Results 1 to 21 of 21
  1. #1
    Join Date
    Mar 2007
    Location
    DataCenter
    Posts
    853

    Thumbs down OC3 Networks supporting scammers and hackers and hosting warez

    Hello all

    yesterday andhrahost.com hacked our WHMCS and sent emails to many of our customer
    here is the screen shoot ,

    http://maxupload.com/img/7F42F611.jpg
    http://maxupload.com/img/7C3A222E.jpg

    he also deleted all admin logs but luckily.i took this screen shoot

    Around 2 month back also this happen with us and we even informed OC3 about it but that time also. Mr Alex Ferrari From OC3 networks replied to me and didn't took any action on it.we daily get spam from oc3 networks ip.
    regularly they were trying to hack our whmcs and yesterday they did it

    i have even sent email to OC3 network and this time also ne reply from them and the hacker,spammer server is still up and selling warez hosting , illigal hosting openly.

    Kindly guide me how to proceed to take actions against OC3 netwokrs and against that hostig company who is doing this regurarely.

    Looking forward for your help

    Best Regards
    Rounak
    ProlimeHost - Dedicated Server Hosting & Kvm SSD VPS
    Three Datacenter Location: Los Angeles, Denver & Singapore
    SuperMicro Hardware | Multiple Bandwidth Providers | 24/7 on Site Engineers
      0 Not allowed!

  2. #2
    Join Date
    Aug 2008
    Location
    Jimmy's World! Yeah!
    Posts
    150
    Interesting. I think SPAM mail they will have to null route as they will be screwed if they don't respond to SPAM mail. As far as hacking goes lets look at it this way, they could have hacked you from anywhere, they probably did not do it from OC3 networks. So you cannot blame OC3 Networks for protecting their clients as you need legal proof.

    I do not believe OC3 Networks and Alex over there at Pacific condone warez. Next time secure your scripts and don't leave easy to guess passes and set up auto ban on failed pass guess.

    and for the love of god don't leave your WHMCS admin login as either admin, root, or administrator.

    anyways good luck with fixing everything, I hope you find a plausible solution. If all else fails high someone to write a legal letter (shouldn't be too expensive)
      0 Not allowed!

  3. #3
    Join Date
    Mar 2007
    Location
    DataCenter
    Posts
    853
    Quote Originally Posted by j2m2 View Post
    Interesting. I think SPAM mail they will have to null route as they will be screwed if they don't respond to SPAM mail. As far as hacking goes lets look at it this way, they could have hacked you from anywhere, they probably did not do it from OC3 networks. So you cannot blame OC3 Networks for protecting their clients as you need legal proof.

    I do not believe OC3 Networks and Alex over there at Pacific condone warez. Next time secure your scripts and don't leave easy to guess passes and set up auto ban on failed pass guess.

    and for the love of god don't leave your WHMCS admin login as either admin, root, or administrator.

    anyways good luck with fixing everything, I hope you find a plausible solution. If all else fails high someone to write a legal letter (shouldn't be too expensive)

    Hello

    Im not telling that oc3 is responsible for this hack but they should take some action! i even sent them proof via email im showing screen shoots so what more proof they want it cane be clearly seen that the site is hosted on OC3 NETWORKS
    ProlimeHost - Dedicated Server Hosting & Kvm SSD VPS
    Three Datacenter Location: Los Angeles, Denver & Singapore
    SuperMicro Hardware | Multiple Bandwidth Providers | 24/7 on Site Engineers
      0 Not allowed!

  4. #4
    Join Date
    Aug 2008
    Location
    Jimmy's World! Yeah!
    Posts
    150
    I am not sure they're aware of that. Send the following:
    those screenshots and a tracert to prove to them that the domain they're hosting is hacking your site (should end up at securedprivatenetworks if i am not mistaken)
      0 Not allowed!

  5. #5
    Join Date
    Mar 2007
    Location
    DataCenter
    Posts
    853
    Host info:
    Host of the IP: andhrahost.com Whois
    Host IP [?]: 216.45.49.26 [Copy][Whois]
    IP address country: United States
    IP address state: California
    IP address city: Los Angeles
    IP postcode: 90014
    IP address latitude: 34.043800
    IP address longitude: -118.251198
    ISP of this IP [?]: OC3 Networks & Web Solutions
    Organization: LLC
    Local Time of this IP country: 2008-09-04 14:13
    ProlimeHost - Dedicated Server Hosting & Kvm SSD VPS
    Three Datacenter Location: Los Angeles, Denver & Singapore
    SuperMicro Hardware | Multiple Bandwidth Providers | 24/7 on Site Engineers
      0 Not allowed!

  6. #6
    PacificRack is owned by OC3 Networks, so hit up someone from PR here.
    Jay
      0 Not allowed!

  7. #7
    Join Date
    Apr 2006
    Location
    Phoenix
    Posts
    808
    Can you please PM me your abuse ticket ID so that I can investigate this?

    We take reports of abuse very seriously and while mistakes do happen, I am unable to locate your ticket reporting this to us.

    Please pm me so we can get this resolved as soon as possible.
    Jordan Jacobs | VP, Products|SingleHop| JJ @SingleHop.com
    Managed Dedicated Servers | Bare-Metal Servers | Cloud Services
      0 Not allowed!

  8. #8
    Join Date
    Mar 2007
    Location
    DataCenter
    Posts
    853
    Quote Originally Posted by PR|Jordan View Post
    Can you please PM me your abuse ticket ID so that I can investigate this?

    We take reports of abuse very seriously and while mistakes do happen, I am unable to locate your ticket reporting this to us.

    Please pm me so we can get this resolved as soon as possible.
    Hello, thanks for quick help

    i have sent your pm

    looking forward to solve this ASAP
    ProlimeHost - Dedicated Server Hosting & Kvm SSD VPS
    Three Datacenter Location: Los Angeles, Denver & Singapore
    SuperMicro Hardware | Multiple Bandwidth Providers | 24/7 on Site Engineers
      0 Not allowed!

  9. #9
    Join Date
    Apr 2007
    Location
    United Kingdom
    Posts
    1,861
    I would have thought securing your WHMCS install would be the first step.

    Rename the admin area, protect it with htaccess etc.
      0 Not allowed!

  10. #10
    Join Date
    Aug 2008
    Location
    USA
    Posts
    697
    Wow! That is incredibly low.

    I see the offender's website is still up.

    I guess their provider is interested too money-hungry to do anything.
    Disgusting,
    I will definitely be avoiding them.
    if ($link == "me")
    {
    echo "
    http://oliviaheart.com";
    }
      0 Not allowed!

  11. #11
    Join Date
    Feb 2006
    Posts
    1,107
      0 Not allowed!

  12. #12
    Join Date
    Apr 2006
    Location
    Phoenix
    Posts
    808
    After researching this, I want you guys to understand our position.

    A ticket was opened saying:
    I was hacked by a user with this IP address which is on your network.

    If I understand you correctly we are supposed to take their server down because you said they hacked you. No proof was provided.

    What if your competitor went to your provider and said - hey prolimehost hacked my server if you don't take them down I am going to post all over the boards and slander your name.

    Or as you said it:

    "If Proper Responce Will Not Be Given Then we going to register a Report In
    Police First Then Only i will talk further and will be going to post this
    whole story on
    webhostingtalk.com , forums.digitalpoint.com , sitepoint forum , name pros
    and gonna digg"

    Lets not forget your the same person who when we wouldn't do business with you created a thread here saying "pacificrack sucks more then I do."

    If there is malicious content on our network - open a ticket and provide proof we will handle it VERY quickly. Without proof, I cant fathom a single provider (the planet, softlayer, limestone) would take down a server because of an allegation made by one of his competitors.
    Jordan Jacobs | VP, Products|SingleHop| JJ @SingleHop.com
    Managed Dedicated Servers | Bare-Metal Servers | Cloud Services
      0 Not allowed!

  13. #13
    Join Date
    Aug 2008
    Location
    USA
    Posts
    697
    Quote Originally Posted by oliviakitty View Post
    Wow! That is incredibly low.

    I see the offender's website is still up.

    I guess their provider is too money-hungry to do anything.
    Disgusting,
    I will definitely be avoiding them.
    ^ That is what I meant to type.
    The interested in my original post was a typo.



    Quote Originally Posted by PR|Jordan View Post
    After researching this, I want you guys to understand our position.

    A ticket was opened saying:
    I was hacked by a user with this IP address which is on your network.

    If I understand you correctly we are supposed to take their server down because you said they hacked you. No proof was provided.

    What if your competitor went to your provider and said - hey prolimehost hacked my server if you don't take them down I am going to post all over the boards and slander your name.

    Or as you said it:

    "If Proper Responce Will Not Be Given Then we going to register a Report In
    Police First Then Only i will talk further and will be going to post this
    whole story on
    webhostingtalk.com , forums.digitalpoint.com , sitepoint forum , name pros
    and gonna digg"

    Lets not forget your the same person who when we wouldn't do business with you created a thread here saying "pacificrack sucks more then I do."

    If there is malicious content on our network - open a ticket and provide proof we will handle it VERY quickly. Without proof, I cant fathom a single provider (the planet, softlayer, limestone) would take down a server because of an allegation made by one of his competitors.
    So, those screenshots in the OP are not enough proof?

    What do you want them to do?
    Give you the password to their WHMCS so you can see for yourself?


    If the OP's allegations are simply smoke,
    Please explain why you allow the offender to host the following site:
    http://alb-warez.net/

    That is a forum dedicated to sharing copyrighted software, music, programs, and more...
    Last edited by oliviakitty; 09-04-2008 at 11:02 PM.
    if ($link == "me")
    {
    echo "
    http://oliviaheart.com";
    }
      0 Not allowed!

  14. #14
    Join Date
    Apr 2006
    Location
    Phoenix
    Posts
    808
    Of course the site http://alb-warez.net/ is going to be taken down. His abuse ticket said nothing about it.

    He did not submit the screen shots when he filed the ticket. He just said an IP was hacking him.
    Jordan Jacobs | VP, Products|SingleHop| JJ @SingleHop.com
    Managed Dedicated Servers | Bare-Metal Servers | Cloud Services
      0 Not allowed!

  15. #15
    Join Date
    Aug 2008
    Location
    USA
    Posts
    697
    Quote Originally Posted by PR|Jordan View Post
    Of course the site http://alb-warez.net/ is going to be taken down. His abuse ticket said nothing about it.

    He did not submit the screen shots when he filed the ticket. He just said an IP was hacking him.
    Okay,
    You have the screen shots now.
    Hopefully action will be taken in a timely manner.

    This thread has only been made today.
    Which makes it too soon to pass judgement on the offender's provider.

    At this time,
    I retract my previous statements regarding the service, and integrity, of Pacific Rack and OC3.

    Although this issue is most certainly not resolved.
    Last edited by oliviakitty; 09-04-2008 at 11:16 PM.
    if ($link == "me")
    {
    echo "
    http://oliviaheart.com";
    }
      0 Not allowed!

  16. #16
    Join Date
    Jan 2005
    Location
    Los Angeles, CA
    Posts
    48
    Quote Originally Posted by oliviakitty View Post
    If the OP's allegations are simply smoke,
    Please explain why you allow the offender to host the following site:
    http://alb-warez.net/

    That is a forum dedicated to sharing copyrighted software, music, programs, and more...
    As Jordan had said, if he knew about the site, we would have taken action on it when we were made aware of the website.

    This has since been resolved.
    Kate
    My opinions are my own and do not reflect my employer
      0 Not allowed!

  17. #17
    Join Date
    Feb 2002
    Location
    Australia
    Posts
    24,027
    I have found them super fast when it comes to dealing with abuse. Had an incident a few weeks back when a client of ours had their site compromised and a phishing site setup. PR contacted us and null routed the IP of the phishing site, until we could have the phishing removed. They acted very fast, probably a little too fast in null routing the IP, but I'd prefer too fast than not act at all.
    • WLVPN.com • NetProtect owned White Label VPN provider •
    • Increase your hosting profits by adding VPN to your product line up •
      0 Not allowed!

  18. #18
    Join Date
    Feb 2002
    Location
    Australia
    Posts
    24,027
    Quote Originally Posted by PR|Jordan View Post
    Or as you said it:

    "If Proper Responce Will Not Be Given Then we going to register a Report In
    Police First Then Only i will talk further and will be going to post this
    whole story on
    webhostingtalk.com , forums.digitalpoint.com , sitepoint forum , name pros
    and gonna digg"

    Lets not forget your the same person who when we wouldn't do business with you created a thread here saying "pacificrack sucks more then I do."
    Yeah, the poster is "Temporarily Suspended" now anyways. Seems a case of sour grapes more than anything else.
    • WLVPN.com • NetProtect owned White Label VPN provider •
    • Increase your hosting profits by adding VPN to your product line up •
      0 Not allowed!

  19. #19
    Join Date
    Aug 2008
    Location
    USA
    Posts
    697
    Quote Originally Posted by Aussie Bob View Post
    Yeah, the poster is "Temporarily Suspended" now anyways. Seems a case of sour grapes more than anything else.
    Considering that fact that the OP has posted a less than savory thread regarding the company in the past.

    Quote Originally Posted by PR|Jordan View Post
    ...Lets not forget your the same person who when we wouldn't do business with you created a thread here saying "pacificrack sucks more then I do."...
    The sour grapes logic can be applied to both sides.

    Despite the OP's current status,
    Evidence of wrong-doing has been brought to PR's attention.


    Sidenote:
    As clear from my retraction, I have nothing against PR.
    It is inaction against a spamming-hacker that irks me.
    if ($link == "me")
    {
    echo "
    http://oliviaheart.com";
    }
      0 Not allowed!

  20. #20
    Join Date
    Aug 2008
    Location
    USA
    Posts
    697
    Update: The offender's website is now down

    Touchι @ Pacific Rack,
    I'm glad you're living up to your reputation.

    Last edited by oliviakitty; 09-05-2008 at 11:06 AM.
    if ($link == "me")
    {
    echo "
    http://oliviaheart.com";
    }
      0 Not allowed!

  21. #21
    Join Date
    Feb 2002
    Location
    Australia
    Posts
    24,027
    Quote Originally Posted by oliviakitty View Post
    Update: The offender's website is now down
    That site was down a fair few hours ago.
    • WLVPN.com • NetProtect owned White Label VPN provider •
    • Increase your hosting profits by adding VPN to your product line up •
      0 Not allowed!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •