Total Pageviews

Saturday, May 1, 2010

Skype SPAM

Skype Spam seems to be a problem lately, If you are bothered by it, right click the user and block them, then check report so that you can spare others of this crap.

update.instructions.help:
WINDOWS REQUIRES IMMEDIATE ATTENTION URGENT SYSTEM SCAN NOTIFICATION ! PLEASE READ CAREFULLY !! http://www.updatezs.org/ For the link to become active, please click on 'Add to contacts' skype button or type it in manually into your web browser ! FULL DETAILS OF SCAN RESULT BELOW **************************************** WINDOWS REQUIRES IMMEDIATE ATTENTION ATTENTION ! Security Center has detected malware on your computer ! Affected Software: Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows Server 2003 Impact of Vulnerability: Remote Code Execution / Virus Infection / Unexpected shutdowns Recommendation: Users running vulnerable version should install a repair utility immediately Your system IS affected, download the patch from the address below ! Failure to do so may result in severe computer malfunction. http://www.updatezs.org/ For the link to become active, please click on 'Add to contacts' skype button or type it in manually into your web browser!
Help the community and keep Skype usable. You can also up your settings in privacy, however for some reason this one ignored that setting, I guess that since the Skype protocol has been broken there might be a way to inject this garbage despite your settings.

I have not been to the site, I assume it has a virus posing as an anti-virus. I am not sure that you can do much with the domain info either, I wonder if the domain info is even real.

whois updatezs.org

Domain ID:D159032843-LROR
Domain Name:UPDATEZS.ORG
Created On:01-May-2010 09:32:13 UTC
Last Updated On:01-May-2010 09:32:15 UTC
Expiration Date:01-May-2011 09:32:13 UTC
Sponsoring Registrar:eNom, Inc. (R39-LROR)
Status:CLIENT TRANSFER PROHIBITED
Status:TRANSFER PROHIBITED
Status:ADDPERIOD
Registrant ID:da3afb0ad7215a6f
Registrant Name:Enar Sakovich
Registrant Organization:-
Registrant Street1:Fikaskaya 63a
Registrant Street2:
Registrant Street3:
Registrant City:St. Petersburg
Registrant State/Province:RU
Registrant Postal Code:27001
Registrant Country:RU
Registrant Phone:+986.61554974
Registrant Phone Ext.:
Registrant FAX:+986.61554974
Registrant FAX Ext.:
Registrant Email:ensakch21@gmail.com
Admin ID:da3afb0ad7215a6f
Admin Name:Enar Sakovich
Admin Organization:-
Admin Street1:Fikaskaya 63a
Admin Street2:
Admin Street3:
Admin City:St. Petersburg
Admin State/Province:RU
Admin Postal Code:27001
Admin Country:RU
Admin Phone:+986.61554974
Admin Phone Ext.:
Admin FAX:+986.61554974
Admin FAX Ext.:
Admin Email:ensakch21@gmail.com
Tech ID:da3afb0ad7215a6f
Tech Name:Enar Sakovich
Tech Organization:-
Tech Street1:Fikaskaya 63a
Tech Street2:
Tech Street3:
Tech City:St. Petersburg
Tech State/Province:RU
Tech Postal Code:27001
Tech Country:RU
Tech Phone:+986.61554974
Tech Phone Ext.:
Tech FAX:+986.61554974
Tech FAX Ext.:
Tech Email:ensakch21@gmail.com
Name Server:DNS1.NAME-SERVICES.COM
Name Server:DNS2.NAME-SERVICES.COM
Name Server:DNS3.NAME-SERVICES.COM
Name Server:DNS4.NAME-SERVICES.COM
Name Server:DNS5.NAME-SERVICES.COM
DNSSEC:Unsigned

and another:
Domain ID:D159118485-LROR
Domain Name:UPDATEQP.ORG
Created On:08-May-2010 12:24:10 UTC
Last Updated On:08-May-2010 12:24:11 UTC
Expiration Date:08-May-2011 12:24:10 UTC
Sponsoring Registrar:eNom, Inc. (R39-LROR)
Status:CLIENT TRANSFER PROHIBITED
Status:TRANSFER PROHIBITED
Status:ADDPERIOD
Registrant ID:9ab18bc4d4d8a238
Registrant Name:Aret Mastif
Registrant Organization:-
Registrant Street1:Nalipor 41d
Registrant Street2:
Registrant Street3:
Registrant City:Prague
Registrant State/Province:CZ
Registrant Postal Code:21001
Registrant Country:CZ
Registrant Phone:+420.25133254
Registrant Phone Ext.:
Registrant FAX:
Registrant FAX Ext.:
Registrant Email:aretmastf921@gmail.com
Admin ID:9ab18bc4d4d8a238
Admin Name:Aret Mastif
Admin Organization:-
Admin Street1:Nalipor 41d
Admin Street2:
Admin Street3:
Admin City:Prague
Admin State/Province:CZ
Admin Postal Code:21001
Admin Country:CZ
Admin Phone:+420.25133254
Admin Phone Ext.:
Admin FAX:
Admin FAX Ext.:
Admin Email:aretmastf921@gmail.com
Tech ID:9ab18bc4d4d8a238
Tech Name:Aret Mastif
Tech Organization:-
Tech Street1:Nalipor 41d
Tech Street2:
Tech Street3:
Tech City:Prague
Tech State/Province:CZ
Tech Postal Code:21001
Tech Country:CZ
Tech Phone:+420.25133254
Tech Phone Ext.:
Tech FAX:
Tech FAX Ext.:
Tech Email:aretmastf921@gmail.com
Name Server:DNS1.NAME-SERVICES.COM
Name Server:DNS2.NAME-SERVICES.COM
Name Server:DNS3.NAME-SERVICES.COM
Name Server:DNS4.NAME-SERVICES.COM
Name Server:DNS5.NAME-SERVICES.COM

2 comments:

Unknown said...

Excellent work. Encountered the same spam yesterday. Thanks for the domain info, did you try calling his phone? I should send his gmail some hate mail.

Gareth Bowles said...

I love those spams - especially the fact that they apparently can't tell what your Skype client is running on, so I've had warnings about Windows viruses while on my Mac. My thanks too for the domain info.