That is originally written in banners on scan4you, that cores taken on any projects at the beginning of the conversation + with a support has been notified that the cores will be on gruzitsya locker (logs laid out below) )) And now it turns out I broke termsy and of course that will palitsya domains sometimes - but it is under your shit - trafom bedrooms second domain that you apruvili yesterday and checked ) And do not be surprised if his own in retaliation for the post and I merged into virustotal . And if my claim that relates to number 16.01 and 20.01 - a domain bedrooms 21.01 today - you yesterday, asshole , put me in the campaign [REDACTED]: 7:12 put back my url - because I do not see where to change it 7:12 where it changes ? 07:12 http://meetingwebcams.com 7:12 puts this GRANDCLIX: 7:13 Harvest on the campaign , then My Ads 7:13 Now I will replace 7:14 There But here you do not place the administration and moderators interesting situation http://www.sendspace.com/file/5595z5 pass for archive with all infoy (logs + screens + original banners scan4you) on the situation given personally moderation + Add new facts about the purity of this exchange Proof that they were originally loaded on Malware and therefore palyatsya domains http://malwaredb.malekal.com/index.php?&asn=AS16276 Detailing verify their domain grandclix.com ------- scan4you: bad VIPRE: bad (FOUND) ======== advertiser.grandclix.com ------- scan4you: bad VIPRE: bad (FOUND) ======== adserving.grandclix.com ------- avdetect: bad mcafee: bad (Malware detected) ------- scan4you: bad VIPRE: bad (FOUND) ======== publisher.grandclix.com ------- scan4you: bad VIPRE: bad (FOUND) ======== hxxp :/ / scan4you.net/result.php? id = c355b_963ps7 hxxp :/ / scan4you.net/result.php? id = a45cc_963q77 hxxp :/ / scan4you.net/result.php? id = 60c25_963qfn hxxp :/ / scan4you.net/result.php? id = 1a096_963ql3 + More interesting observation Judging from the analysis of the text letters from them - boys or Resell clicksor or are part of the project cliscksor Received: from clicksor7.yesup.com (admin.clicksor.com. [199.21.148.86]) Received-SPF: softfail (google.com: domain of transitioning support@grandclix.com does not designate 199.21.148.86 as permitted sender) client-ip = 199.21.148.86; Authentication-Results: mx.google.com;  spf = softfail (google.com: domain of transitioning support@grandclix.com does not designate 199.21.148.86 as permitted sender) smtp.mail = support@grandclix.com Received: from clicksor7.yesup.com (clicksor7.yesup.com [127.0.0.1]) by clicksor7.yesup.com (8.14.4/8.14.4) with ESMTP id s0L42QOT010191 Received: (from apache @ localhost) by clicksor7.yesup.com (8.14.4/8.14.4/Submit) id s0L42Qxt010190; Mon, 20 Jan 2014 23:02:26 -0500 Date: Mon, 20 Jan 2014 23:02:26 -0500 Message-Id: <201401210402.s0L42Qxt010190 @ clicksor7.yesup.com> Since topic perensli arbitration - then formulate a claim Return all the money spent YOU + MEANS THAT YOU BLOCKED 200wmz Zkoshel with my commentary " refunds for services not rendered ." + Apologies for improper and boorish behavior in chat rooms