Jump to content


Photo

Domain Performing Illegal Activity


  • Please log in to reply
3 replies to this topic

#1 Vordar

Vordar

    Rank II Member

  • Members
  • PipPip
  • 52 posts
  • Gender:Male
  • Location:USA

Posted 04 April 2017 - 04:05 PM

I'm trying to vandalize and/or shut down a large scam site called ogtrk.net, which has been used to take over many of my friends' social media accounts and spread spam. I found that they use cPanel: http://ogtrk.net:2082. Can someone point me to a good tutorial about brute-forcing a password through Kali Linux (or any other tool)? Thanks!


Hello

#2 wolstech

wolstech

    Rank X Member

  • Root Admin
  • 10,147 posts
  • Gender:Male
  • Location:Pennsylvania

Posted 04 April 2017 - 04:09 PM

We don't endorse this type of behavior, not to mention it's illegal. 

 

Please report them to the relevant hosting company and registrar abuse addresses.


Please do not PM me for support. Posting on our forums lets all of us learn.

Do you play Minecraft? | Server Monitors | And the Dumbass of the Decade award goes to...


#3 Krydos

Krydos

    Rank X Member

  • Root Admin
  • 17,831 posts
  • Gender:Male

Posted 05 April 2017 - 07:34 PM

Bruteforcing a password is illegal unless you are bruteforcing your own password, or you have permission from the account holder.

The first step to take is checking the whois of the domain https://who.is/whois/ogtrk.net As you can see they have things locked down as tight as they can to prevent anyone from finding out who they are

Registrant Contact Information:
NameWHOISGUARD PROTECTED
OrganizationWHOISGUARD, INC.
AddressP.O. BOX 0823-03411
CityPANAMA
State / ProvincePANAMA
Postal Code00000
CountryPA
Phone+507.8365503
Fax+51.17057182

You can try calling that number or contacting them, but since the address is Panama I wouldn't bother with it too much. A lot of countries that aren't US, Canada, Australia, England, Germany, etc don't really care about illegal activity like this and would probably ignore you or stall indefinitely.

Cloudflare is different. https://www.crunchba...udflare#/entity They operate out of San Francisco, California, USA so you're likely to get a much faster response from them. Fill out their abuse form https://www.cloudflare.com/abuse/ and then ogtrk.net will at least not be able to hide behind cloudflares nameservers anymore. Once they use their actual hosting companies nameservers contact that hosting company, and the company who owns the IP that they are using and work your way up the chain until you get a hold of someone who cares, and you can maybe get their IP nullrouted.

Anyways, I'm going to unlock this thread if you have any follow up questions on how to accomplish your ends legally.

#4 wolstech

wolstech

    Rank X Member

  • Root Admin
  • 10,147 posts
  • Gender:Male
  • Location:Pennsylvania

Posted 06 April 2017 - 02:56 AM

@krydos: All domains with whoisguard appear to be in panama. I have the same exact contact info on my domains.

The email addresses listed (if they're listed, its optional, i don't see them here) are aliases that forward to the registrant. I've received emails from them before...they're noticeable because they have a banner at the top advising you that your email address may be revealed if you reply.

Please do not PM me for support. Posting on our forums lets all of us learn.

Do you play Minecraft? | Server Monitors | And the Dumbass of the Decade award goes to...





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users