Results 1 to 11 of 11
-
05-17-2018, 06:38 PM #1Newbie
- Join Date
- May 2018
- Posts
- 5
Hyperfilter.com - Fraud, Ignoring Abuse
CEO of Hyperfilter - http://www.webhostingtalk.com/member.php?u=485422
abuse@hyperfilter.com
Fraudulent reverse proxy hosting company Hyperfilter is intentionally ignoring phishing abuse reports.
I left a 1 star review on their facebook page and they also removed it.
Their livechat on their website is a fake/gimmick, it doesn't work, if you try to make a ticket they IP ban you.
Hyperfilter is hosting a runescape phishing panel known as "xtremefish".
We contacted them with complete information regarding the site and they've intentionally ignored the abuse reports for months
Link to the full abuse report here:
https://dox.gg/00bpo
Not only have I been constantly submitting abuse reports, my whole team has from multiple sources to see if we were being filtered.
Hyperfilter has been protecting phishers and malware for years it's their specialty
https://krebsonsecurity.com/tag/hyperfilter-com/
-
05-17-2018, 06:54 PM #2Newbie
- Join Date
- May 2018
- Posts
- 5
Here's a list of phishing links on this Hyperfilter server alone
com-yhb.pw
com-gt.xyz
com-nt.ml
com-po.xyz
com-rd.xyz
-
05-17-2018, 08:30 PM #3WHT Addict
- Join Date
- Apr 2017
- Posts
- 145
If their upstream providers don't care then you can't really do anything about it.
█ IOFort - Reliable SSD Web Hosting
█ USA & NL | Ultra Fast Hosting for WordPress! | 10Gb/s Anti-DDoS | 100% Uptime | cPanel | CloudLinux | LiteSpeed | Automated Backups
█ We offer a no-questions-asked 30-day money back guarantee!
-
05-17-2018, 08:32 PM #4Newbie
- Join Date
- Jan 2018
- Location
- Bay Area
- Posts
- 22
Just to note: I don't think sending an abuse report with the link shortener "dox.gg" is a good idea. Amazingly if I received an abuse report with that I'd be a huge skeptic.
Not to legitimize Hyperfilter though as they're definitely in the wrong.
EDIT: I actually recommend contacting the upstreams though. That's always our route when dealing with these situations, and if you cause the upstreams to nullroute the hosts IP addresses, it forces them (Hyperfilter) into action and forces them to do cost benefit analysis on the client. Naturally, most of these fraud/phish clients don't pay much and as such they are dropped promptly.
Nobody will protect someone for more than they're worth.
EDIT 2: They seem to be single homed to NForce. https://bgp.he.net/AS60503Last edited by Robert Coelho; 05-17-2018 at 08:46 PM.
-
05-17-2018, 10:36 PM #5Owner of the net for a day
- Join Date
- Jun 2002
- Location
- Waco, TX
- Posts
- 5,623
You do realize a business cannot delete a review on facebook right? They can report it for violating Facebook community standards, but as long as you made a real legit review of their services and harboring of these people, they CANNOT remove a review. If you cursed and called names etc, it could be removed by facebook. They can also disable viewing/creation of all reviews, but not a select one or few.
I understand they are likely not good guys, but it is good to have your own facts in line and be knowledgeable too, so hope you can learn from this incident.
-
05-18-2018, 03:42 PM #6Newbie
- Join Date
- May 2018
- Posts
- 5
-
05-18-2018, 03:57 PM #7Temporarily Suspended
- Join Date
- Nov 2015
- Location
- UK
- Posts
- 804
Haha no you cannot. If someone leaves you a bad review all you can do is report it. Although you can only leave a review if you've been a customer - as far as this review looks you've never been a customer, so your review would then be removed by facebook. It's the same with other review sites like trustpilot - if you cannot provide an invoice from said company, then your review is null and void.
Because even though I'm sure you are being honest, reviewing a company you've never used isn't allowed (good or bad) for obvious reasons.
-
06-13-2018, 12:38 PM #8Newbie
- Join Date
- May 2018
- Posts
- 5
Here's an updated list of phishing links Hyperfilter is actively protecting
Code:com-mds.top (2018-05-14T15:54:04Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-ees.top (2018-05-14T15:54:25Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-esp.top (2018-05-19T07:03:41Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-cea.top (2018-05-19T07:04:25Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-qk.top (2018-06-04T12:28:46Z)|PDR Ltd|GDPR Masked|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-pp.top (2018-06-04T12:28:48Z)|PDR Ltd|GDPR Masked|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-xz.top (2018-06-04T23:57:40Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-cv.top (2018-06-04T23:58:32Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-nw.top (2018-06-04T23:59:07Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-wv.top (2018-06-04T23:59:36Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-zv.top (2018-06-06T05:59:32Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-uc.top (2018-06-06T06:00:18Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-cx.top (2018-06-06T14:52:50Z)|PDR Ltd|InstantRSGP Limited|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-cy.top (2018-06-06T14:52:50Z)|PDR Ltd|InstantRSGP Limited|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-zu.top (2018-06-09T07:24:58Z)|PDR Ltd|DoxGG|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-pl.top (2018-06-10T18:42:20Z)|PDR Ltd|GDPR Masked|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-pn.top (2018-06-10T18:42:20Z)|PDR Ltd|GDPR Masked|93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-ab.top (2018-06-01T13:41:55Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-ac.top (2018-06-01T13:41:55Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-ai.top (2018-06-01T13:41:55Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-aj.top (2018-06-01T13:41:55Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-jb.top (2018-06-01T13:41:55Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-pz.top (2018-06-04T09:27:16Z)|PDR Ltd|Privacy Protect, LLC (PrivacyProtect.org)|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-qb.top (2018-06-04T12:28:46Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-qs.top (2018-06-04T12:28:46Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-pq.top (2018-06-04T12:28:48Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-al.top (2018-06-06T20:51:34Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-zp.top (2018-06-06T20:51:34Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-sp.top (2018-06-06T20:51:36Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-ba.top (2018-06-06T20:51:37Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-kg.top (2018-06-07T20:45:23Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-wac.top (2018-06-07T20:45:23Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-wec.top (2018-06-07T20:45:23Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-wg.top (2018-06-07T20:45:23Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-wk.top (2018-06-07T20:45:23Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-bh.top (2018-06-08T11:43:28Z)|PDR Ltd|GDPR Masked|194.87.234.92|JSC Mediasoft ekspert/48347|Moscow com-cea.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-cv.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-cx.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-cy.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-ees.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-esp.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-mds.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-nw.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-pl.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-pn.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-pp.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-qk.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-uc.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-wv.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-xz.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-zu.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe com-zv.top ()|||93.158.239.19|FNX Tecnologia LTDA/60503|Europe
https://i.imgur.com/uZkUQDm.jpgLast edited by Asentrix; 06-13-2018 at 12:42 PM.
-
06-13-2018, 02:47 PM #9Web Hosting Evangelist
- Join Date
- Jul 2004
- Location
- Pittsburgh PA
- Posts
- 469
There isn't much WHT can do about this. As suggested you'll need to go their upstream provider, that will get Hyperfilter moving.
▉▊ HostKoi Web Services LLC - Optimized Web Hosting, Reseller, VPS and Dedicated Servers.
▉▊ Services World Wide: US, UK, Europe & Asia
▊▉ True 24x7 Support
-
06-13-2018, 06:07 PM #10Newbie
- Join Date
- May 2018
- Posts
- 5
Upstream provider claims they aren't related even though they are obviously
This is hilarious, it's a massive chain of fraud
-
06-13-2018, 06:39 PM #11Web Hosting Master
- Join Date
- Mar 2007
- Posts
- 2,050
You should let the big boys take a look into the legal routes:
FBI:
https://www.fbi.gov/scams-and-safety/on-the-internet
DHS:
https://www.us-cert.gov/report-phishing
https://www.dhs.gov/how-do-i/report-cyber-incidents
DOJ:
https://www.justice.gov/criminal-fraud/report-fraud
If it is deemed important they will act on your behalf with the big boot of the law.
Report the issue to their domain registrar:
abuse-contact@publicdomainregistry.com
If they fail to act, you can contact the .com domain rigistry:
https://www.verisign.com/en_US/compa...us/index.xhtml
That should handle the US side of things to take care of the domain of the host and have things trickle down that direction.
To take care of the .xyz domains you can contact the the domain registrar as phishing violates the ToS for registering the domain:
https://nic.xyz/files/XYZ-domain-nam...cies.pdf?v=2.0
https://gen.xyz/account/submitticket...tep=2&deptid=6
Have you called the Upstream Technical contact:
+31 (20) 894-3337
Report the issue to Europol
https://www.europol.europa.eu/report...ercrime-online
Report the issue to the NL government:
https://business.gov.nl/regulation/fraud-deception/
Brazilian Government:
http://www.brasil.gov.br/fale-conosc...-com-o-governo
Similar Threads
-
Host (ifastnet.com) ignoring abuse complaints, what do I do?
By roman310 in forum Web HostingReplies: 5Last Post: 09-03-2013, 07:33 AM -
InterfaceImprovement.com Fraud
By dgessler in forum Web Hosting LoungeReplies: 2Last Post: 07-15-2002, 12:26 AM -
imhosted.com FRAUD - please HELP!
By chrisb in forum Web HostingReplies: 14Last Post: 07-07-2002, 10:44 AM -
Noblehosting.com - Fraud Alert
By AlaskanWolf in forum Web HostingReplies: 3Last Post: 03-23-2002, 09:43 AM -
** WARNING ** VIKMAR.COM FRAUD INVESTIGATION
By WEB01PATROL in forum Web HostingReplies: 9Last Post: 06-06-2000, 11:56 AM