cdn.download.sweetpacks.com

SweetIM Technologies LTD

Domain Information

The domain cdn.download.sweetpacks.com registered by SweetIM Technologies LTD was initially registered in May of 2011 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Cambridge, Massachusetts within the United States which resides on the Akamai Technologies, Inc. network.
Remove Malware from cdn.download.sweetpacks.com - Powered by Reason Core Security
Registrar:
GODADDY.COM, LLC

Server location:
Massachusetts, United States (US)

Create date:
Wednesday, May 25, 2011

Expires date:
Thursday, May 25, 2017

Updated date:
Sunday, December 27, 2015

ASN:
AS20940 AKAMAI-ASN1 Akamai International B.V.

Root domain:

Scanner detections:
Detections  (88% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.SweetIM.O, PUP.Installer.SweetIM.T, PUP.Installer.SweetIM.Q, PUP.Installer.SweetIM.V, PUP.Installer.SweetIM.M, PUP.Installer.Perion.L, PUP.Installer.Perion.P, PUP.Installer.INSTALLMYSOFTWARE.F, PUP.Installer.Montera, PUP.Perion.Montera.Bundler (M)
93.75%

Dr.Web
Adware.SweetIM.26, Adware.SweetIM.29, Adware.SweetIM.16, Adware.SweetIM.22, Adware.SweetIM.14, Adware.SweetIM.17, Adware.SweetIM.6
83.33%

VIPRE Antivirus
Sweetpacks/SweetIM, Threat.4778314
77.08%

Malwarebytes
PUP.Optional.SweetIM, PUP.Optional.OptimumInstaller.A
75.00%

Trend Micro House Call
TROJ_GEN.F47V0601, TROJ_GEN.F47V0520, TROJ_GEN.R0CBOH0IC13, TROJ_GEN.F47V0311, TROJ_GEN.F47V0113, TROJ_GEN.F47V0413, TROJ_GEN.F47V0826, TROJ_GEN.F47V0207, TROJ_GEN.F47V1025, TROJ_GEN.F47V1107, TROJ_GEN.F47V1011, TROJ_GEN.F47V0407, TROJ_GEN.F47V0423, TROJ_GEN.F47V0304, TROJ_GEN.F47V0507
72.92%

ESET NOD32
Win32/SweetIM (variant)
70.83%

Comodo Security
Heur.Suspicious, Application.Win32.iBryte.WRP
52.08%

Emsisoft Anti-Malware
Trojan.Generic.9720627, Trojan.Win32.SweetIM.AMN, Trojan.Generic.9879479, Trojan.Win32.StartPage.AMN, Trojan.Generic.9863716
52.08%

Avira AntiVirus
W32/Mabezat, Adware/SweetIM.YU, Adware/SweetIM.AQ, ADWARE/Adware.Gen7
45.83%

MicroWorld eScan
HEUR:Trojan.Win32.StartPage, Trojan.Generic.9720627, Win32/SweetIM.C, Trojan.Generic.9863716, Application.Bundler.Agent.B
43.75%

Bkav FE
W32.Clodc90.Trojan, W32.Clod768.Trojan, W32.Clod106.Trojan, W32.Clod2c0.Trojan, W32.Cloddeb.Trojan, HW32.CDB
43.75%

McAfee
Artemis!999FE482443D, Artemis!4D19CF6F8250, Artemis!47B9D9E7B51D, Artemis!3A1B5830598F, Artemis!3058E8746667, Artemis!15AF35D74861
43.75%

McAfee Web Gateway
Artemis!999FE482443D, Artemis!4D19CF6F8250, Artemis!47B9D9E7B51D, Artemis!3A1B5830598F, Artemis!3058E8746667, Artemis!15AF35D74861
43.75%

IKARUS anti.virus
AdWare.SweetIM, Trojan.SuspectCRC, AdWare.iBryte
41.67%

Filseclab Twister
W32.SweetIM.C.mpcs.mg
39.58%

The domain cdn.download.sweetpacks.com has been seen to resolve to the following 34 IP addresses.

February 8, 2016

February 8, 2016

February 1, 2016

February 1, 2016

a23-0-160-10.deploy.static.akamaitechnologies.com
March 15, 2015

a23-0-160-51.deploy.static.akamaitechnologies.com
December 1, 2014

November 10, 2014

November 10, 2014

a23-3-13-10.deploy.static.akamaitechnologies.com
November 2, 2014

a23-3-13-65.deploy.static.akamaitechnologies.com
November 2, 2014

a23-62-6-203.deploy.static.akamaitechnologies.com
September 2, 2014

a23-62-6-216.deploy.static.akamaitechnologies.com
September 2, 2014

a23-0-160-48.deploy.static.akamaitechnologies.com
August 22, 2014

a23-0-160-56.deploy.static.akamaitechnologies.com
August 22, 2014

a23-3-13-202.deploy.static.akamaitechnologies.com
August 17, 2014

a23-3-13-217.deploy.static.akamaitechnologies.com
August 17, 2014

May 1, 2014

a23-67-242-9.deploy.static.akamaitechnologies.com
May 1, 2014

April 26, 2014

March 20, 2014

March 20, 2014

a23-66-230-155.deploy.static.akamaitechnologies.com
February 8, 2014

a23-66-230-105.deploy.static.akamaitechnologies.com
February 8, 2014

February 8, 2014

February 8, 2014

a23-67-250-97.deploy.static.akamaitechnologies.com
February 6, 2014

a23-67-250-121.deploy.static.akamaitechnologies.com
February 6, 2014

a23-67-242-73.deploy.static.akamaitechnologies.com
February 6, 2014

a23-67-242-18.deploy.static.akamaitechnologies.com
December 23, 2013

a23-67-242-48.deploy.static.akamaitechnologies.com
December 23, 2013

 
Showing 30 of 34 IP Addresses

File downloads found at URLs served by cdn.download.sweetpacks.com.

10 / 68    (Adware)
http://cdn.download.sweetpacks.com/.../JewelQuest3SDM.exe  (51d440cb5530f30203b757cf84e657b0)

4 / 68      (Adware)

1 / 68

1 / 68      (inconclusive)

1 / 68      (inconclusive)
http://cdn.download.sweetpacks.com/.../SweetPlayer.exe  (c16da8772a20fb8b47c90e6311dde5e1)

0 / 68
http://cdn.download.sweetpacks.com/.../Minecraft.exe  (de4b8f8b09d0d1943af5295438de139d)

3 / 68      (Adware)
http://cdn.download.sweetpacks.com/.../sweetpcfix.exe  (117b4d878cc6e95c0f3481b3264d48da)

23 / 68    (Adware)

19 / 68    (Adware)

23 / 68    (Adware)

0 / 68
http://cdn.download.sweetpacks.com/.../Flash-player.exe  (e26dcd85038e8295138d2093e1ea79a3)

3 / 68      (PUP)

1 / 68      (PUP)

19 / 68    (Adware)

9 / 68      (Adware)
http://cdn.download.sweetpacks.com/.../MultiMiSDM.exe  (e817c62144f90e405b7d0f2fdc0de9ae)

21 / 68    (Adware)

18 / 68    (Adware)

6 / 68      (Adware)
http://cdn.download.sweetpacks.com/.../sweetimsetup.exe  (ccc0010a91775d7db709d2a16e6ef0b2)

18 / 68    (Adware)

8 / 68      (Adware)

18 / 68    (Adware)

10 / 68    (Adware)

18 / 68    (Adware)

23 / 68    (Adware)

8 / 68      (PUP)
http://cdn.download.sweetpacks.com/.../guardius.exe  (58d7dd2b21c5a455a8b2e2a22addc848)

8 / 68      (Adware)

12 / 68    (Adware)

1 / 68      (PUP)

7 / 68      (Adware)

19 / 68    (Adware)

 
Latest 30 of 99 download URLs

The following 143 files have been seen to comunicate with cdn.download.sweetpacks.com in live environments.

 
Latest 20 of 145 files

URL:
http://cdn.download.sweetpacks.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET)

Remove Malware from cdn.download.sweetpacks.com - Powered by Reason Core Security