Block Callbackhunter

Edit Subject

I found a tracker which is not yet blocked by Ghostery. Please, add it to your database.

These people call themselves CallbackHunter, and at the moment their bug seems to be scarcely present only in russian-speaking parts of the Internet (hard to tell from where I sit).

Per their promo site, the script pops-up a callback form after user has browsed the host site for some time. A sreenshot from an affected website:


Their promotional website is http://callbackhunter.com/main
They claim to be tracking user behavior.
As a culminating act, they nicely ask users to submit their phone numbers.

Their script is loaded with this sort of code (tags are slightly modified):

>link rel="stylesheet" href="//callbackhunter.com/widget/tracker.css">
>script type="text/javascript" src="//callbackhunter.com/widget/tracker.js" charset="UTF-8">>/script>
>script type="text/javascript">var hunter_code="1fedacddba5745b5b1a6587c732c1a9f";>/script>

In the code itself there is a function

sendUserData(){var a=navigator.appName+';'+navigator.appVersion+';'+navigator.userAgent+';'+navigator.cookieEnabled;var b=screen.availWidth+';'+screen.availHeight+';'+screen.colorDepth;var c=new Date;E['browser']=a;E['screen']=b;E['date']=c;E['href']=t.location.href}

There are other functions with 'send' and 'Data' in their names, but I'm not a JS expert to analyze them thoroughly.

Their server installs a cookie like this one:

PHPSESSID=v2ic4q7dcntfa9k6r8whm50l8h; hunter_sid=FFfeiyckUtmlNg6D; hunter_params=%7B%22s%22%3A1411179091143%2C%22p%22%3A2%7D; hunter_prline_left=93%25; hunter_prline_right=97%25; hunter_showed=1; hunter_session=1