home

main1.frostwire.com

Domain Name Proxy Service, Inc Privacy ID# 14055529  (Proxy Registrant)

Domain Information

The domain main1.frostwire.com is registered by proxy through DNC HOLDINGS, INC. and was originally registered in September of 2005. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Kansas City, Missouri within the United States which resides on the Layered Technologies, Inc. network.
Registrar:
DNC HOLDINGS, INC.

Server location:
Missouri, United States (US)

Create date:
Tuesday, September 20, 2005

Expires date:
Thursday, September 20, 2018

Updated date:
Monday, June 24, 2013

ASN:
AS22576 LAYER3-ASN - Layered Technologies, Inc.

Root domain:
frostwire.com

Whois:
2 frostwire.com records

Scanner detections:
Detections  (56% detected)

Scan engine
Details
Detections

Malwarebytes
PUP.Optional.OpenCandy
100.00%

Dr.Web
Adware.Toolbar.240, Adware.OpenCandy.39, Adware.OpenCandy.164
100.00%

G Data
Win32.Adware.OpenCandy, Win32.Application.OpenCandy
80.00%

AVG
Generic, OpenCandy
80.00%

Zillya! Antivirus
Adware.OpenCandy.Win32.17
60.00%

Clam AntiVirus
Win.Adware.Opencandy-9
60.00%

ESET NOD32
Win32/Bundled.Toolbar.Ask (variant), Win32/OpenCandy (variant)
40.00%

Trend Micro House Call
Suspicious_GEN.F47V0628
20.00%

McAfee
Artemis!9E270336926F
20.00%

The domain main1.frostwire.com has been seen to resolve to the following IP address.

72.232.160.178
178.160.232.72.static.reverse.ltdomains.com
September 4, 2014

File downloads found at URLs served by main1.frostwire.com.

0 / 68
http://main1.frostwire.com/frostwire/.../frostwire-6.1.9.windows.coc.premium.exe  (f771a6150773affe91e37d4646f60bfb)

0 / 68
http://main1.frostwire.com/frostwire/.../frostwire-6.2.2.windows.coc.premium.exe  (8e03f09f4c12c8c5bde62f0bc73d77ad)

0 / 68
http://main1.frostwire.com/frostwire/.../frostwire-6.1.5.windows.coc.premium.exe  (80db78be5eebd612562436638e4ddf12)

6 / 68      (PUP)
http://main1.frostwire.com/frostwire/.../frostwire-6.1.6.windows.coc.premium.exe  (518305eca662b39adfa0cf530435f86b)

6 / 68      (PUP)
http://main1.frostwire.com/frostwire/.../frostwire-6.1.7.windows.coc.premium.exe  (4c820ab2589e69690a20e4f19d631c4e)

3 / 68      (PUP)
http://main1.frostwire.com/frostwire/.../frostwire-5.0.8.windows.exe  (22e789064d69f6f3fee62466238c43fb)

0 / 68
http://main1.frostwire.com/frostwire/.../frostwire-6.2.1.windows.coc.premium.exe  (frostwire_v6.2.1.exe)

6 / 68      (PUP)
http://main1.frostwire.com/frostwire/.../frostwire-6.1.8.windows.coc.premium.exe  (e19bde2c612eec08a2a4606eb6adc547)

7 / 68      (PUP)
http://main1.frostwire.com/frostwire/.../frostwire-5.7.4.windows.coc.premium.exe  (frostwire-installer.exe)

URL:
http://main1.frostwire.com/

Title:
“Welcome to nginx on Ubuntu!”

Web server:
nginx/1.9.13 (Ubuntu)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.