OP22 March, 2021 - 02:57 AM(This post was last modified: 22 March, 2021 - 09:41 PM by Kingpin.)
Reply
new updates: My n.to scam report was completely deleted by staff, not closed but deleted. I’ve had confirmation from several other people I know on discord, as well as a person commenting on the n.to thread to say the same thing happened to them. This is in addition to the scam report i screenshotted where $1801 was taken.
I believe that this is a coordinated effort by the owners and nulled.to - finndev is involved with the project and clearly since I didn’t even get a response (after providing more than enough proof), I have come to conclusion that this is common and they go through machines purchased for data.
absolutely do not use this service.
I purchased a one month RDP two weeks ago from RDP.SH. In the meantime, I have been using it for my telegram and to sync the monero blockchain since my PC is too slow/old to do it at a high speed.
This morning, I woke up, and saw I didnt have any telegram notifications (odd). I check, and I see I had two messages which I had already "seen" since there was no notification. I shrug it off, and go back afk. I come back this evening, and I am in shock. Telegram is closed, the monero client is closed, chrome is closed. The only things left are my empty notepad i had open and file explorer.
The RDP was on the desktop view, nothing else
So of course I was surprised. I checked telegram on another device, and once again they had already been read.
Naturally, I was worried so I checked the server connection logs (this is available in the windows event viewer).
I see that there were multiple logins while I was not on my pc from two different IPs.
I am glad I didnt send any funds here as I would be fucked right now.
First off, I was most definitely not ratted. On the computer i had an IM client, telegram, google chrome, and the monero client. There was nothing here that would allow access PLUS if the RDP was ratted, they would be directly accessing it, not logging onto the RDP as they wouldnt have the creds.
My PC is most definitely not ratted as well. I have never downloaded any tools on it or anything that would give malware + I have antivirus that is up to date. That is not a possibility and if I was ratted they would have better things to do with their time than to login to an rdp i hardly use.
Proof? Sure!
Windows has a built in forensic tool called event viewer. I go there, and check the RDP connection history.
1149 event code = successful login. it shows time stamps and IP.
It looks like this
Here is the most recent login by me
While I was afk, there were these logins
Earlier login by me
Time stamps
Windows forensic tool Proof of ownership
previous scam report showing that their rdp.sh was hacked and wallet drained
IP lookups
Overall. I was CLEARLY not ratted. I cant make that apparent enough. While I suffered no damages, I was wronged and would like a full refund for what happened. Snooping through your customers servers is terrible business and I was sad as the server was half decent.
(22 March, 2021 - 02:57 AM)Psychedelic Wrote: Show More
I purchased a one month RDP two weeks ago from RDP.SH. In the meantime, I have been using it for my telegram and to sync the monero blockchain since my PC is too slow/old to do it at a high speed.
This morning, I woke up, and saw I didnt have any telegram notifications (odd). I check, and I see I had two messages which I had already "seen" since there was no notification. I shrug it off, and go back afk. I come back this evening, and I am in shock. Telegram is closed, the monero client is closed, chrome is closed. The only things left are my empty notepad i had open and file explorer.
The RDP was on the desktop view, nothing else
So of course I was surprised. I checked telegram on another device, and once again they had already been read.
Naturally, I was worried so I checked the server connection logs (this is available in the windows event viewer).
I see that there were multiple logins while I was not on my pc from two different IPs.
I am glad I didnt send any funds here as I would be fucked right now.
First off, I was most definitely not ratted. On the computer i had an IM client, telegram, google chrome, and the monero client. There was nothing here that would allow access PLUS if the RDP was ratted, they would be directly accessing it, not logging onto the RDP as they wouldnt have the creds.
My PC is most definitely not ratted as well. I have never downloaded any tools on it or anything that would give malware + I have antivirus that is up to date. That is not a possibility and if I was ratted they would have better things to do with their time than to login to an rdp i hardly use.
Proof? Sure!
Windows has a built in forensic tool called event viewer. I go there, and check the RDP connection history.
1149 event code = successful login. it shows time stamps and IP.
It looks like this
Here is the most recent login by me
While I was afk, there were these logins
Earlier login by me
Time stamps
Windows forensic tool Proof of ownership
previous scam report showing that their rdp.sh was hacked and wallet drained
IP lookups
Overall. I was CLEARLY not ratted. I cant make that apparent enough. While I suffered no damages, I was wronged and would like a full refund for what happened. Snooping through your customers servers is terrible business and I was sad as the server was half decent.
(22 March, 2021 - 03:30 AM)Blepop Wrote: Show More
(22 March, 2021 - 02:57 AM)Psychedelic Wrote: Show More
I purchased a one month RDP two weeks ago from RDP.SH. In the meantime, I have been using it for my telegram and to sync the monero blockchain since my PC is too slow/old to do it at a high speed.
This morning, I woke up, and saw I didnt have any telegram notifications (odd). I check, and I see I had two messages which I had already "seen" since there was no notification. I shrug it off, and go back afk. I come back this evening, and I am in shock. Telegram is closed, the monero client is closed, chrome is closed. The only things left are my empty notepad i had open and file explorer.
The RDP was on the desktop view, nothing else
So of course I was surprised. I checked telegram on another device, and once again they had already been read.
Naturally, I was worried so I checked the server connection logs (this is available in the windows event viewer).
I see that there were multiple logins while I was not on my pc from two different IPs.
I am glad I didnt send any funds here as I would be fucked right now.
First off, I was most definitely not ratted. On the computer i had an IM client, telegram, google chrome, and the monero client. There was nothing here that would allow access PLUS if the RDP was ratted, they would be directly accessing it, not logging onto the RDP as they wouldnt have the creds.
My PC is most definitely not ratted as well. I have never downloaded any tools on it or anything that would give malware + I have antivirus that is up to date. That is not a possibility and if I was ratted they would have better things to do with their time than to login to an rdp i hardly use.
Proof? Sure!
Windows has a built in forensic tool called event viewer. I go there, and check the RDP connection history.
1149 event code = successful login. it shows time stamps and IP.
It looks like this
Here is the most recent login by me
While I was afk, there were these logins
Earlier login by me
Time stamps
Windows forensic tool Proof of ownership
previous scam report showing that their rdp.sh was hacked and wallet drained
IP lookups
Overall. I was CLEARLY not ratted. I cant make that apparent enough. While I suffered no damages, I was wronged and would like a full refund for what happened. Snooping through your customers servers is terrible business and I was sad as the server was half decent.
Do not use them and avoid at all costs
big expose
gg
who owns it anyway ?
rdpsh on nulled.to. Super trusted, pretty big. When I posted it there, got a response immediately saying that it’s happened to them before.
n.to mods have said before that ‘they don’t have access’
complete bullshit
from what I can tell, finndev may own it? Idk or if it’s just that acc.
But this is just a warning I’m sure there’s other victims.
(22 March, 2021 - 03:37 AM)Psychedelic Wrote: Show More
(22 March, 2021 - 03:30 AM)Blepop Wrote: Show More
(22 March, 2021 - 02:57 AM)Psychedelic Wrote: Show More
I purchased a one month RDP two weeks ago from RDP.SH. In the meantime, I have been using it for my telegram and to sync the monero blockchain since my PC is too slow/old to do it at a high speed.
This morning, I woke up, and saw I didnt have any telegram notifications (odd). I check, and I see I had two messages which I had already "seen" since there was no notification. I shrug it off, and go back afk. I come back this evening, and I am in shock. Telegram is closed, the monero client is closed, chrome is closed. The only things left are my empty notepad i had open and file explorer.
The RDP was on the desktop view, nothing else
So of course I was surprised. I checked telegram on another device, and once again they had already been read.
Naturally, I was worried so I checked the server connection logs (this is available in the windows event viewer).
I see that there were multiple logins while I was not on my pc from two different IPs.
I am glad I didnt send any funds here as I would be fucked right now.
First off, I was most definitely not ratted. On the computer i had an IM client, telegram, google chrome, and the monero client. There was nothing here that would allow access PLUS if the RDP was ratted, they would be directly accessing it, not logging onto the RDP as they wouldnt have the creds.
My PC is most definitely not ratted as well. I have never downloaded any tools on it or anything that would give malware + I have antivirus that is up to date. That is not a possibility and if I was ratted they would have better things to do with their time than to login to an rdp i hardly use.
Proof? Sure!
Windows has a built in forensic tool called event viewer. I go there, and check the RDP connection history.
1149 event code = successful login. it shows time stamps and IP.
It looks like this
Here is the most recent login by me
While I was afk, there were these logins
Earlier login by me
Time stamps
Windows forensic tool Proof of ownership
previous scam report showing that their rdp.sh was hacked and wallet drained
IP lookups
Overall. I was CLEARLY not ratted. I cant make that apparent enough. While I suffered no damages, I was wronged and would like a full refund for what happened. Snooping through your customers servers is terrible business and I was sad as the server was half decent.
Do not use them and avoid at all costs
big expose
gg
who owns it anyway ?
rdpsh on nulled.to. Super trusted, pretty big. When I posted it there, got a response immediately saying that it’s happened to them before.
n.to mods have said before that ‘they don’t have access’
complete bullshit
from what I can tell, finndev may own it? Idk or if it’s just that acc.
But this is just a warning I’m sure there’s other victims.
yeah i saw it
probs the matters gonna be buried there
foooking cunts stealing the data , scammed people big time