st0rm

i just wanna inform all of you tgp owners who listed my gals so far
i own(used to own) iteenxxx.com and that domain was stolen today and transfered to another registar so i dont own it now.

it was stolen by the same RUSSIAN guys who stole my tgp erawtiq.com. (erawtiq is now secure and under the ownership of the boneprone family)


anyways to keep story short..just BLACKLIST THE DOMAIN iteenxxx.com and erase every archived gallery you have.They are redirecting to a main page now. Or some of you will see the same layout/pics but with different sponsor ID(Theirs).
i`ll inform you when i`ll start to post again
thanks for listing my gals so far.


btw dont make the same mistake as i did
which was not taking care of my domains
i had 0 security.so whatever you do just make sure the info is not changed easily. ( ask for fax/phone verifications before any changes made if its possible)

Steve

Thanks for getting this info out. I was waiting to see if you doamin was going to come in (wasn't connecting for me) before I declined the posts. Now I'll just delete them from the database.

Sorry to hear of your trouble man. That sucks.

LUCL0NELY

sorry man. i didn't know that domain was your.

LiveDose

Sorry to hear about that...

__________________

twistyneck

How does a domain get stolen?

hybrid

^^good question.

st0rm

they had access to my primary mail ( hacked in)
Probably sent an email to my registar about the transfer,got the authorization email, after authorization was made they simply deleted the mail so i didnt noticed all this

i`m telling you this cuz i talked to registar support and they said an email was sent about transfering which i never saw/got and it was authorized from the same mail... (not done by me)

anyways thanks for the support

polish_aristocrat

good question, but I have a more important one:
how to prevent it ?
and how to get the domain back ?!?

I see that st0rm already reconciled himself with it, but this is serious problem and a possible danger to all of us ( maybe not the big guys, who have trademarks on their domains ).
We register a domain name, make it popular with trades, links exchanges, SEO and whatever, and then a fucking russian hacker steals it and nothing can be done ?!?

__________________
I don't use ICQ anymore.

SleazyDream

through the register - it's happened to many honest people before

__________________
This dog, is dog, a dog, good dog, way dog, to dog, keep dog, an dog, idiot dog, busy dog, for dog, 20 dog, seconds dog!

Now read without the word dog.

Steve

Just make sure you use some security procedures for your registrar. If you use the lowest security settings you will be fucked.

quiet

damn, that really sucks. at least it wasn't sex.com ;)

__________________
we'll miss you our friend. RIP

Gemini

Most registrars have a secure option setting... look their site over. And Poor man copyrighting should help to prove original ownership as well... Print out a copy of All of your whois records... make sure the date is on the printout... mail each one seperately to yourself in a sealed envelope... And do NOT open it!

We'd be tap dancing on that registrars head for not rescinding the transfer. Contact, Netsol, ICANN and internic and light a fire under their butts. The registrar is supposed to make this 'right' (investigate fully) when a complaint is lodged on a jacked domain.

Have them ask for and show you proof from the Russians that they paid you for said domain/s... If the Russians cannot show proof then the registrar should be doing more than s*cking their thumbs and saying Oops.

Your email provider should be able to come up with logs showing someone from an odd IP logged the account as well.

st0rm

"The registrar is supposed to make this 'right' (investigate fully) when a complaint is lodged on a jacked domain."

well they said that these things are done all by email everywhere so they can do nothin about this problem - this is from my registar -

now i mailed the registar where he transfered the domain( which is registeryfly.com) and i`m still waiting for reply

"Your email provider should be able to come up with logs showing someone from an odd IP logged the account as well. "

i checked that too..They said there were no other logins except from my IP
which is pretty strange..

and i`ll mail internic today about this problem

i learned my lesson for sure
i made this thread just to warn the tgps that posted my gals everyday and save them from any redirection/traffic stealing

and yeh you can all learn from my mistakes;))
i lost 1 year of hard work ( not to mention the money) in just couple of minutes....i watched similar threads all the time and i didnt do shit to protect myself..be smart and learn from other peoples mistakes

anyways thanks again for the support
this fucker is well know and he`s been doin this for some time..
last time he fucked my xxxatm account we got this info on him:

4 Goldfinch Court. Apt. 107
Toronto, On Canada
Zip code: M2R2C3

Name on check : Kostyantyn Kulykov

i doubt thats his real adress
but prolly he has some secure adress there....Russia is pretty much banned everywhere.

boneprone

erawtiq.com has been secured, and is now under the protection and ownership of the boneprone family.


We have yet to get back the other domain.

We are still in talks with the registar and the hosting company.

__________________

Industry Hall Of Fame Legend Mike Jones
Bow to the Power - Still BP4L
http://gfyawards.com/hall-of-fame
Learn about it kids.

Kinder

I've just sent an email at my registrar containing an warning message regarding this security issue.

My security tip for all webmasters is to try not involve the primary email adress in adult bussines. Just keep it for purchases only and that way will remain secret.

Thank you St0rm for sharing this awful experience on GFY. I hope that you'll solve it somehow.

__________________
<a href="http://www.epassporte.com">Epassporte</a> - your virtual VISA for secure online shopping and peer2peer payments (Paypal style) + that you can withdraw your funds in real time at any ATM in the world !!

mazafaka

May be this can help you a little

http://www.pp2k.com/fotodela.html

cosis

Same thing happened to me a few years ago.... The person actually gave me the domain back though. He was able to use EMAIL FORM and fake my email address to make the changes through NETSOL. Now I am sure all my domains are password secured.

Happened to WorldSex.com also a few years ago if you remember...

Thanks for informing us

seven

You could probably seek help from Toronto Police couldn't you?

__________________
Toy Rev
Rouge Web Design

Rictor

I just read that page and noticed on of my trades on pigporn.com listed: monkeypost.com. Can anyone confirm that this is one of his domains? I don't want to blacklist a perfectly legit trade without good reason.

monkeypost.com
http://www.monkeypost.com/movies.shtml
ccain
ICQ 354719
[email protected]

Whois info:

Cain, Cheryl [email protected]
414 West Sunrise Hwy #145
Patchogue, NY 11772
US
6316548934

Tex Willer

can't be
cheryl is 100% okay

definitely a mistake

Garvin

Yes, she is.

Btw, I lost your new ICQ number. Phone me tomorrow.

Rictor

Well, she might want to contact the owner of that site and have her url removed then.

kmanrox

Kostyan? that's the guy who was looking for bullet proof spam hosts... he's a teenage spammer who is russian, but resides in canada if i remember from talking with him numerous times on icq about 8 months ago.... he's also a programmer by nature...

and i think he's still on my icq....

__________________
Crypto HODLr
Crypto mining
Angel investor

st0rm

thanks for the link mate
i emailed the guy that owns that domain
i hope he`ll have some info on how to get the domain back

awu

st0rm sorry to see this has happened to you I am stunned that this could actualy happen.

mazafaka

Here my investigation.
Thats from some russian board:
===== quote=====
Author:monkeypost Topic: TGP for sale

posted 25 June 2002 15:07
-----------------------------------
Privet!
Prodau svoi tgp.
Great design, UCJ script, excellent layout.
http://www.monkeypost.com
Tsena ne dorogo, prodam ot 600$ do 1000$.
Traf okolo 3-5K.
Neploxoi link popularity.
ICQ: 107123963 or mailto:[email protected]
======quote=====

It says :
Hi
I'm selling tgp site
....
price about 600/1000$
traffic about 3/5k uniq.
good link popularity.


From monkeypost.com whois :
Record last updated 07-17-2002 07:11:18 AM

So it looks like he sell that site to Cheryl
(see the post date and record update date)
I think asking Cheryl about that guy is a good point.

Another post from him:
=========
monkeypost
posted 12 July 2002 11:46
-----------------------------------------
Toronto, Canada.
=========
(he saying where he from)

Pretty sure he living in Canada

Dusen

st0rm are you from the East Coast? On vibe?

__________________
Penis Pill Sponsor List and Reviews:
http://www.pillsponsors.com

SR

Cheryl is my partner and she owns monkeypost.
She got the site from that guy about 5 months or so ago I think.
She didn't pay him but did design work in exchange so not sure how much info she has about him but I'll ask.

goBigtime

Woo I smell some boycott brewing =]

Tell them they can give back one domain or lose thousands.

I don't understand what the fucking problem is. If it were a VALID purchase or transfer, there should be some record of payment for the domain - which the dude obviously wouldn't have. WTF is the deal with registrars. I could see them backing away from claims of being hijacked months later or something (like after the new PURCHASER of the domain has done great things with it) but someone who gets their domain hijacked & then the real OWNER contacts the registrar within a couple days/weeks?

They need to give the fucking domain back or feel the wrath of GFY members.

OzKaNoz

Wow, that sucks. Good luck to you!

Oz

__________________
Techie Media Web Hosting

Butcher1899

We had about 20 domains stolen a couple of months ago (nightmare!). Can be done easily when someone gets hold of your account with a registrar and changes the password, NS settings and whois information.

The good thing is that the registrars have all changes logged and if you tell them an account password was changed they dig up their logs, see that it WAS actually changed, get the original WHOIS info, ask for some proof that you are the true owner, and return the account back to you (give you a new password).

Just contact their customer support (make sure you sound hysterical). Send them numerous emails, give them the original account password. Fax them a copy of the ID of the person who was listed in the original WHOIS.

They will block the account and start the investigation.

It took me a little more than 24 hours to get back domains registered with DirectNIC. Dotster was slower - about 3 days.

Anyway, don't panic. If you think I can help you somehow ICQ me 68952738

st0rm

I`m from Europe mate

st0rm

thats all good mate but the thing is the hacker already transfered the domain to another registar(he had access to my primary mail as i said above)..its not like he got in my account and changed the password...my registar said that there`s nothin they can do..all transfers are made by email etc..
anyways i sent an email to registerfly.com where iteenxx.com is transfered now and i still have no reply..they dont have any phone numbers on their page so thats the only way i can contact them.

Nbritte

I had a problem with tucows (opensrs) once this is what happened I had a domain with them and a bunch with register.com so I decided to move the one with opensrs to register.com so I did the transfer and 2 months later nothing well I ended up having to renew the name with opensrs and contacted register.com and cancelled the transfer. Then I get an e-mail from opensrs to confirm the transfer by clicking the link. I dont click the link to confirm it then I contact register.com they tell me it was an error and the domain was not going to be transfered. Two months later I move my sites to a new server and go to chang the dns and guess what register.com has transfered the domain. Worst thing was that even though I had e-mails from register.com saying the domain would not be transfered they told me once it was transfered that I owed them money

Brad Mitchell

Wishing you the best of luck getting the domain back.

Brad

__________________
President at MojoHost | brad at mojohost dot com | Skype MojoHostBrad
71 industry awards for hosting and professional excellence since 1999

st0rm

Thanks Brad..btw you can check the main page www.iteenxxx.com and you`ll see that he`s advertising sintalk;)


----------------------------------
Naughty Wife Phone Sex!
1-877-943-LUST
Toll Free: 1-877-943-5878
No CC: 1-900-438-1878
----------------------------------

Dusen

Is that possible through directNIC?

__________________
Penis Pill Sponsor List and Reviews:
http://www.pillsponsors.com

st0rm

Hmm
dweeks ( from swiftwill.com ) told me that he`s getting some complaints about the whole situation and that its his fault for this..now i never said its his fault!!
in fact he and boneprone are the only guys helping me here! For what i`m thankful ALOT!
Swiftwill.com provides excellent support,has good prices etc..
and i had 0 downtime in the past few months i was using them! So theres no room for any accusations.

its no ones fault. My primary ISP mail was hacked ( i didnt use my server mail at swiftwill ).And thats it!
i lost the domain and theres nothin i can do now. so please do not attack the guys at swiftwil.com!

Kinder

st0rm what mail server did you used for the hacked adress?

__________________
<a href="http://www.epassporte.com">Epassporte</a> - your virtual VISA for secure online shopping and peer2peer payments (Paypal style) + that you can withdraw your funds in real time at any ATM in the world !!

st0rm

i just used the mail at my Native ISP.
the whole mess is not related to swiftwill.com
the only thing the hacker didnt had access to was my SERVER!
he stole my icq number too;)) he practicly owned me!

SeeSea

Hi everyone, thanks for the support guys.

I own monkeypost.com I actually got hooked up with the guy in June from this board -- here is the thread:
http://www.gofuckyourself.com/showth... ost+for+sale

Everything went fine for me, the scripts were transferred after I paid for the reinstall on my own host. I had no clue anything was wrong with this guy or the domains. UNTIL...... about a month ago. I got a phone call from a guy saying that the person that sold me monkeypost had stolen his domains and wanted info. He traced back to me thinking I was the person he was looking for. I can not remember the domain right this second, but the strange thing is this Kostyan had asked me to do a TGP design for the domain the week before and it was on my schedule to be done. After the call, I told Kostyan that I did not want to be involved in the design and told him of the phone call. I did not know what to think since the phone caller did not really have any more proof that he owned the sites than Kostyan. I have not heard from Kostyan since.

Thanks for the info about domains this is so scary to think that someone can steal your domain. I have changed some settings on my accounts.

__________________
49% Bitch, 51% Sweetheart

ICQ: 354719

Ron

st0rm? Contact me on ICQ 46667969

My domain Thumbscafe.com is hacked yesterday and it leeds now to iteenxxx.

You dont own iteensxxx anymore?

I allready emailed networksoltuions and the registrar of the person who owns my domain now.

I just renewed the domain in december till december 2003.

Ron

__________________
Ron

*Hate: A special kind of love given to people who suck *
*Those are my principles. If you don't like them... I have others.*

-=[Birdy birdy in the sky, left a poopie in my eye. Me don't care, me don't cry, me just happy that a cow can't fly!!]=-