Malvertizing domains: go-scan-pro.com (and friends)...
Hit this one today:
go-scan-pro.com -220.127.116.11 -Latvia, Vdhost Ltd
ICANN Registar: REGTIME LTD.
Created on: 7 October 2008
Organization: Bernatzik Co
Address: Dobevska 877/4
SITELUTIONS.COM - 18.104.22.168 - New Jersey - Englishtown - Inforelay Online Systems Inc
ICANN Registrar: Enom, Inc
Created: 11 July 2002
Note: The browser hijack does not occur if the URL is accessed directly (404 Not Found error), but will occur if the site is accessed via a search engine.
The directory boldmoves.net/modulesBAK/mod_wrap/ is wide open (see screenshot), revealing what must be hundreds of different html files, all dated 11 December 2007. There is also a IMG subdirectory that contains a couple of image files, and a 0 byte PHP (xmlrpc.php).
The site's admin and technical contacts have been notified.