Trial by press release

18 November 2007 — dan

Magic fuel pill vendors Firepower have decided to deal with the gathering storm regarding their claims about major contracts that do not exist, their string of previous similar scams, the criminal connections of their principals and the Australian Securities and Investments Commission investigation of their operation by... issuing a fresh and shiny new press release!

In it, they've basically just restated their previous claims about how "the Fuel Pill showed an increase in the octane rating of fuel, thus leading to an increase in power, faster burn...", blah blah blah, which seems to me to be a fundamental misapprehension of what octane rating actually is.

I, and others, have held forth on this subject on previous occasions. It's easy to boost the octane rating of fuel by adding all sorts of substances to it, but all you get in return is the ability to use said fuel in a higher compression engine. In essence, if the fuel worked OK in your engine before, raising its octane rating will do pretty much nothing.

But fuel "improver" vendors persist in using "octane" in its generally popular sense as some sort of overall measure of the "powerfulness" of a fuel.

But the new press release goes on. It includes a quotation from one Dr Stephen Hall of the University of New South Wales, who is a real person who may or may not have wanted Firepower to quote him in support of their claims. And then it says they received an Award for "Innovation in Fuel Technology 2007" from the UK "Institute of Transport Management", who, if this is accurate, I can only surmise will be feeling like right Charlies shortly.

A longer and less cheerful version of the press release is on Firepower's site here. In that version, Firepower actually mentions the "controversy" over minor details like the fact that Firepower's business looks exactly like that of numerous former fuel pill scam artists, and the fact that Firepower's principals have run the same scam before, in New Zealand.

Among other entertaining points, the expanded press release reveals that the Firepower pill is only even claimed to increase octane ratings by "around 0.3%". In the best case scenario, you could expect such a change to make a difference in engine power of about half of one percentage point. And that's when the engine is heavily loaded; for everyday driving, the difference would be even smaller.

There's also mention of a Heating Value test in which one Firepower pill somehow managed to give sixty litres of petrol 1.09% more combustion energy. Not that this'd make any significant difference for a car either, but I'd like to see that one replicated - or just duplicated on the same equipment a few times, to see what the test rig's error margin was.

Posted in Cars, Firepower, Scams, Science. 4 Comments »

Fake marijuana botnettery continues

17 November 2007 — dan

It would appear that the previously mentioned "herbal marijuana" business (which, as I explain in that earlier post, is probably actually just a scam to harvest credit card numbers) is burgeoning.

From: "Bud Shop" <dancitep_yzpsoy@gte.net>
Date: Fri, 16 Nov 2007 14:05:42 -0700
To: "dan" <dan@dansdata.com>
Subject: Smoke up the bud

Do You Smoke Big Buddha Bud Or Any Other Legal Bud To Go Crazy ?

http://shabaaloo.com

My buddy Mark stopped hanging out with me because he now works at the post
office and has to do a piss test every other week. Just last week though, i
see him sparking up. I'm like "Dude are you smoking bud again??" and he is
all "Yeah! i bought ONE POUND of Legal Bud at cheapestbuds.com and i dont
need to worry, this shit doesnt come up in piss tests and its some potent
shit!" cheapestbuds.com is too good to be kept a secret.

One warning though, Dont drive with this potent bud.
My friend blasted up before going on his mailing route and he ended up
crashing the postal truck LOL.
Oh and he still smokes up the Legal Bud!

http://www2.shabaaloo.com

OR

http://3I.shabaaloo.com

The shabaaloo.com site being promoted here looks exactly the same as the previous thebudshop.net. Note also the mention of "cheapestbuds.com", which was perhaps an earlier URL for the same scammers. That's dead now, but all of the other ones are still up. The "www2" and "3I" subdomains spread the botnet hosting out even further.

Once again, these sites are all shuffling from one home broadband IP address to another, a technique I now know is called "fast-flux", which was apparently originally used to hide spam mail servers. Their nameservers occasionally seem to be pointing more than one domain at the same IP address - both shabaaloo.com and thebudshop.net were at 69.141.166.10 (someone's virus-infected PC on a Comcast address) when I first checked. Mere moments later shabaaloo had moved to 75.22.25.116 (another zombie, this time connected via AT&T) and thebudshop had moved to 63.131.13.17 (Choice One Communications). Then shabaaloo was 82.10.184.121 (NTL Internet, a UK ISP) and thebudshop was 70.92.159.113 (Road Runner). The subdomains all have their own separate changing addresses, too.

Thebudshop's nameservers are still ns1.b4cf5f189.com and ns2.b4cf5f189.com; those are currently at 68.16.9.22 (AT&T) and 75.66.195.228 (Comcast), respectively. NS1 has stayed the same since I first checked four and a half days ago, but NS2 has changed at least twice since then.

The DNS entry for shabaaloo.com lists no fewer than five nameservers - four is the usual limit. It's got NS1 through NS5.b4cf5f189.com. As I said in the comments for the previous post, that probably makes it virtually invincible, at least by spam-site-hosting standards.

When botnets first hit the news, many people (me included) had some difficulty figuring out what they were for, exactly. Yes, you could use them to send spam, or to launch denial-of-service attacks, or as your own personal massively parallel supercomputer for cracking encryption or something. But none of those features sounded hugely marketable.

Bulletproof hosting for any site you want is different, though. There are plenty of people who already pay big bucks for that.

I think we'll be seeing a lot of spam-scam sites shifting to botnet hosting soon. Perhaps that'll be what it takes to get the major ISPs to start actually disconnecting people whose computers are part of a botnet. Thus far they've resisted taking such action, despite being urged to do so by such minor entities as the US Government for going on three years.

One might cynically surmise that the lack of action is because there's no money to be made in disconnecting zombies. Actually, there's money to be lost; even if all you do is direct all of the customer's Web requests to a "you've been quarantined" page with information about antivirus software, you're still going to get irate support calls that'll rapidly eat up every penny the customer's paying you. If you cut 'em off altogether, they'll probably tell all of their friends that you're a terrible ISP, and may file complaints with their credit card company. It's a nightmare.

And botnet members don't generally actually use a whole lot of the ISP's precious bandwidth, either. J. Random Hacker with his squeaky-clean computer that's downloading TV all day is the user an ISP really wants to cut off.

And if every ISP doesn't adopt a no-zombies policy, at least some disgruntled customers are not going to actually put their house in order - they'll just switch to an ISP that'll let their lurching zombie of a PC onto the Internet.

Here's a good article about the current sad state of affairs. Busting the people who set up the botnets seems to be the most promising course of action. That strategy hasn't exactly stamped out spam so far, though.

Posted in Hacks, Scams, Spam, Strange Tales. 7 Comments »

More tales from the online Wild West

12 November 2007 — dan

Everything old is new again. It's been years since I got any spam trying to sell me legal herbal smoking mixtures, but here they come again. But, this time, there's a lot more to the scam than meets the eye.

"Legal weed" concoctions seldom have any more actual effect than does snorting a fat line of baking powder. They invariably, however, have names that make them sound as if just opening the bag and taking a sniff would blow Bob Marley's head clean off.

This time, the spam's trying to sell "Big Buddha Bud".

Or, as I discovered when I searched for that string, perhaps it isn't!

It would appear that the Big Buddha Bud spams were, a week or three ago, promoting thebudshop.hk. That server had a protean IP address, shifting from one address that resolved to a home broadband provider to another, minute by minute if not second by second.

That could only mean that the site was being served by a botnet.

And that, in turn, probably meant that the site's only purpose was to harvest credit card numbers.

If, after all, you've got an online shopping site that can only be traced to countless virus-infected home PCs, why on earth should you bother actually sending anybody anything they've bought from you?

Thebudshop.hk is gone now, but thebudshop.net is alive and well. And its shifting IP address remains.

When I looked at it it a few minutes ago it was at 75.208.93.134, an address in Verizon Wireless's allocation. Then it changed to 76.188.169.229, which is a Road Runner address. Then it was 63.131.13.17; that belongs to ChoiceOne, a bank! And less than a minute later, it resolved to 76.15.25.162, an Earthlink address. And then 76.247.75.67, which is AT&T. I doubt any US ISP will be left out, if I keep on checking.

(If you manually point a Web browser at any of the botnet IP addresses, by the way, you get an interesting little page that says "Coming Soon! Please check us back later... Ddos Protection by the leet boys ;)". This is an interesting thread to tug on, if you're after more information on this particular botnet.)

I had no idea it existed until this moment, but it turns out that this "botnet hosting" is a known phenomenon. It's a brilliant idea, too! Why use your army of zombified home PCs only to send spam, when you can also use it to host the super-dodgy sites you're promoting?

Botnet hosting seems to have taken great strides, as well. Sites like this are supposed to be flaky, but thebudshop.net looks rock solid (not to mention professionally designed!) to me. This botnet seems to be delivering the kind of super-distributed redundancy that major Internet companies dream about.

Posted in Hacks, Scams, Spam, Strange Tales. 8 Comments »

Another glimpse of the Dark Side

12 November 2007 — dan

My spam had two high points today.

One of them was not the terrible news that the invaluable link directory at teksavers.com was REMOVING MY LINK OMG from their site because I had failed to respond to their repeated unsolicited requests for a link from this ancient motherboard review to http://www.teksavers.com/, with the title "Buy Sell Refurbished Cisco".

I simply cannot figure out why I haven't done that. Too late now!

Spam high point one was brought to me by the new wave of random-subject-lined replica watch ads, which seem to be sourcing their random words from a much more awesome dictionary than most.

My favourite so far is today's masterpiece, "Rainbow Kaleidoscope Ice-cream Egg Magnet".

I opened that message, hopeful to be given the opportunity to purchase this wonderful-sounding product. But all it contained was the usual link to an odd-named and inaccessible server where, I fear, no Rainbow Kaleidoscope Ice-cream Egg Magnet would be on sale anyway.

(The next one to arrive had the subject "Solid Prison Post-office Necklace Fan", which sounds much less appealing.)

Later in the day, I received this pearler:

Date: Sat, 10 Nov 2007 19:04:47 +0200
From: "Igal K." <igalkr@013.net>
Subject: Article contribution proposal to www.dansdata.com
To: dan@dansdata.com

I've stumbled across your site - www.dansdata.com and
I want to make you an offer regarding contributing uniquely
written Insomnia & Sleep Problem related articles to your site.

As you know - Creating unique content for your site is the only
way to get high rankings in Google and other Search Engines.
Copying Articles from Article Directories became obsolete
now that Google is penalizing sites with Duplicate content.

This is where we can help each other in a win-win partnership - I
have a staff of skilled writers creating articles about subjects
such as ( Just to to name a few ) :

      Insomnia Treatment Tips
      What Are Sleep Disorders
      Chronic Insomnia Treatment
      Sleep Aid Guides
      Sleep Disorders
      Sleeping Pills Help

The articles that I'm offering will be unique and were never
published on any articles directory or website, therefore you will
have the full benefits of a unique content that is published only on
your website - in Addition you have full rights to edit and tailor those
articles to your own liking and your website needs.

The only thing I want in return are 2 links pointing back to my
Insomnia Related site at the bottom of each published article.

So if you're interested in my unique win-win proposal please let
me know so we can start helping each other get Higher Rankings
in Google.

Igal K.

You know how sometimes you click on a result for some obscure search or other, and then find yourself on a site with a buggerload of Google ads and some real actual readable text... but that text doesn't contain any valuable information at all?

In fact, the text looks as if it could be customised, with a quick search and replace, to apply to any subject?

I'm betting that this is the sort of "content" that Igal's "staff of skilled writers" are offering my poor little site, which with its miserable thousand or so articles and laser-like focus on sleep disorders is clearly in need of Igal's assistance.

(Amazingly enough, I don't think dansdata.com contains even a passing reference to insomnia at the moment. Usually, subject-specific spam like this comes to me because someone found the word "sauna" on my site somewhere and decided that I therefore must be interested in ordering a few container-loads of Chinese pre-formed hot tubs. Heaven knows how Igal came up with the insomnia connection, in the absence of such an obvious link.)

I suppose it's possible that Igal really does have writers on staff. If that's the case, I imagine they're the inexpensive and quirky kind.

Igal's a wily one, too; he doesn't mention the URL of his special insomnia site in his spam.

But I'll betcha any of you unfortunate enough to be searching for information on sleep disorders will be seeing Igal's site soon. At least until Google catches on, yet again.

Posted in Language, Scams, Spam. 3 Comments »

Guardian Angel (battery)

11 November 2007 — dan

There I was, innocently reading Engadget, when I struck this post about how "Exradia suggests that iPhones could warp brains".

Exradia's argument is that cellphone radiation is harmful (which is dubious at best, but let's continue), and that the iPhone is particularly dangerous. That's because the iPhone battery is not user replaceable (not without soldering skills, anyway), which means, drum roll please, that you cannot buy one of Exradia's special after-market radiation-reducing batteries for an iPhone.

On the face of it, Exradia's claims sound like poppycock.

Let's assume that cellphone radiation is bad for you. Well, that's a shame, because mobile phones depend for their operation upon the emission of that radiation. A phone that cannot emit pretty much exactly that same radiation is a phone that will not work. Wrapping your body in earthed flywire is the only option, if you insist on still using a mobile phone.

So I was interested to hear Exradia's explanation of what their "Angel™ batteries" (available for all major brands!) were actually supposed to be doing.

That explanation can be found here.

Apparently, "Exradia's Angel™ technology superimposes a random noisefield on the bio-effective man-made EMFs that are typically emitted by cell phones and most other digital wireless devices. With Angel™, the body (cells) detects only randomised signals that cannot trigger a cell's response and therefore cannot be harmful to cells."

I've heard much worse scientific word salad than that, but this still sounds like nonsense to me. Exactly how a battery is supposed to be changing the output waveform of the phone's radio at all is a pretty big stumbling block; does the battery have its own antenna? If it broadcasts random noise in the frequency range in which the phone operates, wouldn't the phone just turn up its own radio volume, if possible, to compensate?

I could go on, but I'm just speculating. The Exradia explanation isn't clear enough for anything better.

Exradia's "Bioeffects of EMF" page refers to a 2000 University of Washington study that found that microwave exposure fragmented DNA strands in the brains of rats. Apparently superimposing a random signal on that field was somewhat protective. Nobody else in the world has been able to replicate these results - quite the opposite, in fact - but that hasn't stopped vendors of various allegedly-noise-emitting anti-radiation talismans from cashing in.

Hunting more info on this subject led me to The EMX Biochip™, and that led me... straight back to Exradia, who're currently hit number 1 for "EMX Biochip" despite not having that string anywhere on their site. According to this page, Exradia bought "the EMX technology".

What, exactly, the EMX technology actually is will remain a mystery, even if you read Exradia's "Science Whitepaper" (PDF). Not the slightest clue is presented as to how a component in a phone battery can semi-randomise the radio output of a phone.

If the magic batteries don't have their own antennae, all they could possibly do is try to inject RF noise into the phone through the battery terminals, hoping that it'll make it through the circuitry to the antenna without interfering with anything or being eaten by other components (hint: that won't happen), or find some resonant component before the antenna that can be used as an aerial in the absence of a proper one.

But here I am again, speculating. I'm forced to it by the vast windy wasteland that is Exradia's explanation of what the hell they actually claim to be doing.

The Exradia technology page does go on to say "Angel™ has been proven to eliminate biological effects in all instances in which it has been tested in labratory research."

If you're now waving your hand in the air and saying "Ooh! Sir! Sir! I bet that research cannot be found anywhere on the Exradia site!", then you get an early mark.

Everybody else now has to read this post on the Quackometer blog, which points out that Exradia seem to be a pretty serious business entity (compare the late and not very much lamented Batterylife AG), but which also expresses mystification about how the heck the Exradia/EMX technology is even supposed to be able to do the job they say it does. Never mind whether the job needs to be done at all.

The Quackometer blogger, Andy Lewis, managed to read more of the EMX intro page than I did before his brain seized up. He discovered that the EMX "technology" actually, on that page at least, claims to be influencing not the high frequency radio output of the phone itself - which, I remind you, is what has most cellphone danger enthusiasts hot and bothered - but the low frequency output (way down in the audio range) of other electronics in the phone, and the low frequency modulation of the microwave output.

Andy then makes the obvious point that if low frequency EMR is the problem, just squelching the small amount of it that comes from mobile phones is completely meaningless - every urban human is bathed in low level, low frequency EMR for most of their lives.

(And yet, when you control for other risk factors, even people who live under power lines - let alone the rest of us with our TVs and computers and clock radios - don't seem to get any disease more often than other people.)

I was surprised about the whole low-frequency thing, because Exradia's tech page specifically says "cell phones and other digital wireless devices emit man-made EMFs...". If they were concerned about low frequency emissions, they wouldn't have said "digital wireless devices", which in this modern world all emit far more high frequency, gigahertz-range, radiation than anything else. And why would they have referred to that study of microwave effects on DNA if that wasn't their concern?

So it would appear, based on the incoherence of the arguments presented for it, that the Exradia Angel battery is as silly as the Q-Link pendant (which Andy mentions in passing).

It's not as obviously silly, and it does at least do something (power a phone). And I am grateful, don't get me wrong, for the fact that Exradia never use the word "quantum".

But the Angel battery's special reason for existing is questionable, its ability to achieve that goal is doubtful, and even the people whose motto is "we think everyone should have one" (of course you bloody do, you're bloody selling them) cannot explain what it is their product is even supposed to do.

[UPDATE: A few months after this post, Exradia ceased to be, joined the choir invisible, and screwed their creditors.]

Posted in Electricity, Scams, Science. Leave a Comment »

Ecowatts on the box

10 November 2007 — dan

Ben Goldacre's latest Guardian column says horrible, hurtful things about the upstanding individuals at free-energy company Ecowatts, whom I previously mentioned here, and who've now gotten themselves publicity on the BBC.

Staggeringly, it seems just barely possible that they may be full of shit.

I'll be disappointed if this really turns out to just be another "amazing discovery" that only appears so because someone didn't buy a good enough multimeter.

Posted in Scams, Science. Leave a Comment »

The cause and the cure

8 November 2007 — dan

Another outstanding piece of mystifying spam:

Join the Thousands of Americans GETTING OUT OF DEBT!

Be DEBT FREE in as little as 12 MONTHS.

Please visit the link below and get a free debt consultation today. NO OBLIGATION!

http://eurocasinobj.com/indexd.html

Euro. Casino. BJ?!

Why, that's exactly the sort of URL at which I'd expect to find sensible debt reduction advice!

If you go to the root of http://eurocasinobj.com/, you find exactly what you'd expect to find - a casino site offering you a no doubt completely kosher $555 Welcome Bonus as long as you run the SetupCasino.exe file they want you to download.

http://eurocasinobj.com/indexd.html, on the other hand, redirects to the similarly mystifying URL http://heroesthai.com/, which is a generic Web-2.0-looking "Goodbye Debt" site.

And which, of course, is probably also a big fat scam.

It's an example of the peculiar rule of thumb which states that people with little money are easier to scam out of that money than rich people. Actually, "debt elimination" scams take it even further - they screw money out of people who have less than no money to start with!

A search of the Federal Trade Commission's site for "unsecured debt" is enlightening.

Sometimes the scammers claim that they'll negotiate with creditors in some special magical way that a normal customer couldn't, accept payment for doing so, and then just don't do anything. Genius!

The more creative scammers come up with a line of bull akin to that spouted by "tax protesters". There are a bunch of peculiar arguments in this category. Generally, they all assert that widely-held assumptions - like, for instance, the notion that it is legal to lend money at interest, or that when a person borrows money he personally now owes it to the lender, or that civilian courts are not military courts - are not true.

These arguments also have in common the fact that not a one of them holds more water than a tea bag.

The FTC's actual advice to people who're knee deep in debt is also useful. They advise debtors to seek out cheap-to-free credit counselling, and specifically avoid one-size-fits-all expensive "debt reduction" outfits.

Especially the ones with weird URLs.

Posted in Scams, Spam. Leave a Comment »

A link-spam star

7 November 2007 — dan

Herewith, another of my half-ridicule, half-public-service posts about Lousy Spam Offers.

And yes, it's yet another link-trading deal, with the usual complete lack of any trace of relevance between the sites the spammer would like linked. But this one has some special extra garbage all its own!

From: john@antique-engagement-rings.info
Date: Tue, 6 Nov 2007 09:06:38 -0500
To: dan@dansdata.com
Subject: dansdata.com....Link Exchange Request + Free Software Worth $200

Hi,

We at Antique Engagement Rings (http://www.antique-engagement-rings.info) would like to exchange links with
http://www.dansdata.com.

We have already placed a link to your site and your link can be found here:
null [not linked to anything]
As you know link exchanging is an excellent way to increase your overall profile and strength within the Internet community.

As an added incentive I have arranged with one of our sister sites (who specialize in Internet Marketing) to GIVE you software worth over $200, just for swapping links!

Please go to this page here to add your link:
[link starting with http://antique-engagement-rings.info:8080 ; the server doesn't answer requests on that port]

If you do not want to receive any further emails from us please click on the link below:
Click Here [another useless antique-engagement-rings.info:8080... link]

Best Regards,
John
antique-engagement-rings.info.

PS Details of the f-ree software, worth $200, can be found here:

http://www.internet-marketing-sense.com/1-2-3-in-just-6-weeks/

This also includes a f-ree course on how to get your sites to positions 1,2 and 3 in just 6 weeks.

I had to tidy this up a bit, since "John" is a big fan of using the <br> element for formatting.

But that "f-ree software" must be a big winner, too.

As I write this, a Google search for "antique engagement rings" turns up antique-engagement-rings.info not as result 1, 2 or 3, as you'd expect if they were using their own "f-ree software" and it worked, but as result... nineteen (for separate words or the phrase "antique engagement rings"), despite the fact that this exact search is a perfect match for their domain name.

This, and antique-engagement-rings.info's PageRank of zero, could be in some way connected to the fact that their site is self-evidently useless.

Posted in Scams, Spam. 8 Comments »
« Older posts
Newer posts »