Clean The Net

AdWare Alert is a fake antispyware application. DO NOT download any software from domain(s) of AdWare Alert.

Host: adware-download.com
IP: 70.86.182.194
Whois:

OrgName:    ThePlanet.com Internet Services, Inc.
OrgID:      TPCM
Address:    315 Capitol
Address:    Suite 205
City:       Houston
StateProv:  TX
PostalCode: 77002
Country:    US
RTechHandle: PP46-ARIN
RTechName:   Pathos, Peter
RTechPhone:  +1-214-782-7800
RTechEmail:   abuse@theplanet.com

Host: adwarealert.com
IP: 72.32.29.230
Whois of IP 72.32.29.230 distributing fake antispyware application AdWare Alert:

OrgName:    Rackspace.com, Ltd.
OrgID:      RSPC
Address:    9725 Datapoint Drive
Address:    Suite 100
City:       San Antonio
StateProv:  TX
PostalCode: 78229
Country:    US
OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName:   Abuse Desk
OrgAbusePhone:  +1-210-892-4000
OrgAbuseEmail:  abuse@rackspace.com

Other sites on  IP 72.32.29.230 distributing fake antispyware application AdWare Alert:

1.  Adwarealert.com 
2.  Evidenceeraser.com 
3.  Movieadvanced.com 
4.  Registrysmart.com 
5.  Restore-pc.com 

Host: setup.adwarealert.com
IP: 72.32.29.234
Whois:

OrgName:    Rackspace.com, Ltd.
OrgID:      RSPC
Address:    9725 Datapoint Drive
Address:    Suite 100
City:       San Antonio
StateProv:  TX
PostalCode: 78229
Country:    US
OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName:   Abuse Desk
OrgAbusePhone:  +1-210-892-4000
OrgAbuseEmail:  abuse@rackspace.com

Host: ssl.clickbank.net
IP: 64.128.87.138 and 64.128.87.139

Whois of  IP 64.128.87.138 distributing fake antispyware application AdWare Alert:

OrgName:    tw telecom holdings, inc.
OrgID:      TWTC
Address:    10475 Park Meadows Drive
City:       Littleton
StateProv:  CO
PostalCode: 80124
Country:    US

OrgAbuseHandle: TWTAD-ARIN
OrgAbuseName:   tw telecom Abuse Desk
OrgAbusePhone:  +1-800-898-6473
OrgAbuseEmail:  abuse@twtelecom.net

Antivirus XP 2008 is a rogue antivirus application. DO NOT download any software from domain(s) of Antivirus XP 2008.

Host: 1st-tube.com
IP: 74.50.117.84
Whois of IP 74.50.117.84 distributing rogue antivirus application Antivirus XP 2008

OrgName:    NOC4Hosts Inc.
OrgID:      NOC4H
Address:    400 N Tampa St
Address:    #1025
City:       Tampa
StateProv:  FL
PostalCode: 33602
Country:    US
RAbuseHandle: NAA7-ARIN
RAbuseName:   Noc4Hosts Abuse Admin
RAbusePhone:  +1-877-801-1443
RAbuseEmail:   abuse@noc4hosts.com

Other sites on IP 74.50.117.84 distributing rogue antivirus application Antivirus XP 2008:

1.  Best-cracks.com 
2.  Celebs-on-video.com 
3.  Codechost.com 
4.  Codecupgrade.com 
5.  Crack-all.com 
6.  Crack-expert.com 
7.  Crack-land.com 
8.  Freemoviesdb.net 
9.  Just-tube.com 
10.  Karachun.net 
11.  Megasoftportal.net 
12.  Muzdownload.com 
13.  Porntubev20.com 
14.  Pro-scanner.com 
15.  Scanner-pro.com 
16.  Scanner-tool.com 
17.  Showconz.com 
18.  Softupdat.com 
19.  Surf-scanner.com 
20.  Unlimdownloads.com 
21.  Updatehost.com 
22.  Winantivirus2008.org 
23.  Crackundeground.com 
24.  Online-av-scan.com 
25.  Porn-tube-2008.com 

Host: img-library.com
IP: 85.255.117.252

Whois:

netname:        UkrTeleGroup
descr:          UkrTeleGroup Ltd.
admin-c:        UA481-RIPE
tech-c:         UA481-RIPE
country:        UA
org-name:       UkrTeleGroup Ltd.
org-type:       LIR
address:        UkrTeleGroup Ltd.
                Mechnikova 58/5
                65029 Odessa
                Ukraine
phone:          +380487311011
fax-no:         +380487502499
mnt-ref:        UKRTELE-MNT
mnt-ref:        RIPE-NCC-HM-MNT
mnt-by:         RIPE-NCC-HM-MNT
source:         RIPE # Filtered

person:         Andrew Sotov
address:        Mechnikova 58/5 65029 Odessa
abuse-mailbox:  abuse@urktelegroup.com.ua

Other sites:

1.  Document-checking.com 
2.  Helpsupportcenter.com 
3.  Img-library.com 
4.  Protection-wizard.com 

Host: any-pictures.com
IP: 85.255.117.251

Whois:

netname:        UkrTeleGroup
descr:          UkrTeleGroup Ltd.
admin-c:        UA481-RIPE
tech-c:         UA481-RIPE
country:        UA
org-name:       UkrTeleGroup Ltd.
org-type:       LIR
address:        UkrTeleGroup Ltd.
                Mechnikova 58/5
                65029 Odessa
                Ukraine
phone:          +380487311011
fax-no:         +380487502499
mnt-ref:        UKRTELE-MNT
mnt-ref:        RIPE-NCC-HM-MNT
mnt-by:         RIPE-NCC-HM-MNT
source:         RIPE # Filtered

person:         Andrew Sotov
address:        Mechnikova 58/5 65029 Odessa
abuse-mailbox:  abuse@urktelegroup.com.ua

Other sites:

1.  Any-pictures.com 
2.  Bigimagecatalogue.com 
3.  Imagesishere.com 

Host: antivirus-xp-08.net
IP: 77.244.220.134
Whois:

netname:        PRIMENET1
descr:          Allocation for our customer PrimeNet
country:        RU
admin-c:        RZT1-RIPE
tech-c:         RZT1-RIPE
status:         ASSIGNED PA
mnt-by:         RZT-MNT
mnt-lower:      RZT-MNT
mnt-routes:     RZT-MNT
source:         RIPE # Filtered

person:         Network Admins  RZT-SERVICE
address:        191011 Saint-Petersburg, Russia
address:        Lomonosova sq. 1
phone:          +78123142643
e-mail:         rztncc@sysadmins.spb.ru

Other sites:

1.  Antivirusxp08.net 
2.  Antivirxp08.com 
3.  Av-xp-08.com 
4.  Avxp-08.com 
5.  Avxp-2008.com 
6.  Avxp08.com 
7.  Avxp2008.com 
8.  Youpornztube.net 
9.  Youpornztube.org 

Host: www.antivirus-xp-08.net
IP: 85.17.45.51

Whois:

netname:        LEASEWEB
descr:          LeaseWeb
descr:          P.O. Box 93054
descr:          1090BB AMSTERDAM
descr:          Netherlands
descr:          www.leaseweb.com
remarks:        Please send email to “abuse@leaseweb.com” for complaints
remarks:        regarding portscans, DoS attacks and spam.
remarks:        INFRA-AW
country:        NL
admin-c:        LSW1-RIPE
tech-c:         LSW1-RIPE
status:         ASSIGNED PA
mnt-by:         OCOM-MNT
source:         RIPE # Filtered

person:         RIP Mean
address:        P.O. Box 93054
address:        1090BB AMSTERDAM
address:        Netherlands
phone:          +31 20 3162880
fax-no:         +31 20 3162890
abuse-mailbox:  abuse@leaseweb.com

Host: secure.eglobalbilling.com
IP: 216.195.56.148

Whois of IP 216.195.56.148 selling rogue antivirus application Antivirus XP 2008:

OrgName:    APS Telecom
OrgID:      APSTE
Address:    8130 SW BEAVERTON-HILLSDALE HWY
City:       PORTLAND
StateProv:  OR
PostalCode: 97225
Country:    US

NetRange:   216.195.32.0 - 216.195.63.255
CIDR:       216.195.32.0/19
NetName:    APS-EPSI
NetHandle:  NET-216-195-32-0-1
Parent:     NET-216-0-0-0-0
NetType:    Direct Allocation
NameServer: NS1.3FN.NET
NameServer: NS2.3FN.NET
Comment:    send abuse issues to , send network abuse@3fn.net

Other sites of IP 216.195.56.148 selling rogue antivirus application Antivirus XP 2008:

1.  Adult-billing.com 
2.  Billhlp.com 
3.  Billingcenteronline.com 
4.  Billinghost.net 
5.  Billingintegrator.com 
6.  Billingmill.com 
7.  Billingserviceonline.com 
8.  Billingsquad.net 
9.  Billingsvc.com 
10.  Billinternet.com 
11.  Billsvc.com 
12.  Customerhlp.com 
13.  Ebillingcenter.com 
14.  Eglobalbilling.com 
15.  Extrabilling.com 
16.  Fantazybill.com 
17.  Legalbillingsystems.com 
18.  Mainbillingcenter.com 
19.  Orderhlp.com 
20.  Paymentbit.com 
21.  Paymentbit.net 
22.  Paymentforge.com 
23.  Quickdownloadpro.com 
24.  Safepaymentsonline.com 
25.  Software-payment.com 
26.  Spankyhosting.com 
27.  Support-wizard.com 
28.  Supporthlp.com 
29.  Truebillingservices.com 
30.  Ultimatepayment.com