- Joined
- May 14, 2013
- Messages
- 3,438
- Points
- 0
A few days ago I noticed that someone discovered that new member "darlene" was placing a hidden image in every post: http://rockbullet.tk/90/o.png/
It is a common practice to place a hidden image in email to track who opens the email and how many times they open it. Someone is doing this on LPF and could be creating a database of those who visit LPF.
Today I noticed some posts from new member "Leenon", they have the hidden image http://rockbullet.tk/94/o.png
Clearly these two are the same person. We should watch for new members that post short useless posts that sound like they were posted by a bot and check them for a hidden image.
I tried to track down who this person is but can't. There are both free and paid .TK domain names, this is a free one and the .TK registry protects the identity of those who register .TK domains. A Whois search only reveals the dot TK organization, except for one thing:
Domain name:
ROCKBULLET.TK
Organisation:
BV Dot TK
Dot TK administrator
P.O. Box 11774
1001 GT Amsterdam
Netherlands
Phone: +31 20 5315725
Fax: +31 20 5315721
E-mail: abuse: abuse@freenom.com, copyright infringement: copyright@freenom.com
Domain Nameservers:
NS1.HAWKHOST.COM
NS2.HAWKHOST.COM
Your selected domain name is a Free Domain. That means that,
according to the terms and conditions of Free Domain domain names
the registrant is BV Dot TK.
Due to restrictions in Dot TK 's Privacy Statement personal information
about the user of the domain name cannot be released.
ABUSE OF A DOMAIN NAME
If you want to report abuse of this domain name, please send a
detailed email with your complaint to abuse@freenom.com.
In most cases Dot TK responds to abuse complaints within one business day.
COPYRIGHT INFRINGEMENT
If you want to report a case of copyright infringement, please send
an email to copyright@freenom.com, and include the full name and address of
your organization. Within 5 business days copyright infringement notices
will be investigated.
Record maintained by: Dot TK Domain Registry
From the name servers that point to the domain we can tell who is hosting that domain/site:
[Nameserver 0 IP: 174.36.198.73
Target : ns1.hawkhost.com
City : Washington
Region : DC
Country: United States
Nameserver 1 IP: 74.86.9.53
Target : ns2.hawkhost.com
City : Dallas
Region : TX
Country: United States
They belong to a host caled Hawk Host Inc. https://www.hawkhost.com
This only means that whoever this is rents hosting or a server from https://www.hawkhost.com
It is hosted on a server in Dallas Texas belonging to Hawk Host, it is probably just a shared hosting account because there are 150 other sites on the same server:
IP Address: 198.252.98.30 United States
Hosting Service: "Hawk Host"
Hosting City: Dallas
Hosting Region: TX
Hosting Postal: 75247
Domain Created:
Domain Expires:
Domain Life: 0
Est Value: $112.26
Speed: Average (1349ms)
150 Other WebSites On This Server
That's all I could find out.
Alan
It is a common practice to place a hidden image in email to track who opens the email and how many times they open it. Someone is doing this on LPF and could be creating a database of those who visit LPF.
Today I noticed some posts from new member "Leenon", they have the hidden image http://rockbullet.tk/94/o.png
Clearly these two are the same person. We should watch for new members that post short useless posts that sound like they were posted by a bot and check them for a hidden image.
I tried to track down who this person is but can't. There are both free and paid .TK domain names, this is a free one and the .TK registry protects the identity of those who register .TK domains. A Whois search only reveals the dot TK organization, except for one thing:
Domain name:
ROCKBULLET.TK
Organisation:
BV Dot TK
Dot TK administrator
P.O. Box 11774
1001 GT Amsterdam
Netherlands
Phone: +31 20 5315725
Fax: +31 20 5315721
E-mail: abuse: abuse@freenom.com, copyright infringement: copyright@freenom.com
Domain Nameservers:
NS1.HAWKHOST.COM
NS2.HAWKHOST.COM
Your selected domain name is a Free Domain. That means that,
according to the terms and conditions of Free Domain domain names
the registrant is BV Dot TK.
Due to restrictions in Dot TK 's Privacy Statement personal information
about the user of the domain name cannot be released.
ABUSE OF A DOMAIN NAME
If you want to report abuse of this domain name, please send a
detailed email with your complaint to abuse@freenom.com.
In most cases Dot TK responds to abuse complaints within one business day.
COPYRIGHT INFRINGEMENT
If you want to report a case of copyright infringement, please send
an email to copyright@freenom.com, and include the full name and address of
your organization. Within 5 business days copyright infringement notices
will be investigated.
Record maintained by: Dot TK Domain Registry
From the name servers that point to the domain we can tell who is hosting that domain/site:
[Nameserver 0 IP: 174.36.198.73
Target : ns1.hawkhost.com
City : Washington
Region : DC
Country: United States
Nameserver 1 IP: 74.86.9.53
Target : ns2.hawkhost.com
City : Dallas
Region : TX
Country: United States
They belong to a host caled Hawk Host Inc. https://www.hawkhost.com
This only means that whoever this is rents hosting or a server from https://www.hawkhost.com
It is hosted on a server in Dallas Texas belonging to Hawk Host, it is probably just a shared hosting account because there are 150 other sites on the same server:
IP Address: 198.252.98.30 United States
Hosting Service: "Hawk Host"
Hosting City: Dallas
Hosting Region: TX
Hosting Postal: 75247
Domain Created:
Domain Expires:
Domain Life: 0
Est Value: $112.26
Speed: Average (1349ms)
150 Other WebSites On This Server
That's all I could find out.
Alan
