mirror.frogdownload.com

Somoto Ltd.  (via a Proxy Registrant)

Domain Information

frogdownload.com is the file server that hosts adware bundlers for the FilesFrog.com service run by Somoto. The domain mirror.frogdownload.com is registered by proxy through GODADDY.COM, LLC and was originally registered in May of 2012. This domain has been seen distributing various forms of adware (some being very aggressive) directly or via bundled installations. The hosted servers are located in Haarlem, Noord-Holland within Netherlands which resides on the RIPE Network Coordination Centre network. The domain is associated with the publisher Somoto Ltd. who is located in Tel Aviv, Israel.
Registrar:
GODADDY.COM, LLC

Server location:
Noord-Holland, Netherlands (NL)

Create date:
Sunday, May 20, 2012

Expires date:
Friday, May 20, 2016

Updated date:
Thursday, May 22, 2014

ASN:
AS16265 LEASEWEB-NETWORK LeaseWeb B.V.,NL

Root domain:

Google Safe Browsing:
unwanted

Scanner detections:
Adware distribution

Scan engine
Details
Detections

ESET NOD32
Win32/OpenCandy
66.67%

Trend Micro House Call
ADW_OPENCANDY, TROJ_FAKEALERT.BMH
66.67%

Rising Antivirus
PE:PUF.OpenCandy!1.9DE5
66.67%

Reason Heuristics
PUP.OpenCandy.Installer (L), PUP.GRETECH.GretechC.Installer.Meta (L)
66.67%

Bkav FE
W32.Clodabf.Trojan
33.33%

Malwarebytes
PUP.Optional.OpenCandy
33.33%

Agnitum Outpost
Adware.OpenCandy
33.33%

Trend Micro
ADW_OPENCANDY
33.33%

Vba32 AntiVirus
AdWare.OpenCandy
33.33%

XVirus List
Win.Detected
33.33%

Dr.Web
Adware.OpenCandy.3
33.33%

The domain mirror.frogdownload.com has been seen to resolve to the following 4 IP addresses.

December 2, 2014

February 6, 2014

January 31, 2014

July 28, 2013

File downloads found at URLs served by mirror.frogdownload.com.

 
Latest 30 of 34 download URLs

URL:
http://mirror.frogdownload.com/

Google Analytics:
UA-31912921

Title:
“Software and Driver Updates - FilesFrog.com”

Description:
“Software and driver downloads. The latest software updates, versions and downloads for Windows.”

Web server:
nginx