At here, I want salute to them and impressive on how professional they created their fake website and infects they 'legitimate' software to end users machine. Lots people especially newly to security area or internet can easily believed that their systems was infected by malware that showed in screen.
http://computer-scan.com/2009/1/_freescan.php?id=880606
Their website http://computer-scan.com look similar to any security products.
By searching from whois, that the information that I able to get.
WHOIS information for: computer-scan.com:
***********************************************************************************
[whois.PublicDomainRegistry.com]
Domain Name: COMPUTER-SCAN.COM
Registrant:
PrivacyProtect.org
Domain Admin (contact@privacyprotect.org)
P.O. Box 97
Note - All Postal Mails Rejected, visit Privacyprotect.org
Moergestel
null,5066 ZH
NL
Tel. +45.36946676
Creation Date: 03-Oct-2008
Expiration Date: 03-Oct-2009
Domain servers in listed order:
philsdomains.mars.orderbox-dns.com
philsdomains.earth.orderbox-dns.com
philsdomains.venus.orderbox-dns.com
philsdomains.mercury.orderbox-dns.com
Administrative Contact:
PrivacyProtect.org
Domain Admin (contact@privacyprotect.org)
P.O. Box 97
Note - All Postal Mails Rejected, visit Privacyprotect.org
Moergestel
null,5066 ZH
NL
Tel. +45.36946676
***********************************************************************************
On top of that, 'PrivacyProtect.org' is registered at Zurich and located at Oklahoma City, OK, UNITED STATES according to http://www.hostip.info/index.html after you get the domain IP address 209.62.85.54 from http://centralops.net/co/
It is not hard to believe that this kind of threat will becoming an another trend on malware author to commercialize they 'Antivirus' or security products. :D
0 comments:
Post a Comment