Founder of MalwareIntelligence, a site dedicated to research on all matters relating to anti-malware security, criminology computing and information security in general, always from a perspective closely related to the field of intelligence.

viernes, 15 de mayo de 2009

Una recorrida por los últimos scareware VII

Nuevos programas maliciosos del tipo scareware han surgido durante este mes, bajo la cobertura de supuestas soluciones de seguridad y bajo nuevos dominios maliciosos.

Personal Antivirus
MD5: f5efa77ddc74c5a143d71dc3c3316ca9
IP: 78.47.91.153
Germany Germany Berlin Siarhei Shandrokha
Plataforma: Windows
Dominios Asociados
1bestprotectionscanner .com advancedproantivirusscanner .com adware-removal-tool .com alaskatoursonline .cn; antimalwarescannerv2 .com; antimalwaresecurityscan .com; antiviruspowerfulscanv2 .com; antivirusquickscanv2 .com; arangeyourdreams .cn; bestgossips .cn; bestworldmusic .cn; controlledsurfaces .cn; fastantimalwareproscanner .com; fastantimalwarescan .com; fordgreatcars .cn; hairstylezone .cn; latenighttalks .cn; pcsoftwarepayments .com; pleasentsurfing .cn; prideandglorynow .cn; protectionauditview .cn; quicklylivelinks .cn; saturationpower .cn; securityhelpcenter .com; tabletpccomputing .cn; teafuntrip .cn; thankyou4check .com; whreismyplugnplay .cn; worldcommercialbusiness .cn

VT Report: 34/40 (85%)

Registry Smart
MD5: 4622bb46f85be14dc7a5acf0c1464ee1
IP: 75.125.200.226
United States United States Dallas Theplanet.com Internet Services Inc
Plataforma: Windows
Dominios Asociados
registrysmart .com
adwarealert .com
audiowizardproeartrainer .com
database.registrysmart .com
evidenceeraser .com
getyourbandsigned .com
registrysmart .com
restore-pc .com
www.adwarealert .com
www.evidenceeraser .com
www.registrysmart .com
www.restore-pc .com
regofamily .net

VT Report: 5/40 (12.5%)


PC Codec Pack
IP: 194.165.4.77
Ukraine Ukraine Plitochnik Lux Ltd
Plataforma: Windows
Dominios Asociados
pc-codec-pack .com
adobesoft.co .cc
codecs.tubeloyaln .com
codecvistaz .com; codecxpvista .com; litetubevideoz .com; litetubevideoz .net; loyal-porno .com; loyaldown99 .com; loyalvideoz .com; molodiepilotki .com; pcvistaxpcodec .com; suckitnow1 .com; truepornmovies .com; truepornupload .com; truepornvideo .com; tubeloyaln .com; tubeontvgl .com; uplcodecset3 .com; uploadmoviez .com; videosz.tubeloyaln .com; wedare.tubeloyaln .com; win-pc-defender .com; wincodecupdate .com; winpcdown10 .com; winpcdown99 .com; www.codecvistaz .com; www.litetubevideoz .net: www.loyal-porno .com: www.loyaldown99 .com: www.loyalvideoz .com; www.pcvistaxpcodec .com; www.winpcdown99 .com; hypersecurityshield .com

Antivirus 360
IP: 88.214.204.40
United Kingdom United Kingdom Real International Business Corp
Plataforma: Windows
Dominios asociados:
antivirus-remote .com; awmgraphics .com; capital-hotels .net; dj77 .ru; dynaprintinc .com; flaxxvid .com; fullsitehost .info; helianaltd .com; ho1m .ru; maxstart .net; mivodesign .com; pixustudio .com; platinka .com; pochtarnt .ru; pornoearth .ru; pornogroupp .ru; rbc-mail .ru; revagefurniture .com; salonsti .com; siki .ru; sweetgey .ru; teen-sex-free .com; uktranslation .net; vashuspeh .com; wap4ik .com; weabl .com; www.add-your-video .net; www.dj77 .ru; www.entechpartners .com; www.ho1m .ru; www.lowerlights .net; www.mivodesign .com; www.pixustudio .com; www.pochtarnt .ru; www.pornoearth .ru; www.pornotrans .ru; www.rbc-mail .ru; www.revagefurniture .com; www.salonsti .com; www.smashmp3 .com; www.thebestceleb .com; www.uktranslation .net; www.xxxfreedirect .com; www.xxxshemaletour .com; xxxshemaletour .com


errorsweeper .com (75.125.61.162) - United States Theplanet.com
rusuchki .com/go/freevideo2 (95.211.7.140) - Netherlands Leaseweb
hitpresent .com/go.php?sid=3 (195.95.151.138) - Ukraine Kiev Eastnet-ua-net
xvirusdescan .com (209.44.126.241) - Canada Laval Netelligent
antivirusquickscanv1 .com (69.4.230.204) - United States Theplanet.com
antivirusquickscanv1 .com (78.47.91.153) - Germany Siarhei Shandrokha
antivirusquickscanv1 .com (83.133.123.140) - Germany Lncde-greatnet-newmedia
antivirusquickscanv1 .com (94.102.48.28) - Netherlands Root Esolutions
antivirusquickscanv1 .com (212.117.165.126) - Luxembourg Root Esolutions
antivirusquickscanv1 .com (38.99.170.210) - United States Theplanet.com
sexerotika2009.ru/admin/red/en .php (74.54.176.50) - United States Theplanet.com
softsupportmail.com (216.245.195.84) - United States Theplanet.com
guardav .com (72.232.187.198) - United States Layered Technologies Inc
fixupdates .com (174.36.234.248) - United States Softlayer Technologies Inc
online-av-scan2008 .net (74.50.117.89) - United States Noc4hosts Inc
av-antivir-check .com (74.50.117.76) - United States Noc4hosts Inc
best-av-scanner .com (74.50.117.74) - United States Noc4hosts Inc
goodsite.in/good/in .cgi?7 (212.98.162.59) - Belarus Belarus Minsk Bisiness Network Jv
fullvirusprotection .com (75.126.137.166) - United States Softlayer Technologies Inc
freewebmypcscan .com (95.129.144.236) - United Kingdom Ventrex Llp Customers
winbestsoftdownload .com (217.112.94.230) - United Kingdom Poundhost Customer Server
atom4scan .info; fan4scan .info; lux4scan .info; mini4scan .info; scan4atom .info; scan4fan .info; scan4mini .info; scan4mix .info; scan4ray .info; scan4star .info; fanscan4 .com; rayscan4 .com; scan6list .com (209.44.126.102) - Canada Laval Netelligent Hosting Services Inc
fuse6scan .com; way6scan .com; fusescan6 .com; listscan6 .info (78.159.115.216) - Germany Netdirekt E.k
open6scan .com; scan6fuse .com; scan6open .com (38.105.19.27) - United States Psinet Inc

AdwareHelp 2009
MD5: 07EB9CC49C8CB08C435914723134A236
IP: 74.54.241.100
United States United States Dallas Theplanet.com
Plataforma: Windows
Dominios Asociados
adware-help .com
allworldstars .net, freemediashare .net, funtarget .com, germek .net, gorasoft .net, iframr .com


Información relacionada
Una recorrida por los últimos scareware VI
Una recorrida por los últimos scareware V
Una recorrida por los últimos scareware IV
Una recorrida por los últimos scareware III
Una recorrida por los últimos scareware II
Una recorrida por los últimos scareware

# pistus

Ver más

Publicado por Jorge Mieres 0 comentarios

Suscribirse a: Entradas (Atom)