Limelight Networks kicks WinFixer to the curb

It took a while … but it looks like Limelight finally sent the WinFixer Group packing …

Back in December I wrote several posts about Limelight hosting malicious content for the WinFixer Group, after which I contacted them and only received a standard reply – “we are looking into it …”.

The above have all moved locations and “” and “” are now dead …

The above have moved to the following locations where they already have established a presence with a host of their other clones. Euroaccess Belgium [ –] Leaseweb [ –]

Another notable move ( which fellow blogger Sandi Hardmeier has been documenting the malicious redirect ads … all WinFixer related!

Gfx-cust-worldstream [ –] [ –]

Kaspersky detects as: FraudTool.Win32.Sellmosoft.a. Symantec has the following write-up which includes:

HKEY_CURRENT_USER\Software\Sellmosoft\Performance Optimizer

Innovative Marketing, Inc.
1876 Hutson Street
Belize City, BZ

1876 Hutson Street
Belize City, BZ

WebHosts Inc
1876 Hutson Street
Belize City, BZ

SellMoSoft has now changed their address (5 Cornwall Street, Roseau) which shows up in their [choke] secure certificate.

Now if we could get Comodo to stop issuing certificates to these culprits … seems like another company that failed to do their research before associating themselves with this type activity …

Comments are closed.