yqWAGZU.png&n=TomTom HOME&filename=TomTom_HOME  (TomTom_HOME.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141212_2.0.0.6518.exe&key=06dd2741f08cd37c99d2394d4bed5144713e196e5ddf1a97a878e2eb0f0c4578&sid=USA-FB-BNG&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (fitbit_setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://app.pc.kakao.com/talk/win32/KakaoTalk_Setup.exe&key=5f29efcb193771e88312c797072a491b3fbdb4dcb3ccd861d25d5f172c07c6cb&sid=USA-KKT-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../installerlogo.png&product_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../productlogo.png&n=KakaoTalk for PC&filename=KakaoTalk_PC_Setup  (kakaotalk_pc_setup.exe)

1 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://app.pc.kakao.com/talk/win32/KakaoTalk_Setup.exe&key=5f29efcb193771e88312c797072a491b3fbdb4dcb3ccd861d25d5f172c07c6cb&sid=USA-KKT-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../installerlogo.png&product_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../productlogo.png&n=KakaoTalk for PC&filename=KakaoTalk_PC_Setup  (kakaotalk_pc_setup.exe)

3 / 68      (PUP)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141212_2.0.0.6518.exe&key=06dd2741f08cd37c99d2394d4bed5144713e196e5ddf1a97a878e2eb0f0c4578&sid=USA-FB-BNG&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (fitbit_setup.zip)

10 / 68    (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://download.tomtom.com/sweet/application/home2latest/TomTomHOME2winlatest.exe&key=e021a0942527fc554041ed17ea1a8f91491b2efb7f5ade11376721142701ec1f&sid=USA-TTH-GGL&uid=&affiliate_image=http://.../yUdXNKO.png&product_image=http://.../yqWAGZU.png&n=TomTom HOME&filename=TomTom_HOME  (TomTom_HOME.exe)

23 / 68    (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://cache.fitbit.com/FitbitConnect/FitbitConnect_Win_20141107_2.0.0.6512.exe&key=3d38fe486358d2aa2032aaf6069211ee0a0c10562c16010f2d2e57a3531cfba5&sid=USA-FB-BNG&uid=&affiliate_image=http://.../42cSje1.jpg&product_image=http://.../rnxtlWr.jpg&n=Fitbit Setup&filename=Fitbit_Setup  (Fitbit_Setup.exe)

7 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/c2ba3weo/?d=http://www.e-sword.net/files/setup1040.exe&key=c96a0e3467516e75dede45a37ef90ed6d4b6c4b02f913794718b6f84911dcb03&sid=USA-ESB-BNG&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../logoimage.jpg&product_image=http://freewareflow.com/b/usa/freeware/eswordbible/1/.../productimage.jpg&n=E-Sword Free Bible&filename=E-Sword_Setup  (E-Sword_Setup.exe)

10 / 68    (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://app.pc.kakao.com/talk/win32/KakaoTalk_Setup.exe&key=5f29efcb193771e88312c797072a491b3fbdb4dcb3ccd861d25d5f172c07c6cb&sid=USA-KKT-GGL&uid=&affiliate_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../installerlogo.png&product_image=http://freewareflow.com/b/usa/freeware/KakaoTalk/1/.../productlogo.png&n=KakaoTalk for PC&filename=KakaoTalk_PC_Setup  (KakaoTalk_PC_Setup.exe)

9 / 68      (Adware)
http://analytics.freewareflow.com/v2/click/e2aafbec/?d=http://download.garmin.com/omt/express/GarminExpress.exe&key=9b210129a08ce75b44d07fc467a791af20c51e97f95a64e09737924f2c2bef3b&sid=USA-GRMN-GGL&uid=&affiliate_image=http://.../AePwfIv.png&product_image=http://.../VEzVxSp.png&n=Garmin Express&filename=Garmin_Express  (Garmin_Express.exe)

The following 46 files have been seen to comunicate with analytics.freewareflow.com in live environments.

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
setup_imgburn_2.5.8.0_download.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
kik for computer setup-efb5180a561c2ec1.exe

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
mpc-hc.1.7.10.x86_download.exe (Media Player Classic HomeCinema Edition by Software Assistant)

TCP » 159.203.253.236:80
setupimgburn_2.5.8.0_installer.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
microsoft toolkit-4f2c4058580128b8.exe

TCP » 159.203.253.236:80
setup.exe (Chrome by Software Assistant)

TCP » 159.203.253.236:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 159.203.253.236:80
chrome setup.exe (Chrome by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (Minecraft by Software Assistant)

TCP » 159.203.253.236:80
n.exe (ImgBurn by Software Assistant)

TCP » 159.203.253.236:80
rlvknlg.exe (Relevant-Knowledge by TMRG)

TCP » 159.203.253.236:80
setup.exe (FIFA 15 by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (Chrome by Software Assistant)

TCP » 159.203.253.236:80
setup.exe (ImgBurn by Software Assistant)

TCP » 104.131.2.201:80
setup.exe (Google Chrome by Download Assistant)

TCP » 104.131.2.201:80
setup.exe (DVD Shrink by Download Publisher)

TCP » 104.131.2.201:80
setup.exe (Java Runtime by Download Assistant)

 
Latest 20 of 47 files

URL:
http://analytics.freewareflow.com/

Title:
“Welcome to nginx!”

Web server:
nginx/1.4.6 (Ubuntu)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.