The host alsycon.nl is Fraud Netherlands Hosting Company from which I bought a server, which claims to be protected against DDoS attacks, the host named Maxx. First, he was friendly enough (to sell the service). Then, after the purchase, he started to give no answer if we encountered any problem, the service was not managed, but the problem was related to the hardware (the hardware support Centos 7. mentioned by him) we have waited for the relocation of centos 6,
After this incident, things went well, about a month later, he put our network out of service by saying that we had a DDoS attack, we asked him the logs with the IP addresses on which we have attacks and no data provided, then after 24 hours, everything came back online,
In the meantime, no updates or information were provided, then later that night, the network broke down, saying that we had a DDoS attack again, we checked Dstat, the incoming traffic was regular.
Then we asked him, as you claim, again and again, that we get results of DDoS attacks, please provide us with proof (I said that if you continue to do so, we will not continue from next month, this is not professional).
Listening to this, he ended my services and posted in his Discord community, claiming that he was selling our data for free if anyone wanted him, he could ping him, and he also suspended the service,
I asked for the data because we had essential customer data.
He asked me for a ransom of 250 euros to recover the data and a constant denial.
After that, my supervisor texted him and had a conversation, then he restored the services, but adding a network speed of 1 Mbps and 1 Mbps,
We could not do anything on the dedicated server. Anyway, it was like a dead service, after asking by my superior, he gave back a network of 1gbps, we took backup measures and the next day he canceled the network with IDRAC from our dedicated server saying that you were undergoing a DDoS attack.
This time he provided a screen capture of the incoming and outgoing network, which did not allow in any way to make the link with the DDoS attacks.
Then, after several shutdowns of about 48 hours, my older brother was also fed up with his behavior of not answering this question, or telling us what IP address we had, or whatever something like that He also said why, given your lack of professionalism, do not understand that we have clients to answer, he ended the services immediately.
Without even warning, he formatted the disk or not sure (he may still have the data), he changed the password of IDRAC and ssh and sold to someone else. other.
Attention, this can also happen with you.
I enclose all the evidence