Severity scale:  
  (12/100)

Remove Sweetim.com virus (Removal Instructions) - Feb 2020 update

removal by Ugnius Kiguolis - -   Also known as Search.Sweetim.com virus , Sweetim.com virus | Type: Browser Hijackers
8 comments
Ask a question
1709 views

Sweetim.com is a domain related to a malicious extension that hijacks Google Chrome or another browser

Sweetim.com
Sweetim.com is a potentially unwanted program that usually arrives to your PC via freeware bundle installers

Sweetim.com is a web address that users may see as soon as they install a SweetIM toolbar into their Google Chrome, Mozilla Firefox, MS Edge, Safari, or another browser. The toolbar can be downloaded from various third-party websites, although most users get infected with Sweetim.com virus when they install freeware apps (multiple programs are packaged into a single installer and optional components purposely hidden from the sight during the installation process).

After the infiltration, Sweetim.com or Search.sweetim.com is immediately applied as a startup page, as well as a new tab URL, accompanied by a customized search engine. Those who attempt to enter search terms will see that returned results are filled with sponsored links and various ads. Besides showing sponsored search results, Sweetim.com browser hijacker[1] may also record information about users' web browsing sessions and expose them to scams, phishing, or even malware-laden sites.

Name Sweetim.com
Type Browser hijacker, potentially unwanted program
Associated app SweetIM toolbar compatible with Google Chrome, Mozilla Firefox, Internet Explorer, and other web browsers
Developer MacroGaming LTD, SweetIM Technologies
Symptoms
  • SweetIM.exe process running in the background
  • New tab address and homepage set to Sweetim.com or Search.sweetim.com
  • Customized search engine displays search results filled with sponsored links
  • Intrusive advertisements are shown on all visited websites
  • Web browsers are slow to load particular websites, etc.
Distribution Software bundles, third-party sites, deceptive ads, fake updates, etc.
Removal You can get rid of potentially unwanted programs with the help  anti-malware software or follow our manual guide below
Recovery PUPs can sometimes negatively impact the operating system, which might start showing errors, crashing, lagging, etc. To fix virus damage, you can scan the computer with Reimage Reimage Cleaner Intego

Browser hijackers are generally not considered to be extremely dangerous, as they simply change web browser settings and show sponsored content on a regular basis. While some links might lead to such sites like scam, phishing,[2] push notification scam, and similar, getting infected with dangerous malware like ransomware[3] due to Sweetim.com hijack is highly unlikely.

However, SweetIM is a toolbar that runs its own process (SweetIM.exe) in the background, which implies that it embeds its files into the Windows system. Due to this, users may experience Sweetim.com removal issues, as well as a slowdown of the web browser operation. Besides, the application is also recognized by several anti-malware engines as follows:

  • Adware.SweetIM.2
  • Win32:Downloader-MOM
  • BitCocktail
  • TROJ_SPNR.16AM12
  • Sweetim.4FB
  • PUP.Optional.SweetPacks.A, etc.

As soon as Sweetim.com starts running on the system, users will see an alternative search engine that is marked as Not secure by Google Chrome or any other web browser. This means that the developers of the app did not bother to secure the site with HTTPS protocol, which prevents cyberattacks from external sources. As a result, all the information typed into the search or subsequent pages can be stolen by malicious parties.

Additionally, the homepage Sweetim.com or Search.sweetim.com is also filled with ads, and sometime these might be of dubious nature. For example, some embedded links might indicate that your security software is out of date, you got a message, or that your system might be at risk due to online threats – these are common social engineering tricks in order to make users click on potentially malicious links and make them download unwanted software, disclose personal information, or make them subscribe to useless services, losing money in the process.

Sweetim.com browser hijacker
Sweetim.com is a browser hijacker that might start disturbing your online sessions with intrusive or malicious ads

Many users try to remove Sweetim.com virus manually via the Control Panel – just like any other regular application. However, the remnants of the hijacker remain on the system most of the time, and the unwanted advertisements, redirects, web browser changes, and other issues continue.

Of that is the case for you, we highly advise you first try getting rid of SweetIM as per instructions below, and then refresh all the installed browsers. If that does not work, you should try scanning your machine with reputable anti-malware software (make sure it is up-to-date). Note that, because Sweetim.com modifies Windows registry and performs other unwanted changes, you might experience stability or functionality issues, even after you get rid of the hijacker. If that is the case, use Reimage Reimage Cleaner Intego to fix virus damage on your system.

Browser hacker infection routine

Browser hijackers like Delta-homes.com or Babylon Toolbar can infiltrate its target PC system unnoticed because it has been actively spread using software bundling. In fact, when this method is used, it tricks people into accepting the installation of a potentially unwanted application that they never wanted in the first place. This practice is extremely prevalent on a third-party website that hosts free programs, so choosing trustworthy sources like Google Web Store, Microsoft Store, Amazon, etc., is always a more wise decision to make when it comes to new software. That being said, sites that host illegal installers or software cracks should be avoided altogether.

If you insist on downloading apps from third parties, you should also acknowledge the risks, namely, the installation of potentially unwanted programs or, in some cases, malware. Therefore, you should always ensure that you don't rush the installation process; for example, clicking “Next” until you are done is a very bad practice that can result in cyber infections. Thus, follow these tips provided by security experts:

  • Never rush the installation process – read each of the instructions carefully;
  • Decline all the offers/deals on the way;
  • Watch out for pre-ticked boxes – unmark those that allow the installer to proceed with additional component installation;
  • Do not skip the fine print, as important information might be hidden there;
  • Always opt for Advanced/Custom installation settings when prompted, as sometimes it is the only way to prevent PUPs from being installed (Recommended/Quick setting will install all the nasties you don't want on your PC).

Sweetim.com site
Sweetim.com offers an application that runs a background process once installed

Remove Sweetim.com virus safely

As previously mentioned, Sweetim.com removal might not be successful immediately if the normal program uninstallation method is followed. Nevertheless, we suggest you first check our instructions provided below and follow them closely. If the unwanted activity does not stop even after you get rid of the PUP, you should also try resetting the installed web browsers.

In case you can't remove Sweetim.com virus in a regular way, we highly advise you employ anti-malware software that has a PUP detection feature or specializes in PUP detection. However, please do not forget to bring the security application to the most recent version, and only then perform a full system scan.

You may remove virus damage with a help of Reimage Reimage Cleaner Intego. SpyHunter 5Combo Cleaner and Malwarebytes are recommended to detect potentially unwanted programs and viruses with all their files and registry entries that are related to them.

Offer
do it now!
Download
Reimage Happiness
Guarantee Download
Intego Happiness
Guarantee
Compatible with Microsoft Windows Supported versions Compatible with OS X Supported versions
What to do if failed?
If you failed to remove virus damage using Reimage Intego, submit a question to our support team and provide as much details as possible.
Reimage Intego has a free limited scanner. Reimage Intego offers more through scan when you purchase its full version. When free scanner detects issues, you can fix them using free manual repairs or you can decide to purchase the full version in order to fix them automatically.
Press mentions on Reimage
press
Reimage review | Terms of Use | Privacy policy | Refund Policy | Press | Uninstall guide Uninstall guide
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Reimage, try running SpyHunter 5.
Download SpyHunter 5 Review »
Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions
Malwarebytes
Download | Review | Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Intego, try running Combo Cleaner.
Download Combo Cleaner Review »
Privacy policy | Terms of Use | Product Refund Policy | Uninstall Instructions

To remove Sweetim.com virus, follow these steps:

Eliminate Sweetim.com from Windows systems

To get rid of SweetIm browser hijacker, try to uninstall it via the Control Panel as explained below:

  1. Click Start Control Panel Programs and Features (if you are Windows XP user, click on Add/Remove Programs). Click 'Start -> Control Panel -> Programs and Features' (if you are 'Windows XP' user, click on 'Add/Remove Programs').
  2. If you are Windows 10 / Windows 8 user, then right-click in the lower left corner of the screen. Once Quick Access Menu shows up, select Control Panel and Uninstall a Program. If you are 'Windows 10 / Windows 8' user, then right-click in the lower left corner of the screen. Once 'Quick Access Menu' shows up, select 'Control Panel' and 'Uninstall a Program'.
  3. Uninstall Sweetim.com and related programs
    Here, look for Sweetim.com or any other recently installed suspicious programs.
  4. Uninstall them and click OK to save these changes. Right click on each of suspicious entries and select 'Uninstall'
  5. Remove Sweetim.com from Windows shortcuts
    Right click on the shortcut of Mozilla Firefox and select Properties. Right click on browsers' icon and select 'Properties'
  6. Go to Shortcut tab and look at the Target field. Delete malicious URL that is related to your virus. Select 'Shortcut' tab and delete 'http://isearch.babylon.com...' or other suspicious URL

Repeat steps that are given above with all browsers' shortcuts, including Internet Explorer and Google Chrome. Make sure you check all locations of these shortcuts, including Desktop, Start Menu and taskbar.

Delete Sweetim.com from Internet Explorer (IE)

  1. Remove dangerous add-ons
    Open Internet Explorer, click on the Gear icon (IE menu) on the top right corner of the browser and choose Manage Add-ons. Click on menu icon and select 'Manage add-ons'
  2. You will see a Manage Add-ons window. Here, look for Sweetim.com and other suspicious plugins. Disable these entries by clicking Disable: Right click on each of malicious entries and select 'Disable'
  3. Change your homepage if it was altered by virus:
    Click on the gear icon (menu) on the top right corner of the browser and select Internet Options. Stay in General tab.
  4. Here, remove malicious URL and enter preferable domain name. Click Apply to save changes. Delete malicious URL, enter your desired domain name and click 'Apply' to save changes
  5. Reset Internet Explorer
    Click on the gear icon (menu) again and select Internet options. Go to Advanced tab.
  6. Here, select Reset.
  7. When in the new window, check Delete personal settings and select Reset again to complete Sweetim.com removal. Go to 'Advanced' tab and click on 'Reset' button. Now select 'Delete personal settings' and click on 'Reset' button again

Get rid of Sweetim.com virus from Microsoft Edge

In case MS Edge is still showing signs of browser hijacking, you should reset it as follows:

Reset Microsoft Edge settings (Method 1):

  1. Launch Microsoft Edge app and click More (three dots at the top right corner of the screen).
  2. Click Settings to open more options.
  3. Once Settings window shows up, click Choose what to clear button under Clear browsing data option. Go to Settings and select 'Choose what to clear'
  4. Here, select all what you want to remove and click Clear. Select 'Clear' button
  5. Now you should right-click on the Start button (Windows logo). Here, select Task Manager. Open the start menu and select 'Task Manager'
  6. When in Processes tab, search for Microsoft Edge.
  7. Right-click on it and choose Go to details option. If can’t see Go to details option, click More details and repeat previous steps. Right-click 'Microsoft Edge' and select 'Go to details' Select 'More details' if 'Go to details' option fails to show up
  8. When Details tab shows up, find every entry with Microsoft Edge name in it. Right click on each of them and select End Task to end these entries. Find Microsoft Edge entries and select 'End Task'

Resetting Microsoft Edge browser (Method 2):

If Method 1 failed to help you, you need to use an advanced Edge reset method.

  1. Note: you need to backup your data before using this method.
  2. Find this folder on your computer: C:\Users\%username%\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe.
  3. Select every entry which is saved on it and right click with your mouse. Then Delete option. Go to Microsoft Edge folder on your computer, right-click every entry and click 'Delete'
  4. Click the Start button (Windows logo) and type in window power in Search my stuff line.
  5. Right-click the Windows PowerShell entry and choose Run as administrator. Find Windows PowerShell, right-click it and select 'Run as administrator'
  6. Once Administrator: Windows PowerShell window shows up, paste this command line after PS C:\WINDOWS\system32> and press Enter:
    Get-AppXPackage -AllUsers -Name Microsoft.MicrosoftEdge | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register $($_.InstallLocation)\AppXManifest.xml -Verbose}
    Copy and paste a required command and press 'Enter'

Once these steps are finished, Sweetim.com should be removed from your Microsoft Edge browser.

Uninstall Sweetim.com from Mozilla Firefox (FF)

To reset Mozilla Firefox and ensure no ads or redirect return, perform the following steps:

  1. Remove dangerous extensions
    Open Mozilla Firefox, click on the menu icon (top right corner) and select Add-ons Extensions. Click on menu icon and select 'Add-ons'
  2. Here, select Sweetim.com and other questionable plugins. Click Remove to delete these entries. Select 'Extensions' and look for malicious entries. Click 'Remove' to get rid of each of them
  3. Change your homepage if it was altered by virus:
    Click on the menu (top right corner), choose Options General.
  4. Here, delete malicious URL and enter preferable website or click Restore to default.
  5. Click OK to save these changes. When in 'General' tab, delete malicious URL from 'Home Page' section or click on 'Restore to Default' button. Click 'OK' to save changes
  6. Reset Mozilla Firefox
    Click on the Firefox menu on the top left and click on the question mark. Here, choose Troubleshooting Information. Click on menu icon and then on '?'. Select 'Troubleshooting Information'
  7. Now you will see Reset Firefox to its default state message with Reset Firefox button. Click this button for several times and complete Sweetim.com removal. Click on 'Reset Firefox' button for a couple of times

Erase Sweetim.com from Google Chrome

  1. Delete malicious plugins
    Open Google Chrome, click on the menu icon (top right corner) and select Tools Extensions. Click on menu icon. Select 'Tools' and 'Extensions'
  2. Here, select Sweetim.com and other malicious plugins and select trash icon to delete these entries. Look for malicious entries and delete each of them by clicking on the Trash bin icon
  3. Change your homepage and default search engine if it was altered by your virus
    Click on menu icon and choose Settings.
  4. Here, look for the Open a specific page or set of pages under On startup option and click on Set pages. After clicking on menu and 'Settings', select 'Set pages'
  5. Now you should see another window. Here, delete malicious search sites and enter the one that you want to use as your homepage. Click 'X' to remove malicious URLs
  6. Click on menu icon again and choose Settings Manage Search engines under the Search section. When in 'Settings', select 'Manage search engines...'
  7. When in Search Engines..., remove malicious search sites. You should leave only Google or your preferred domain name. Click 'X' to remove malicious URLs
  8. Reset Google Chrome
    Click on menu icon on the top right of your Google Chrome and select Settings.
  9. Scroll down to the end of the page and click on Reset browser settings. When in 'Settings', scroll down to 'Reset browser settings' button and click on it
  10. Click Reset to confirm this action and complete Sweetim.com removal. Click on 'Reset' button to complete your removal

Eliminate Sweetim.com from Safari

  1. Remove dangerous extensions
    Open Safari web browser and click on Safari in menu at the top left of the screen. Once you do this, select Preferences. Click on 'Safari' and select 'Preferences'
  2. Here, select Extensions and look for Sweetim.com or other suspicious entries. Click on the Uninstall button to get rid each of them. Go to 'Extensions' and uninstall malicious add-ons
  3. Change your homepage if it was altered by virus:
    Open your Safari web browser and click on Safari in menu section. Here, select Preferences as it was displayed previously and select General.
  4. Here, look at the Homepage field. If it was altered by Sweetim.com, remove unwanted link and enter the one that you want to use for your searches. Remember to include the "http://" before typing in the address of the page. When in 'General', delete malicious URL and enter your desired domain name
  5. Reset Safari
    Open Safari browser and click on Safari in menu section at the top left of the screen. Here, select Reset Safari.... Click on 'Safari' and select 'Reset Safari...'
  6. Now you will see a detailed dialog window filled with reset options. All of those options are usually checked, but you can specify which of them you want to reset. Click the Reset button to complete Sweetim.com removal process. Select all options and click on 'Reset' button

About the author

Ugnius Kiguolis
Ugnius Kiguolis - The mastermind

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Ugnius Kiguolis
About the company Esolutions

References

Removal guides in other languages

lt Sweetim.com virus šalinimas
nl Sweetim.com virus verwijderen
pl Jak usunąć Sweetim.com virus
de Entferne Sweetim.com virus
fr Supprimer Sweetim.com virus
it Sweetim.com virus la rimozione
pt Remoção do Sweetim.com virus
dk Sweetim.com virus fjernelse
es Eliminación de Sweetim.com virus
se Ta bort Sweetim.com virus
fi Sweetim.com virus-loisen poistaminen
no Bli kvitt Sweetim.com virus
id Mengatasi Sweetim.com virus
gr Ξεφορτώσου το Sweetim.com virus

This entry was posted on 2020-02-10 at 05:24 and is filed under Browser Hijackers, Viruses.

  1. Jeff Wells says:
    September 13th, 2012 at 7:57 pm

    Last night, I downloaded a program from cnet.com: Free RAR Extract Frog. Upon installing it, I was given the opportunity to install three additional items that included SweetIM. I didnt choose any of these add-ons, and unclicked all three boxes. The installation of the program took forever; in fact, I had to manually shut the computer down, but before I did, I saw three new icon shortcuts on my desktop; SweetIM and two others. I deleted the icons, yet SweetIM “had its way” with my system.

    I have Windows XP; Firefox 15.0.1; Internet Explorer 8.

    SweetIM became my preferred homepage whether I used Firefox or Internet Explorer. I went to Add or Remove Programs through my Control panel, but I couldnt find SweetIM, under any name.

    I went to both browsers and changed my homepage back to google, but no matter how many times I did this, SweetIM always hijacked the homepage.

    I went to both browsers in order to disable SweetIM as an add-on. I did this successfully in Firefox (but to no avail; it didnt seem to help); I couldnt find SweetIM as an add-on in IE.

    When I used Firefox, and when I clicked on the little “house” icon which normally takes me to my homepage, seven new tabs tried to open all at once, pages that were convinced that they were all my homepage.

    Luckily, Spybot informed me that SweetIM is a bad program. I did find SweetIM in my program files, but when I clicked on SweetIMs uninstall file, nothing happened. When I clicked on Start and then All Programs, SweetIM did not appear in my program list.

    I wrote to SweetIM, telling them that they ought to be ashamed of themselves for unleashing this malicious program. I asked them to help me; SweetIMs technical support sent me an automatically generated reply and suggested that I read their FAQ page; I even tried to use SweetIMs online uninstall, but to no avail. By the way, that reply did not have word wrap, and the e-mail was just one really long sentence that bled off into Outlooks right margin.

    This morning (remember, SweetIM attached itself to my system late last night), I ran Spybot which detected 118 SweetIM entries (mostly in my computers Registry). Spybot was able to clean 114 of those items, and suggested that I restart my computer, and allow Spybot to run as it restarted. When the computer restarted, Spybot ran for about 90 minutes.

    When Spybot finished, I found SweetIM still in the Program directory, yet there were only four files left (perhaps these were the four that Spybot couldnt fix of the 118 it found the first time through). I deleted those items. I opened Firefox and IE where I found SweetIM as my homepage; I changed the homepages on both, restarted both browsers, and SweetIM is gone.

    Ive reported this problem to cnet. SweetIM is nasty; thank goodness for spyware programs such as Spybot. Thank you for this website because SweetIM is dastardly evil in more ways than one.

  2. Not working says:
    November 10th, 2012 at 9:44 am

    what can i do ?

  3. This isn really helpful says:
    December 24th, 2012 at 10:23 pm

    It seems uninstalling what you think is the problem then scanning would be the first thing to do. I already did that and 10 minutes later, SweetIM started showing up in my processes again. It didnt work, so Im looking up solutions. Obviously this tutorial doesnt work, so what would be the next step in getting rid of this?

  4. keenan says:
    January 30th, 2013 at 2:06 pm

    you can remove sweetim from your system using c-cleaner. I dont know why but on a lot of systems that I have had seen with crap like sweetim uninstalling using traditional methods doesnt work. so just install c-cleaner if you have not already, then just go to tools uninstall and the rest is simple 🙂

  5. davtos says:
    April 8th, 2013 at 12:22 pm

    the damn SweetIM comes up anyhow when a new page in Firefox is opened (not when the first page opens) – even if all the possible links to the program. It places an add right in the middle and invites to seach with a line looking like Google.
    You have the the feeling they check all the sites visited and passwords typed.
    How do I get rid of this nuisance??

    thanks in advance

  6. Michael says:
    June 11th, 2013 at 8:18 am

    Even after it is removed, there are folders it leaves on your hard drive. They are in use so you can not just delete them. THIS is the true virus, just uninstalling will not remove the problem. This program is loaded with viruses.

  7. 1000by1000 says:
    June 16th, 2013 at 12:34 pm

    Yeah,It even takes you to the site of sweetim search (even when you are trying to get drivers from dell)

  8. Marilynn says:
    August 16th, 2013 at 9:26 pm

    An “easy” fix for a number of these nuisances is to:
    -Press ctrl+alt+del
    -Start Task Manager
    -Select the “Processes” tab
    -Right-click the sweetim process
    -Select “End Process Tree”

Your opinion regarding Sweetim.com virus