Post by "Pop" Stran on Dec 24, 2015 17:40:36 GMT -5
Not too long ago, I was browsing for pinup photos for a client package when my browser was hijacked by a very official-looking Alert and Warning page.
By hijacked, I mean the tab that had popped up (despite my running two popup killers) would not close, would not let me move on, and basically brought all work to a halt.
It wasn't until I had used a basic DOS command to close the browser (Cntrl-Alt-Del) that I was able to move on at all.
Of course, I made a note of the web address and number that the pirate page was trying to redirect me to before closing it, and a basic WHOis search turned up an owner in India.
He didn't invent this scam; It has been around for nearly twenty years in various forms, and it follows a few basic rules, such as:
1. Clicking the provided links on the scammer's pages could very well provide you with the malware that he is claiming that you already have.
2. For a fee, he will certify your computer "cleared of any viruses" by rooting and raking your files via remote access.
You just gave him all of your usernames and passwords, along with any other sensitive files you may be storing, but at least you are free of viruses...right?
3. He prefers Western Union or Money Order, but he will accept a card in a pinch.
The credit card that you used to pay his fee is about to be crammed. Gee, did he forget to mention the admin fee, the personal attention fee, and the after hours fee?
4. Because you're such a good customer, he will give you a 20% discount on your next virus cleaning.
This will occur in about 30 days because that is when the Trojan virus he planted in your system is scheduled to wake up.
Now, there are likely more than one scammer running this con today, but this post is referring to one rather new player in particular, and his WhoIs details are a s follows:
Domain whois for: computerwxv.info
Registrant Name: Parveen Shokeen
Registrant Organization:
Registrant Street: 2/64
Registrant Street: old Rajindra nagar
Registrant City: New Delhi
Registrant State/Province: Delhi
Registrant Postal Code: 110060
Registrant Country: IN
Registrant Phone: +91.8899688967
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: pethtwv@emailhostor.com
By hijacked, I mean the tab that had popped up (despite my running two popup killers) would not close, would not let me move on, and basically brought all work to a halt.
It wasn't until I had used a basic DOS command to close the browser (Cntrl-Alt-Del) that I was able to move on at all.
Of course, I made a note of the web address and number that the pirate page was trying to redirect me to before closing it, and a basic WHOis search turned up an owner in India.
He didn't invent this scam; It has been around for nearly twenty years in various forms, and it follows a few basic rules, such as:
1. Clicking the provided links on the scammer's pages could very well provide you with the malware that he is claiming that you already have.
2. For a fee, he will certify your computer "cleared of any viruses" by rooting and raking your files via remote access.
You just gave him all of your usernames and passwords, along with any other sensitive files you may be storing, but at least you are free of viruses...right?
3. He prefers Western Union or Money Order, but he will accept a card in a pinch.
The credit card that you used to pay his fee is about to be crammed. Gee, did he forget to mention the admin fee, the personal attention fee, and the after hours fee?
4. Because you're such a good customer, he will give you a 20% discount on your next virus cleaning.
This will occur in about 30 days because that is when the Trojan virus he planted in your system is scheduled to wake up.
Now, there are likely more than one scammer running this con today, but this post is referring to one rather new player in particular, and his WhoIs details are a s follows:
Domain whois for: computerwxv.info
Registrant Name: Parveen Shokeen
Registrant Organization:
Registrant Street: 2/64
Registrant Street: old Rajindra nagar
Registrant City: New Delhi
Registrant State/Province: Delhi
Registrant Postal Code: 110060
Registrant Country: IN
Registrant Phone: +91.8899688967
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: pethtwv@emailhostor.com