downloads.sparktrust.com

Paretologic Inc.

Domain Information

The domain downloads.sparktrust.com registered by SparkTrust Systems Inc was initially registered in July of 2010 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Ashburn, Virginia within the United States. The domain uses the Amazon Web Services (AWS) cloud computing platform. The domain is associated with the publisher Paretologic Inc. who is located in Victoria, British Columbia in Canada.
Registrar:
GODADDY.COM, LLC

Server location:
Virginia, United States (US)

Create date:
Wednesday, July 07, 2010

Expires date:
Thursday, July 07, 2016

Updated date:
Wednesday, July 08, 2015

ASN:
AS14618 AMAZON-AES - Amazon.com, Inc., US

Root domain:

Scanner detections:
Detections  (67% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.SparkTrust.Installer.Meta (L), PUP.Optional.SmartPCSolutions.a, PUP.Optional.Installer.FF
84.62%

Trend Micro House Call
TROJ_GEN.F47V0510, TROJ_GEN.F47V0528
7.69%

ESET NOD32
Detection.Undefined
7.69%

G Data
Win32.Application.SpeedyPC
7.69%

Qihoo 360 Security
Malware.QVM30.Gen
3.85%

McAfee
Artemis!9B0B1123408F
3.85%

Dr.Web
Program.Unwanted.54
3.85%

McAfee Web Gateway
Artemis!9B0B1123408F
3.85%

Antiy Labs AVL
Trojan[Downloader]/Win32.Delf
3.85%

AVG
Smartpcso
3.85%

F-Secure
Trojan.MSIL.Agent.AHH
3.85%

The domain downloads.sparktrust.com has been seen to resolve to the following 3 IP addresses.

ec2-54-208-209-16.compute-1.amazonaws.com
May 16, 2016

ec2-52-72-153-41.compute-1.amazonaws.com
February 23, 2016

August 17, 2013

File downloads found at URLs served by downloads.sparktrust.com.

2 / 68      (PUP)
http://downloads.sparktrust.com/pccleanerplus  (sparktrust pc cleaner plus setup_2d3b3ddf-4d60-43b7-b260-984b8513ece2_.exe)

1 / 68      (PUP)
http://downloads.sparktrust.com/.../de  (sparktrust pc cleaner plus setup_2162b9e5-fcdc-47b3-8194-160841277e83_.exe)

0 / 68

1 / 68      (PUP)
http://downloads.sparktrust.com/pccleanerplus/.../index.php  (sparktrust pc cleaner plus setup_efd9250_.exe)

1 / 68      (PUP)
http://downloads.sparktrust.com/.../  (sparktrust pc cleaner plus setup_f2c897e_.exe)

2 / 68      (PUP)
http://downloads.sparktrust.com/.../index_st1.php  (sparktrust pc cleaner plus setup_f09179c_.exe)

1 / 68
http://downloads.sparktrust.com/.../index.php  (updatemydrivers setup_f0289c3_.exe)

1 / 68      (PUP)
http://downloads.sparktrust.com/.../index_st0.php  (sparktrust pc cleaner plus setup_f11e924_.exe)

1 / 68      (PUP)
http://downloads.sparktrust.com/.../index_st3.php  (sparktrust pc cleaner plus setup_eb70f1d_.exe)

0 / 68
http://downloads.sparktrust.com/.../  (sparktrust driver updater setup.exe)

1 / 68      (inconclusive)

1 / 68      (inconclusive)
http://downloads.sparktrust.com/.../  (sparktrust antivirus setup.exe)

0 / 68

0 / 68
http://downloads.sparktrust.com/.../  (sparktrust inspector setup.exe)

1 / 68      (PUP)
http://downloads.sparktrust.com/pccleanerplus/.../  (sparktrust pc cleaner plus setup.exe)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)
http://downloads.sparktrust.com/.../index_st2.php  (sparktrust pc cleaner plus setup.exe)

1 / 68      (PUP)

1 / 68      (PUP)
http://downloads.sparktrust.com/.../index_st4.php  (sparktrust pc cleaner plus setup.exe)

1 / 68      (PUP)

1 / 68      (PUP)

URL:
http://downloads.sparktrust.com/

Network:
Amazon Web Services (AWS), running an EC2 instance

Web server:
Apache