1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Instead of $40, the bill is for $580. Please advise

Discussion in 'BlackHat Lounge' started by newkid..., May 29, 2010.

  1. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    I am surprised... One of my VPS bill is $40/month and this month they charged me $580 from my card. When I asked, they said bandwidth usage were 2050% higher this month than allotted...

    I have couple of active website in this server...If I add total website in that server, I do not get more than 500 visitors a day

    I checked my Traffic Log and I was shocked... truly socked, on 18th of this month the bandwidth usage were 200 times more than general day and on 19th it was 500 times more than any other day and the same on 20th and after that it has again became normal,,,,

    ANY Idea, who would have fucked my vps... some viagra kind of guy who got access to my vps and blasted some million mails or something else...

    I am really upset with the Bill... please advise

    EDIT: THE BILL IS NOT $580 its $1580... (I am in trouble)

    UPDATE:

    SO I WAS LOOKING FOR ALL THE REFERRAL URL AND I FOUND MANY ARE COMING FROM A HACKER FORUM HACKFORUMS(DOT)NET.

    SO I REGISTERED THERE AND WENT TO THE THREAD FROM WHERE MY REFERRAL WAS COMING AND I WAS SURPRISED TO SEE PEOPLE OVER THERE ARE DISCUSSING ABOUT MY SERVER.


    THE DISCUSSION IS SOMETHING LIKE THIS

    "Does the type of shell affect the strength? Or is any shell okay, and it is fully dependable on the host? Also, if it depends on the shell itself, what is the most stable/strongest shell out? I'm making a host booter, and have a few cPanels I can add a shell too.

    & I assume a UDP shell is a PHP based shell. This is the one I have now .."

    my server adddress...

    THEN NEXT REPLY IS

    "
    Well i really dont think the shell makes a difference just the hosting of the shell
    Wanna borrow my CS Account?"

    AND THEN THE THIRD REPLY IS

    "The host matters...
    thats all

    EDIT: you may get leachers using that now :/ ""

    I AM VERY BAD IN ALL THESE SERVER ISSUE.. CAN ANYONE EXPERIENCED HERE CAN SAY WHOSE MISTAKE THIS IS...

    I THINK MY HOST PROVIDER, THATS WHAT THE THIRD REPLY IS SAYING THAT ITS ALL MATTER IS HOST
     
    Last edited: May 30, 2010
  2. themliteguy

    themliteguy Registered Member

    Joined:
    Sep 21, 2009
    Messages:
    52
    Likes Received:
    18
    Occupation:
    Internet Marketing
    I have had that happen when an email spammer used a fake email on one of my domains.
     
  3. Grizzy

    Grizzy Senior Member

    Joined:
    Nov 11, 2008
    Messages:
    919
    Likes Received:
    999
    Years ago I was running a porn site on a shared server and for some reason my site was picked up in a popular Chinese search engine. 24 hours and about 1,000,000 horny Chinese visitors later, I was in the hole for over $1000 bucks.

    How I got out of paying my bill: I told my hosting company that I would upgrade to a dedicated server (which I needed anyways) if they would waive the overages. Have geo blocked everything from asia since..
     
  4. Given

    Given Regular Member

    Joined:
    Feb 6, 2008
    Messages:
    286
    Likes Received:
    113
    Well there's nothing really to do in the end except pay if you did end up using that much bandwidth...
     
  5. blazen

    blazen Regular Member

    Joined:
    Mar 8, 2008
    Messages:
    471
    Likes Received:
    147
    The best way to find out is to check all your logs, and ask your host what happened during those days. Your account could have got hacked and someone sent emails, some botnet could have attacked your site, etc. There could be a number of reasons.
     
  6. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    What these chinese does???? It could be the reason. i am just checking my statpress and clicked few referring website and some of them are from chinese search engine kind of website (not exactly search) but yes they have featured my website there....

    I am not sure if this is the reason but I am hitting my head over this

     
  7. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    Yes, I would have paid happily if I would have used. But I did not do anything... I have not eaten the bandwidth...I have all dead website in this server.

    My all main website are lying in some other server and this I have kept just for backup kind of stuff (in case if i need)

    I think my host provider should take the responsibility for keeping their server free from any hackers (its fully managed VPS)

     
  8. crashed

    crashed Jr. VIP Jr. VIP Premium Member

    Joined:
    Aug 13, 2008
    Messages:
    958
    Likes Received:
    1,198
    Occupation:
    Guru-slayer
    Location:
    Behind the VPN...
    Home Page:
    If its a fully managed server and it was hacked than your host provider is responsible.

    Tell them you want full details of traffic on them days, and ask why they did not notice the spike and inform you.
     
    • Thanks Thanks x 3
  9. Grizzy

    Grizzy Senior Member

    Joined:
    Nov 11, 2008
    Messages:
    919
    Likes Received:
    999
    It's not that the Chinese visitors did anything wrong on my site, it's just that there were soooo many of them that it murdered my bandwidth. If they had been US visitors I would have made a killing, but because the Chinese NEVER EVER buy ANYTHING online, it was a disaster.

    They weren't just useless visitors. In those quantities allowing them to even be able to load my site was detrimental to my business. Implement mod geoip for apache and redirect those worthless surfers to DP or something. :D


    Fully managed or not, it's your responsibility to monitor your bandwidth (they are under no obligation to notify you of any spikes, but often offer it as a free service) and its your responsibility to make sure the scripts your running on your site are secure. If your server was hacked due to negligence on part of your host, that is a different story.
     
    Last edited: May 29, 2010
  10. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    This really makes sense and I might be responsible (though I dont know).... but yes, I did use many plugins downloaded from this forum and that might have contained some dangerous scripts

     
  11. appleman

    appleman Regular Member

    Joined:
    Oct 30, 2009
    Messages:
    358
    Likes Received:
    97
    I am suprised they actually charged your card... ask them why they didnt suspend your hosting when your bandwidth went over the limit? I thought that is what usually happens

    what vps company is this?
     
  12. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    Exactly the same I thought. Because I have seen in general, people account get suspended if they finish their bandwidth early... and I am going to ask this question to them

    But again they might be on a shared hosting. With VPS, i do not know the rules because I never ever faced bandwidth issues in last 4 years

    [​IMG] PR: wait...[​IMG] I: wait...[​IMG] L: wait...[​IMG] LD: wait...[​IMG] I: wait...wait...[​IMG] Rank: wait...[​IMG] Traffic: wait...[​IMG] Price: wait...[​IMG] CY: wait...[​IMG] I: wait...[​IMG] YCat: wait...[​IMG] I: wait...[​IMG] Top: wait...[​IMG] I: wait...[​IMG] L: wait...[​IMG] C: wait...
    [​IMG]
     
  13. JuicyBlack

    JuicyBlack Regular Member

    Joined:
    Nov 27, 2008
    Messages:
    395
    Likes Received:
    179
    Location:
    Dark n Wet Place
    My first thought was aggressive hotlinking.. but... have you seen the referrers sent to your site/s? has your hosting provider given you a log of the IPs that have accessed the vps?

    $1580? FUCK! I would be going ballistic right about now....
     
  14. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    Aggressive linking, Yes. One of the website sitting in that server used to have 100's of websites linking back to my website daily... But i dont know that will be the reason...

    I checked the Referral only in my statpress dashboard and they all are coming via trackback (as i said, daily i used to get 500-600 backlinks via trackback..)

    I am yet to get details on IP from service provider

    I do not think I should name that company publicly here. Dont want to bad mouth because its a reputable company
     
  15. appleman

    appleman Regular Member

    Joined:
    Oct 30, 2009
    Messages:
    358
    Likes Received:
    97
    I dont understand people that do this... the company screwed you yet you dont want to let others know which one it is?
     
  16. legoego

    legoego Regular Member

    Joined:
    Jun 16, 2009
    Messages:
    223
    Likes Received:
    81
    Occupation:
    don't know what it is, but it sounds painful
    I think they should have sent you a notice prior to you going over your bandwidth quota.
    I don't think the company you are with is very reputable if they did not even give you that courtesy..
     
  17. thetraveller

    thetraveller Senior Member

    Joined:
    Mar 9, 2009
    Messages:
    1,121
    Likes Received:
    686
    Occupation:
    thousandsmouseclicks
    Location:
    Eastern Europe
    I would not keep the money in my cc, just for these examples.
     
  18. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    In fact they sent a notice and I thought its a regular invoice and did not bother to open it.

    I have called my CC and asked them to reverse and its getting done. Now I have to take measure for healthy discussion with web hosting provider which should make them to give me either exemption or something else... I am still waiting for some idea to strike which can convince provider not to bill me
     
  19. newkid...

    newkid... Jr. VIP Jr. VIP

    Joined:
    Jan 13, 2010
    Messages:
    832
    Likes Received:
    550
    Location:
    Planet Earth
    Home Page:
    Yes, you are right and I will name the company if they do not give me any consideration. because the matter is still under discussion. I will have discussion with the owner and if there do not help me out in anyway... yes I will post it in this thread
     
  20. iceyou

    iceyou Newbie

    Joined:
    May 20, 2010
    Messages:
    17
    Likes Received:
    3
    The chinese man.... erik cartman was right they are taking over. In anycase do let us know whats going on. Just asking was yours also a porn site?