This pepto-bismol themed shop is selling stolen credit card details.
(These domains redirect to pinkshop.name)
www.pinkshop.name. 300 IN A 188.8.131.52
www.pinkshop.name. 300 IN A 184.108.40.206
I contacted both Staminus and CloudFlare about this domain.
Adverts for shop:
Google the ICQ or admin email for this shop. You will see more ads.
The design of this site is so awful that it may damage your eyes.
Login screen with some SEO keywords:
sell dumps, buy dumps, buy cvv, buy cvv2, sell dumps, sell track2, buy track2, buy cards,cheap cvv,buy cvv,sell cvv,fresh cvv,good cvv,buy good cvv,sell good cvv,best cvv,fresh paypal,carders market,check cvv,cvv2 dump,buy cvv online
Hideous welcome page:
User agreement and rules of site. (Lol)
Dumps - "a term which refers to stolen credit card data"
CVV2 - Card Verification Value
BITCOIN ADDRESS TO PAY TO> 13rq5ZmjNP3sGQpcDbqewq6Mgu4scpXXCX
SEND WMZ TO > Z366667111653 , CONTACT ADMINISTRATOR AFTER MONEY SENT!
(see below for BlockChain details) (and Lol)
(bottom of Funding page):
No authentication check on this page.http://www.pinkshop.name/contact.php
Email : firstname.lastname@example.org
Yahoo ID: email@example.com
new > FULLZ
note the 1337 use of Z in FULLS - pretty cool.
Bitcoin address for PinkShop payments:
|Total Received||12.43884827 BTC|
The same bitcoin address is used to collect funds on other carding sites.
The admin is so lazy - he just copy/paste the same code all over!!
In the source of site, reference to folder bulba.cc_files
stolen source or same admin? who cares. I would bet that all this garbage is offline soon.
track2.name and bulba.cc:
good god - this is gross looking.
Various Admin Contact Infos:
Yahoo Messenger > firstname.lastname@example.org
Support / ICQ: 617580016
Contact support by hand
Email : email@example.com