July 5, 2010 at 14:22Hacking or selling your domain?
A few hours ago one of my clients knocked on me and told a very interesting story.
Believe it or not, I think it's up to you. For my part, I will try to keep abreast of events.
Further directly the story:
“On Friday, June 25, at about 19.00, going to my site instead of my site, or rather, at my site address, I saw a bunch of child porn and solid links to SMS alarms, I immediately check the main page code - everything is fine, the call to the system administrator - check the DNS in RU-CENTER (the domain name registrar in which vab.ru was serviced), climb into the RU-CENTER control panel and ... I can not find my domain there, I check by vhuis and I see only other people's DNS.
There were calls to RU-CENTER, only operators on the line with access to the database to see where the domain went, but they couldn’t connect with anyone else - all employees went home and will only be on Monday ...
After two hours of phone chiseling, I get the answer - come tomorrow at 10.00, we’ll try to figure it out.
In the morning I’m at RU-CENTER and I find out that yesterday at about 12:00 a man came to them, introduced himself, showed his passport (fake) in which there was my serial number and number, but the photo of that same unknown person and my signature were not mine, after which he wrote an application for transferring a vab.ru domain to a registrar of domain names REG.RU, signed the necessary documents and left.
Literally an hour and a half later this unknown subject in a company with a certain city of Gaidai declared in REG.RU, where they sat for a while in the reception waiting for confirmation (which was delayed) from RU-CENTER about transferring the domain (according to reliable data, the unknown subject was calm, but Gaidai was very nervous and called RU-CENTER several times to speed up the process of transferring the domain).
After confirming the transfer of the domain from RU-CENTER, an unknown subject, again introducing himself as me and presenting a fake passport, writes a statement on the transfer of the domain into the property of Gaidai, and in return he gives him a receipt for 3 million rubles.
But I found out all this later, and on Saturday at RU-CENTER I was told only one thing: the domain was transferred to another registrar and they couldn’t do anything anymore and at the same time asked if you had another identity document besides your passport.
I tried to call REG.RU, but there were Saturday and Sunday weekends and there was only a duty operator on the line, who again knew nothing.
I talked with friends and acquaintances who could help everyone on this issue, there is only one conclusion - nothing can be done on weekends, except to write a statement about the theft of the domain in the Economic Crimes Crimes Department (Department for Combating Economic Crimes), which I did.
On Monday, June 28, the first five-day struggle for the domain began, the first thing we go to REG.RU is where they look with astonished faces at all my documents (including rights, passport and military ID) and answer that there is any information about the fact of transferring the domain to another to the person, as well as about who this domain belongs to now, they will provide only at the request of the OBEP, we’ll go to the OBEP, I’m still in concentration camp, I’m looking for the head of the department and I ask you to quickly transfer my statement to the opera, and the slow and slow state machine went round and round on, the opera began to collect documents to initiate proceedings, and my friend and I, to speed up this process, rushed around Moscow for 5 days, collecting the necessary documents and have not yet collected all the documents, and even after I got a lock on Tuesday, June 29 domain, g.
For myself, I have so far made one conclusion that stealing a domain in the RU zone, and indeed in any zone that is served by Russian registrars, can be very simple and quick, but returning it (according to our laws) is MUCH LONGER either by the decision of the investigator or by the court . ”
Original appeal and some details
But what was found on the Internet:
"Dear users. In connection with the generation of multiple rumors spread by non-organizers, I want to clarify the situation. Former site owner Nikolai Podgursky contacted me and offered to purchase this project. A fairly large amount was announced. However, considering the payback, I came to the conclusion that the project will pay back the investment. After negotiations, I agreed to purchase this project for the announced amount. However, after transferring the data to me and receiving the money, an unknown person (I assume that the former owner himself) deleted all the contents of the site and hung the alarm there. Because of this, there was a rumor that the site was hacked. We managed to deal with the situation in a fairly short time. The site has been removed from the alarm and in the near future we will begin to restore the services. Sincerely, The new administration of WAB.RU »
In general, we get a very complicated story.
Believe it or not, I think it's up to you. For my part, I will try to keep abreast of events.
Further directly the story:
“On Friday, June 25, at about 19.00, going to my site instead of my site, or rather, at my site address, I saw a bunch of child porn and solid links to SMS alarms, I immediately check the main page code - everything is fine, the call to the system administrator - check the DNS in RU-CENTER (the domain name registrar in which vab.ru was serviced), climb into the RU-CENTER control panel and ... I can not find my domain there, I check by vhuis and I see only other people's DNS.
There were calls to RU-CENTER, only operators on the line with access to the database to see where the domain went, but they couldn’t connect with anyone else - all employees went home and will only be on Monday ...
After two hours of phone chiseling, I get the answer - come tomorrow at 10.00, we’ll try to figure it out.
In the morning I’m at RU-CENTER and I find out that yesterday at about 12:00 a man came to them, introduced himself, showed his passport (fake) in which there was my serial number and number, but the photo of that same unknown person and my signature were not mine, after which he wrote an application for transferring a vab.ru domain to a registrar of domain names REG.RU, signed the necessary documents and left.
Literally an hour and a half later this unknown subject in a company with a certain city of Gaidai declared in REG.RU, where they sat for a while in the reception waiting for confirmation (which was delayed) from RU-CENTER about transferring the domain (according to reliable data, the unknown subject was calm, but Gaidai was very nervous and called RU-CENTER several times to speed up the process of transferring the domain).
After confirming the transfer of the domain from RU-CENTER, an unknown subject, again introducing himself as me and presenting a fake passport, writes a statement on the transfer of the domain into the property of Gaidai, and in return he gives him a receipt for 3 million rubles.
But I found out all this later, and on Saturday at RU-CENTER I was told only one thing: the domain was transferred to another registrar and they couldn’t do anything anymore and at the same time asked if you had another identity document besides your passport.
I tried to call REG.RU, but there were Saturday and Sunday weekends and there was only a duty operator on the line, who again knew nothing.
I talked with friends and acquaintances who could help everyone on this issue, there is only one conclusion - nothing can be done on weekends, except to write a statement about the theft of the domain in the Economic Crimes Crimes Department (Department for Combating Economic Crimes), which I did.
On Monday, June 28, the first five-day struggle for the domain began, the first thing we go to REG.RU is where they look with astonished faces at all my documents (including rights, passport and military ID) and answer that there is any information about the fact of transferring the domain to another to the person, as well as about who this domain belongs to now, they will provide only at the request of the OBEP, we’ll go to the OBEP, I’m still in concentration camp, I’m looking for the head of the department and I ask you to quickly transfer my statement to the opera, and the slow and slow state machine went round and round on, the opera began to collect documents to initiate proceedings, and my friend and I, to speed up this process, rushed around Moscow for 5 days, collecting the necessary documents and have not yet collected all the documents, and even after I got a lock on Tuesday, June 29 domain, g.
For myself, I have so far made one conclusion that stealing a domain in the RU zone, and indeed in any zone that is served by Russian registrars, can be very simple and quick, but returning it (according to our laws) is MUCH LONGER either by the decision of the investigator or by the court . ”
Original appeal and some details
But what was found on the Internet:
"Dear users. In connection with the generation of multiple rumors spread by non-organizers, I want to clarify the situation. Former site owner Nikolai Podgursky contacted me and offered to purchase this project. A fairly large amount was announced. However, considering the payback, I came to the conclusion that the project will pay back the investment. After negotiations, I agreed to purchase this project for the announced amount. However, after transferring the data to me and receiving the money, an unknown person (I assume that the former owner himself) deleted all the contents of the site and hung the alarm there. Because of this, there was a rumor that the site was hacked. We managed to deal with the situation in a fairly short time. The site has been removed from the alarm and in the near future we will begin to restore the services. Sincerely, The new administration of WAB.RU »
In general, we get a very complicated story.