Antivirus 2009 rogue antivirus application

November 19, 2008 | Malware, Rogues

Antivirus 2009  a rogue antivirus application. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: imp-porntube.net
IP: 64.27.28.224
Whois:

OrgName:    Hollywood Interactive, Inc.
OrgID:      HLWD
Address:    600 W. 7th Street, Ste. 360
City:       Los Angeles
StateProv:  CA
PostalCode: 90017
Country:    US

NetRange:   64.27.0.0 - 64.27.31.255
CIDR:       64.27.0.0/19
NetName:    HOLLYWOOD-INTERACTIVE
NetHandle:  NET-64-27-0-0-1
Parent:     NET-64-0-0-0-0
NetType:    Direct Allocation
NameServer: NS1.CALPOP.COM
NameServer: NS2.CALPOP.COM
Comment:    ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate:    2000-01-10
Updated:    2004-09-13

RNOCHandle: CNO4-ARIN
RNOCName:   CalPOP Network Operations
RNOCPhone:  +1-213-627-1937
RNOCEmail:   noc@calpop.com

Other sites:

1.  Celebs4you-online2008.com 
2.  I-av-sscan2009.com 
3.  Imp-porntube.net 

Host: antivirusdefense.com
IP: 69.10.44.207

Whois:

OrgName:    Interserver, Inc
OrgID:      INTER-83
Address:    110 Meadowlands Pkwy
Address:    1st Floor
City:       Secaucus
StateProv:  NJ
PostalCode: 07094
Country:    US

Host: www.win-security-scanner.org
IP: 115.126.5.92

Whois:

OrgName:    Asia Pacific Network Information Centre
OrgID:      APNIC
Address:    PO Box 2131
City:       Milton
StateProv:  QLD
PostalCode: 4064
Country:    AU

Other sites:

1.  Spy-protector.org 
2.  Win-security-scanner.org 
3.  Spy-protector.biz 

Host: powerfulvirusremover2008.com
IP: 77.245.61.80

Whois:

descr:          Webair Internet Development company, Inc
country:        NL
org:            ORG-RII1-RIPE
admin-c:        RIIS1-RIPE
tech-c:         RIIS1-RIPE
status:         ALLOCATED PA
mnt-by:         RIPE-NCC-HM-MNT
mnt-lower:      GLOBALAXS-MNT
mnt-lower:      WEBAIRINC-MTL
mnt-domains:    MNT-RECURRING
mnt-routes:     MNT-RECURRING
source:         RIPE # Filtered

organisation:   ORG-RII1-RIPE
org-name:       Webair Internet Development company, Inc
org-type:       LIR
address:        Recurring International Inc
                Sagi Brody
                REDBUS INTERHOUSE (NETHERLANDS) B V GYROSCOOPWEG 2E
                AB 1042 AMSTERDAM
                Netherlands
phone:          +31 20 4804400
fax-no:         +15169385100

Other sites:

1.  Mysecureexpertcleaner.com 
2.  Pcvirusremover2008.com 
3.  Powerfulvirusremover2008.com 
4.  Prosecureexpertcleaner.com 
5.  Prosecureexpertcleanerpro.com 
6.  Registrydoctor2008-online.com 
7.  Registrydoctor2008-pro.com 
8.  Registrydoctor2008-scan.com 
9.  Registrydoctor2008.com 
10.  Registrydoctorpro2008.com 
11.  Secureexpertcleaner.com 
12.  Securefileshred.com 
13.  Securefileshredder.com 
14.  Securefileshredder2009.com 
15.  Securefilesshred.com 
16.  Securefilesshredder.com 
17.  Strongvirusremover2008.com 
18.  Supersecurefileshredder.com 
19.  Topregistrydoctor2008.com 
20.  Virusremover2008flash.com 
21.  Virusremover2008plus.com 
22.  Winsecureexpertcleaner.com 
23.  Yoursecureexpertcleaner.com 

Host: official-antivirus2009.com
IP: 84.243.196.136

Whois:

org-name:       PortNAP Internet Services
org-type:       OTHER
address:        Beverwaardseweg 232
address:        3077GD Rotterdam
address:        The Netherlands
phone:          +31.612928606
mnt-ref:        GFX-MNT
mnt-by:         GFX-MNT
source:         RIPE # Filtered

role:           GrafiX NOC
org:            ORG-GIB1-RIPE
address:        GrafiX Internet B.V.
address:        Stationsplein 20
address:        2907 MJ  Capelle aan den IJssel
phone:          +31 10 2640210
fax-no:         +31 10 2640211

Host: softwarebillingservice.com
IP: 63.219.177.214

Whois of softwarebillingservice.com

Registration Service Provided By: ERDOMAIN.COM
Contact: +49.3036741521
Website: http://www.erdomain.com

Domain Name: SOFTWAREBILLINGSERVICE.COM

Registrant:
    N/A
    Viktor Temchenko        (temchenkoviktor@googlemail.com)
    Pr. Geroev Tryda
    Kharkov
    Kharkiv Oblast,01001
    UA
    Tel. +380.936328480

Creation Date: 03-Nov-2008
Expiration Date: 03-Nov-2009

Whois of 63.219.177.214

OrgName:    Beyond The Network America, Inc.
OrgID:      BNA-42
Address:    450 Springpark PL
Address:    Suite 100
City:       Herdon
StateProv:  VA
PostalCode: 20170
Country:    US

Antivirus 2009 from Pandora software

2 Comments »

Windefender 2009 rogue antivirus application

November 18, 2008 | Malware, Rogues

Windefender 2009 is a rogue antivirus application. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: mymostprivatevideo.com
IP: 78.157.141.6

Whois:

role:           UltraNet Hostmaster
address:        UltraNet SIA
                Aizkraukles 23
                Riga, LV-1006
                Latvia
phone:          +371 67543003
fax-no:         +371 67594435
e-mail:         hostmaster@ultranet.lv
admin-c:        AS28817-RIPE
admin-c:        MS16883-RIPE
tech-c:         AS28817-RIPE
nic-hdl:        UNHM-RIPE
mnt-by:         UN-MNT
source:         RIPE # Filtered

Host: windefender-2009.com
IP: 200.63.45.55

Whois:

status:      reallocated
owner:       Ricardo Carreras
ownerid:     HN-RICA-LACNIC
responsible: Honduras Web
address:     P.O.Box: 1142 La Ceiba, #37 street., 1142, 37
address:     00000 - Tegucigalpa - TE
country:     HN
phone:       +504  9815-3645 []
owner-c:     RIC9
tech-c:      RIC9
abuse-c:     RIC9
created:     20080630
changed:     20080630
inetnum-up:  200.63.40/21

nic-hdl:     RIC9
person:      Ricardo Carreras
e-mail:      hn-rica@ONLINEABUSECENTER.COM

Host: windefender2009.com
IP:  200.63.45.132

Whois:

status:      reallocated
owner:       Ricardo Carreras
ownerid:     HN-RICA-LACNIC
responsible: Honduras Web
address:     P.O.Box: 1142 La Ceiba, #37 street., 1142, 37
address:     00000 - Tegucigalpa - TE
country:     HN
phone:       +504  9815-3645 []
owner-c:     RIC9
tech-c:      RIC9
abuse-c:     RIC9
created:     20080630
changed:     20080630
inetnum-up:  200.63.40/21

nic-hdl:     RIC9
person:      Ricardo Carreras
e-mail:      hn-rica@ONLINEABUSECENTER.COM

No Comments »

PRO Antispyware 2009 rogue antispyware application

November 18, 2008 | Malware, Rogues

PRO Antispyware 2009 is a rogue antispyware. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: scan.scannerantispyware.com
IP: 78.26.179.233

Whois:

role:           Renome Service Tech Staff
address:        Kosvennaya str., 78, Odessa, Ukraine, 65000
org:            ORG-RA159-RIPE
phone:          +380487597596
fax-no:         +380487597596
mnt-by:         RENOME-MNT
abuse-mailbox:  abuse@odessa.tv
admin-c:        WU-RIPE
admin-c:        GA-RIPE
tech-c:         WU-RIPE
nic-hdl:        RSM-RIPE
source:         RIPE # Filtered

Host: files.download-antispyware.com
IP: 78.157.142.81

Whois:

netname:        VDHOST
descr:          VdHost Ltd.
descr:          abuse@vdhost.info
country:        LV
admin-c:        AV2990-RIPE
tech-c:         AV2990-RIPE
status:         ASSIGNED PA
mnt-by:         UN-MNT
source:         RIPE # Filtered

person:         Arturs Vavilovs
address:        Riga
phone:          +371 29653077
e-mail:         admin@vdhost.info
nic-hdl:        AV2990-RIPE
mnt-by:         UN-MNT
source:         RIPE # Filtered

Host: sales.proantispyware-2009-buy.com
IP: 216.195.42.226

Whois:

OrgName:    APS Telecom
OrgID:      APSTE
Address:    8130 SW BEAVERTON-HILLSDALE HWY
City:       PORTLAND
StateProv:  OR
PostalCode: 97225
Country:    US

Host: secure.websecurebilling.com
IP: 209.8.45.146

Whois of websecurebilling.com :

  Domain Name: WEBSECUREBILLING.COM
   Registrar: REGTIME LTD.
   Whois Server: whois.regtime.net
   Referral URL: http://www.webnames.ru
   Name Server: NS1.WEBSECUREBILLING.COM
   Name Server: NS2.WEBSECUREBILLING.COM
   Status: ok
   Updated Date: 11-nov-2008
   Creation Date: 07-nov-2008
   Expiration Date: 07-nov-2009
  
Whois 209.8.45.146:

OrgName:    Beyond The Network America, Inc.
OrgID:      BNA-42
Address:    450 Springpark PL
Address:    Suite 100
City:       Herdon
StateProv:  VA
PostalCode: 20170
Country:    US

PRO Antispyware 2009 from Pandora software

No Comments »

Antispyware PRO XP rogue antispyware application

November 17, 2008 | Malware, Rogues

Antispyware PRO XP is a rogue antispyware. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: scan.antispyware-free-scanner.com
IP: 78.26.179.230

Whois:

organisation:   ORG-RA159-RIPE
org-name:       Renome-Service
org-type:       LIR
descr:          Renome-Service: Joint Multimedia Cable Network
address:        Renome Service
                Andrew Gaidulyan
                Kosvennaya str., 78
                65000 Odessa
                UKRAINE
phone:          +3 80487597596
fax-no:         +3 80487597596
abuse-mailbox:  abuse@odessa.tv
admin-c:        GA-RIPE
admin-c:        WU-RIPE
admin-c:        WU-RIPE
mnt-ref:        RENOME-MNT
mnt-ref:        RIPE-NCC-HM-MNT
mnt-by:         RIPE-NCC-HM-MNT
source:         RIPE # Filtered

Host: files.pc-security-downloads.com
IP: 78.157.142.80

Whois:

inetnum:        78.157.142.0 - 78.157.142.255
netname:        VDHOST
descr:          VdHost Ltd.
descr:          abuse@vdhost.info
country:        LV
admin-c:        AV2990-RIPE
tech-c:         AV2990-RIPE
status:         ASSIGNED PA
mnt-by:         UN-MNT
source:         RIPE # Filtered

person:         Arturs Vavilovs
address:        Riga
phone:          +371 29653077
e-mail:         admin@vdhost.info
nic-hdl:        AV2990-RIPE
mnt-by:         UN-MNT
source:         RIPE # Filtered

Host: sales.buy-antispyware-pro-xp.com
IP: 216.195.42.223

Whois:

OrgName:    APS Telecom
OrgID:      APSTE
Address:    8130 SW BEAVERTON-HILLSDALE HWY
City:       PORTLAND
StateProv:  OR
PostalCode: 97225
Country:    US

Host: secure.paymentbit.net
IP: 216.195.56.175

Whois of paymentbit.net

Registrant:
         Joana Termon  (4epmck6ysxu@privateregistration.srsplus.com)
        Billing Group, Corp
        ATTN: paymentbit.net
        c/o SRSPlus Private Registration
        P.O. Box 447
        Herndon, VA 20172-0447
        570-708-8760

Domain Name: paymentbit.net

Whois of IP 216.195.56.175:

OrgName:    APS Telecom
OrgID:      APSTE
Address:    8130 SW BEAVERTON-HILLSDALE HWY
City:       PORTLAND
StateProv:  OR
PostalCode: 97225
Country:    US

NetRange:   216.195.32.0 - 216.195.63.255
CIDR:       216.195.32.0/19
NetName:    APS-EPSI
NetHandle:  NET-216-195-32-0-1
Parent:     NET-216-0-0-0-0
NetType:    Direct Allocation
NameServer: NS1.3FN.NET
NameServer: NS2.3FN.NET
Comment:    send abuse issues to abuse@3fn.net, send network
Comment:    issue to noc@3fn.net
RegDate:    2003-11-05
Updated:    2004-09-17

RTechHandle: NSW-ARIN
RTechName:   Swen, Nash
RTechPhone:  +1-800-539-8209
RTechEmail:  noc@apxtelecom.com

OrgTechHandle: NSW-ARIN
OrgTechName:   Swen, Nash
OrgTechPhone:  +1-800-539-8209
OrgTechEmail:  noc@apxtelecom.com

Other sites:

1.  1softwarespot.com 
2.  Adult-billing.com 
3.  Bestsoftclub.com 
4.  Billhlp.com 
5.  Billingcenteronline.com 
6.  Billinghost.net 
7.  Billingintegrator.com 
8.  Billingmill.com 
9.  Billingserviceonline.com 
10.  Billingsquad.net 
11.  Billinternet.com 
12.  Billsvc.com 
13.  Customerhlp.com 
14.  Dopaymentsonline.com 
15.  Ebillingcenter.com 
16.  Fantazybill.com 
17.  Interbills.com 
18.  Justnetbilling.net 
19.  Legalbillingsystems.com 
20.  Mainbillingcenter.com 
21.  Megafixer.com 
22.  Orderhlp.com 
23.  Paymentbit.com 
24.  Paymentbit.net 
25.  Paymentforge.com 
26.  Safepaymentsonline.com 
27.  Softwbill.com 
28.  Spankyhosting.com 
29.  Support-wizard.com 
30.  Truebillingservices.com 

No Comments »

DNS changer virus and commercial banner exchanger

November 17, 2008 | Malware, Rogues

DNS changer virus. Stay away from following IPS and Domains!

To remove virus DNS changer use Kaspersky Antivirus http://cleanthe.net/how-to-remove-virus/

Host: porntube08.com
IP: 99.198.96.54
Whois:

OrgName:    SingleHop, Inc.
OrgID:      SINGL-8
Address:    223 West Jackson Street
Address:    Suite 1014
City:       Chicago
StateProv:  IL
PostalCode: 60606
Country:    US

NetRange:   99.198.96.0 - 99.198.127.255
CIDR:       99.198.96.0/19
OriginAS:   AS32475
NetName:    SINGLEHOP
NetHandle:  NET-99-198-96-0-1
Parent:     NET-99-0-0-0-0
NetType:    Direct Allocation
NameServer: NS1.SINGLEHOP.COM
NameServer: NS2.SINGLEHOP.COM
Comment:   
RegDate:    2008-08-14
Updated:    2008-08-14

RAbuseHandle: NETWO1546-ARIN
RAbuseName:   Network Operations
RAbusePhone:  +1-866-817-2811

Other sites:

1.  Porn-toube.com 
2.  Porntube08.com 
3.  Porntube09.com 
4.  Sex-toube.com 
5.  Sextoubi.com 

Host: pillsexpert.com
IP: 66.230.181.160

Rogue DNS 85.255.112.12 and 85.255.112.132

org-name:       UkrTeleGroup Ltd.
org-type:       LIR
address:        UkrTeleGroup Ltd.
                Mechnikova 58/5
                65029 Odessa
                Ukraine
phone:          +380487311011
fax-no:         +380487502499
mnt-ref:        UKRTELE-MNT
mnt-ref:        RIPE-NCC-HM-MNT
mnt-by:         RIPE-NCC-HM-MNT
source:         RIPE # Filtered

No Comments »

Antivirus PRO 2009 rogue antivirus application

November 15, 2008 | Malware, Rogues

Antivirus PRO 2009  a rogue antivirus application. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: new-porn-tubeportal2008.net
IP: 89.149.228.201

Whois:

descr:          netdirect Frankfurt, DE
origin:         AS28753
org:            ORG-nA8-RIPE
mnt-lower:      NETDIRECT-MNT
mnt-routes:     NETDIRECT-MNT
mnt-by:         NETDIRECT-MNT
source:         RIPE # Filtered

organisation:   ORG-nA8-RIPE
org-name:       netdirect
org-type:       LIR
address:        netdirekt e. K.
                Kleyer Strasse 79 / Tor 14
                60326 Frankfurt
                Germany
phone:          +49 69 90556880
fax-no:         +49 69 905568822
e-mail:         ripe@netdirekt.de

Other sites:

1.  Celebrity-on-video-08.net 
2.  Domain5123.net 
3.  I-av-scanner2008.net 
4.  New-porn-tubeportal2008.net 

Host: down-soft-index.com
IP: 216.195.41.60

Whois:

OrgName:    APS Telecom
OrgID:      APSTE
Address:    8130 SW BEAVERTON-HILLSDALE HWY
City:       PORTLAND
StateProv:  OR
PostalCode: 97225
Country:    US

Other sites:

1.  Down-soft-index.com 
2.  Downsoftindex.com 

Host: av-pro-2009.com
IP: 92.48.201.50

Whois:

netname:        NEWRACK-NL
descr:          NewRack.eu NL department
country:        NL
admin-c:        SVS148-RIPE
tech-c:         SVS148-RIPE
status:         ASSIGNED PA
mnt-by:         WEDARE-MNT
source:         RIPE # Filtered

person:         Sergey V. Smirnoff
address:        OOO “Ronetel”
address:        Lenina 129 o. 17
address:        Moscow
address:        Russia
phone:          +852 812 4838
fax-no:         +852 812 4838
abuse-mailbox:  abuse@newrack.eu

Other sites:

1.  Av-pro-2009.com 
2.  Avpro2009.com 

Host: secure.soft-payments.com
IP: 92.48.201.52

Whois of soft-payments.com:

Domain name: soft-payments.com

Registrant Contact:
   Matthew Charles
   Matthew Charles monster@feedosmail.com
   +380.930772466 fax: +380.930772466
   30 Leicester Square
   London UK WC2H 7LA
   gb

Administrative Contact:
   Villi Mikoca monster@feedosmail.com
   +1.8821121128 fax: +1.8821121128
   3113 po box
   New York NY 10017
   us

Technical Contact:
   Villi Mikoca monster@feedosmail.com
   +1.8821121128 fax: +1.8821121128
   3113 po box
   New York NY 10017
   us

Billing Contact:
   Villi Mikoca monster@feedosmail.com
   +1.8821121128 fax: +1.8821121128
   3113 po box
   New York NY 10017
   us

Whois of 92.48.201.52:

OrgName:    APS Telecom
OrgID:      APSTE
Address:    8130 SW BEAVERTON-HILLSDALE HWY
City:       PORTLAND
StateProv:  OR
PostalCode: 97225
Country:    US

No Comments »

Antivirus 2009 rogue antivirus application

November 15, 2008 | Malware, Rogues

Antivirus 2009  a rogue antivirus application. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: softwareclicks2.com
IP: 64.86.17.44

Whois:

OrgName:    Teleglobe Inc.
OrgID:      GLBE
Address:    1441 Carrie-Derick
City:       Montreal
StateProv:  QC
PostalCode: H3C-4S9
Country:    CA

NetRange:   64.86.0.0 - 64.86.255.255
CIDR:       64.86.0.0/16
OriginAS:   AS6453
NetName:    TELEGLOBE
NetHandle:  NET-64-86-0-0-1
Parent:     NET-64-0-0-0-0
NetType:    Direct Allocation
NameServer: CASTOR.TELEGLOBE.NET
NameServer: POLLUX.TELEGLOBE.NET
Comment:    ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate:    2000-05-04
Updated:    2007-04-23

RAbuseHandle: ABUSE1643-ARIN
RAbuseName:   Abuse
RAbusePhone:  +1-514-868-7875

Host: total-antivirus-scan.com
IP: 64.86.17.44

Whois:

OrgName:    Teleglobe Inc.
OrgID:      GLBE
Address:    1441 Carrie-Derick
City:       Montreal
StateProv:  QC
PostalCode: H3C-4S9
Country:    CA

NetRange:   64.86.0.0 - 64.86.255.255
CIDR:       64.86.0.0/16
OriginAS:   AS6453
NetName:    TELEGLOBE
NetHandle:  NET-64-86-0-0-1
Parent:     NET-64-0-0-0-0
NetType:    Direct Allocation
NameServer: CASTOR.TELEGLOBE.NET
NameServer: POLLUX.TELEGLOBE.NET
Comment:    ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate:    2000-05-04
Updated:    2007-04-23

RAbuseHandle: ABUSE1643-ARIN
RAbuseName:   Abuse
RAbusePhone:  +1-514-868-7875

Host: premium-update.com
IP: 64.86.17.44

Whois:

OrgName:    Teleglobe Inc.
OrgID:      GLBE
Address:    1441 Carrie-Derick
City:       Montreal
StateProv:  QC
PostalCode: H3C-4S9
Country:    CA

NetRange:   64.86.0.0 - 64.86.255.255
CIDR:       64.86.0.0/16
OriginAS:   AS6453
NetName:    TELEGLOBE
NetHandle:  NET-64-86-0-0-1
Parent:     NET-64-0-0-0-0
NetType:    Direct Allocation
NameServer: CASTOR.TELEGLOBE.NET
NameServer: POLLUX.TELEGLOBE.NET
Comment:    ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate:    2000-05-04
Updated:    2007-04-23

RAbuseHandle: ABUSE1643-ARIN
RAbuseName:   Abuse
RAbusePhone:  +1-514-868-7875

Host: securedliveupdate.com
IP: 64.86.17.44

Whois:

OrgName:    Teleglobe Inc.
OrgID:      GLBE
Address:    1441 Carrie-Derick
City:       Montreal
StateProv:  QC
PostalCode: H3C-4S9
Country:    CA

NetRange:   64.86.0.0 - 64.86.255.255
CIDR:       64.86.0.0/16
OriginAS:   AS6453
NetName:    TELEGLOBE
NetHandle:  NET-64-86-0-0-1
Parent:     NET-64-0-0-0-0
NetType:    Direct Allocation
NameServer: CASTOR.TELEGLOBE.NET
NameServer: POLLUX.TELEGLOBE.NET
Comment:    ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate:    2000-05-04
Updated:    2007-04-23

RAbuseHandle: ABUSE1643-ARIN
RAbuseName:   Abuse
RAbusePhone:  +1-514-868-7875

Host: secureyourpayments.com
IP: 64.86.17.44

Whois of secureyourpayments.com:

Registrant:
   Valensia Holmes
   402 Office Park Drive
   Birmingham, Alabama 35223
   United States

   Registered through: GoDaddy.com, Inc. (http://www.godaddy.com)
   Domain Name: SECUREYOURPAYMENTS.COM
      Created on: 09-Sep-08
      Expires on: 09-Sep-09
      Last Updated on: 09-Sep-08

   Administrative Contact:
      Holmes, Valensia  ValensiaHolmesceo@googlemail.com
      402 Office Park Drive
      Birmingham, Alabama 35223
      United States
      (205) 830-9900      Fax –

   Technical Contact:
      Holmes, Valensia  ValensiaHolmesceo@googlemail.com
      402 Office Park Drive
      Birmingham, Alabama 35223
      United States
      (205) 830-9900      Fax –

  
Whois of 64.86.17.44:

OrgName:    Teleglobe Inc.
OrgID:      GLBE
Address:    1441 Carrie-Derick
City:       Montreal
StateProv:  QC
PostalCode: H3C-4S9
Country:    CA

NetRange:   64.86.0.0 - 64.86.255.255
CIDR:       64.86.0.0/16
OriginAS:   AS6453
NetName:    TELEGLOBE
NetHandle:  NET-64-86-0-0-1
Parent:     NET-64-0-0-0-0
NetType:    Direct Allocation
NameServer: CASTOR.TELEGLOBE.NET
NameServer: POLLUX.TELEGLOBE.NET
Comment:    ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate:    2000-05-04
Updated:    2007-04-23

RAbuseHandle: ABUSE1643-ARIN
RAbuseName:   Abuse
RAbusePhone:  +1-514-868-7875

Host: softwarebillingservice.com
IP: 63.219.177.214

Whois of softwarebillingservice.com

Registration Service Provided By: ERDOMAIN.COM
Contact: +49.3036741521
Website: http://www.erdomain.com

Domain Name: SOFTWAREBILLINGSERVICE.COM

Registrant:
    N/A
    Viktor Temchenko        (temchenkoviktor@googlemail.com)
    Pr. Geroev Tryda
    Kharkov
    Kharkiv Oblast,01001
    UA
    Tel. +380.936328480

Creation Date: 03-Nov-2008
Expiration Date: 03-Nov-2009

Whois of 63.219.177.214

OrgName:    Beyond The Network America, Inc.
OrgID:      BNA-42
Address:    450 Springpark PL
Address:    Suite 100
City:       Herdon
StateProv:  VA
PostalCode: 20170
Country:    US

Rogue antivirus Antivirus 2009 from Pandora Software

No Comments »

Windefender 2009 rogue antivirus and DNS changer

November 13, 2008 | Malware, Rogues

Windefender 2009  a rogue antivirus application. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Malware changing DNS to :

85.255.116.53
85.255.112.7

Whois:

netname:        UkrTeleGroup
descr:          UkrTeleGroup Ltd.
admin-c:        UA481-RIPE
tech-c:         UA481-RIPE
country:        UA
org:            ORG-UL25-RIPE
status:         ASSIGNED PI
mnt-by:         RIPE-NCC-HM-PI-MNT
mnt-lower:      RIPE-NCC-HM-PI-MNT
mnt-by:         UKRTELE-MNT
mnt-routes:     UKRTELE-MNT
mnt-domains:    UKRTELE-MNT
source:         RIPE # Filtered

Host: megauplinkbindinstaller.com
IP: 91.203.92.99

Whois:

netname:        BASTION-NET
descr:          ISP UATelecom
country:        EU
org:            ORG-TG39-RIPE
admin-c:        ML7676-RIPE
tech-c:         UNm3-RIPE
status:         ASSIGNED PI
mnt-by:         UATELECOM-MNT
mnt-lower:      UATELECOM-MNT
mnt-routes:     UATELECOM-MNT
mnt-domains:    UATELECOM-MNT

Other sites:

1.  Megauplinkbindinstaller.com 
2.  Theupdatedownload.com 

Host: videofreeforonline.com
IP: 91.203.92.97

Whois:

netname:        BASTION-NET
descr:          ISP UATelecom
country:        EU
org:            ORG-TG39-RIPE
admin-c:        ML7676-RIPE
tech-c:         UNm3-RIPE
status:         ASSIGNED PI
mnt-by:         UATELECOM-MNT
mnt-lower:      UATELECOM-MNT
mnt-routes:     UATELECOM-MNT
mnt-domains:    UATELECOM-MNT

Other sites:

1.  Mybestmp3portal.com 
2.  Myprivatevideoarchive.com 
3.  Videofreeforonline.com 

Host: windefender-2009.com
IP: 200.63.45.55

Whois:

status:      reallocated
owner:       Ricardo Carreras
ownerid:     HN-RICA-LACNIC
responsible: Honduras Web
address:     P.O.Box: 1142 La Ceiba, #37 street., 1142, 37
address:     00000 - Tegucigalpa - TE
country:     HN
phone:       +504  9815-3645 []
owner-c:     RIC9
tech-c:      RIC9
abuse-c:     RIC9
created:     20080630
changed:     20080630
inetnum-up:  200.63.40/21

nic-hdl:     RIC9
person:      Ricardo Carreras

Host: windefender2009.com
IP: 200.63.45.55

Whois:

status:      reallocated
owner:       Ricardo Carreras
ownerid:     HN-RICA-LACNIC
responsible: Honduras Web
address:     P.O.Box: 1142 La Ceiba, #37 street., 1142, 37
address:     00000 - Tegucigalpa - TE
country:     HN
phone:       +504  9815-3645 []
owner-c:     RIC9
tech-c:      RIC9
abuse-c:     RIC9
created:     20080630
changed:     20080630
inetnum-up:  200.63.40/21

nic-hdl:     RIC9
person:      Ricardo Carreras

No Comments »

Antivirus Pro 2009 rogue antivirus application

November 11, 2008 | Malware, Rogues

Antivirus PRO 2009  a rogue antivirus application. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: newer-iporn-hub08.com
IP: 66.232.105.253

Whois:

OrgName:    NOC4Hosts Inc.
OrgID:      NOC4H
Address:    400 N Tampa St
Address:    #1025
City:       Tampa
StateProv:  FL
PostalCode: 33602
Country:    US

Host:  www.av-pro-2009.com
IP: 92.48.201.50

Whois:

netname:        NEWRACK-NL
descr:          NewRack.eu NL department
country:        NL
admin-c:        SVS148-RIPE
tech-c:                SVS148-RIPE
status:                ASSIGNED PA
mnt-by:                WEDARE-MNT
source:         RIPE # Filtered

person:         Sergey V. Smirnoff
address:        OOO “Ronetel”
address:        Lenina 129 o. 17
address:        Moscow
address:        Russia
phone:          +852 812 4838
fax-no:         +852 812 4838

Other sites:

1.  Av-pro-2009.com 
2.  Avpro2009.com 

Host: secure.soft-payments.com
IP: 92.48.201.52

Whois of secure.soft-payments.com:

Registrant Contact:
   Matthew Charles
   Matthew Charles
   +380.930772466 fax: +380.930772466
   30 Leicester Square
   London UK WC2H 7LA
   gb

Administrative Contact:
   Villi Mikoca
   +1.8821121128 fax: +1.8821121128
   3113 po box
   New York NY 10017
   us

Technical Contact:
   Villi Mikoca
   +1.8821121128 fax: +1.8821121128
   3113 po box
   New York NY 10017
   us

Billing Contact:
   Villi Mikoca
   +1.8821121128 fax: +1.8821121128
   3113 po box
   New York NY 10017
   us
  
Whois of 92.48.201.52:

netname:        NEWRACK-NL
descr:          NewRack.eu NL department
country:        NL
admin-c:        SVS148-RIPE
tech-c:                SVS148-RIPE
status:                ASSIGNED PA
mnt-by:                WEDARE-MNT
source:         RIPE # Filtered

person:         Sergey V. Smirnoff
address:        OOO “Ronetel”
address:        Lenina 129 o. 17
address:        Moscow
address:        Russia
phone:          +852 812 4838
fax-no:         +852 812 4838

No Comments »

Antivirus 2009 rogue antivirus application

November 11, 2008 | Malware, Rogues

Antivirus 2009  a rogue antivirus application. To remove that rogue application viruses and antispyware use Kaspersky antivirus - http://cleanthe.net/how-to-remove-virus/

Host: newer-pon-hub2009.com
IP: 74.50.117.88

Whois:

OrgName:    NOC4Hosts Inc.
OrgID:      NOC4H
Address:    400 N Tampa St
Address:    #1025
City:       Tampa
StateProv:  FL
PostalCode: 33602
Country:    US

Other sites:

1.  Celebs-on-video-08.net 
2.  E-softpoertals2008.net 
3.  E-softportals.net 
4.  Funsoft-enjoyportal.net 
5.  I-softportal08.net 
6.  Main-downloadportal.net 
7.  Main-softwaredownload.net 
8.  Muzdownload.com 
9.  New-porn-hub.net 
10.  New-porns-hub.net 
11.  Newest-porn-tube.net 
12.  Soft4enjoy2008.net 
13.  Soft4funportal.net 
14.  Newer-pon-hub2009.com 

Host: codecdownload.comp-softportal.net
IP: 74.50.117.88

Whois:

OrgName:    NOC4Hosts Inc.
OrgID:      NOC4H
Address:    400 N Tampa St
Address:    #1025
City:       Tampa
StateProv:  FL
PostalCode: 33602
Country:    US

Host: digipayments-soft.com
IP: 208.72.168.185

Whois:

OrgName:    McColo Corporation
OrgID:      MCCOL
Address:    64 East main st. box 275
City:       Newark
StateProv:  DE
PostalCode: 19715
Country:    US

Host: softwarebillingservice.com
IP: 63.219.177.214

Whois of softwarebillingservice.com

Registration Service Provided By: ERDOMAIN.COM
Contact: +49.3036741521
Website: http://www.erdomain.com

Domain Name: SOFTWAREBILLINGSERVICE.COM

Registrant:
    N/A
    Viktor Temchenko       
    Pr. Geroev Tryda
    Kharkov
    Kharkiv Oblast,01001
    UA
    Tel. +380.936328480
 
Whois of 63.219.177.214:

OrgName:    Beyond The Network America, Inc.
OrgID:      BNA-42
Address:    450 Springpark PL
Address:    Suite 100
City:       Herdon
StateProv:  VA
PostalCode: 20170
Country:    US

Pandora software

2 Comments »