I just someone order or high level V reseller account and it turned up fraud. here is the ip address that was used to process the order

213.163.111.12


this was discovered by the ip tracing back to overseas when the order was from new york. Also when I looked at my authorize.net account there were 5 orders attempting to be placed with different charge card numbers and then finally one went through.

he tried to register koshost.org


this person used a coupon code available here and webhostingtalk.com so they are definately visiting us

there you go



% This is the RIPE Whois query server #1.
% The objects are in RPSL format.
%
% Note: the default output of the RIPE Whois server
% is changed. Your tools may need to be adjusted. See
% http://www.ripe.net/db/news/abuse-proposal-20050331.html
% for more details.
%
% Rights restricted by copyright.
% See http://www.ripe.net/db/copyright.html

% Note: This output has been filtered.
% To receive output for a database update, use the "-B" flag.

% Information related to '213.163.96.0 - 213.163.127.255'

inetnum: 213.163.96.0 - 213.163.127.255
org: ORG-Pdti1-RIPE
netname: YU-PTKOSOVO-20021015
descr: PROVIDER
descr: Posta dhe telekomi i Kosoves
country: CS
admin-c: AR1018-RIPE
tech-c: FS1497-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: PTK-MNT
mnt-routes: PTK-MNT
source: RIPE # Filtered

organisation: ORG-Pdti1-RIPE
org-name: Posta dhe telekomi i Kosoves
org-type: LIR
address: Dardania, p.n
address: 10000
address: Prishtine
address: CS
phone: +38138543060
fax-no: +38138543051
e-mail: fatos.shema@dardanet.net
admin-c: FS1497-RIPE
admin-c: AR1018-RIPE
mnt-ref: PTK-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
source: RIPE # Filtered

person: Agron Rrustemaj
address: PTK Dardania, Dardanet, UNMIK Kosova
phone: +377 44 220014
fax-no: +381 38 549 960
e-mail: Agron.Rrustemaj@dardanet.net
nic-hdl: AR1018-RIPE
mnt-by: PTK-MNT
source: RIPE # Filtered

person: Fatos Shema
address: PTK Dardania, Dardanet, UNMIK Kosova
phone: +381 38 543 060
fax-no: +381 38 543 051
e-mail: fatos.shema@dardanet.net
nic-hdl: FS1497-RIPE
mnt-by: PTK-MNT
source: RIPE # Filtered

% Information related to '213.163.96.0/19AS8661'

route: 213.163.96.0/19
descr: DardaNET
origin: AS8661
mnt-by: PTK-MNT
source: RIPE # Filtered

yep that was the info i got

Thanks for the heads up, Ill add this to the black list, along with the others. Im thinking of starting a site, for us hosting companies, that can post what orders come in as frauds ect. witch will allow us some backbones so we know what to watch for, saving us all from chargebacks ect.

Thanks for the heads up, Ill add this to the black list, along with the others. Im thinking of starting a site, for us hosting companies, that can post what orders come in as frauds ect. witch will allow us some backbones so we know what to watch for, saving us all from chargebacks ect.
Oh, wow, that would help so much! We get a couple fraud orders per month through 2Checkout, and if they aren't fraud, they're just trying to get a place to send spam from. We could definitely contribute a few IPs. Most of them are from satellite providers.

Cool. That sounds great LSComputers!

I'm actully looking for sponsors for a search engine project. We need to get some money to purchase a decent server for the search engine to be on.

I have a few tricks up my sleves though. If I can get the sponsors I may just have a large act of good faith to some other people here and there ;)

Any back to the subject at hand. That would be a great idea making a Webhost Fraud BlackList for webhosts to know what IPs to disallow from. I know I'd support that!

Cool. That sounds great LSComputers!

I'm actully looking for sponsors for a search engine project. We need to get some money to purchase a decent server for the search engine to be on.

I have a few tricks up my sleves though. If I can get the sponsors I may just have a large act of good faith to some other people here and there ;)

Any back to the subject at hand. That would be a great idea making a Webhost Fraud BlackList for webhosts to know what IPs to disallow from. I know I'd support that!

For a start, a dedi is maybe an overkill btu I dont rule out that possibility in the long run.

We would need a site for registered (free of course) hosts but definitely not a search engine where Tom, ---- or Harry can query.

Again, we repeat our offer of space if someone can come up with the script.

True, ill wizz up a site. Just pm the details and ill start it.

Thanks for the heads up, Ill add this to the black list, along with the others. Im thinking of starting a site, for us hosting companies, that can post what orders come in as frauds ect. witch will allow us some backbones so we know what to watch for, saving us all from chargebacks ect.

I have a domain i purchase a while back for this reason and also had plans to have a api written to be added to any billing software that wanted to, to query the DB with users info. There are some legal issues surrounding this idea that might be a good idea to look into, But if you want i am willing to provide the domain and hosting for this project for free. The domain is hostingfraud.com

For a start, a dedi is maybe an overkill btu I dont rule out that possibility in the long run.

We would need a site for registered (free of course) hosts but definitely not a search engine where Tom, ---- or Harry can query.

Again, we repeat our offer of space if someone can come up with the script.


I wasn't suggesting that we use a search engine for this. I was merely babbling on like usual. We’d need the registration to be admin approved too otherwise people could just say “Yes I’m a webhost look at me…”.


I have a domain i purchase a while back for this reason and also had plans to have a api written to be added to any billing software that wanted to, to query the DB with users info. There are some legal issues surrounding this idea that might be a good idea to look into, But if you want i am willing to provide the domain and hosting for this project for free. The domain is hostingfraud.com

Man that’s really generous! I offer my services as an experienced php Coder for FREE to this project!

That would be a great idea!

So that's the hard part in webhosting. From time to time you have to deal with frauds.
Hope you won't give up guys.

I have a domain i purchase a while back for this reason and also had plans to have a api written to be added to any billing software that wanted to, to query the DB with users info. There are some legal issues surrounding this idea that might be a good idea to look into, But if you want i am willing to provide the domain and hosting for this project for free. The domain is hostingfraud.com

If you are ready to proceed since another has offered coding sdupport, just PM me wi the domain name when ready and we can set you up with the space you require.

Since I am really tied down, would appreciate if you can lias with the "coder".

well Basicly to start im was just going to get some sort of forum board, or something, like that that would be used to post the information in, until things seemed like it was worth the cost of a few hundred dollars to get a nice site, and program information.

Regarding legal information,
Iv already looked into it, as long as I claim on my site anways that any fraud orders information will be posted online with the details of the orders. Then its legal, as its a way of catching these punks. Our local police station said it wouldnt be illegal for the site to go up, so I know us canadians are okay. If you guys are really interested. Ihostdev, I can get you hosting, for the domain, if you want to work with me on this project. If not i was going to get a domain such as 911-hosting or something like that. seemed like an good idea ;).

You can reach me on my contact informaiton, via my sig.

EDIT: To kick this off, and see how it goes, im currently using a sub-domain on one of our domains http://911-hosting.lakeshoreservices.net will point you to the forum board. witch is what Im going to start off with. Im building it right now, feel free to join the community but give me a little while to build the forums. If all goes well, we will develop an full online site, and Ill get a domain for the site for sure.

Just an idea: When somebody decides to begin coding on this (I am extremely experienced with PHP and MySQL so PM me if I can help), let's make it open-source initially so we can each conference and throw around ideas about how to make it better or more secure.

EDIT: And I, of course, can offer space from my servers for a portion of the project. I have a feeling if this gets as large as I think it will, we will have to divide the databases among various servers. Possibly organizing them numerically. For example, Server A will have IPs 0.x.x.x through 50.x.x.x, Server B will have 50.x.x.x through 100.x.x.x

also

'αgoon | JOGA BONITO | says:
Hey
'αgoon | JOGA BONITO | says:
are you here?
Avail Networks, LLC says:
yes
'αgoon | JOGA BONITO | says:
I bought host.
'αgoon | JOGA BONITO | says:
On your company
'αgoon | JOGA BONITO | says:
But it doesn't work
Avail Networks, LLC says:
yes, i cancelled your account due to a fraud transaction. your ticket has been replied to
'αgoon | JOGA BONITO | says:
what??
'αgoon | JOGA BONITO | says:
why fraud?
Avail Networks, LLC says:
your tried to pay several different times with multiple cards, your order is from new york yet your ip traces to overseas
'αgoon | JOGA BONITO | says:
i'm not in NY right now
'αgoon | JOGA BONITO | says:
I'm KFOR Soldier
Avail Networks, LLC says:
then explain the 5 credit card numbers used
'αgoon | JOGA BONITO | says:
I'm confused.
'αgoon | JOGA BONITO | says:
Ok
'αgoon | JOGA BONITO | says:
I'm gonna buy somewhere else.
'αgoon | JOGA BONITO | says:
Bye bye
Avail Networks, LLC says:
everything on our systems is logged by ip, i saw all your activity, it was pretty clear
'αgoon | JOGA BONITO | says:
Here where I am, In kosovo, ISP have justo ne IP.
'αgoon | JOGA BONITO | says:
It's terrible.
'αgoon | JOGA BONITO | says:
And I don't have my own PC
'αgoon | JOGA BONITO | says:
It's like "Internet Caffe"
Avail Networks, LLC says:
yes, but you attempted to pay several times with different credit card numbers
'αgoon | JOGA BONITO | says:
lol
'αgoon | JOGA BONITO | says:
Okay
'αgoon | JOGA BONITO | says:
Bye bye

well if this kicks off and does well, ill be willing to host servers free of charge for this service, once it get sorta popular, I may invest some google ads or something of that sort, into the system so that funds are generated to keep it at free of cost service.

Ok, since there are abundance of space, we will leave our offer of space and a full dedi open if there is ever such a need.

We unfortunately cannot offer coding or programming support as we are really short on sleep due to our sales. :)

May I suggest that this proposed site be placed on a DDoS hardened network.

The sort of people that are into CC fraud, SPAM accounts and so forth, would have no qualms about turning a bot army against any site attempting to expose them..

May I suggest that this proposed site be placed on a DDoS hardened network.

The sort of people that are into CC fraud, SPAM accounts and so forth, would have no qualms about turning a bot army against any site attempting to expose them..

I second this. It could bring down the only security webhosts have against scammers.

Yes, I once the community starts up, it will be moved to an extra security dedicated server, netcafe if this thing goes well, maybe we will be interested in using your dedicated servers, heard there pretty darn good.

I have a two IPB licenses I don't use as I don't retail in the industry anymore and don't run any websites. I have seen a forum like this before you had to PM the details to the admin and he approved your website as being established ;longer than 6 months and gave access to hoster only forums

Let me Know LS

Dan

I will get in contact with every one this evening to get this started and figure out who and where all this will take place at.

Well, i've very interested, and unlike NetCafe, i can't offer dedicated servers, but i can offer PHP programming. PM me or email me :)

I was just wondering. will this also be a place that host can post up about users who abuse?. Or is there a system in place like that already?

tumble

The site should also contain a text dump of all of the fraud ips, and a place to request for the IP to be unblocked (if a good reason is given..)

@Brandon
Hey im interested email me more information - jdcomputes@sympatico.ca

@tumble
I will add a section for that :).

I think this is a great idea and if it works out I will contribute to the project. Also I am willing to contribute whatever I can to the cteation of the project. I see that other hosts have offered space and a domain, but if they dont pan out or if you need anything else let me know and I will do my best to provide it. The way I see it a small investment could save me, and other reptable hosts, alot of headaches.

The site should also contain a text dump of all of the fraud ips, and a place to request for the IP to be unblocked (if a good reason is given..)

That's a great idea, that way it is very easy to block these IP's!

yea that is a good idea, I know right now the site is just a forum board, but if I can get you guys to sign up whoevers in favour of working or using this service. then atleast I can tell what level of support will actually be there. All people that contribute, in the final bit, will be granted administration, mod of the boards, I would offer you all, but that wont work, so it will be selected few.

I think this is worth the investments, If we buildthis thing right, we will limit problems that we have.

Also an edit to above. Im in constant talking to with Maxmind (think i spelt it wrong), however they are possibly one we get a good base, working with us, and will be making there software, flag any information that matches our posts to results it traces on orders, as fraud. witch will make checking the site not as nessecary, witch will also lower problems :).

Well, pretty much every host that host posted in this thread will help. So now we are basing this around a forum, not a custom script?

well i started a forum to get the site rooling and information, if all is good for support from you then ill get a team toghter and we can look at getting a site script done.

Maybe I overlooked it, but I dont see a link to the site. I am ready to sign on

http://911-hosting.lakeshoreservices.net/ real domain to come onceeverything kicks into higher gear.

Yes, I once the community starts up, it will be moved to an extra security dedicated server, netcafe if this thing goes well, maybe we will be interested in using your dedicated servers, heard there pretty darn good.

As I previously mentioned, our offer is open. And to clarify, we will provide space for the project and if it is successful and of use to the hosting community, we will throw in a dedicated. However, we cannot provide programming as most of our programmers are "chinese hackers" :)

I would suggest the search be based on:

1. email address (a must I supposed)
2. IP (not feasible as most are dynamic?)
3. name on cc or cc number?

Also, I took a liking to an earlier domain I think it was hostfraud or something along the lines.

Oh AND to be fair, whoever contributing in this project's seed stage will get their links or small banner on the main page, be it programming or others?

Whoever is running the show might aswell take Netcafe's great offer now and start working on this project, everyone will be willing to help.

well if i could actully do anything tecnical i would offer. but since i cannot even spell the word. I will just sit on the sidelines and watch. :bandit2:

I have a domain i purchase a while back for this reason and also had plans to have a api written to be added to any billing software that wanted to, to query the DB with users info. There are some legal issues surrounding this idea that might be a good idea to look into, But if you want i am willing to provide the domain and hosting for this project for free. The domain is hostingfraud.com

I like this domain "The domain is hostingfraud.com". Its kewl!

Just PM me if you think this old man can contribute something :P

To start the ball rolling,

RTG will offer 10gb space, 500gb bandwidth.

We offered the use of our domain hostingfraud.com

Josh,

I am not sure using a forum will be a good way to start for the main reason that it provides you for legal reason valid user information that are submitting any information. We were involved in a thread on wht a while back about this same thing type of project.

Our plans back then were to have the site register any host or retailer that wanted to submit fraud information in the site with valid information that would be verified by us. Once there account was approved they would be able to submit certain details of the order as in:

ip, email address, name, mailing address. You legaly can't accept credit card numbers as that a against master card and visa terms of service and i am sure some type of laws not to mention if the DB got hacked and someone stole all those cc numbers it would be a huge mess.

With using a forum anyone can sign up with invalid details to post legitament users info for revenge or just due to dislikes.

Once the fraud order information was submitted it would need to be verified with some type of proof by the submitter before it's approved to be entered into the DB.

The on the site users would be able to enter in new order details to see if anything would be flagged from the DB.

The api we wanted to add into this to be integrated into billing software would send the order information to the site to be checked against and if anything matched it would return to the software say a set risk number for this transaction from 1-5 and the user could have the option to accept the order or deny it. You would not want it to deny it automatically incase of wrong information being added to the DB causing valid orders to be blocked.

We had planned if we made all this back then to offer the api integration for free and change users a fee to verify orders using the api like varilogix does with there phone service, but the visiting the site to verify woudl be free. The cost woudl be low per transaction.

Now we got several people offering there services.

For hosting does anyone have ddos protected hosting we could use?

We have several with php programming skills.

I think all thats missing right now is maybe a designer to make the actual site design.

ihostdev,

Our servers have hardware DDOS, software APF, AD and BFD all in.

Dunno if its enough?

FYI.

Make the forum invite only?

I think the first thing you need to do is find out who is going to be involved & setup some sort of contract so your all safe, think, say it becomes very successful & the owner thinks, emmm its all mine, I will go it alone. Make sure you have your name on the project otherwise all your hard work will go down the pan. Goodluck with the project.

I would PM LSComputers but he has his PM system turned off, my idea:

1. As I have 2 unused IPB licenses (if you don't believe me I will give ONE person the login information and if I find you have downloaded a copy (as it logs it) I won't be a happy man! But I am offering use of that

2. Website - As an experienced PHP, MySQL coder and designer I would volunteer to make the site or be part of making the site.

My idea for the website:

Website and Forum login integration (have done this before)
On forums have a member group for hosts, if you are a host you PM an admin your:


Name:
Age (over 18's only):
E-Mail address:
Hosting website:
How long in business:

When they are a member of that group, they see the web host only forums PLUS on the website when logged in, they see a section only accessible by logged in web hosts. This contains a directory of fraudulant transactions logged by current webhosts and also contains a IP directory - both which are searchable.

If possible have the domain directing to a forum subdomain while the site is created, maybe use a CVS depositry if more than one person is working on the website and when you have done something you LOG what you have done in a log file.

phpBB :devious2:

I would be more than happy to lead the website coding as have made CMS's, Blogging systems, Galleries, Forum systems, and various sites in the past.

Thats just my two cents, would like to be apart of this as it is an integral part of the future of the hosting industry!

EDIT: Also if more people are going to be a part of it I suggest they get an equal share of the company via a contract, nto just one persons business with people putting time and effort into it!

okay, havent had time to read this, forum is so i will ltr. If there is enough programmers to start working on a idea, lets get a meeting, msn/aim something and start discusing what we need.

The domain, if its open, i think they said it was, then lets go with it. 911-hosting fraud prevention, was just a quicky idea.

In regards to contributing users, will have advertising, will be modded for the forums, and a few other things I have ideas for. All contributors, will have shares if you want to look at it that way. I ofcourse, starting the idea, getting it into motion, Im proud to say I founded the idea, hence my sig, but everyone that supports in the creation will have an equal right with it

Ill read all of this, Anyone who has the ability to do phping coding of anysort, or has anything to contribute, please email me at jdcomputes@sympatico.ca with all the information (contact, what you can offer ect).

ihostdev,

Our servers have hardware DDOS, software APF, AD and BFD all in.

Dunno if its enough?

FYI.
Doesn't sound likt that is enough. APF, AD and BFD don't help at all with a DDOS. HW Firewall may, but not if the pipe gets saturated, as is the case with any DDOs worth the name.

mod_evasive is always a handy one to have installed

okay

@ Ihostdev

Would you be willing to spot your domain for this project? We have the hosting currently.

@All Coders Etc.
Iv been talking to Danny for a little while today, and hes sorta become a big help into getting this coding end started. Hes creating a basic backbone database for us to use. What is needed now, we want to keep the project down to a 5 man team, excluding myself and ihostdev if they supply the domain if not then just 6 in total. So what we need any other coders/site designers ect that are interested in helping with this project I need you to email me at jdcomputes@sympatico.ca with what you can do coding/site design work.

Hopefully we all have msn, sure we do, that will make an meeting much easier. Im hoping that by Saturday, to start working on this project.

To all contributing clients. Banner rotations, ovbious recongizions for your hosting companies, ect. And possibly great discounts. Im in talk with Dell, Layered Tech, Layer Soft, FDCServers, Microsoft about helping some sort of way on this project.

Its looking that if we do a great job, Microsoft and Dell will be willing to support us with software and a server.

Layered Tech and other datacenters, Im going to speak to about placing there adds on the site, for advertisment, as well as offering us certified members discounts on there services.

Right now my basic view to start with (with help of your ideas). We will have it set so that you register your account, free of charge, this allows you to view the information. To be able to post anything, you must provide some sort of proof the order is fraud, this way we dont make false claims. Once agreeded its a fraud/abuse/scammer then we will add it to the appropriate database. Once added to the database you will be able to view it on the site, via a search, by email/domain/ip/hostname/ and possibly others. Also there will be a small forum board just for our registered users use, that will allow us to talk about other clients domains that are bad to host ect. For paying clients, they will be a specail offers ect they will have a chance to get ahold of, along with these contributing members.

Once we get a team togther, A business plan will be made, a semi-formal stlye contract sent out, witch will need to be signed, and faxed back, witch will state that the members contributing will own a % of the shares for the site. The more contributed the more shares there are to get.

I think that this is fair, and I think its going to work well, some large corporations are onboard with helping if we can get a business plan up and show them what we want to do etc. So Ill be looking after alot of that.

I look forward to hearing from some of you guys so we can get this kicking into high gear :).

yes i will provide the domain. Let me know what nameservers to point this to and i will get it changed right away.

Any word on a designer?

I will be able to spare time here and there with my team of programmers during downtimes of our development. I can't guarrantee anything or a set number of hours at the moment as we are in the middle of a few new releases and updates.

Interesting topic, I sent an email. Would love to help.

Regards,

@ ihostdev
If you want to change the domain nameservers to ns1.lakeshorecomputers.net and ns2.lakeshorecomputers.net as well as reposting lol, your domain name here, so I can get the information, or emailing me, as ill add you as part of the team, so Ill probally need your msn preferably.

@Death Reaper
I have recived your email and going to read it now :). In regards to your post, Im really looking for people who have time to commite to programing the site as well as designing the actually site layout. Im hoping to start production and startup on Saturday, should give me enough time to start a business plan and get it out to companies ect.

@ Public
This is the current breakdown of what we really need, ovbiously its all volenteer positions, however If you have anything you have done that you can show, we really need the best group we can get to get this rolling, and start implementing it all :).

Site Designer - Unknown
Site Designer - Unknown
Site Designer - Unknown
Coding Designer - Unknown
Coding Designer - Unknown
Coding Designer - Daniel (leyther)
Founder - Josh (Me)
Domain Provider - ihostdev

ok nameservers changed and also sent you a email with contacts and information.

Doesn't sound likt that is enough. APF, AD and BFD don't help at all with a DDOS. HW Firewall may, but not if the pipe gets saturated, as is the case with any DDOs worth the name.

So what else?

So what else?
The reallly isn't that much you can do (except if you have $xx,xxx-$x,xxx,xxx to invest. At the DC level some sort of extreme packet filtering (ev1's fireslayer) or going with people specialized in DDOs mitigation (staminus etc./not sure what they do). Of course that is expensive and can be in the $x.xxx/month range for a single server.
Fitering at the backbone is something Cisco is working on, I am not sure what the status is for that.
Best thing is not to have enemies, but thats obviously not the case with this project.

I'd say the best approach is to wait and see - but to be prepared to quickly adapt to changing situations. It would be beneficial to have someone with experience in ddos mitigation to talk to (its not my area of expertise).

You are fully aware of the legal implications of such a website?

This is laughable. What a joke.

This is laughable. What a joke.

Here we go again... *sigh*

Yes, aslong as no full credit information is released and partial information is all that is displayed there is no legal action against us, Ip information, hostname ect is legal for full display, just the more personal informaiton cannot be a full post.

Already dealt with all of that. Thanks for the help guys

need a vbulletin license?

@Death Reaper
I have recived your email and going to read it now :). In regards to your post, Im really looking for people who have time to commite to programing the site as well as designing the actually site layout. Im hoping to start production and startup on Saturday, should give me enough time to start a business plan and get it out to companies ect.


Well Saturday is when I get back on my computer (currently not online due to busy schedule) so I can start then, which is when you want. Toss me an email if your interested, I'm only on to do some work, so I can't show you anything right now, and I don't have much work done on what I am working on atm, something I just picked back up again a while ago. But been a bit busy of late, so I'll be working on it again Saturday. In any case, let me know if you need me, and we can work from there.

Regards,

need a vbulletin license?

Already sorted IPB out :p

Thanks for the offer

Hey AvailNetworks, thanks for the offer, but sa danny has said, a IPB was offered, and I think were going to be using it.

no problem. I would offer to help you out a bit too but I have nothing other than that to offer really in the programming department. good luck in the project

My Internet was down the last few days due to a storm. I had built a small script and database to use on Monday but could not let anybody know. Please check your email, LSC, and consider me for a position.

Thank you :)

Okay all that applied were accepted, and im going to email you everyones information, and were set a time to talk online (probally msn) about what is needed and who can handle what.

Good to know, keep everyone at FWS updated, I am sure your website will become my first official bookmark.

I like this domain "The domain is hostingfraud.com". Its kewl!

Just PM me if you think this old man can contribute something :P

To start the ball rolling,

RTG will offer 10gb space, 500gb bandwidth.

I just have domain: yohosting.net now.
I also would like to take your change. How do you thinhking about ?