I know this looks like spam, I’m the SurLaTablo author… those without fear (i.e. Tablo Support) really need to click on the link below…
http://www.secretlocationgames.com/
Copied or hijacked or redirected content, or a mirror, scary.
I’ve seen that URL before, the more I think about it, I’ve seen it elsewhere… now to figure out why and where.
IP appears to be 66.228.32.178
ASN Net Access Corporation
Recent reports on same IP/ASN/Domain
Last 6 reports on ASN: AS8001 Net Access Corporation
<tr class=“odd_highlight” overflow:hidden;’=""><tr class=“even_highlight” overflow:hidden;’=""><tr class=“odd_highlight” overflow:hidden;’=""><tr class=“even_highlight” overflow:hidden;’=""><tr class=“odd_highlight” overflow:hidden;’=""><tr class=“even_highlight” overflow:hidden;’="">Date | UQ / IDS / BL | URL | IP |
---|---|---|---|
2015-02-04 21:52:09 | 0 - 1 - 0 | www.emulator-zone.com/download.php/emulators/gba/vboyadvance/VisualBoyAdvance-1.8.0-beta3.zip | 162.216.16.221 |
2015-02-04 21:36:13 | 0 - 0 - 0 | www.dividend.com/assets/sather/base-db1ef229d82985a87c93f4dce9c394d8.js | 173.255.224.201 |
2015-02-04 20:04:13 | 0 - 0 - 0 | reynoldslawplc.com/node/287133/ | 198.74.56.121 |
2015-02-04 19:46:57 | 0 - 0 - 0 | reynoldslawplc.com/node/271713/ | 198.74.56.121 |
2015-02-04 19:44:17 | 0 - 0 - 0 | muckrack.com/kevin-gimay/bio | 23.239.10.180 |
2015-02-04 19:40:04 | 0 - 0 - 0 | muckrack.com/kevin-kumar/bio | 23.239.10.180 |
Analysis Date | 6 seconds ago |
Safety Reputation | 0/30 |
Domain 1st Registered | 2011-12-20 (3 years ago) |
Server Location | (US) United States |
Google Page Rank | |
Alexa Traffic Rank | 13,806,111 |
Domain is registered under the name “James Milward”… it’s a linnode host.
Not sure if that helps anyone…
With that said, Vanilla Forums is pretty hackable out of the box… just saying…
Here are the HTTP “get” calls and the responses
To capture information like passwords, etc.?
We saw this a few weeks ago and it weirded us out. Not sure why this guy would want to replicate our forum…
Imitation is the sincerest form of…creepyness?
I don’t now how things work in Canada (eh?), but in the good ole USA, what they are doing is a trademark violation at the very least and if you don’t pursue action, you’ll lose your trademark. Just saying…
Maybe just give him a call and threaten the legal action ???
Registrant Organization: Secret Location
Registrant Street: 80 Mitchell Ave.
Registrant Street: Unit 3
Registrant City: Toronto
Registrant State/Province: Ontario
Registrant Postal Code: M6J 1B9
Registrant Country: Canada
Registrant Phone: +1.4168495298
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: accounts@thesecretlocation.com
Or even contact GoDaddy with a stop and desist letter ;)
Maybe we’ll go with this approach…
LOL
Or even contact GoDaddy with a stop and desist letter ;)
I wouldn’t host with GoDaddy if they were the last hosting service in the solar system. Of the addresses and domains in our firewalls, they are over 50% of them. They have a “don’t ask, don’t tell” policy on their customers hosting malware and other goodies, some not legal, on their servers.
They don’t care as long as the server it’s on doesn’t fry.
If it does end up connected with malware or something, the name could get blacklisted as well.
It might also have to do with SEO and/or bypassing spam bots … since if they are scraping the text posted here it might help them get by heuristic checking since its generated by real people …
It’s not a scrape, it’s a pull. I’ve used Vanilla forums in the past, it’s pretty easy to grab everything (and I do mean everything).
I am guessing they are breaking some US laws in doing so
heheheh - you can’t grab everything from the forum I run - only what I allow “guests” to see. the rest is protected in a SQL server. In fact even registered users can’t see everything, some require special group membership.
Bots scour the web for content. We have a dozen or more bots on our forum at any given time. Google is our most frequent visitor and I’ve found that something posted on the forum at 10:05am may show up in a google search as early as 10:15am that same day.
Since this forum can be read by non-members the whole content can be harvested by bots - and chances are that every post made since hour 1 exists on Google’s servers along with other servers that keep pretty darned complete histories of the web. I think one was or is called “way-back” or something like that.
You’ll also find some turkeys doing similar with eBay content - to trick people into going to their site that LOOKS like eBay and acts like eBay, but they are harvesting information - eBay accounts, passwords and so on - sort of like I mentioned this other place technically could do here - because MOST people on the web use the same password or a limited set of passwords for everything they do.
there are a couple hundred servers running in state government where I work that are still on server 2003 and not current with patches. How smart is that?
It's not a scrape, it's a pull. I've used Vanilla forums in the past, it's pretty easy to grab everything (and I do mean everything).
tomato/ tom-at-toe … regardless its still weird and should be stopped … but I am still thinking its for someway into tricking search engines to rank their content higher more than any specific nefarious purposes of tricking users and get money from the all mighty google ad-words cash cow.