Fake Microsoft-like Sites Attempt To Install Malware
Sunbelt issued a warning for several sites that are spelled closely like the real Microsoft owned websites. These URLs could be used in future phishing or targeted attacks, as they closely resemble the true Microsoft naming conventions.
Recent Windows XP SP3 news buzz probably gave attackers an idea how to trick users into installing “necessary updates” or even “latest Service Pack 3″ which are nothing but information stealing trojans if you choose to install them from those fake domains. If you get lucky, your PC might even become a part of some notorious botnet.
Most of the URLs are plural (e.g., microsofts or microsoftes). Please do not attempt to go to these sites, as malware could be automatically and silently installed on vulnerable PCs.
A list of fake Microsoft looking domains and their IP addresses:
70.84.192.228 freeadobes.com
70.84.192.228 updates-microsofts.com
70.84.192.228 updates-microsofts.com
70.84.192.236 free-microsofts.com
70.84.192.236 registry-great.com
70.84.192.236 registrygreat.com
70.84.192.236 registrygreat.net
70.84.192.229 updates-xp.com
70.84.192.229 updatemicrosofts.com
70.84.192.230 microsofts-updates.com
70.84.192.230 updates-all.com
70.84.192.230 updates-microsofts.net
70.84.192.230 update-microsoftes.com
70.84.192.230 update-microsoftes.com
70.84.192.231 www-microsofts.com
70.84.192.232 perfect-uninstall.com
70.84.192.232 uninstall-free.com
70.84.192.233 dellupdates.net
70.84.192.233 updates-os.com
70.84.192.233 updatesmicrosoft.net
Visiting suspicious URLs and performing any actions on websites mentioned in emails from unfamiliar senders will most likely result an attempt to infect your Windows system.
Posts
Leave a Reply
Comments with unsolicited links to other resources will be marked as spam. Please leave your real email, it wont be published.