Avast WEBforum
Other => Viruses and worms => Topic started by: BootLoader on September 18, 2022, 05:49:45 AM
-
Please check the URL below, this is a phishing/SCAM URL for India. Ask for money with a false web page that declares violating India Govt. Law.
Phishing URL:- lom-in.top/?c=yeshh18
Actual India Govt. Webpage URL:- www.india.gov.in/topics/home-affairs-enforcement/police
Note:- Works with India IP, when using VPN then it will not work
Virus Total Scan result :- www.virustotal.com/gui/url/8dec874d11ac716c488abbb67f5e63ae3eca0f4b6babcc9b6e024c0c2524488c
-
Don't post active links (edit and remove http:// and https://) to suspect sites to avoid A) accidental exposure and B) promoting the site by your link.
Use the - Reporting a possible Malicious sample File or Website - https://www.avast.com/report-malicious-file.php (https://www.avast.com/report-malicious-file.php) to report directly.
-
OK, Done
-
You're welcome.
-
Thanks for reporting,
It is the redirect here that makes it into Phishing: -htxps://dirtyfree.games/DirtyGames_v4/?clickid=ktr00134dlobt447p2&country=IN&m1={browser_name}&m2=IN&voluum_id={campaign}&tsource={campaign.name}&campaign={campaign}&partner=BC&afseid=630e578ba01a6400013954f4
Website originating from IP is being used in ad-scams, apparently from Moscow:
Read: https://webparanoid.com/scam-review/adpek-in2.xyz#/
Links involved: htxps://www.memberstrack.net/?clickid={clickid}&autocamp=_{country}_&paytpl=2
which address is being qualified as "offensive security", with spreading logs txt.exe malware
and
htxps://www.googletagmanager.com/ns.html?id=GTM-MSLMWPJ
Hope that soon more instances and vendors will flag this address,
polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)