I clicked on a banner flying above and saw a pretty slick webmaster program with a payment option of fethard.biz. Upon googling for it and looking into the matter it appears that fethard.biz either has someone plotting against it or is bullshit.
But what about the original company, the sponsor, well does the apple fall far from the tree? If I give them my wire info will I get everything sucked out of my account? Does GFY even look into this shit?
Anyway here are the details:
Sponsor:
http://www.etu-cash.com/
Bank it gives as a way to get paid:
http://www.fethard.biz/
Press:
This one is a virus/trojan that tries to link back to fethard.biz with your stolen CC info.
http://216.239.57.104/search?q=cache...ard+bank&hl=en
Quote:
Attempts to connect and update itself from one of the following HTTP servers:
adult-empire.com
asechka.ru
citi-bank.ru
color-bank.ru
crutop.nu
cvv.ru
fethard.biz
filesearch.ru
kavkaz.tv
kidos-bank.ru
konfiskat.org
master-x.com
mazafaka.ru
parex-bank.ru
roboxchange.com
www.redline.ru
xware.cjb.net
|
This means the backdoor lives on their server and gets its updates from them!
Or am I just paranoid?