Una recorrida por los últimos scareware VII

Nuevos programas maliciosos del tipo scareware han surgido durante este mes, bajo la cobertura de supuestas soluciones de seguridad y bajo nuevos dominios maliciosos.

Personal Antivirus
MD5: f5efa77ddc74c5a143d71dc3c3316ca9
IP: 78.47.91.153
Germany Berlin Siarhei Shandrokha
Plataforma: Windows
Dominios Asociados
1bestprotectionscanner .com advancedproantivirusscanner .com adware-removal-tool .com alaskatoursonline .cn; antimalwarescannerv2 .com; antimalwaresecurityscan .com; antiviruspowerfulscanv2 .com; antivirusquickscanv2 .com; arangeyourdreams .cn; bestgossips .cn; bestworldmusic .cn; controlledsurfaces .cn; fastantimalwareproscanner .com; fastantimalwarescan .com; fordgreatcars .cn; hairstylezone .cn; latenighttalks .cn; pcsoftwarepayments .com; pleasentsurfing .cn; prideandglorynow .cn; protectionauditview .cn; quicklylivelinks .cn; saturationpower .cn; securityhelpcenter .com; tabletpccomputing .cn; teafuntrip .cn; thankyou4check .com; whreismyplugnplay .cn; worldcommercialbusiness .cn

VT Report: 34/40 (85%)

Registry Smart
MD5: 4622bb46f85be14dc7a5acf0c1464ee1
IP: 75.125.200.226
United States Dallas Theplanet.com Internet Services Inc
Plataforma: Windows
Dominios Asociados
registrysmart .com
adwarealert .com
audiowizardproeartrainer .com
database.registrysmart .com
evidenceeraser .com
getyourbandsigned .com
registrysmart .com
restore-pc .com
www.adwarealert .com
www.evidenceeraser .com
www.registrysmart .com
www.restore-pc .com
regofamily .net

VT Report: 5/40 (12.5%)

PC Codec Pack
IP: 194.165.4.77
Ukraine Plitochnik Lux Ltd
Plataforma: Windows
Dominios Asociados
pc-codec-pack .com
adobesoft.co .cc
codecs.tubeloyaln .com
codecvistaz .com; codecxpvista .com; litetubevideoz .com; litetubevideoz .net; loyal-porno .com; loyaldown99 .com; loyalvideoz .com; molodiepilotki .com; pcvistaxpcodec .com; suckitnow1 .com; truepornmovies .com; truepornupload .com; truepornvideo .com; tubeloyaln .com; tubeontvgl .com; uplcodecset3 .com; uploadmoviez .com; videosz.tubeloyaln .com; wedare.tubeloyaln .com; win-pc-defender .com; wincodecupdate .com; winpcdown10 .com; winpcdown99 .com; www.codecvistaz .com; www.litetubevideoz .net: www.loyal-porno .com: www.loyaldown99 .com: www.loyalvideoz .com; www.pcvistaxpcodec .com; www.winpcdown99 .com; hypersecurityshield .com

Antivirus 360
IP: 88.214.204.40
United Kingdom Real International Business Corp
Plataforma: Windows
Dominios asociados:
antivirus-remote .com; awmgraphics .com; capital-hotels .net; dj77 .ru; dynaprintinc .com; flaxxvid .com; fullsitehost .info; helianaltd .com; ho1m .ru; maxstart .net; mivodesign .com; pixustudio .com; platinka .com; pochtarnt .ru; pornoearth .ru; pornogroupp .ru; rbc-mail .ru; revagefurniture .com; salonsti .com; siki .ru; sweetgey .ru; teen-sex-free .com; uktranslation .net; vashuspeh .com; wap4ik .com; weabl .com; www.add-your-video .net; www.dj77 .ru; www.entechpartners .com; www.ho1m .ru; www.lowerlights .net; www.mivodesign .com; www.pixustudio .com; www.pochtarnt .ru; www.pornoearth .ru; www.pornotrans .ru; www.rbc-mail .ru; www.revagefurniture .com; www.salonsti .com; www.smashmp3 .com; www.thebestceleb .com; www.uktranslation .net; www.xxxfreedirect .com; www.xxxshemaletour .com; xxxshemaletour .com

errorsweeper .com (75.125.61.162) - Theplanet.com
rusuchki .com/go/freevideo2 (95.211.7.140) - Leaseweb
hitpresent .com/go.php?sid=3 (195.95.151.138) - Kiev Eastnet-ua-net
xvirusdescan .com (209.44.126.241) - Laval Netelligent
antivirusquickscanv1 .com (69.4.230.204) - Theplanet.com
antivirusquickscanv1 .com (78.47.91.153) - Siarhei Shandrokha
antivirusquickscanv1 .com (83.133.123.140) - Lncde-greatnet-newmedia
antivirusquickscanv1 .com (94.102.48.28) - Root Esolutions
antivirusquickscanv1 .com (212.117.165.126) - Root Esolutions
antivirusquickscanv1 .com (38.99.170.210) - Theplanet.com
sexerotika2009.ru/admin/red/en .php (74.54.176.50) - Theplanet.com
softsupportmail.com (216.245.195.84) - Theplanet.com
guardav .com (72.232.187.198) - Layered Technologies Inc
fixupdates .com (174.36.234.248) - Softlayer Technologies Inc
online-av-scan2008 .net (74.50.117.89) - Noc4hosts Inc
av-antivir-check .com (74.50.117.76) - Noc4hosts Inc
best-av-scanner .com (74.50.117.74) - Noc4hosts Inc
goodsite.in/good/in .cgi?7 (212.98.162.59) - Belarus Minsk Bisiness Network Jv
fullvirusprotection .com (75.126.137.166) - Softlayer Technologies Inc
freewebmypcscan .com (95.129.144.236) - Ventrex Llp Customers
winbestsoftdownload .com (217.112.94.230) - Poundhost Customer Server
atom4scan .info; fan4scan .info; lux4scan .info; mini4scan .info; scan4atom .info; scan4fan .info; scan4mini .info; scan4mix .info; scan4ray .info; scan4star .info; fanscan4 .com; rayscan4 .com; scan6list .com (209.44.126.102) - Laval Netelligent Hosting Services Inc
fuse6scan .com; way6scan .com; fusescan6 .com; listscan6 .info (78.159.115.216) - Netdirekt E.k
open6scan .com; scan6fuse .com; scan6open .com (38.105.19.27) - Psinet Inc

AdwareHelp 2009
MD5: 07EB9CC49C8CB08C435914723134A236
IP: 74.54.241.100
United States Dallas Theplanet.com
Plataforma: Windows
Dominios Asociados
adware-help .com
allworldstars .net, freemediashare .net, funtarget .com, germek .net, gorasoft .net, iframr .com


Información relacionada
Una recorrida por los últimos scareware VI
Una recorrida por los últimos scareware V
Una recorrida por los últimos scareware IV
Una recorrida por los últimos scareware III
Una recorrida por los últimos scareware II
Una recorrida por los últimos scareware

# pistus