download.sweetim.com
SweetIM Technologies Ltd.
Domain Information
SweetIM is owned and operated by SweetIM Technologies Ltd, which is owned by the parent company Perion/Conduit. SweetIM product downloaded from the web site contain the SweetPacks Toolbar, a potentially unwanted bundled browser toolbar. The domain download.sweetim.com registered by Perion Network LTD. was initially registered in February of 2005 through GODADDY.COM, LLC. This domain has been known to host and distribute potentially unwanted software. The hosted servers are located in Dublin, Dublin within Ireland which resides on the Amazon Technologies Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform from the EU (Ireland) region datacenter. The domain is associated with the publisher SweetIM Technologies Ltd..
Registrar:
GODADDY.COM, LLC
Server location:
Dublin, Ireland (IE)
Create date:
Sunday, February 27, 2005
Expires date:
Monday, February 27, 2017
Updated date:
Saturday, April 18, 2015
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc., US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Installer.SweetIM.M, PUP.Installer.SweetIM.V, PUP.Perion.Montera.Installer (M)
100.00%
Boost by Reason
Optional.SweetIM.M
75.00%
Malwarebytes
PUP.Optional.SweetIM
75.00%
VIPRE Antivirus
Sweetpacks/SweetIM
75.00%
McAfee
Artemis!4D19CF6F8250
75.00%
Trend Micro House Call
TROJ_GEN.F47V0826, TROJ_GEN.F47V1021, TROJ_GEN.F47V0828
75.00%
Dr.Web
Adware.SweetIM.14, Adware.SweetIM.5, Trojan.Damaged.1
75.00%
Bkav FE
W32.Clod5f7.Trojan, W32.Clod2c0.Trojan
75.00%
Emsisoft Anti-Malware
Trojan.Generic.9879479
75.00%
avast!
Win32:Adware-gen [Adw]
75.00%
MicroWorld eScan
Win32/SweetIM.C
75.00%
Trend Micro
TROJ_GEN.FCBCBKN
75.00%
NANO AntiVirus
Trojan.Win32.SweetIM.bjqnjq
75.00%
Fortinet FortiGate
Adware/SweetIM
75.00%
Comodo Security
Heur.Suspicious
50.00%
The domain download.sweetim.com has been seen to resolve to the following 6 IP addresses.
ec2-54-77-209-243.eu-west-1.compute.amazonaws.com
June 5, 2016
ec2-52-49-91-49.eu-west-1.compute.amazonaws.com
June 5, 2016
ec2-52-48-150-218.eu-west-1.compute.amazonaws.com
May 25, 2016
ec2-52-51-157-19.eu-west-1.compute.amazonaws.com
May 25, 2016
ec2-54-154-169-168.eu-west-1.compute.amazonaws.com
April 12, 2016
ec2-54-194-49-111.eu-west-1.compute.amazonaws.com
April 12, 2016
File downloads found at URLs served by download.sweetim.com.
The following 18 files have been seen to comunicate with download.sweetim.com in live environments.
URL:
http://download.sweetim.com/
Network:
Amazon Web Services (AWS), running an EC2 instance
Web server:
Microsoft-IIS/7.5 (ASP.NET)
