The world’s largest malware host has announced it plans to clean up its act following a high-profile investigation into its activities by Microsoft.

3322.org, a Chinese-registered web hosting company, earlier saw its domains seized by the software giant following reports that it was linked to the notorious Nitol virus, which had sensationally been pre-installed in new PCs before they even hit the shops.

Microsoft’s investigations revealed that 3322.org was host to more than 70,000 malicious web domains that contained malware designed to infect computers and steal personal data.

Peng Yong, registered owner of 3322.org, is reported to be willing to work with Microsoft to help clamp down on cybercriminals abusing its web space.

Operation b70

3322.org came to the attention of Microsoft during Operation b70, a far-reaching investigation that recovered a number of PCs in China which had incredibly been sold with viruses pre-installed in them. According to Microsoft, the cybercriminals behind the Nitol virus and other malware had successfully infiltrated manufacturer supply chains in order to achieve this feat.

As part of their scam, the cybercriminals propagated thousands of malicious websites on 3322.org’s servers, using them as a central command & control center for its vast network of bots.

Microsoft says that its investigators discovered widespread abuse of 3322.org’s internet domains – so serious was the abuse, that it felt compelled to take legal action and seize control of them last month. Since doing so, the company reported that no less than eight million infected PCs had attempted to make contact with more than 70,000 malicious domains that it assumed control of.

Peng Yong has now regained control of 3322.org after agreeing to work alongside Microsoft and China’s authorities to prevent abuse of its domains.  As part of the settlement , Yong has agreed to redirect all traffic to his domains through a “sinkhole” that cybercrime investigators can analyze, in order to prevent any more misuse.

In addition, Microsoft has said that it is working hard to track down the gangs and individuals responsible for the malicious domains.