mirror.frogdownload.com
Somoto Ltd. (via a Proxy Registrant)
Domain Information
frogdownload.com is the file server that hosts adware bundlers for the FilesFrog.com service run by Somoto. The domain mirror.frogdownload.com is registered by proxy through GODADDY.COM, LLC and was originally registered in May of 2012. This domain has been seen distributing various forms of adware (some being very aggressive) directly or via bundled installations. The hosted servers are located in Haarlem, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Somoto Ltd. who is located in Tel Aviv, Israel.
Registrar:
GODADDY.COM, LLC
Server location:
Noord-Holland, Netherlands (NL)
Create date:
Sunday, May 20, 2012
Expires date:
Friday, May 20, 2016
Updated date:
Thursday, May 22, 2014
ASN:
AS16265 LEASEWEB-NETWORK LeaseWeb B.V.,NL
Google Safe Browsing:
unwanted
Scanner detections:
Adware distribution
Scan engine
Details
Detections
ESET NOD32
Win32/OpenCandy
66.67%
Trend Micro House Call
ADW_OPENCANDY, TROJ_FAKEALERT.BMH
66.67%
Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
66.67%
Reason Heuristics
PUP.OpenCandy.Installer (L), PUP.GRETECH.GretechC.Installer.Meta (L)
66.67%
Bkav FE
W32.Clodabf.Trojan
33.33%
Malwarebytes
PUP.Optional.OpenCandy
33.33%
Agnitum Outpost
Adware.OpenCandy
33.33%
Trend Micro
ADW_OPENCANDY
33.33%
Vba32 AntiVirus
AdWare.OpenCandy
33.33%
XVirus List
Win.Detected
33.33%
Dr.Web
Adware.OpenCandy.3
33.33%
The domain mirror.frogdownload.com has been seen to resolve to the following 4 IP addresses.
File downloads found at URLs served by mirror.frogdownload.com.
Latest 30 of 34 download URLs
URL:
http://mirror.frogdownload.com/
Google Analytics:
UA-31912921
Title:
“Software and Driver Updates - FilesFrog.com”
Description:
“Software and driver downloads. The latest software updates, versions and downloads for Windows.”
Related Domains