updates5.systweak.com

SYSTWEAK INC

Domain Information

The domain updates5.systweak.com registered by SYSTWEAK INC was initially registered in September of 2001 through ENOM, INC.. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Dulles, Virginia within the United States which resides on the Limelight Networks, Inc. network.
Remove Malware from updates5.systweak.com - Powered by Reason Core Security
Registrar:
ENOM, INC.

Server location:
Virginia, United States (US)

Create date:
Friday, September 28, 2001

Expires date:
Wednesday, September 28, 2022

Updated date:
Monday, July 29, 2013

ASN:
AS22822 LLNW-AS Limelight Networks, INC. proxy AS object

Root domain:

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.SystweakSoftware.O, PUP.Optional.Installer.ThePhoneSupportPvt.l, PUP.Optional.ThePhoneSupportPvt.L, PUP.Optional.Installer.X, PUP.Optional.Installer.U, PUP.Optional.Installer.k, PUP.Installer.ThePhoneSupportPvt.a, PUP.Optional.Installer.a
100.00%

ESET NOD32
Win32/Systweak, Win32/MyPCBackup, Win32/Systweak.D potentially unwanted
75.00%

Malwarebytes
PUP.Optional.RegCleanerPro, PUP.Optional.RegCleanPro
67.86%

Trend Micro House Call
TROJ_GEN.F47V1108, TROJ_GEN.F47V0117, TROJ_GEN.F47V1231, TROJ_GEN.F47V0101, TROJ_GEN.F47V0319, TROJ_GEN.F47V0115, TROJ_GEN.F47V1118
35.71%

avast!
Win32:Regzone-A [PUP], Adware-gen [Adw]
35.71%

Sophos
Registry Cleaner, PUA 'Registry Cleaner', Registry Cleaner (PUA)
32.14%

McAfee
Artemis!0BDE77D4458C, Artemis!71D557C26254, Artemis!9AEE087324DB, Artemis!7787BE351B7C, Artemis!0BFCC1B27D9F
17.86%

McAfee Web Gateway
Artemis!0BDE77D4458C, Artemis!71D557C26254, Artemis!9AEE087324DB, Artemis!7787BE351B7C, Artemis!0BFCC1B27D9F
17.86%

G Data
Win32.Application.RegCleanPro
17.86%

AhnLab V3 Security
PUP/Win32.RegCleanPro
14.29%

Dr.Web
Program.Unwanted.39, riskware program Program.Unwanted.31, Trojan.DownLoader10.19818, Program.Unwanted.290
14.29%

AVG
Skodna.Bundle, Systweak
7.14%

ESET NOD32
Win32/Systweak.B potentially unwanted application, Win32/Systweak.D potentially unwanted application
7.14%

K7 Gateway Antivirus
Unwanted-Program
7.14%

K7 AntiVirus
Unwanted-Program
7.14%

The domain updates5.systweak.com has been seen to resolve to the following 4 IP addresses.

cdn-208-111-160-6.iad.llnw.net
September 10, 2014

cdn-208-111-161-254.iad.llnw.net
September 10, 2014

February 6, 2014

February 6, 2014

File downloads found at URLs served by updates5.systweak.com.

5 / 68      (PUP)

17 / 68    (PUP)
http://updates5.systweak.com/.../sysrc_trial.exe  (93676da1596a9a58d2ad8e8680935a8e)

5 / 68      (PUP)

3 / 68      (PUP)

3 / 68      (PUP)

8 / 68      (PUP)

1 / 68      (PUP)

6 / 68      (PUP)

5 / 68      (PUP)

7 / 68      (PUP)

1 / 68      (PUP)

1 / 68      (PUP)

5 / 68      (PUP)

4 / 68      (PUP)

5 / 68      (PUP)

3 / 68      (PUP)

4 / 68      (PUP)

4 / 68      (PUP)

7 / 68      (PUP)
http://updates5.systweak.com/.../sysrc_trial.exe  (9aee087324db35c74ca2c8464110b538)

3 / 68      (PUP)

3 / 68      (PUP)

8 / 68      (PUP)

3 / 68      (PUP)

4 / 68      (PUP)

2 / 68      (PUP)

6 / 68      (PUP)

4 / 68      (PUP)

5 / 68      (PUP)

5 / 68      (PUP)

7 / 68      (PUP)
http://updates5.systweak.com/.../sysrc_trial.exe  (0bde77d4458ca24805f5a983384eccbe)

 
Latest 30 of 30 download URLs

The following 29 files have been seen to comunicate with updates5.systweak.com in live environments.

 
Latest 20 of 44 files

URL:
http://updates5.systweak.com/

Web server:
nginx/1.6.2

Compete.com:
US visitors:  35

Statistics are for the previous month.

Remove Malware from updates5.systweak.com - Powered by Reason Core Security