Blog for hpHosts, and whatever else I feel like writing about ....

Wednesday, 26 March 2014

ALERT: Green Tech Software LLC

... and the crapware just keeps on a' comin'

This one was found on, and yep, they're fully aware of it (impossible to miss). See if you can spot the two problems here;

Spotted it? What do you mean no!

Seriously though, the first is far more obvious than the second, for those not used to being able to spot this rubbish. See that lovely little "bar" at the top? Well that's the blatantly obvious one. This leads to

The second is the download button that err - isn't. These lead to crapware from Green Tech Software LLC, via and, and guess what it actually delivers ........ Yep, "Codec Performer".

Offending URLs:



FYI, ALL download pages on display the same rubbish, leading to the same crap you really don't want anywhere near your machine.

Friday, 21 March 2014

Updated: hpHosts 21-03-2014

The hpHOSTS Hosts file has been updated. There is now a total of 421,807 listed hostsnames.

If you are NOT using the installer, please read the included Readme.txt file for installation instructions. Enjoy! :)
  1. Latest Updated: 21/03/2014 11:03
  2. Last Verified: 16/03/2014 07:00
Download hpHosts now!

Friday, 7 March 2014

Oi GoDaddy!

For the billionth time - retrain your staff so they are capable of identifying your own damn ranges!. Hint, if I send you a report, it's because the IP = YOUR ASN!, and these are checked with the various registries prior to sending. If your abuse dept/support staff (quite why the support staff reply to abuse reports instead of the abuse dept, is beyond me) are uncapable of learning something so basic - replace them with people that are, it's not rocket science.

I wish the following were a one off, but these are becoming rather frequent replies.

Customer Inquiry

Dear Sir/Madam,

Thank you for bringing this to our attention. At this time we have determined the reported website is hosted elsewhere. If you would like to take further action regarding the content on this website, we recommend you contact the hosting provider directly.

Please contact us if you have any further issues.


Customer Security Advisors

Sunday, 16 February 2014

Misleading: Bandoo wants a go!

Got a notification about a new version of the Android x86 distro earlier and finally had a few minutes to go take a look. Going to the download page my eyes were drawn immediately to this piece of naughtiness from Bandoo;

Not that surprised given Bandoo's history, but to my recollection, this is the first time I've seen one for them in the last 6-12 months or so.

The offending URLs in this case, for those interested;,eJydTl2PgjAQ.DW8KaG0IIbcQznEeAdGE--MvFUopVhaA.Xrfv3Vw5j4epPN7mSzM7MAhn6BwKQsJ06JpqB0vBAgBIsq8CvqjJwwDF04hZ6HAg-MYHLVOE3TOYtuUh4ifEdq77.XeADDM4wXA18F9x7N55fL52VYoUxsBvau89bB.0esvqLZg5s848.iADeujVazdfQ8m380WVz8ZO1SpJsDXG53OtskIruBOm8Tnm7XMG8w2rULL48P1-X6qXwbjWqtjxbElpuY0kS4Wml0olLwoITiWO-bc9cJF06KivZjMu65NlMdqexVwYmwmVJM0FNPu0JJTaW2C9UaL0ZKRnVvGK86CyanTlgwfomrVa-5ZDZrVXkStH8oOXuRV1xQM4DjewHwTfcRcBwwQRCgwZ201L62wnL9-wuES2oCY.MK7Y4d743aP3N6MbuCyDMxpr4gkv3d.AL4BKVg,,eJxLjfIqKg1yzMqNCA1Lj0j0z.ZwqYqILPK0TEwuy6.wiDBJ19UFAPDEDJk=&t=50164&d=2326173&hp=subid&

Ad image:

If you're so inclined, you'll be wanting to blackhole;


Spyware Sucks: Dear Google and Microsoft

This alert appeared in Google Chrome today. I have no idea why. Dear Google: how am I meant to know if this is a “real” Skype extension? There’s no information about the provider/developer on that screen and if I close the dialogue because I don’t want to install something unexpected unless I know it is legit I lose the opportunity to install (there’s nothing in the Extensions window – even disabled – and the prompt to enable disappears from the Customize dropdown).

Read more