Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Piracy Privacy The Internet Entertainment

Creepy Site Claims To Reveal Torrenting Histories (iknowwhatyoudownload.com) 211

Slashdot reader dryriver writes: The highly invasive and possibly Russian owned and operated website IKnowWhatYouDownload.com immediately shows [a] bittorent download history for your IP address when you land on it. What's more, it also [claims to] show the torrenting history of any specific IP address you enter, and also of IP addresses similar to yours, so you can see what others near you -- perhaps the nice neighbours in the house next door -- have downloaded when they thought nobody was looking...

There is also a nasty little "Track Downloads" feature that lets you send a "trick URL" to somebody else. When they click on the URL -- thinking its something cool on Facebook, Twitter or the general internet -- THEY see what they URL promised, but YOU get sent their entire torrenting history, including anything embarrassing or otherwise compromising content they may have downloaded in private... The website appears to offer an API, customized download reports and more to interested parties in the hopes of generating big cash from making other people's torrenting activities public.

It's not clear whether this site is really revealing the information it claims to -- or whether it can filter out the fake IP addresses provided by many downloaders. But putting that aside, it does raise an important question. Is it technologically possible to build a site that tracks and reveals torrenting histories based on IP addresses?
This discussion has been archived. No new comments can be posted.

Creepy Site Claims To Reveal Torrenting Histories

Comments Filter:
  • by TWX ( 665546 ) on Saturday December 31, 2016 @03:03PM (#53585687)

    There is also a nasty little "Track Downloads" feature that lets you send a "trick URL" to somebody else. When they click on the URL -- thinking its something cool on Facebook, Twitter or the general internet -- THEY see what they URL promised,

    And of course, it delivers malware that because you're trusted to the recipient, they'll infect their PC with, thus introducing a new vector in addition to the compromised ad servers and malware delivered via email...

    I very much doubt that the reason this site was created was for the reasons laid-out in the article summary.

    • by zifn4b ( 1040588 )

      And of course, it delivers malware that because you're trusted to the recipient, they'll infect their PC with, thus introducing a new vector in addition to the compromised ad servers and malware delivered via email...

      The reason there is a malware/ransomware epidemic is because it runs on stupidity and there is an abundance of it on the internet. It's hard to cure because of the Dunning Kruger effect [youtube.com].

    • by Imrik ( 148191 )

      It most likely isn't malware, I would guess that it just takes note of their IP. Not willing to test it out though.

    • by allo ( 1728082 )

      Maybe you should check your facts before posting.
      You get a goo.gl url, which redirects with 301 to a iknowwhatyoudownload.com url, which redirects with 303 to the target url. No content loaded on the two redirects.

      • by TWX ( 665546 )
        Right now you do. Who's to say that they won't change that functionality once they're sufficiently widely popular?

        Those who profit off of malware do so on only a very small number of 'customers'. Like a half a percent or fewer. It's just that they push their wares on so many people that it still results in a large number of victims even if it's a small percentage.

        If they need the novelty of this to be huge before the switch of behavior then that might mean letting it grow for a time without deliver
        • by allo ( 1728082 )

          > Right now you do. Who's to say that they won't change that functionality once they're sufficiently widely popular?
          Can you tell for ANY url shortener?

          btw. exploiting a browser isn't like a standard feature, but requires an unpatched vulnerability. There isn't the hacker, which can type "password override", computer security is a bit more complicated.

  • Sure (Score:4, Informative)

    by Mr D from 63 ( 3395377 ) on Saturday December 31, 2016 @03:03PM (#53585689)
    Just type in your IP address, why not narrow down their target list.
  • Ha! No. (Score:5, Informative)

    by AmiMoJo ( 196126 ) on Saturday December 31, 2016 @03:04PM (#53585699) Homepage Journal

    Here's "my" list: http://iknowwhatyoudownload.co... [iknowwhatyoudownload.com]

    Of course, that IP address is just a shared VPN endpoint used by who knows how many people. And sure enough, if you read the site they admit that they can't separate people on shared IPs, behind NAT, on dynamic IPs... So basically 99% of internet users are indistinguishable from each other on their site.

    • Re:Ha! No. (Score:5, Informative)

      by richy freeway ( 623503 ) on Saturday December 31, 2016 @03:18PM (#53585767)

      I checked mine, from my own IP that I do all my torrenting from. It came up blank.

      • by Anonymous Coward

        Can confirm, I checked yours also. Blank

      • by AmiMoJo ( 196126 )

        They only have access to public trackers (which throw in a few random addressed, just to fuck with people dumb enough to use them to subpoena ISPs and start suing people based on an IP address) so if you stick to private ones "your" record will come up blank.

        • The majority of my downloading has been public trackers in the past 2 years. Got bored of the ratio upkeep on private trackers so switched to newsgroups. Just use torrents when the nzbs fail.

        • by wbr1 ( 2538558 )
          I use public trackers but my IP is blank. I only recently started using a VPN, so my public IP should have records. This is likely either new or some sort of honeypot.
          • I use public trackers but my IP is blank. I only recently started using a VPN, so my public IP should have records. This is likely either new or some sort of honeypot.

            It's new; my history goes back to mid December.

        • I've literally only ever used public trackers, and my list came up blank, too. My ISP may be dicking with my IP address more than they are supposed to, though. I don't really keep track since they're not actually reliable enough to run services from.

      • Re:Ha! No. (Score:5, Funny)

        by Hognoxious ( 631665 ) on Saturday December 31, 2016 @03:40PM (#53585863) Homepage Journal

        It didn't even get the ip right. I know for a fact mine is 127.0.0.1.

      • Same. I do a lot of torrents, all from private trackers.

      • by Anonymous Coward

        Teenage.Anal.Creampies.XXX.720p.WEBRip.MP4-VSEX
        Mick's ANAL PantyHOES 2 (2016) WEB-DL 540 SPLIT SCENES MP4-RARBG
        Young Anal Adventures (2016) WEB-DL SPLIT SCENES MP4-RARBG
        Anal Fiends 2 (2016) WEB-DL 540p SPLIT SCENES MP4-RARBG
        Anal Threesomes - TUSHY 2016 WEB-DL SPLIT SCENES MP4-RARBG
        Lex's Anal Champions 2 (2016) WEB-DL 540p SPLIT SCENES MP4-RARBG
        Interracial Anal Glory Holes (2016) WEB-DL SPLIT SCENES MP4-RARBG
        LeWood's Anal South Beach Weekend (2016) WEB-DL 540p SPLIT SCENES MP4-RARBG
        ...

        Perhaps you could keep that to yourself in future...

        • Oh my goodness! You mean this person has downloaded porn on the internet?!?! That is so scandalous! :-P
          If the business model of this website is to blackmail people who downloaded porn through the threat of public shaming, I don't think it will work out very well.
          Maybe if 99% of the populace of the free world didn't download Internet porn it would be effective. But if you are threatening me to say, pay me money or we will tell people you have downloaded porn, I would laugh in your face and say go ahead. Yeah

      • So did mine.
      • I checked mine from my connection I currently use. Apparently I just downloaded 10GB worth of a TV show called Sweet Valley High.

        I'm dreading my mobile phone bill given that I'm roaming at the moment and at $10 for 100MB it will be nasty.

      • I just checked mine and got this;-

        linuxmint-18-cinnamon-64bit.iso 1.58GB

        Which I'm currently finding somewhat amusing.

    • Awesome site! (Score:4, Informative)

      by Okian Warrior ( 537106 ) on Saturday December 31, 2016 @03:45PM (#53585885) Homepage Journal

      I struggle to find new and interesting things on the internet, but not any more!

      The first of my "neighbors" IP addresses led me to Milftoon.com (NSFW, and not linked) which is totally what you think it is.

      Knowing everyone else's download history will make it easy to discover new and interesting things to see.

      Thanks, iknowwhatyouupload.com! You've saved me so much time.

    • Which would you prefer admitting to downloading, Elf or Milfs Like It Big?

    • by ChoGGi ( 522069 )

      My list is blank, but I've been seeding that shitty VHS rip of Einstein's Brain for years now :(

      though one of my "neighbours" had an interesting torrent: Cops.The.XXX.Parody.Too.XXX.720p.WEBRip.MP4-VSEX

    • by allo ( 1728082 )

      Of course they are not. A dynamic ip + timestamp is enough to identify you. NAT is behind your plastic router, so they still see the ip you got from you isp.
      VPN on the other hand helps.

  • by Anonymous Coward

    Next thing you know large companies will be tracking your browsing history by leaving 1 pixel images scattered around the Web!

  • Marsh, Marsha, Marsha!

    Wow! This is incredible.

  • Seems they missed most of them. I imagine it depends on which tracker you use.

    • by Cramer ( 69040 )

      And which torrent. Unless they're in league with a tracker, they have to ask for a list per torrent (info_hash) to know anything.

  • Most home users have dynamic ip addresses, so it'll just show whatever the person who had your ip address earlier was downloading.

    • by Anonymous Coward

      In my experience, sort of. I've had my cable-provided dynamic IP stay the same for as long as a year. It is stable enough that I don't bother with services like the old dyndns anymore. On the rare occasion that it changes, I just manually change the few things on my phone accessing devices in my house.

  • It doesn't show any of the few torrents I downloaded from home. It doesn't show any of the *many* torrents I downloaded from the dedicated server I rent to do that. Thanks for letting me feel safe :D
  • downloaded from the most evil torrent sites in the world and that russian website showed that i downloaded nothing
  • by megahurts.gr ( 1073654 ) on Saturday December 31, 2016 @03:32PM (#53585831) Homepage

    I just tried this site, and it did in fact know of one download that I did like a month ago. But I have downloaded several more files since then, and it knew nothing of those.

    Also, the other day I came across a similar site which appeared to have even more information about my downloads. But I did not think to bookmark it.

    From a technical point of view, it is rather easy: you just set up a fake torrent peer which connects to various trackers and obtains peer lists, without actually receiving anything from them or sending anything to them. All it needs to do is record the IPs of the peers.

  • It has where I downloaded raspian for a rasp pi, and an Android rom for my phone. I don't think anyone who knows anything about how torrents work would be too surprised to know anyone else downloading it can see all the peers. Might be an eye-opener for people who don't.

  • It didn't get a single torrent correct even with about 3,000 being seeded from a test IP.
  • Good luck with a VPN.
  • Not a new concept (Score:5, Interesting)

    by ShaunC ( 203807 ) on Saturday December 31, 2016 @03:52PM (#53585913)

    There was a site like this up several years ago called youhavedownloaded.com [slashdot.org]. There was a big to-do when people started plugging in IPs allocated to record labels and movie studios, and found that those people were pirating tons of shit.

  • it's not working, i download TB of torents a month, it shows nothing
  • Torrentfreak article (Score:5, Informative)

    by Anonymous Coward on Saturday December 31, 2016 @03:59PM (#53585943)

    For if you want to read a real report on this site. They actually do real journalism by contacting the company who made the site and actually communicating with them!

    https://torrentfreak.com/i-know-what-you-downloaded-on-bittorrent-161223/

  • They didn't list any of the ascii "art" I downloaded in high school.

  • There is not much to see there. It didn't list any downloads for me even though I use public torrent trackers continuously (for legitimate purposes). I live in a large city and the most some of my 'neighbors' had was a music video and some asian tv show, I'm pretty sure there is a LOT of things this thing is missing.

  • I have torrented a metric buttloadover the years . and it shows that I dont have anything.
    so either the bogeyman of "your ip address is giving you away" is bogus as it disappears rapidly after you stop seeding, or I am a frigging expert at hiding without doing anything at all.

    I'm betting that IP addresses disappear rapidly and unless you were torrenting in the past 60 seconds you wont show up.

  • 1. Put up site claiming to have knowledge of 'illegal' activity by IP
    2. Attract those with something to be concerned about who visit to confirm or refute their fears
    2a. Bingo, a self-triaged list of targets pops out ready for further investigation.
    2b. Sell to MAFIAA
    3. Profit!!!

  • I did a "neutral" search - (Russia and IP addresses). The only thing I got was an offer to mask your IP address. Nothing negative. So.. Words are what you use when you want to start a fight with someone. Wars start that way too. Miscommunication, antagonizing, and vilifying are all the first step to start a war. Remember the "Axis of Evil" said by a famous person. Well.. Stuff like that does not make you new friends - it generates hate. This world is like a powder keg right now, and any type of bad words to
  • Did not bother to click it; the summary and the many comments saying "it doesn't work" make it sound like the site itself is click bait.
    • Did not bother to click it; the summary and the many comments saying "it doesn't work" make it sound like the site itself is click bait.

      Nope, just new. My data is accurate, but only goes back to mid December. The way the site works is it participates in torrents on public trackers to get a list of peers. How else did you think they were able to access that data? And it appears they haven't been in business for very long, and aren't participating in all torrents yet.

      But if you think this is cause for alarm: it's what copyright holders were already doing for a long time. They don't know anything about you that the RIAA/MPAA/BSA/... don't alre

  • IP addresses are not people. Further hundreds of millions of home computers and equipment are vulnerable if not already compromised at any particular moment. Your history of web sites or torrents can be 99.999% true which will make the foolish and senators fearful. But computers can and do function as relays. So they and others can make it seem like you have a fetish for grandma bondage porn.

    And this means Russians can be hacked too. Their statement:

    AN IP IS NOT PROOF. YOU CAN'T PROVE ANYTHING.

    I can only

    • by Doke ( 23992 )

      IP addresses are not people.

      IP addresses are not people. That does not prevent them from using IPs to sue you. Then you have to spend lots of money for defence lawyers.

  • by Anonymous Coward

    When did the MPAA move their honeypot to Russia? Did I miss something?

    /s

  • I have downloaded several linux ISO's in the last few days just to see where things are at with several distros (I don't read reviews until I've actually tried the new versions).

    I saw not one link. And I have had a torrent of one kind or another downloading or seeding at least once a week.

  • I have a bittorrent server for legal Linux and BSD ISOs. It's never been used for anything else. It's had that static IP for 5 years. It reports 10 of my 30 legal ISOs. It also claims I downloaded some porn video and something called "ST_170_TOOL_SO_XML_1.0.0.4.cab".

    My guess is the false positives are a scare tactic to get people to buy VPN services. But it's seeded with enough real data to look slightly legitimate.

  • I'm on a static IP and I torrent a lot of current season anime, and the list was EMPTY. I guess I'm just not one of the cool kids.
  • by Anonymous Coward

    It correctly identified both Linux distros I seeded in the last year.

  • It showed nothing for my IP and yet I regularly torrent various Linux distros. And a few other things.

  • by Fieryphoenix ( 1161565 ) on Sunday January 01, 2017 @02:27AM (#53587307)

    I could have sworn it was Trolltrace.com

  • by Anonymous Coward

    Uses browser cookies or something.

    I put in a static IP of amassive private tracker and it found nothing.

  • As it happens I have a database that contains the IP addresses of many of my friends since they hit and authenticate with a server of mine. One of these folks is an older teen and has shared their account with their father who I know is not exactly someone I think much of.

    Now, most of my friends are either very tech savvy or not tech savvy at all but this guy is just the sort I can see using Torrent software via word of mouth to download who knows what. I caught him cheating on his wife based on computer fo

  • More than 3/4 of the stuff listed for my IP are things that I've downloaded.

    Also I'm certain there was a similar site to this that launched a couple years back, I remember the results from that one were hilariously inaccurate though.

  • Didn't download much during December - consequently only shows a single torrent.

    Because my employer is also my ISP and we don't give a shit about American lawyers, these tickets that urge the ISP to warn or punish the user (or forward his details) just get deleted ;-)
    Nobody has every presented a court-order.

    You get these mails usually only when you download complete seasons of "hot" TV series - or a very new cinema-blockbuster.

"Stupidity, like virtue, is its own reward" -- William E. Davidsen

Working...