Solved

Fake or real?

Posted on 2013-05-13
8
238 Views
Last Modified: 2013-05-15
Got this while using My Coke Rewards website while talking to one of their agents on the phone. I told them about this "supposed virus attack" and they denied it had anything to do with their site.

Is this fake..........I'm sure it is.

Look at the URL............http://wqwckffrd.servebeer.com/index.php?c=RaENOjEayDF925cOxP3ACC60zajgAjCTlcK0liAaKtvKheVQzm+YhzfWz1MPnw1S6zBdyf5GIpKnzaQnWQr15KzWyoM=


i
0
Comment
Question by:nickg5
8 Comments
 
LVL 24

Expert Comment

by:aadih
ID: 39162311
Your URL: "Could not locate remote server"  [Opera 12.15]

Care to make it a tinyurl and post again?
0
 
LVL 15

Assisted Solution

by:Ess Kay
Ess Kay earned 50 total points
ID: 39162316
i checked the whois records. looks like a 3rd party used to do their reward program

http://www.networksolutions.com/whois/results.jsp?domain=servebeer.com


best thing i can suggest is log into your pc as a guest and use the coke codes. guest is limited, and cannot run scripts or install stuff - lots of restrictions
0
 
LVL 4

Accepted Solution

by:
iammorrison earned 175 total points
ID: 39162317
Fake, that domain is known for attempting to load false AV programs. I would suggest performing a deep scan and even HijackThis to see if your browser has been compromised.
0
 
LVL 25

Author Comment

by:nickg5
ID: 39162402
Malwarebytes found nothing with a quick scan.
It was an event that happened exactly when I clicked a Coke link to enter a cap code.
So it was directly related to the Coke sit and a precise action on my part.
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 23

Assisted Solution

by:tailoreddigital
tailoreddigital earned 140 total points
ID: 39162445
Anybody can put a picture of whatever they like on their website, even a picture of what looks like an anti-virus or a Windows window or My Computer or TailoredDigital's SuperDuper-Cosmic Virus Detection System, etc...   Anybody can pop a box on their website to look and say whatever they want.    It's when people are fooled by it and start interacting with the fake stuff on the page that it becomes dangerous.    I can't count how many times i've explained this and can almost count how many systems i've cleaned after someone did interact with these types of pages.
0
 
LVL 32

Assisted Solution

by:aleghart
aleghart earned 135 total points
ID: 39169815
Several clues:
1. The misspelling of might in "migth compromise" should have been a giveaway.
2. If you don't have Microsoft Security Essentials, then it's fake.
3. The generic names of the offending software are suspicious.
4. Anti-virus and anti-malware software don't download EXE files...they just go to work (or not).
0
 
LVL 25

Author Comment

by:nickg5
ID: 39169822
I do have MSE.
Good catch there, the mis-spelled word.
0
 
LVL 25

Author Closing Comment

by:nickg5
ID: 39169825
-
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Nothing in an HTTP request can be trusted, including HTTP headers and form data.  A form token is a tool that can be used to guard against request forgeries (CSRF).  This article shows an improved approach to form tokens, making it more difficult to…
Never store passwords in plain text or just their hash: it seems a no-brainier, but there are still plenty of people doing that. I present the why and how on this subject, offering my own real life solution that you can implement right away, bringin…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now