Tuesday, July 3, 2007

New spam mails from www.mega-soft.hk

So today I received something new to play with, a spam mail advertising some cheap software for site www.mega-soft.hk



Forged header in the email so nothing new there.

The domain name is registered just few days ago to a benjamin_kirman1[at]alumnidirector[.]com, I expect this to be forged domain information too, but an email is sent to Benjamin. Domain name is registered by Hong Kong Domain Name Reseller, http://www.hkdnr.net , a complaint is sent to them regarding the domain, lets see if they are against spam or not.

The site is located at ip-address 75.39.218.236 which is an DSL connection from www.sbcglobal.net located in Texas, United States, which probably means it's a zoombie computer. A complaint has been sent to sbc global.

When looking at the site then it has "Certified YYY" and "Certified ZZZ" logoes, yeah right!!! There is a contact form, which I will check to see if it gives any response and then there is a direct email possibility to support@oemcd.net. oemcd.net expired over a month ago so no need to try to write to that email.

When placing an order it's clear that no SSL encryption is used when submitting your credit card information even though it states on the page that encryption are used. After submitting your order a processing page appears which is also just fake and the order process ends up with a confirmation page where it is stated that orders can be downloaded from esoftsupport.com. I have written to esoftsupport but I suspect they are just being used by the spammers.

My guess are that this site is just there for scamming credit card information from people and no processing of orders will ever be done.

I will return with more information when I hopefully get some response from my complaints or get the time to dig deeper...

2 comments:

Kyleigh said...

Interesting to know.

Anonymous said...

Thanks for an idea, you sparked at thought from a angle I hadn’t given thoguht to yet. Now lets see if I can do something with it.