cdn.download.fileparade.com

Perion Network Ltd

Domain Information

This is the download CDN (content delivery network) for FileParade / SweetIM hosted files that distribute a download manager to bundle additional adware-type offers including the SweetIM Toolbar and SweetPacks. The domain cdn.download.fileparade.com registered by Perion Network Ltd was initially registered in December of 2005 through GODADDY.COM, LLC. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network. The domain is associated with the publisher Perion Network Ltd. who is located in Tel Aviv, Israel.
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Wednesday, December 21, 2005

Expires date:
Sunday, January 01, 2017

Updated date:
Wednesday, December 09, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.SweetIM.R, PUP.Installer.SweetIM.J, PUP.Installer.SweetIM.X, PUP.Installer.SweetIM.S, PUP.Installer.SweetIM.O, PUP.Installer.SweetIM.L, PUP.Installer.SweetIM.K, PUP.Perion.Montera.Bundler (M)
100.00%

Dr.Web
Adware.SweetIM.26, Adware.SweetIM.6, Adware.SweetIM.16, Adware.SweetIM.17
59.18%

ESET NOD32
Win32/SweetIM (variant), Win32/SweetIM.N potentially unwanted (variant)
59.18%

Malwarebytes
PUP.Optional.SweetIM
55.10%

VIPRE Antivirus
Sweetpacks/SweetIM, Threat.4789481
55.10%

Comodo Security
Heur.Suspicious
44.90%

Trend Micro House Call
TROJ_GEN.F47V0118, TROJ_GEN.USCD0OACN, TROJ_GEN.F47V1021, TROJ_GEN.F47V0113, TROJ_GEN.F47V1104, TROJ_GEN.F47V0311, TROJ_GEN.F47V0614, TROJ_GEN.F47V0128
28.57%

Bkav FE
W32.Cloddd4.Trojan, W32.Clod768.Trojan, W32.Clod111.Trojan, W32.Clod871.Trojan, W32.HfsAdware
24.49%

MicroWorld eScan
Win32/SweetIM.C, Trojan.Generic.8604746, Trojan.Generic.9720627, Trojan.Generic.9971443
22.45%

Emsisoft Anti-Malware
Trojan.Generic.8604746, Trojan.Generic.8815812, Trojan.Generic.9720627, Trojan.Generic.9971443, Trojan.Win32.SweetIM.AMN
22.45%

IKARUS anti.virus
AdWare.SweetIMBar, Trojan.SuspectCRC, Win32.AdWare, PUA.SweetIM
22.45%

McAfee
Artemis!1A2CB2D38399, Artemis!4881AD041C73, Artemis!999FE482443D
20.41%

Bitdefender
Trojan.Generic.8604746, Trojan.Generic.8815812, Trojan.Generic.9720627, Trojan.Generic.9971443
20.41%

Lavasoft Ad-Aware
Trojan.Generic.8604746, Trojan.Generic.9720627, Trojan.Generic.9971443
20.41%

McAfee Web Gateway
Artemis!1A2CB2D38399, Artemis!4881AD041C73, Artemis!999FE482443D, Heuristic.BehavesLike.Win32.ModifiedUPX.C!86
20.41%

The domain cdn.download.fileparade.com has been seen to resolve to the following 23 IP addresses.

a23-62-6-208.deploy.static.akamaitechnologies.com
July 3, 2016

a104-96-220-128.deploy.static.akamaitechnologies.com
June 26, 2016

a23-15-9-33.deploy.static.akamaitechnologies.com
June 5, 2016

a23-15-9-9.deploy.static.akamaitechnologies.com
June 5, 2016

a104-96-220-129.deploy.static.akamaitechnologies.com
May 15, 2016

a104-96-220-184.deploy.static.akamaitechnologies.com
May 15, 2016

April 6, 2016

April 6, 2016

a23-62-6-203.deploy.static.akamaitechnologies.com
December 25, 2015

a23-62-6-216.deploy.static.akamaitechnologies.com
December 25, 2015

a23-0-160-97.deploy.static.akamaitechnologies.com
December 7, 2015

a23-0-160-96.deploy.static.akamaitechnologies.com
December 7, 2015

a23-0-160-56.deploy.static.akamaitechnologies.com
December 24, 2014

a23-0-160-48.deploy.static.akamaitechnologies.com
December 24, 2014

a23-3-13-217.deploy.static.akamaitechnologies.com
August 22, 2014

a23-3-13-202.deploy.static.akamaitechnologies.com
August 22, 2014

a23-67-242-73.deploy.static.akamaitechnologies.com
May 30, 2014

a23-67-250-97.deploy.static.akamaitechnologies.com
April 16, 2014

a23-67-250-121.deploy.static.akamaitechnologies.com
April 16, 2014

March 28, 2014

March 28, 2014

a23-67-242-48.deploy.static.akamaitechnologies.com
December 27, 2013

a23-67-242-18.deploy.static.akamaitechnologies.com
December 27, 2013

File downloads found at URLs served by cdn.download.fileparade.com.

1 / 68      (Adware)
http://cdn.download.fileparade.com/.../GimpSDM.exe  (12e7ea196cb8b0e1acf8ed965b9f4107)

1 / 68      (Adware)

1 / 68      (Adware)

6 / 68      (Adware)

1 / 68      (Adware)

6 / 68      (Adware)
http://cdn.download.fileparade.com/.../7ZipSDM.exe  ({83a2043c-d890-4cbd-bfc5-a6647ae2c689})

1 / 68      (Adware)

23 / 68    (Adware)

1 / 68      (Adware)
http://cdn.download.fileparade.com/.../AngryBirdsSDM.exe  (2edee3d992357733880c14f37335f094)

1 / 68      (Adware)

1 / 68      (Adware)

6 / 68      (Adware)

1 / 68      (Adware)
http://cdn.download.fileparade.com/.../SkypeSDM.exe  (11dea1b4ffa9ba6c494f7d91b3468f02)

2 / 68      (Adware)
http://cdn.download.fileparade.com/.../CCleanerSDM.exe  (a488d4011fb969204677970db457c060)

10 / 68    (Adware)

3 / 68      (Adware)

7 / 68      (Adware)
http://cdn.download.fileparade.com/.../7zip_mp_pgr.exe  (079c501cd98fb2259a2f7dfa343df5a6)

19 / 68    (Adware)

7 / 68      (Adware)
http://cdn.download.fileparade.com/.../RealPlayerSDM.exe  (649d32931ceed9f895532640ac67a0af)

1 / 68      (Adware)

1 / 68      (Adware)

5 / 68      (Adware)

7 / 68      (Adware)
http://cdn.download.fileparade.com/.../CalibreSDM.exe  (f2df59cd325030fe5134737ac7a4a1dd)

6 / 68      (Adware)

6 / 68      (Adware)

18 / 68    (Adware)
http://cdn.download.fileparade.com/.../PDFcreatorSDM.exe  (d99df35c0bd68c3111b655dced109d0c)

18 / 68    (Adware)
http://cdn.download.fileparade.com/.../AudacitySDM.exe  (378fea61188c8e0d80c5f15f036effd2)

18 / 68    (Adware)

18 / 68    (Adware)

8 / 68      (Adware)

 
Latest 30 of 52 download URLs

The following 179 files have been seen to comunicate with cdn.download.fileparade.com in live environments.

 
Latest 20 of 196 files

URL:
http://cdn.download.fileparade.com/

Title:
“Under Construction”

Web server:
Microsoft-IIS/7.5 (ASP.NET)

Notes from the site - “During the installation you will be offered an alternative search service to be used in your browser(s). You may also be offered one or more additional desktop utilities. You may skip or opt-out of any of these components during installation. SweetPacks offers search-related services designed to make your browsing experience easier and more valuable. These services seamlessly integrate with your browser, providing you with a custom homepage, new tab and alternative default search. All these provide easy access to a powerful web search directly from your browser. Using the search box next to the address bar, or the address bar itself (depending on your browser version), you can directly and easily access search results without having to navigate to any search homepage. These search services are available for Internet Explorer, Firefox and Google Chrome. During installation, you may receive additional applications that may be of interest to you. These include Internet security software; file backup; system utilities; games & gamers networks; mobile apps & games; social connectors; recipes; coupons/retail & price comparison tools; and more. Accepting, skipping or opting-out of these offers is clear and easy to do. Similarly, downloaded offers can be easily removed at any time. You can easily uninstall any or all of the installed components.”