Search Engine Optimization & Web Hosting Solution

TOKYO (MacHouse) - Google-owned Blogspot (blogspot.com) was one of the websites that we recommended Internet users to avoid visiting back in January. Those days, an organized cyber crime group installed hundreds of porn websites at Blogspot and Blogger to infect innocent Internet users with computer viruses. Things are now much better at these free blog websites. Or not?

Screenshot 01 - Source: MacHouse

Screenshot 02 - Source: Blogspot

Screenshot 03 - Source: MacHouse

Today, a cyber criminal circulated spam comments around WordPress blogs all over the world to advertise a blog website created at Blogspot. (See Screenshot 01.) Upon visiting this website, one will be instantly forwarded to a new fake anti-virus scan website.

The malicious blog website in question is hosted at http://multic3.blogspot.com. The title of the website is Ukadja. (See Screenshot 02.) If you access this URL, you will have a few seconds or less to escape from involuntary redirection to the website hosted at spywareonlinescanner.com. This website appears relatively new. The domain was registered in June 26th.

After being involuntarily redirected, a small web browser window will pop up to get your attention by saying






ATTENTION! If your computer is infected, you could suffer data loss, erratic PC behavior, PC freezes and creahes. (<= Their typo, not ours)






As you expect, a fake anti-virus scan animation will start. Eventually, unless you close the web browser, you will be forced to download a file. The file name is XPantivirus2008_v880043.exe. (See Screenshot 04.) This file is expected to contain a Trojan horse derivative that will give you a constant reminder of virus scans.

Screenshot 04 - Source: spywareonlinescanner.com

Screenshot 05 - Source: spywareonlinescanner.com

The sponsor behind this fake anti-virus scan operation is… It’s the software developer of malware label called XP Antivirus protection. (See Screenshot 05.)

We will have a more detailed report in several hours.






Click on the button to watch a documentation video.
Click on the button to watch more documentation videos.
Click on the button to learn how to avoid being victimized on the Internet.






References:

Connection Between Fake Video ActiveX Object Error Scam and Involvement of MALWAREALARMS.COM
Redirection of 16 Blogspot Porn Websites to Boomgirltv.com in Ukraine
Is Blogspot Still THE Place to Seek Porn?

********** ********** ********** ********** ********** ********** ********** **********

MacHouse is not funded by tax payers' money. We have limited resources. We also need time to sleep and eat just as others. So we will not act as the International police to contact all victims of website abuse. All you have to do is to subscribe to spam messages and spam posts. If we can, why don't you?