← back to the history

Someone Ripped My Site

Thread #752681 · 115 posts · started 2009-01-24 11:20 PM · archived from webhostingtalk.com
Rageki-John · 2009-01-24 11:20 PM · #1
Hey everyone, I was just notified by someone that ragekihosting.org has ripped off my content from their site. I've browsed through it and when I try to purchase something or go to the client area I created, it redirects to http://www.made2own.com/. I have never seen another company stoop to such a low level as to ripping my site and trying to sell my hosting as their own. This is just a warning for everyone that we, www.ragekihosting.com, is in no way associated with ragekihosting.org. Edit: I just did a lookup on the IP they were hosting and apparently it leads back to xema.nl.
dreamcodedesign · 2009-01-25 01:14 AM · #1
Don't go to vectorlevel.EU it attempts to make you install a script. I went on it with a tester PC some reason it accepted the install and crashed the PC.
Guest · 2009-01-25 12:24 PM · #1
[danny@slam ~]$ wget www.ragekihosting.org --16:23:11-- http://www.ragekihosting.org/ => `index.html' Resolving www.ragekihosting.org... failed: Temporary failure in name resolution. [danny@slam ~]$ wget www.vectorlevel.eu --16:23:12-- http://www.vectorlevel.eu/ => `index.html' Resolving www.vectorlevel.eu... failed: Temporary failure in name resolution. all ns's for both are returning ;; connection timed out; no servers could be reached
NoahH · 2009-01-25 10:30 PM · #1
Maybe he'll claim this time that you were all using templates, and he "bought" them like that. I hope so, as I have the PSD source of the VectorLevel design to prove otherwise...
Payton Designs · 2009-01-26 08:24 PM · #1
http://en.wikipedia.org/wiki/Cybersquatting Should help you out. All the best, "According to the United States federal law known as the Anticybersquatting Consumer Protection Act, is registering, trafficking in, or using a domain name with bad faith intent to profit from the goodwill of a trademark belonging to someone else." You wouldn't happen to have a trademark on your company by chance?
dreamcodedesign · 2009-01-24 11:25 PM · #2
Sorry to hear this John. I wish you the best of luck on resolving this issue. All the best,
Mike V · 2009-01-25 01:16 AM · #2
Sorry about that. Nothing to be sorry for, John. I can't tell if the host's server is hacked or if it's an intentional part of this whole game. I wonder if the ripper is aware of all the attention being given to his sites right about now?
Adam-AEC · 2009-01-25 12:30 PM · #2
I don't think he's going around and ripping sites and pretending to be sites and creating accounts on WHT pretending to be concerned and impersonating the people he's ripping and .... wow, what more can I say about you ... erm ... I mean him? Ripped site + Hosting in .sg spells the FusedNetwork/DefconHost fiasco all over again.
hD-Scott · 2009-01-25 10:36 PM · #2
Defconhost has does this before and I'm sure he'll do it again. He was ACTUALLY advertising his hosting services on wht using a ripped design of fused networks. At least he "tried" to cover it up by smudging out the fused logo and replacing it with his, but the gall of a guy like that!
dreamcodedesign · 2009-01-26 08:26 PM · #2
"According to the United States federal law known as the Anticybersquatting Consumer Protection Act, is registering, trafficking in, or using a domain name with bad faith intent to profit from the goodwill of a trademark belonging to someone else." You wouldn't happen to have a trademark on your company by chance? GeekStorage I think does..But, I don't. All the best,
AquariusStorage · 2009-01-24 11:28 PM · #3
Wow John, I'm very sorry to hear about this. The websites are identical except for where the purchase links direct to. Hopefully you get this taken care of and taken down, however I have no experience with xema.nl myself.
Orien · 2009-01-25 01:17 AM · #3
Don't go to vectorlevel.EU it attempts to make you install a script. I went on it with a tester PC some reason it accepted the install and crashed the PC. Yes, vectorlevel.eu is infected with a virus - I would recommend doing a virus scan. Please DO NOT visit the URL. Just to reiterate, we are not affiliated with this URL in any manner whatsoever. The only valid domains that we own are .com, .net, and .org - everything else is fake!
StartYourServer · 2009-01-25 12:37 PM · #3
I don't think ragekihosting.org is still working...
GregVernon · 2009-01-25 10:37 PM · #3
Hey guys, whats the popcorn icon code? This is starting to get interesting, especially if defcon is involved... I just finished reading the other thread about Defcon, oh boy, this is going to be epic. lols.
TheBizDev · 2009-01-26 08:27 PM · #3
This is why I think its important that you own your own .com, .net and .org
dreamcodedesign · 2009-01-24 11:32 PM · #4
The fake Rageki website is hosted in China..... All the best,
JLHC · 2009-01-25 01:18 AM · #4
Don't go to vectorlevel.EU it attempts to make you install a script. I went on it with a tester PC some reason it accepted the install and crashed the PC. Well maybe WHT should censored the domain then? I am glad that I am using a script blocker in my browser.
StartYourServer · 2009-01-25 12:41 PM · #4
Yer I Dont Think This Site Is Working Anymore You May Be In Luck, Sorry To Hear About This Though.
dreamcodedesign · 2009-01-25 10:40 PM · #4
Hey guys, whats the popcorn icon code? This is starting to get interesting, especially if defcon is involved... I just finished reading the other thread about Defcon, oh boy, this is going to be epic. lols. You mean this? it's : popcorn : without the spaces. All the best,
dreamcodedesign · 2009-01-26 08:28 PM · #4
This is why I think its important that you own your own .com, .net and .org A majority of us do own those. But, they stole the other TLD's... such as .EU and .BIZ All the best,
Rageki-John · 2009-01-24 11:33 PM · #5
Well, I just emailed Made2Own and Xema. Hopefully, I'll get a response soon.
dreamcodedesign · 2009-01-25 01:25 AM · #5
I agree. Maybe censoring would help. BTW. The computer it crashed was a development computer. So everything is good except me losing a spare computer.
JLHC · 2009-01-25 12:48 PM · #5
The sites are actually going up and down. Not sure whether it is due to the China servers though.
dreamcodedesign · 2009-01-25 10:40 PM · #5
Hey guys, whats the popcorn icon code? This is starting to get interesting, especially if defcon is involved... I just finished reading the other thread about Defcon, oh boy, this is going to be epic. lols. e:f;b
Payton Designs · 2009-01-26 08:30 PM · #5
"Countries such as China and Russia do not view cybersquatting in the same way or degree that US law does." Doesn't surprise me...
Rageki-John · 2009-01-24 11:33 PM · #6
Pretty interesting, never really seen anything like that. Not sure where you pulled xema.nl from though, to me its resolving to 222.186.9.142 AS4134 CHINA-TELECOM nslookup ragekihosting.org Non-authoritative answer: Name: ragekihosting.org Address: 222.186.9.142 Anyway, best of luck dealing with them, that must be annoying to say the least.
Mike V · 2009-01-25 02:01 AM · #6
Blocking v1.infobar1.info on your computer will keep it safe, should you choose to visit those infected websites. But please, don't visit the sites unless you absolutely want to. I assure you that all you'd see is a slow-loading copy of the site(s) being discussed here.
dreamcodedesign · 2009-01-25 12:55 PM · #6
The sites are actually going up and down. Not sure whether it is due to the China servers though. Yup, they are going up and down. Mine seems to have not gone down yet though.. All the best,
Rageki-John · 2009-01-25 10:42 PM · #6
Hey, Some person claiming to own Ragekhosting.org just contacted me via AIM and I've decided to post the convo for all of you to see. [17:33] klausnomi0: Hello [17:33] ragekijohn: Hello [17:33] klausnomi0: I just wanted to let you know that we've moved ragekihosting.org to a faster server, so that it maintains 100% uptime [17:33] klausnomi0: The chinese host was giving us some issues, and we were only at about 95% [17:33] klausnomi0: Hopefully this will be acceptable [17:34] ragekijohn: Ragekihosting.org is not my site. If you are the owner of it please take it down immediately [17:34] ragekijohn: You are ripping the content off my site and that is not acceptable [17:34] klausnomi0: We've moved it to a faster server, don't worry, it might be better now. [17:34] ragekijohn: I told you [17:34] ragekijohn: You are stealing my content [17:34] ragekijohn: and I will shut you down for that. [17:34] klausnomi0: And? [17:35] klausnomi0: I wasn't aware you were my host [17:35] klausnomi0: Not sure how you plan on shutting me down [17:35] ragekijohn: You are stealing my content. You have stolen my layout. [17:35] klausnomi0: Correct. [17:35] ragekijohn: I will notify the proper authorities. [17:35] klausnomi0: In China? [17:35] ragekijohn: And you will get shut down for stealing and distributing viruses [17:35] klausnomi0: or in The Netherlands? [17:36] ragekijohn: No matter where you hide, you will get shut down [17:36] klausnomi0: Doesn't look like it so far [17:36] klausnomi0: David at FusedNetwork gave up last time after trying for weeks [17:36] ragekijohn: Just wondering, why did you steal my site? [17:36] klausnomi0: and guess what? http://fusednetwork.biz [17:36] klausnomi0: http://defconhost.com [17:37] ragekijohn: I don't see any reason as to why you would steal my site. [17:37] klausnomi0: None of your business [17:37] ragekijohn: Then do not speak to me anymore. [17:37] klausnomi0: Sounds like a plan, have fun "shutting me down." Well, I've already notified the proper people and hopefully this will all come to an end very soon.
dreamcodedesign · 2009-01-26 08:46 PM · #6
"Countries such as China and Russia do not view cybersquatting in the same way or degree that US law does." Doesn't surprise me... The name registar has offices in the UK and France both allies of the United States. All the best,
Rageki-John · 2009-01-24 11:34 PM · #7
That totally sucks! Try and get everything to get that down.. You could loose business totally!
DefconHost · 2009-01-25 02:02 AM · #7
Blocking v1.infobar.info on your computer will keep it safe, should you choose to visit those infected websites. But please, don't visit the sites unless you absolutely want to. I assure you that all you'd see is a slow-loading copy of the site(s) being discussed here. How are you doing today Mike V my love
Swelly · 2009-01-25 12:57 PM · #7
Don't go to vectorlevel.EU it attempts to make you install a script. I went on it with a tester PC some reason it accepted the install and crashed the PC. Just another great reason added to the list to own a mac. Anyway to the OP, I hope you get it sorted.
GregVernon · 2009-01-25 10:42 PM · #7
You mean this? it's : popcorn : without the spaces. All the best, Yup, that's the one.
dreamcodedesign · 2009-01-26 08:50 PM · #7
I thought I had seen that site before. templatemonster .com/website-templates/11866.html
Rageki-John · 2009-01-24 11:38 PM · #8
Pretty interesting, never really seen anything like that. Not sure where you pulled xema.nl from though, to me its resolving to 222.186.9.142 AS4134 CHINA-TELECOM nslookup ragekihosting.org Non-authoritative answer: Name: ragekihosting.org Address: 222.186.9.142 Anyway, best of luck dealing with them, that must be annoying to say the least. That's strange. I did a lookup on dnscolos.com for their domain and I got the IP 91.205.233.10 which leads back to the Netherlands. Edit: Just did the nslookup in Putty and it appears that IP does lead to China. I guess I'll contact them too to get this shut down? Just tried to lookup their IP and it ran into a dead end. I did a whois lookup and that person appears to be in San Diego. Maybe I'll give them a call?
dreamcodedesign · 2009-01-25 02:05 AM · #8
Has anybody found anymore copy-cat sites? All the best
dreamcodedesign · 2009-01-25 01:01 PM · #8
Just another great reason added to the list to own a mac. Anyway to the OP, I hope you get it sorted. It wasn't a windows PC. It was a beta of some software... All the best,
oliviakitty · 2009-01-25 11:03 PM · #8
Aw man, this is a fake? Link: fusednetwork.biz I know like 3 people signed up with them. *runs and tells* Nevermind, it was the .com
dreamcodedesign · 2009-01-26 09:54 PM · #8
It looks like he's using The Sofia Hotel's address.... All the best,
Payton Designs · 2009-01-24 11:42 PM · #9
Sorry to hear about this. Not only is this company stealing your design, but practically stealing some of your future clients. made2own.org is available...
JLHC · 2009-01-25 02:07 AM · #9
Has anybody found anymore copy-cat sites? All the best Well my .org domain is registered by this person as well...
David · 2009-01-25 02:35 PM · #9
Ripped site + Hosting in .sg spells the FusedNetwork/DefconHost fiasco all over again. And sadly, nothing worthy of reading or even glancing over. Defconhost leads a boring life. At any rate, careful around those urls as it appears to be an attempt to exploit systems loading the addresses.
Mr. Obvious · 2009-01-26 12:18 AM · #9
/subscribe /
DefconHost · 2009-01-27 03:17 AM · #9
Hello all, Apologies for the downtime, I'll try to make sure it doesn't happen again, we have upgraded the DDoS protection on our nameservers, which was the reason for the downtime. (Touche, whoever it was) We plan to continue providing the highest quality service possible to all of our clients. Thank you.
dreamcodedesign · 2009-01-24 11:42 PM · #10
The nameservers for the domain are 91.205.233.10 and 91.205.233.11. That's how you got the Netherlands. The domain is hosted on 222.186.9.142 All the best,
dreamcodedesign · 2009-01-25 02:11 AM · #10
O-Great. Sorry to hear JHLC. I wish there was a way to check if any of mine were stolen. All the best
GregVernon · 2009-01-25 03:48 PM · #10
I suppose this is something ICANN should hear about... This is a really low blow, hopefully when people search for all of the ripped hosting companies, they'll see this... Currently a search for the affected domains do point to this thread, which is kinda good, I suppose. Fortunately for me, none of my sites have been ripped yet... I hope all of you get this resolved
GregVernon · 2009-01-26 05:08 PM · #10
any updates on this?
GregVernon · 2009-01-27 03:18 AM · #10
Hello all, Apologies for the downtime, I'll try to make sure it doesn't happen again, we have upgraded the DDoS protection on our nameservers, which was the reason for the downtime. (Touche, whoever it was) We plan to continue providing the highest quality service possible to all of our clients. Thank you. You mean, you're actually behind stealing these websites?
dreamcodedesign · 2009-01-24 11:43 PM · #11
That's strange. I did a lookup on dnscolos.com for their domain and I got the IP 91.205.233.10 which leads back to the Netherlands. Edit: Just did the nslookup in Putty and it appears that IP does lead to China. I guess I'll contact them too to get this shut down? Just tried to lookup their IP and it ran into a dead end. I did a whois lookup and that person appears to be in San Diego. Maybe I'll give them a call? whois . sc/222.186.9.142 role: CHINANET JIANGSU address: No.268,Hanzhong Road,Nanjing 210029 country: CN phone: +86-25-6588783 fax-no: +86-25-6588740 e-mail: ip@jsinfo.net trouble: send anti-spam reports to spam@jsinfo.net trouble: send abuse reports to abuse@jsinfo.net
Rageki-John · 2009-01-25 02:13 AM · #11
Well my .org domain is registered by this person as well... Sorry to hear that this person has done the same to you as well. The only way you could use to check is to just check all domain extensions to see if any of them are ripped sites.
dreamcodedesign · 2009-01-25 03:55 PM · #11
I suppose this is something ICANN should hear about... This is a really low blow, hopefully when people search for all of the ripped hosting companies, they'll see this... Currently a search for the affected domains do point to this thread, which is kinda good, I suppose. Fortunately for me, none of my sites have been ripped yet... I hope all of you get this resolved They'll be gone soon. We've got a lead.... All the best,
Rageki-John · 2009-01-26 05:16 PM · #11
So far no updates .
DefconHost · 2009-01-27 03:24 AM · #11
You mean, you're actually behind stealing these websites? I'm not sure "stealing" would be the right word, perhaps "borrowing", in order to provide extremely high quality malware infection and Made2Own hosting solutions, obviously far superior in quality to the originals.
foobic · 2009-01-24 11:44 PM · #12
GET / HTTP/1.1 Host: offshorecdn.com User-Agent: Mozilla/5.0 Firefox/3.0.5 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-gb,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 300 Connection: keep-alive Referer: http://www.ragekihosting.org/PlansShared.html HTTP/1.x 301 OK Date: Sun, 25 Jan 2009 02:30:58 GMT Server: Apache/1.3.33 (Unix) Resin/2.1.14 mod_throttle/3.1.2 X-Powered-By: PHP/4.3.11 Location: http://www.made2own.com/clients/aff.php?aff=078 Connection: close Transfer-Encoding: chunked Content-Type: text/html Looks like an affiliate scam. At least by informing made2own you should ensure they don't profit from it in future.
Mike V · 2009-01-25 02:14 AM · #12
Some folks work hard to build their business up, getting customers the old fashioned way. These are intelligent people that will be successful. Others just steal websites and thumb their nose at the people who don't appreciate their hard work being taken. They view the Internet as a wild kingdom that's there for looting. But they always lack the business sense and abilities required to make it. I wonder if the ripper even knows his website is infested with viruses, or knows how to stop it. I'm guessing not.
Rageki-John · 2009-01-25 04:24 PM · #12
I just woke up right now and I'm glad to see the fake site is gone . Hope Axigy can get it resolved soon as well . I just hate how some users do this in order to take advantage of another companies affiliate system and to make some extra cash.
Payton Designs · 2009-01-26 05:19 PM · #12
So far no updates . Looks like he's not living up to his promise or it's actually been removed: [17:33] klausnomi0: I just wanted to let you know that we've moved ragekihosting.org to a faster server, so that it maintains 100% uptime
DefconHost · 2009-01-27 03:27 AM · #12
(Touche, whoever it was) Apparently WHTers can strike you down with furious anger.
Rageki-John · 2009-01-24 11:45 PM · #13
Well, I just tried giving a call to the number on the WHOIS information but that led to a dead end as well. I'll try a trace on the China IP and see who the host is for that. Hopefully, I can get in contact with that person as well. The weird part is that the links to order hosting redirect to Made2Own.com. Seeing as how their site looks like a pretty well established host, I don't really want to point fingers but I already dropped them an email. Edit: The funniest part is that they just registered the domain today. Created On:25-Jan-2009 01:09:33 UTC Last Updated On:25-Jan-2009 01:11:05 UTC Expiration Date:25-Jan-2010 01:09:33 UTC Too bad they'll get shut down soon . Another Edit: I noticed that the whois information for the domain came from San Diego. I noticed on Livezilla that through the past 1-2 days I had a visitor from San Diego constantly browsing my site numerous times. It was the same visitor just coming back and forth numerous times, browsing my pages. So I suppose it was that person who was ripping the content off my site? Anyways, Thanks everyone for helping me out with all this information. I've already contacted all the leads I could find and hopefully they'll get shut down soon enough.
hD-Scott · 2009-01-25 02:14 AM · #13
What sucks is that we all know to register the .com/.net/.org of our domain names, but now they're expanding to .eu and others. I can't imagine having to own all the permutations of your domain name. That could be a hefty domain bill each year. But I guess the alternative is worse!
dreamcodedesign · 2009-01-25 04:42 PM · #13
I just woke up right now and I'm glad to see the fake site is gone . . They aren't gone John. The server or ISP in China seems to be unstable so the sites go up and down. All the best,
Mike - Limestone · 2009-01-26 05:47 PM · #13
A DMCA complaint may definitely be in order, if I'm understanding the complaint nature correctly. -mike
GregVernon · 2009-01-27 03:28 AM · #13
I'm not sure "stealing" would be the right word, perhaps "borrowing", in order to provide extremely high quality malware infection and Made2Own hosting solutions, obviously far superior in quality to the originals. ... I think you're asking for trouble.
Rageki-John · 2009-01-24 11:58 PM · #14
One thing I don't understand about this is how they plan to profit? It seems that they aren't even a real hosting company so what's the point?
dreamcodedesign · 2009-01-25 02:15 AM · #14
I guess I'll check when I get home then. Since it crashed the computer at the office.
DefconHost · 2009-01-25 06:55 PM · #14
Ripped site + Hosting in .sg spells the FusedNetwork/DefconHost fiasco all over again. fusednetwork.biz
dreamcodedesign · 2009-01-26 06:15 PM · #14
A DMCA complaint may definitely be in order, if I'm understanding the complaint nature correctly. -mike I'm not sure China will respond to a DMCA. But we've already notified the proper authorites and they will be handling the issue very shortly.
Orien · 2009-01-27 03:32 AM · #14
Hello all, Apologies for the downtime No problem - don't you worry about it.
Rageki-John · 2009-01-25 12:02 AM · #15
One thing I don't understand about this is how they plan to profit? It seems that they aren't even a real hosting company so what's the point? No idea. The redirect thing shouldn't work as people would suspect they aren't getting hosting from Rageki when it goes to Made2Own. I guessed they hoped to make some cash from Made2Own's affiliate program? Either way, it's a failed plan, but I just don't like seeing people rip my content.
JLHC · 2009-01-25 02:17 AM · #15
I guess I'll check when I get home then. Since it crashed the computer at the office. Sorry to hear about that. I am glad that NoScript! in FireFox is showing it's usefulness now.
DefconHost · 2009-01-25 07:04 PM · #15
fusednetwork.biz Javascript it references is hosted at descr: Ecatel LTD person: Reinier van Eeden address: Archangelkade 1-3 address: 1013 BE Amsterdam mnt-by: IQARUS-MNT e-mail: r.eeden@nl.iqarus.com Also something amusing is that the registrants: Registrant Address2: Attn: RBN
darkeden · 2009-01-26 06:17 PM · #15
unfortunutely you cant do much about it. i had someone from netherlands and china steal my site. after reporting to the proper authorites they do nothing but if they do somthing tell me how you contacted lol
Mike V · 2009-01-27 03:54 AM · #15
Thread closed.
Rageki-John · 2009-01-25 12:09 AM · #16
No idea. The redirect thing shouldn't work as people would suspect they aren't getting hosting from Rageki when it goes to Made2Own. I guessed they hoped to make some cash from Made2Own's affiliate program? Either way, it's a failed plan, but I just don't like seeing people rip my content. The only thing that makes me doubt that it's an affiliate is that they don't look to be very professional, look what I found on google linking back to WHT for "made2own": webhostingtalk.com/showthread.php?t=621681 Maybe the affiliate thing is just a cover up?
engineerroy · 2009-01-25 02:30 AM · #16
Copyscape site may find the copied sites if its registered with your site, try that if you want to stop others using your codes or content
oliviakitty · 2009-01-25 07:41 PM · #16
Wow! Luckily the site is down now. (At least on my end) That's why I bought all the major extensions for domains that are important to me. It's clear they wanted to cash in whatever customer's your name would bring. But, You can't really be too mad if someone else has your same layout. As it's just $66 at templatemonster.
SenseiSteve · 2009-01-26 06:22 PM · #16
Yipes! Let's hope klausnomi0 gets shut down soon.
Softsys Hosting · 2009-01-25 12:12 AM · #17
I feel very sorry for you. This is really ridiculous and can't believe how people can go at such low standard!! BS.. Anyways, good luck in getting them down and let us know if we can be of any help to you. - Rick
dreamcodedesign · 2009-01-25 02:41 AM · #17
Sorry to hear about that. I am glad that NoScript! in FireFox is showing it's usefulness now. Yup. It sucks. But its always nice to have a BlackBerry as a backup. If anybody has found a copy-cat of their please it here but don't link it. Thanks! All the best
Mike V · 2009-01-25 08:46 PM · #17
Maybe it was just a few templates (http://www.webhostingtalk.com/showpost.php?p=5073518&postcount=51) that were purchased.
Rageki-John · 2009-01-26 06:29 PM · #17
Looks like he's not living up to his promise or it's actually been removed: [17:33] klausnomi0: I just wanted to let you know that we've moved ragekihosting.org to a faster server, so that it maintains 100% uptime Looks like he's down for the moment but let's see how long it'll last.
Mike V · 2009-01-25 12:40 AM · #18
Please don't link to the .org site; it has a virus on it that will attempt to infect your computer. Edit: My oh my, another fake site, vectorlevel.eu, is also hosted there. I wonder what the connection is? Edit: Both sites have a virus!
dreamcodedesign · 2009-01-25 09:45 AM · #18
I've been ripped too. axigy.biz Please Note: We ONLY operate off www.axigy.com, axigy.net and axigy.org All the best,
Dustin B Cisneros · 2009-01-25 09:49 PM · #18
Im sorry to hear about this John i really hope you can get this fixed as your losing website traffic and possibly customer's.
dreamcodedesign · 2009-01-26 06:47 PM · #18
unfortunutely you cant do much about it. i had someone from netherlands and china steal my site. after reporting to the proper authorites they do nothing but if they do somthing tell me how you contacted lol I can't tell you everything at this time. But I can tell you he is closer than you think.
dreamcodedesign · 2009-01-25 12:49 AM · #19
Please don't link to the .org site; it has a virus on it that will attempt to infect your computer. Edit: My oh my, another fake site, vectorlevel.eu, is also hosted there. I wonder what the connection is? Very strange. I've alerted Orien about the fake VL. I'm noticing a Signapore IP. Visiting our site very often. It starting to worry me.
Dave_webb · 2009-01-25 10:18 AM · #19
ragekihosting really should try and get that sorted.
DefconHost · 2009-01-25 09:51 PM · #19
Maybe it was just a few templates (http://www.webhostingtalk.com/showpost.php?p=5073518&postcount=51) that were purchased. Mike V hitting the nail right on the head. Or maybe it should be our dishonest designer this time, I guess it's kind of hard to explain away the company names though.
dreamcodedesign · 2009-01-26 08:02 PM · #19
We've been investigating deeper as the days are passing. More proof is building up at this time... Please see the screenshot below. We will keep you guys posted. All the best,
JLHC · 2009-01-25 12:50 AM · #20
Edit: My oh my, another fake site, vectorlevel.eu, is also hosted there. I wonder what the connection is? Oh my... Time to purchase all domain names.
JoCortland · 2009-01-25 10:44 AM · #20
This one puzzles and concerns me. There are a couple more domains involved in this mess,just to confuse issues a bit more. The "faker" domain axigy(dot)biz shows it is registered to something showing offshorecdn(dot)com. Loading the fake site does refer to that 2nd domain name. The whois info give a PO Box in San Diego as address. Anyhow, their ns servers are showing as ns1 and ns2 (dot) cheapdrugsneeded(dot)com, which traces back to another IP in China. offshorecdn(dot)com traces to an IP in China, which redirects to the made2own(dot)com site, which appears to be in one of The Planet's DCs. 14 po31.dsr01.dllstx5.theplanet.com (70.85.127.106) 53.082 ms po32.dsr02.dllstx5.theplanet.com (70.85.127.110) 55.071 ms po31.dsr01.dllstx5.theplanet.com (70.85.127.106) 56.307 ms 15 6.fe.5746.static.theplanet.com (70.87.254.6) 59.044 ms 60.029 ms 61.767 ms 16 titan.made2own.com (70.85.173.122) 62.755 ms 63.994 ms 66.231 ms I wonder how many more hosts have been "hijacked" like this. It could cause a serious black eye to those who have been affected, and to the business in general.
dreamcodedesign · 2009-01-25 09:59 PM · #20
Through hours of deep research we have found out who was ripped our sites. DefconHost has ripped our sites... Please see the screenshots below. All the best,
Payton Designs · 2009-01-26 08:05 PM · #20
Could this be a case of domain squatting?
Orien · 2009-01-25 12:55 AM · #21
Please don't link to the .org site; it has a virus on it that will attempt to infect your computer. Edit: My oh my, another fake site, vectorlevel.eu, is also hosted there. I wonder what the connection is? So it looks like this is pretty widespread. John, I'm not sure if this happened to you too, but someone actually started posting on WHT with my company name as their username - that's how I found the rip of my site.
HS345 · 2009-01-25 11:01 AM · #21
It looks like this problem could be VERY widespread. Scary. I wonder if alerting the media, would be a good idea. The media has vast resources to research this potential widespread problem, and could maybe ferret out a lot of these fake sites. The list of Chinese treachery grows. I tried to get the originally posted, infected site, to load multiple times. It just didn't want to load, thank God. I did run a deep scan, virus, and spyware, and it seems I am not infected. Whew!
iWF-Jacob · 2009-01-25 10:01 PM · #21
Through hours of deep research we have found out who was ripped the sites. who that would be? Can you tell us any information?
Rageki-John · 2009-01-26 08:06 PM · #21
We've been investigating deeper as the days are passing. More proof is building up at this time... Please see the screenshot below. We will keep you guys posted. All the best, We're another step closer to getting this guy . Could this be a case of domain squatting? I doubt it. I think the domains were available to begin with. I don't remember ever registering the .org extension for my company.
iWF-Jacob · 2009-01-25 01:07 AM · #22
Thanks for the heads up - and sorry that happened to you. Keep us updated EDIT: Just bought all the iwebfusion domains I could!
dreamcodedesign · 2009-01-25 11:41 AM · #22
It looks like the person pulled the plug on the fake sites.... 222.186.9.142 no longer resolves. EDIT: I was wrong it was just a temp down. All the best,
dreamcodedesign · 2009-01-25 10:03 PM · #22
who that would be? Can you tell us any information? See the post above. All the best,
dreamcodedesign · 2009-01-26 08:15 PM · #22
Here is some more proof... Please see screenshot below. All the best,
Orien · 2009-01-25 01:08 AM · #23
The only thing that makes me doubt that it's an affiliate is that they don't look to be very professional, look what I found on google linking back to WHT for "made2own": webhostingtalk.com/showthread.php?t=621681 Maybe the affiliate thing is just a cover up? I agree - the affiliate link is looking likely as just a cover-up for made2own.
JLHC · 2009-01-25 11:58 AM · #23
http://www.webhostingtalk.com/showthread.php?t=752762
iWF-Jacob · 2009-01-25 10:04 PM · #23
Gah, Sorry about that. Seems I posted before you edited your post to include those images
Payton Designs · 2009-01-26 08:17 PM · #23
I doubt it. I think the domains were available to begin with. I don't remember ever registering the .org extension for my company. But, isn't domain squatting when someone registers a domain with the intent to attract visitors from the legitimate website to theirs?
Rageki-John · 2009-01-25 01:09 AM · #24
Please don't link to the .org site; it has a virus on it that will attempt to infect your computer. Edit: My oh my, another fake site, vectorlevel.eu, is also hosted there. I wonder what the connection is? Sorry about that.
dreamcodedesign · 2009-01-25 12:04 PM · #24
http://www.webhostingtalk.com/showthread.php?t=752762 I'm not a premium member just yet. All the best,
Orien · 2009-01-25 10:07 PM · #24
Through hours of deep research we have found out who was ripped our sites. DefconHost has ripped our sites... Please see the screenshots below. All the best, I'd like to see this one explained.
dreamcodedesign · 2009-01-26 08:19 PM · #24
But, isn't domain squatting when someone registers a domain with the intent to attract visitors from the legitimate website to theirs? http://en.wikipedia.org/wiki/Cybersquatting Should help you out. All the best,
Jamson · 2009-01-25 01:12 AM · #25
They could be using the affiliate links to see which hosts are giving them the most orders, like a tracker i guess.
SoftWareRevue · 2009-01-25 12:06 PM · #25
How are you doing today Mike V my love I don't think he's going around and ripping sites and pretending to be sites and creating accounts on WHT pretending to be concerned and impersonating the people he's ripping and .... wow, what more can I say about you ... erm ... I mean him?
Adam-AEC · 2009-01-25 10:23 PM · #25
I'd like to see this one explained. I'm sure Defconhost will have some sort of 'explanation'. Maybe he'll claim this time that you were all using templates, and he "bought" them like that. I'm surprised he's not banned from here
GregVernon · 2009-01-26 08:22 PM · #25
I hate to say this, but that all that data is coincidental... It could be China TELECOM doesn't care what happens on its servers, with more than 1 scammer using them...