tag:blogger.com,1999:blog-804714437673009003.post3726247525630772090..comments2024-02-23T09:06:13.967+00:00Comments on Dynamoo's Blog: Sergey Ryabov / director@climbing-games.com strikes againUnknownnoreply@blogger.comBlogger7125tag:blogger.com,1999:blog-804714437673009003.post-76015050178695467672010-04-26T23:22:33.874+01:002010-04-26T23:22:33.874+01:00Ruler-domains.com is simply a reseller of the regi...Ruler-domains.com is simply a reseller of the registrar Enom.com.<br /><br />The director@climbing-games.com etc is the default info they used to put in if their customers opted for a whois-protect. More recently they started to use Enom's own whois-protection instead.<br /><br />Sergey Ryabov is a real person, the owner of the ruler-domains.Mr. Hydehttps://www.blogger.com/profile/03880707373388171181noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-35640884683382871122010-03-04T11:59:58.585+00:002010-03-04T11:59:58.585+00:00Idownloadstream.com is related to the same individ...Idownloadstream.com is related to the same individual/company.<br /><br />It is a complete scam.<br />When looking for a download, the site will rank first in the search.<br />Site offers a 3 day test for $1.95.<br />But it charges $80.69 for 6 months in your back (rip-off).<br />When you login on the site, you find out that the file you expected doesn't exist (bait & switch).<br />Then Unknownhttps://www.blogger.com/profile/03104726094935806268noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-54233084585744469812010-03-02T14:52:20.258+00:002010-03-02T14:52:20.258+00:00I've been on to Leaseweb and had sdeh.net susp...I've been on to Leaseweb and had sdeh.net suspended (aling with rich-traffic.com, which was also related to this) :o)MysteryFCMhttps://www.blogger.com/profile/02934157746337952448noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-11069627015539253672010-02-10T10:58:11.481+00:002010-02-10T10:58:11.481+00:00found it in the haeder.php and deleted it.. thxfound it in the haeder.php and deleted it.. thxPROseo P4tr4schhttps://www.blogger.com/profile/02461205357255547309noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-30440542029689769522010-02-10T10:22:27.763+00:002010-02-10T10:22:27.763+00:00Hi,
my wordpress blog is infected with that. Can y...Hi,<br />my wordpress blog is infected with that. Can you tell how to fix it please? tyPROseo P4tr4schhttps://www.blogger.com/profile/02461205357255547309noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-40129437235171718312010-02-09T09:23:57.225+00:002010-02-09T09:23:57.225+00:00It's a Wordpress injection attack, so the obfu...It's a Wordpress injection attack, so the obfuscated code snippet turns up on victim sites rather than the payload site.<br /><br />Right at the moment this appears to be account for most of the injection attacks that I am seeing.Conrad Longmorehttps://www.blogger.com/profile/11751822299235747323noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-74246722692990650302010-02-08T20:59:55.673+00:002010-02-08T20:59:55.673+00:00Hey Dynamoo,
I just ran a quick Google search of ...Hey Dynamoo,<br /><br />I just ran a quick Google search of the code snippet you provided, and the top spot in Google is not a malware alert site, it is an anti-abortion site. The code is embedded in the source code for the page, but it renders like the original site.<br /><br />This may be a dumb question, but is this a sign of hacking/injecting?<br /><br />Although I don't quite agree withwahnulahttps://www.blogger.com/profile/16286130303153442669noreply@blogger.com