cdn.download.sweetpacks.com

SweetIM Technologies LTD

Domain Information

The domain cdn.download.sweetpacks.com registered by SweetIM Technologies LTD was initially registered in May of 2011 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Wednesday, May 25, 2011

Expires date:
Thursday, May 25, 2017

Updated date:
Sunday, December 27, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (98% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.SweetIM.X, PUP.Installer.Perion.H, PUP.Installer.SweetIM.T, PUP.Installer.SweetIM.M, PUP.Installer.SweetIM.AA, PUP.Installer.SweetIM.BB, (M), PUP.Installer.SweetIM.Q, PUP.Installer.SweetIM.J, PUP.Perion.Montera.Bundler (M), PUP.installCore (M)
100.00%

Dr.Web
Adware.SweetIM.26, Adware.SweetIM.28, Adware.SweetIM.22, Adware.SweetIM.17, Adware.SweetIM.16, Adware.SweetIM.5, Adware.SweetIM.6
72.92%

VIPRE Antivirus
Sweetpacks/SweetIM
68.75%

Malwarebytes
PUP.Optional.SweetIM, PUP.Optional.Perion.A, PUP.Optional.SweetIM.A
66.67%

ESET NOD32
Win32/SweetIM (variant), Win32/Toolbar.Perion (variant), Win32/SweetIM.N potentially unwanted (variant)
64.58%

Trend Micro House Call
TROJ_GEN.F47V0520, TROJ_GEN.F47V1228, TROJ_GEN.F47V1205, TROJ_GEN.F47V0819, TROJ_GEN.F47V0425, TROJ_GEN.F47V1225, TROJ_GEN.R0CBOH0IC13, TROJ_GEN.F47V1102, TROJ_GEN.F47V1025, TROJ_GEN.F47V0414, TROJ_GEN.F47V0209
62.50%

McAfee Web Gateway
Artemis!999FE482443D, Artemis!158D79261773, Artemis!1C2076A11266, Artemis!DA0D5B068526, Artemis!4D19CF6F8250, Artemis!15AF35D74861
52.08%

Bkav FE
W32.Clod768.Trojan, W32.Cloda7d.Trojan, W32.Clodc90.Trojan, W32.Clod5f7.Trojan, W32.Cloddeb.Trojan, HW32.CDB, W32.HfsAdware
52.08%

MicroWorld eScan
Trojan.Generic.9720627, Trojan.Generic.9887550, HEUR:Trojan.Win32.StartPage, Win32/SweetIM.C, Trojan.Generic.9863716
50.00%

McAfee
Artemis!999FE482443D, Artemis!158D79261773, Artemis!1C2076A11266, Artemis!DA0D5B068526, Artemis!4D19CF6F8250, Artemis!15AF35D74861
50.00%

Emsisoft Anti-Malware
Trojan.Generic.9720627, Trojan.Generic.9887550, Trojan.Win32.SweetIM.AMN, Trojan.Generic.9879479, Trojan.Generic.9863716
50.00%

Jiangmin
Win32/Virut.bn, Trojan/JboxGeneric.hhp, Trojan/JboxGeneric.iyi, Trojan/StartPage.rno, Trojan/StartPage.rgk
47.92%

Avira AntiVirus
Adware/SweetIM.AQ, Adware/SweetIM.YU, TR/Trash.Gen
45.83%

IKARUS anti.virus
Trojan.SuspectCRC, AdWare.SweetIM
45.83%

NANO AntiVirus
Trojan.Win32.Delf.csbaek, Trojan.Win32.SweetIM.bjnhuf, Trojan.Win32.SweetIM.bjqnjq, Riskware.Win32.SweetIM.cykgkw
45.83%

The domain cdn.download.sweetpacks.com has been seen to resolve to the following 51 IP addresses.

July 30, 2016

July 30, 2016

a104-96-221-83.deploy.static.akamaitechnologies.com
July 25, 2016

a104-96-221-114.deploy.static.akamaitechnologies.com
July 25, 2016

209.66.87.24.IPYX-073920-004-ZYO.zip.zayo.com
June 6, 2016

209.66.87.51.IPYX-073920-004-ZYO.zip.zayo.com
June 6, 2016

a23-62-6-208.deploy.static.akamaitechnologies.com
June 4, 2016

a104-96-220-128.deploy.static.akamaitechnologies.com
May 18, 2016

a104-96-220-120.deploy.static.akamaitechnologies.com
May 18, 2016

a104-96-220-184.deploy.static.akamaitechnologies.com
May 15, 2016

a104-96-220-129.deploy.static.akamaitechnologies.com
May 15, 2016

April 5, 2016

April 5, 2016

a184-28-17-169.deploy.static.akamaitechnologies.com
February 28, 2016

a184-28-17-200.deploy.static.akamaitechnologies.com
February 28, 2016

a23-0-160-97.deploy.static.akamaitechnologies.com
February 21, 2016

a23-0-160-96.deploy.static.akamaitechnologies.com
February 21, 2016

February 8, 2016

February 8, 2016

February 1, 2016

February 1, 2016

a23-0-160-10.deploy.static.akamaitechnologies.com
March 15, 2015

a23-0-160-51.deploy.static.akamaitechnologies.com
December 1, 2014

November 10, 2014

November 10, 2014

a23-3-13-10.deploy.static.akamaitechnologies.com
November 2, 2014

a23-3-13-65.deploy.static.akamaitechnologies.com
November 2, 2014

a23-62-6-203.deploy.static.akamaitechnologies.com
September 2, 2014

a23-62-6-216.deploy.static.akamaitechnologies.com
September 2, 2014

a23-0-160-48.deploy.static.akamaitechnologies.com
August 22, 2014

 
Showing 30 of 51 IP Addresses

File downloads found at URLs served by cdn.download.sweetpacks.com.

1 / 68      (Adware)

23 / 68    (Adware)
http://cdn.download.sweetpacks.com/.../PacmanSDM.exe  (b6d7c5f7ec0f14af42435ad89dae8554)

23 / 68    (Adware)

1 / 68      (Adware)

18 / 68    (Adware)

8 / 68      (Adware)

19 / 68    (Adware)

7 / 68      (Adware)

21 / 68    (Adware)

21 / 68    (Adware)

1 / 68      (Adware)

2 / 68      (PUP)

24 / 68    (Adware)

20 / 68    (Adware)

23 / 68    (Adware)

5 / 68      (Adware)
http://cdn.download.sweetpacks.com/.../SoccerBallSDM.exe  (4f3c5479cc985c279e0ec0f391681fec)

1 / 68      (Malware)

1 / 68      (Adware)

19 / 68    (Adware)
http://cdn.download.sweetpacks.com/.../sweetimsetup.exe  (d51e9b0a45ed22b9a3d2c87b21970486)

11 / 68    (Adware)

1 / 68      (Adware)

17 / 68    (Adware)

10 / 68    (PUP)
http://cdn.download.sweetpacks.com/simsdm/.../wssetup.exe  (8cf063a27af7e5e765bb9196108ef589)

13 / 68    (Adware)
http://cdn.download.sweetpacks.com/.../JewelQuest3SDM.exe  (7952bfd4f635324bb5f3545400bde61f)

2 / 68      (PUP)

9 / 68      (Adware)

19 / 68    (Adware)

21 / 68    (Adware)

1 / 68      (Adware)

 
Latest 30 of 177 download URLs

The following 324 files have been seen to comunicate with cdn.download.sweetpacks.com in live environments.

 
Latest 20 of 348 files

URL:
http://cdn.download.sweetpacks.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET)