Spammer knew my customer was on eBay at 4AM. How?

ComputerRepairTech said:
because if i have an image loading from my server like img src=http://computerrepairtech.com/image.bmp then the customers browser has to pull the image from my server and id be able to see that.
Click to expand...
But all that will tell you is your IP. You will still have to figure out the location of the IP and manage to get enough info to put together at least a phone number and so on. Better odds on the lotto. Though some such photos could have malware that could be injected into a system but the OP's client comes up clean.

I still say that the client is misrecalling it. The caller never said a time of day to her. She put that into the memory herself because she normally isn't insomnia eBaying at 4am. The oddness of that added with the oddness of the call caused her to link the events in her mind. It is a very common logical fallacy called "Post hoc ergo propter hoc" / "after this, therefore because of this"
 
nlinecomputers said:
But all that will tell you is your IP. You will still have to figure out the location of the IP and manage to get enough info to put together at least a phone number and so on. Better odds on the lotto. Though some such photos could have malware that could be injected into a system but the OP's client comes up clean.

I still say that the client is misrecalling it. The caller never said a time of day to her. She put that into the memory herself because she normally isn't insomnia eBaying at 4am. The oddness of that added with the oddness of the call caused her to link the events in her mind. It is a very common logical fallacy called "Post hoc ergo propter hoc" / "after this, therefore because of this"
Click to expand...

Remember I said if they purchased from the seller they would have the information and be able to associate it to the IP. Its just a possibility I mentioned its certainly not something i've heard of happening.
 
Last time I checked eBay doesn't give you the IP of the person that buys from you. Other than a list of IPs of those PCs that viewed your pic there is no way to associate that with activity on eBay. And that still doesn't give you a phone number.
 
nlinecomputers said:
Last time I checked eBay doesn't give you the IP of the person that buys from you. Other than a list of IPs of those PCs that viewed your pic there is no way to associate that with activity on eBay. And that still doesn't give you a phone number.
Click to expand...

Yeah thats what I said earlier would be easy enough to match ip with the seller and unless they changed something in the last few years buyers phone number is available in the system. I haven't sold on ebay in a long time so i'm not sure if the system has changed for phone numbers.

I'm sure the real issue is something less unique.
 
Quick update: DNS in adapter settings and router were not compromised; HOSTS file was empty. d7 MalwareScan found just a couple of out-of-place files and a couple of crapware items/search scopes. ADWCleaner removed a little (typical) junk, nothing serious. KIS UI wasn't active at one point and said there was an update available. After installing the KIS program update and re-activating it, it found a few threats (my old AmmyyAdmin app and some minor crapware). A scan with BD Rescue disk came up clean. So, I'm none the wiser.
 
Larry Sabo said:
Quick update: DNS in adapter settings and router were not compromised; HOSTS file was empty. d7 MalwareScan found just a couple of out-of-place files and a couple of crapware items/search scopes. ADWCleaner removed a little (typical) junk, nothing serious. KIS UI wasn't active at one point and said there was an update available. After installing the KIS program update and re-activating it, it found a few threats (my old AmmyyAdmin app and some minor crapware). A scan with BD Rescue disk came up clean. So, I'm none the wiser.
Click to expand...
I reckon it was pure fluke. If you call enough people and mention ebay you're gonna get lucky eventually and probably sooner rather than later. Of course you have to go through the motions of checking out the system but because the customer figured out it was a scam and hung up, nothing bad happened.
 
Larry Sabo said:
Quick update: DNS in adapter settings and router were not compromised; HOSTS file was empty. d7 MalwareScan found just a couple of out-of-place files and a couple of crapware items/search scopes. ADWCleaner removed a little (typical) junk, nothing serious. KIS UI wasn't active at one point and said there was an update available. After installing the KIS program update and re-activating it, it found a few threats (my old AmmyyAdmin app and some minor crapware). A scan with BD Rescue disk came up clean. So, I'm none the wiser.
Click to expand...

Remember that Ammyy Admin was breached. But no one really knows for sure how long it was.

https://securelist.com/blog/research/75384/lurk-a-danger-where-you-least-expect-it/
 
Markverhyden said:
Remember that Ammyy Admin was breached. But no one really knows for sure how long it was.
Click to expand...
I believe that was long after I downloaded and customized Ammyy, assigning a password during customization. I don't know whether that would affect vulnerability or not but I hope is was still secure. I have yet to receive any concerns from my clients for whom I installed Ammyy and left it as a back-up to AnyDesk.
 
I suppose AMMYY has never addressed the issue? Or their issue with AV flagging them? Their site has a date of 2015 at the bottom... seems like they aren't in a hurry to keep their products updated.
 
You must log in or register to reply here.

Similar threads

ComputerProVA
Have my first non paying customer. What are my options?
2 3
Replies
47
Views
9K
CheddarPCsKP
CheddarPCsKP
J
Unhinged customer
Replies
7
Views
2K
mkeathley
M
bertie40
My Holiday
Replies
11
Views
2K
joydivision
joydivision
B
Week from hell, F* Ebay, F* lazy sellers, F* my day job
Replies
11
Views
2K
mr m
M
Redefine IT
How to describe key troubleshooting steps/components to customer
Replies
5
Views
1K
Redefine IT
Redefine IT
Back
Top