On 26/08/2014 18:15, Ned Turnbull wrote:
> Today, I got the second of my "official" Windows Support Calls,
> from an Indian-accented guy wanting me to download software because
> my machine has been 'sending them messages'.
>
> So, I went onto Linux (for safety), and did everything he asked.
> I kept him going for 33 minutes, until he finally started swearing
> at me (actually using the f word and saying he was going to f my
> mother, daughter, etc.).
>
> On Android, I recorded the entire call, from when he asked my
> name and address (yes, it was correct, so, we need to find out
> *where* they are getting that info) down to the names of the
> machines and files.
>
> Unfortunately, I recorded on a smartphone, using Android Voice
> Recorder, so, all I want to know is what's the best way to upload
> that file so that others can benefit.
>

I don't know whether this will work for you but, on my Nexus-10 Android
tablet, I installed an App called ES File Explorer - which is a bit like
Windows Explorer on a PC, and enables you to browse the file structure
and find files. I use an App called SmartVoiceRecorder, which has its
own folder in /local/sdcard [1] containing files named Record_xxxx.wav
for each recording (where xxxx is a sequential number). Android Voice
Recorder probably does something similar.

I can connect my tablet to a computer using USB, such that the tablet
appears to the computer as an external storage device. Using Windows
Explorer (or a better equivalent) I can then copy files to and fro - so
it is easy to copy one of these .WAV files to a PC.

YMMV but perhaps you can do something similar?

[1] There's no physical SD card, but the internal storage is described
thus for some reason best known to the designers of Android!
--
Cheers,
Roger
____________
Please reply to Newsgroup. Whilst email address is valid, it is seldom
checked.

On Tue, 26 Aug 2014 19:17:40 +0100, Roger Mills wrote:

> I can connect my tablet to a computer using USB, such that the tablet
> appears to the computer as an external storage device. Using Windows
> Explorer (or a better equivalent) I can then copy files to and fro - so
> it is easy to copy one of these .WAV files to a PC.

I should have been clearer.
I can get the file from Android to Linux.
But, how do I get it to the net so YOU can hear it?
I don't want to give away who I am so I can't use "my" IP address.
Especially after the f threats the guy gave me (remember he knew
my name and address and said he'd f' up my family).

While I don't think he'd go so far, I wouldn't want to be
so cocky that I don't do a bit of protection.

So, the question is mostly:
a) How do I get it from Linux to the net,
b) Without using "my" IP address.

Does Youtube take audio files (it's not a video)?

On Tue, 26 Aug 2014 19:17:40 +0100, Roger Mills wrote:

> I don't know whether this will work for you but, on my
> Nexus-10 Android tablet, I installed an App called
> ES File Explorer

I have ES File Explorer, but on Linux, I just plug in the
Android phone to a USB port, and I can access all the
phone folders, where I find the file under "Sounds"
and it's titled "Voice 001.amr".

On Linux, when I click on the AMR, up comes the audio
in my default video player.

I just need to remove my name and address (I'll try audacity),
and then I need to upload the file so you guys can hear it.

Two basic questions:
a. What FORMAT do you suggest I convert to (handbrake?)
b. How do I upload to the net so you can hear it?
c. I want to do that anonymously (of course).

Then I can post the URL in this thread.

Ned Turnbull writes:
> 1. What are they after? (yes, I know it's a scam, but, what?)

They want to install malware on your computer. It would add your
machine to a botnet and also search it for anything they might be able
to use such as passwords, bank account numbers, personal information
that they can use to open credit accounts with, etc. There is probably
a keylogger. They would also try to get you to give them credit card
numbers over the phone if they ever got that far. The malware would
also cripple your Windows installation and pop up crap urging you to
call them for more "help".

Yes, of course it's illegal. It's an attempt at criminal fraud, a
felony.
--
John Hasler
***@newsguy.com
Dancing Horse Hill
Elmwood, WI USA

Ned Turnbull <***@example.com> wrote:

>Today, I got the second of my "official" Windows Support Calls,
>from an Indian-accented guy wanting me to download software because
>my machine has been 'sending them messages'.
>
>...and did everything he asked.
>I kept him going for 33 minutes, until he finally started swearing
>at me (actually using the f word and saying he was going to f my
>mother, daughter, etc.).

Unless you enjoy messing with unknown people you would be wise to just
hang up. While he probably lives in India as you suggest, he may not.
And he might just be a kook that makes you his project. He knows your
phone number and you have no idea who he is. And I'll bet you're not
as anonymous on the net as you might think. I doubt you will save many
others from the scam with your recording since it is already pretty
well known.

Complain to your phone provider, demand that they trace the call and
block the numbers from that source. Send them a copy of the recording
as proof. If you don't get satisfaction, complain to Ofcom, again
including a copy of the transcript.

5 or so years ago, I emailed my mobile number to a friend. About 4
hours later I started to get porn text spams on it, and, since I knew
that I could trust my friend as he was a technical guy, I concluded
that someone was trawling emails as they crossed the web. I
complained to my phone provider, explaining my grounds for my
suspicions and demanding that they stop the spams, which they did
pretty quickly. There was also a regulatory support system that you
could complain to, and I followed it up there as well. I'm afraid I
can't remember the organisation, it may have been Ofcom, or it may
have been some intermediate authority or trade organisation, but there
definitely exists a method of complaint for things like this, which
you should be able find, as I originally did, by searching for it.

Nowadays, whenever I send anything like a password or phone number in
an email, I always mung it by putting dud characters in between the
meaningful characters, which seems to be enough to prevent the trawls
finding them.

On Tue, 26 Aug 2014 17:15:29 +0000 (UTC), Ned Turnbull
<***@example.com> wrote:
>
> On Android, I recorded the entire call, from when he asked my
> name and address (yes, it was correct, so, we need to find out
> *where* they are getting that info) down to the names of the
> machines and files.
>
> Unfortunately, I recorded on a smartphone, using Android Voice
> Recorder, so, all I want to know is what's the best way to upload
> that file so that others can benefit.
--
=========================================================
Please always reply to ng as the email in this post's
header does not exist. Or use a contact address at:
http://www.macfh.co.uk/JavaJive/JavaJive.html
http://www.macfh.co.uk/Macfarlane/Macfarlane.html

Ned Turnbull wrote:

> 4. Is this illegal enough to call the police?
>
> Lastly:
> 5. How best do I upload that file, so you can hear it?
>

4. That would assume your local police have the ability to do something
about a person/outfit in another country.

5. Waste of time.


--
...winston
msft mvp consumer apps

Ned Turnbull <***@example.com> wrote

> Today, I got the second of my "official" Windows Support Calls,

I've had dozens of them.

> from an Indian-accented guy wanting me to download software
> because my machine has been 'sending them messages'.

> So, I went onto Linux (for safety), and did everything he asked.
> I kept him going for 33 minutes, until he finally started swearing
> at me (actually using the f word and saying he was going to f my
> mother, daughter, etc.).

> On Android, I recorded the entire call, from when he asked my
> name and address (yes, it was correct, so, we need to find out
> *where* they are getting that info) down to the names of the
> machines and files.

> Unfortunately, I recorded on a smartphone, using Android Voice
> Recorder, so, all I want to know is what's the best way to upload
> that file so that others can benefit.

> Mainly, we want to:
> a) Warn others
> b) Come up with valid answers so that we waste their time

> For example, they had me go to the web site:
> www (dot) windowscare (dot) us
> Which brought me to:
> http:// www (dot) windowscare (dot) us/microsoft.com/

> And download a file, which actually came from:
> www (dot) ammyy (dot) com

> Which downloaded the 764KB file, named:
> 764184 Aug 26 09:28 AA_v3.exe

> Which, a "file" command on Linux says is:
> AA_v3.exe: PE32 executable (GUI) Intel 80386, for MS Windows

> I was supposed to click on that file and then hit Run,
> and then give him the 8-digit number starting with 39
> that comes out of it.

> Of course, I did everything on Linux, so, nothing happened,
> but, I gave him a false number for a few times, and he caught
> that. At first, he didn't get mad, and he had me close down
> and start up Windows in safe mode (which I had to find a
> Windows machine to do that so that it made the right noises).

> Hint to self: Remind me to record windows noises on Linux for
> the next call that comes in.

> In safe mode, he had me go to the logmeinrescue web site:
> https://secure (dot) logmeinrescue (dot) com/Customer/Code.aspx

> Where he told me to type in this 6-digit code 106536.
> https://secure (dot) logmeinrescue (dot)
> com/Customer/TrialWarning.aspx?code=106536

> Interestingly, the site said specifically *not* go enter a
> number given by an unsolicited technical support person, but,
> of course, I was running on Linux so I didn't worry (but I did
> mention that to the guy, and he glossed over it, heh heh).

> That downloaded the file:
> 1529152 Aug 26 09:51 Support-LogMeInRescue.exe
> Which the Linux "file" command reports as:
> Support-LogMeInRescue.exe: PE32 executable (GUI) Intel 80386, for MS
> Windows

> At this point, there was another tirade with the f word, as
> he had invested nearly a half hour in me, and I couldn't
> tell him what I saw.

> He was looking for a client window session of some sort.

> Anyway, I have a few questions:
> 1. What are they after? (yes, I know it's a scam, but, what?)

Money. A mate of mine has just gone even further than
you did and eventually got an address to send money
to using Western Union.

> 2. What's a "valid" 8-digit number starting with 39?
> 3. What "should" I have seen (so I can get more info from them)?
> 4. Is this illegal enough to call the police?

That varys with the jurisdiction, but yes, usually.

Not that they will take any action in yours or my mates case
tho, they have better things to do with their time and they
know about these operations already.

> Lastly:
> 5. How best do I upload that file, so you can hear it?

Just put it on dropbox or wherever is convenient for you.

On Tue, 26 Aug 2014 13:40:26 -0500, John Hasler wrote:

> They want to install malware on your computer.

I think the first web site was that attempt, and the
second web site was an attempt to log into my computer
directly, since I wasn't seeing what he expected me to
see.

Anyway, the problem now is only how to blank out my
name and address from the recording, before I email it
to Marek to upload (or someone gives me an anonymous
way to upload a 3MB audio file).

Anyway, I have the name selected in Audacity:
http://oi62.tinypic.com/30bgrd4.jpg

But, how do I beep it out?

On Wed, 27 Aug 2014 05:44:27 +1000, Rod Speed wrote:

> Just put it on dropbox or wherever is convenient for you.

I'm going to email it to Marek, but first I am trying
to beep out my name and address.

I have done the following so far in Audacity:
0. File->Open->windows_technical_support_phone_scam.amr
1. I hit the "Play" button.
2. I hit the pause button at point a (my name is mentioned there)
3. Edit->Select->Left at Playback Position
4. I hit the "Play" button.
5. I hit the pause button at point b (where I say "yes").
6. ????

Now what do I do in Audacity to beep out the selected area?

On Tue, 26 Aug 2014 17:15:29 +0000, Ned Turnbull wrote:

> Today, I got the second of my "official" Windows Support Calls,
> from an Indian-accented guy wanting me to download software because my
> machine has been 'sending them messages'.
>
> So, I went onto Linux (for safety), and did everything he asked.
> I kept him going for 33 minutes, until he finally started swearing at me
> (actually using the f word and saying he was going to f my mother,
> daughter, etc.).

I'd ask if you have a daughter, but the odds of you having one are
probably somewhere north of 70%, as they are for all people with at least
two children (assuming you have at least two).

> On Android, I recorded the entire call, from when he asked my name and
> address (yes, it was correct, so, we need to find out *where* they are
> getting that info) down to the names of the machines and files.

Do you have an account on any one of the myriad Web-2.0 sites that got
cracked in the last few years? That's a rhetorical question, if you have
any account anywhere, data on you has been pilfered at least once. These
things are then cross-referenced, compiled, cut up into chunks and sold
on the market.

As an illustration, my e-mail was on one of those lists and I have been
getting spam for years. Then one day, the spammers closed shop, but
before they went into the night, they sent one last spam message
advertising the sale of their spam list. To the people they were spamming.
Sure enough, a little while later, several new and different types of spam
messages began ariving - a clear signal at least one sale had been closed
and cleared.

> [snip]
>
> Mainly, we want to:
> a) Warn others b) Come up with valid answers so that we waste their time

*WE* want to? I thought you were in this alone.

> [snip]
>
> Which downloaded the 764KB file, named:
> 764184 Aug 26 09:28 AA_v3.exe

You should really post three things with these names: (1) the size in
bytes, (2) MD5 checksum and (3) SHA1 checksum. With those three
datapoints, the file can be quickly and easily identified.

> [snip]
>
> He was looking for a client window session of some sort.
>
> Anyway, I have a few questions:
> 1. What are they after? (yes, I know it's a scam, but, what?)

The most difficult question to answer. I principle, it depends on what
you have and they may want.

The usual answers boil down to money access, usually via credit cards.
Other than that, there exist options for direct monetary gain using other
methods. For example, extortion. They film you doing something private
and ask for money in return for not publishing it.

The most interesting option revolves around your work. Maybe you work in
a high-profile business? Maybe you are some kind of a manager or exec or
have access (and store on your computer) managerial or exec-ial
documents? Of paticular interest are various top secret documents like
the *ACTUAL* balance sheet and not the crap spoonfed to shareholders.
Failing that, maybe you work with non-public technology? Are you a
developer who uses the same laptop for work and leisure?

Maybe they just want to install a "presence" software, to be used at same
later date, if the circumstances call for it. Maybe they market
themselves as "intel-brokers", maybe an industrial espionage business.
Then, if they get a request for your company, they activate the software
to snatch up the target stuff, and deliver the goods to the customer.

It's really hard to tell, there are just too many options.

> 2. What's a "valid" 8-digit number starting with 39?

Maybe 39 is a country code of some kind? Maybe the number is a serial
number, or some kind of an identifier? BIOS version? Who knows, the
modern PC is a network of many, many computers and any one of those may
be a target.

> 3. What "should" I have seen (so I can get more info from them)?

If you really want to know, run the program and see for yourself. Just
make sure you do it properly (virtual machines and all that). The only
way someone here would know is if they themselves ran the program and
somehow remember what the output looked like.

Also, are you *expecting* a third call from them? Are you a honeypot? :)

> 4. Is this illegal enough to call the police?

Always worry about your own ass first. What you should really be asking
yourself is if what YOU are doing is illegal enough in your jurisdiction
that your own police would rather deal with you that with the actual
criminals. Remember, this is not your fathers police anymore (see:
Ferguson. Doesn't matter if you are not living is USA, its similar in
other parts of the world as well).

What they are doing is enough to get them in trouble but (IANAL) not
enough trouble that they would end up in jail. Remember - they didn't get
anything out from you which means they never actually scammed you which
means they never committed a crime. They only tried to. ;)

> [snip]

On Tue, 26 Aug 2014 17:15:29 +0000 (UTC), Ned Turnbull
<***@example.com> wrote:

>Today, I got the second of my "official" Windows Support Calls,
>from an Indian-accented guy wanting me to download software because
>my machine has been 'sending them messages'.
>
>So, I went onto Linux (for safety), and did everything he asked.
>I kept him going for 33 minutes, until he finally started swearing

You are a very bad man and a cruel, cruel person.
And thank you for occupying the shit so he could not during that time
waste the time of any other person. Your devotion to your fellow
creatures is both appreciated and inspiring.

>at me (actually using the f word and saying he was going to f my
>mother, daughter, etc.).

Personally, I would have encouraged him. And my wife. Maybe my female
dog, too.
One is ashes floating down a river, one is ashes buried, and two are
slowly becoming soil. If an arsewipe wants to do any or all of them,
he is very welcome to drown, suffocate or whatever while doing so.


>
>On Android, I recorded the entire call, from when he asked my
>name and address (yes, it was correct, so, we need to find out
>*where* they are getting that info) down to the names of the
>machines and files.

Face/Twit? Online registration of your boxes for continued support?
Online purchases? There are many, many ways some of which involve
crooked employees sending the BadGuys a few million files for the
price of a beer.
Find out where your details have *EVER* been stored by a third party
and see if they have been hacked.


>
>Unfortunately, I recorded on a smartphone, using Android Voice
>Recorder, so, all I want to know is what's the best way to upload
>that file so that others can benefit.

whocallsme.co.uk might be useful for a first look if you have his
telephone number. Other sites like this are available.

This CNet article may help:

http://www.cnet.com/how-to/how-to-record-phone-calls/?tag=nl.e497&s_cid=e497&ttag=e497&ftag=CAD5920658


>
>Mainly, we want to:
>a) Warn others
>b) Come up with valid answers so that we waste their time

Try the archives of the USENet newsgroup alt.callahans for inventive
and amusing anecdotes about this fun activity. Also the "whocallsme"
pages. And the Mac newsgroups. Some of them are wonderful.


>
>For example, they had me go to the web site:
> www (dot) windowscare (dot) us
>Which brought me to:
> http:// www (dot) windowscare (dot) us/microsoft.com/
>
>And download a file, which actually came from:
> www (dot) ammyy (dot) com
>
>Which downloaded the 764KB file, named:
> 764184 Aug 26 09:28 AA_v3.exe
>
>Which, a "file" command on Linux says is:
> AA_v3.exe: PE32 executable (GUI) Intel 80386, for MS Windows
>
>I was supposed to click on that file and then hit Run,
>and then give him the 8-digit number starting with 39
>that comes out of it.
>
>Of course, I did everything on Linux, so, nothing happened,
>but, I gave him a false number for a few times, and he caught
>that. At first, he didn't get mad, and he had me close down
>and start up Windows in safe mode (which I had to find a Windows
>machine to do that so that it made the right noises).
>
>Hint to self: Remind me to record windows noises on Linux for
>the next call that comes in.

You could just record them on your phone using the article provided
above.

>
>In safe mode, he had me go to the logmeinrescue web site:
>https://secure (dot) logmeinrescue (dot) com/Customer/Code.aspx
>
>Where he told me to type in this 6-digit code 106536.
>https://secure (dot) logmeinrescue (dot) com/Customer/TrialWarning.aspx?code=106536
>
>Interestingly, the site said specifically *not* go enter a
>number given by an unsolicited technical support person, but,
>of course, I was running on Linux so I didn't worry (but I did
>mention that to the guy, and he glossed over it, heh heh).
>
>That downloaded the file:
> 1529152 Aug 26 09:51 Support-LogMeInRescue.exe
>Which the Linux "file" command reports as:
> Support-LogMeInRescue.exe: PE32 executable (GUI) Intel 80386, for MS Windows
>
>At this point, there was another tirade with the f word, as
>he had invested nearly a half hour in me, and I couldn't
>tell him what I saw.
>
>He was looking for a client window session of some sort.
>
>Anyway, I have a few questions:
>1. What are they after? (yes, I know it's a scam, but, what?)

Control of your box. He had a Logmein session running and was waiting
for you to use yours to "invite" him into your machine. Then he could
rummage around, plant ransomware, steal stuff and leave a zombie.
He would have control of your box *forever* pretty much.
From it, he could possibly beaver away at sucking in anything else
you have on a home network.
But the best instant prize would be your banking details if you use a
browser to do online banking. Prising open your bank accounts would be
nice, especially if his BadGuys created a new-account transfer to be
run as soon as you were paid and left everything else pretty much
alone until then.
Oh, dear, I can think like a crook ...


>2. What's a "valid" 8-digit number starting with 39?

Their "I'm-inviting-you-in" code from the original program. It's
specific to that program and is otherwise nonsense.
Like the Logmein code needed for a remote control session to work.


>3. What "should" I have seen (so I can get more info from them)?

Your cursor moving about for a while. Event Viewer opening and loads
of red error messages to terrify you into compliance. The red messages
slowly being "worked on" so you trust the evil little bastard.
Further "cleaning" of temporary files, caches and other crap that
truly has no effect on your machine but he would show you before and
after free-space numbers to explain how much space he had saved.
General housekeeping that a fucking *pigeon* could do but that isn't
worth bothering with most of the time.
Then he would freeze your side of the session on a good view and hack
away for a while.


>4. Is this illegal enough to call the police?

Yes but only if you think there's a chance of annoying the verminous
shite and his bosses. Especially the bosses.

>
>Lastly:
>5. How best do I upload that file, so you can hear it?

Dropbox would probably work for most.
4Shared.com or other online sites are available.
Use a favoured search engine for "online storage", "file upload" or
"share file".
If it's in any recognisable *nixxy format VLC for Windows will
probably play it for us.

http://forums.cnet.com/7723-6122_102-625394/computer-consultant-fraud-phoned-my-mom/?tag=nl.e497&s_cid=e497&ttag=e497&ftag=CAD5920658
might be worthwhile posting the linkie to the dropboxeed file on
there. And here.
Don't send the file itself to USENet. Not unless you send it to
alt.binaries.soundfiles or some other binaries group and send us a
linkie to the message-id.
hth,
J.

On 8/26/14, 1:15 PM, Ned Turnbull wrote:
> Today, I got the second of my "official" Windows Support Calls,
> from an Indian-accented guy wanting me to download software because
> my machine has been 'sending them messages'.
>
> So, I went onto Linux (for safety), and did everything he asked.
> I kept him going for 33 minutes, until he finally started swearing
> at me (actually using the f word and saying he was going to f my
> mother, daughter, etc.).
>
>
> Of course, I did everything on Linux, so, nothing happened,
> but, I gave him a false number for a few times, and he caught
> that. At first, he didn't get mad, and he had me close down
> and start up Windows in safe mode (which I had to find a Windows
> machine to do that so that it made the right noises).

Download VirtualBox. I can make you an image of a basic Windows 7
installation if you want.

>
> Anyway, I have a few questions:
> 1. What are they after? (yes, I know it's a scam, but, what?)
> 2. What's a "valid" 8-digit number starting with 39?
> 3. What "should" I have seen (so I can get more info from them)?
> 4. Is this illegal enough to call the police?

I don't know if you're in the US, but in my state it is illegal to
record phone calls, even if one party knows the call is being recorded.
I shit you not. Even if it is legal in one state, it falls under
federal wiretapping laws - this is what got Linda Tripp in trouble.

>
> Lastly:
> 5. How best do I upload that file, so you can hear it?
>

I'm very interested in hearing the conversation, BUT...
Make sure you edit out your name - even your first name. Maybe upload
to a public proxy - nothing that can link you to what may be a federal
crime - wiretapping (see above).
These laws are stupid, outdated and get plenty of innocent people in
major trouble.

If offshore, then hitting these cockroaches is next to impossible but
the criminal could also be your next door neighbour. I've had a few of
these very calls in the last few months, when I threw a curve at one of
them the halflife was audibly consulting with a supervisor before
abruptly hanging up. I now have a prepaid bank card that is worth only
what I put on it the night before via the bank web site, they got my
'credit' for $4000 and then another $800 last year, barely got out of
that one. Change your card to prepaid, or leave the bank.

On Tue, 26 Aug 2014 15:48:30 -0500, Marek Novotny wrote:

> Sure, my email address is shown in the header, but I rarely check it.
> Let me know if you send it. And yes, I will keep your email address
> private.

Hi Marek,
I have emailed you the 33-minute 3GB file in M4a format (aka MP4).
The only edits were to tone out my name and address near the beginning.

Of course, please do keep my email address private, but I do
thank you for volunteering to post the file for others to observe.

The threats against me and my entire family (individually and collectively)
start at about time point 21minutes and 30 seconds, and they continue,
unabated, until time point 23:50.

Miraculously, I am able to calm the guy down, and, I guess, since he
had already spent more than 20 minutes trying to reel me in, he
continued, calmly at first, to try to get me to allow him to log
into my machine remotely.

I couldn't hold him off with my lies (about what the numbers were that
were showing up on the screen, because I never executed his file and
never left Linux except to find a Windows machine to make the rebooting
sounds), so, finally, at almost the end of the 30 minute call, he
renewed his threats against me and my entire family at time point 32:24,
to time 33:29, at which time, he apparently hung up on me.

I never hung up until I got the dial tone, but, I sincerely believe
he was threatening me, as his voice level was so high that his middle
Indian accent even cracked a bit, and he uttered something in a foreign
language around the 32-minute time point.

I think he was frustrated that he *thought* he had a fish, but the
fish just wouldn't cooperate. :)

Please keep my email and name private when you post the audio, but,
let us know here what the URL is when you do post it.

Thanks,
Ned

On Wed, 27 Aug 2014 00:08:32 +0000, Ned Turnbull wrote:

> Hi Marek,
> I have emailed you the 33-minute 3GB file in M4a format (aka MP4).
> The only edits were to tone out my name and address near the beginning.

Hi Marek,
The email to you bounced.

Delivery to the following recipient failed permanently:
***@marspolar.com
Technical details of permanent failure:
Message rejected.
.................

I will try just sending you an email, without an attachment.
Please reply back, and we can figure out why your mail bounced.

Otherwise, if someone can give me an address where I can upload
it using Tor, I will try that.

Most sites hate Tor, and all the Tor exit nodes are well known,
so, it needs to be a site that *works* with Tor though.

Ned

On Tue, 26 Aug 2014 17:15:29 +0000, Ned Turnbull wrote:

> Today, I got the second of my "official" Windows Support Calls,
> from an Indian-accented guy wanting me to download software because my
> machine has been 'sending them messages'.
>
> So, I went onto Linux (for safety), and did everything he asked.
> I kept him going for 33 minutes, until he finally started swearing at me
> (actually using the f word and saying he was going to f my mother,
> daughter, etc.).
>
> On Android, I recorded the entire call, from when he asked my name and
> address (yes, it was correct, so, we need to find out *where* they are
> getting that info) down to the names of the machines and files.

Well, that is an easy one, Android/google is fact the 1000 times worse in
terms of spyware and big brother activity.
That starts with buying an android phone, at least my one -Samsung- is
packed with spyware crap I cannot even remove from MY phone!
1000 times it "ASK" my if it may record and use ALL my movements (GPS)
see and link ALL my contacts and the contacts of my contacts, my phone
number and the state of my phone on certain moments.
In Play/google the vast majority of apps, REQUIRE access to all kind of
things which is of no concern for such app at all.
Note that these are apps validated by google! Even if you may find one or
two apps that do not immediately require your credit card data and so on,
IT CAN CHANGE THAT WITHOUT ASKING YOU ANYTHING IN THE FIRST AUTOMATED
UPDATE!.
So much for privacy in combination with android, now you know why you
must not be surprised all your privet -android- data is available many.
I recently bought my first android phone and was shocked to see the
"requirements" of all those app that everyone seems to use without
reading anything and even more that I could not even remove software that
I do not want!

Maybe it is just me.

Edmund

On Tue, 26 Aug 2014 17:15:29 +0000, Ned Turnbull wrote:

> Today, I got the second of my "official" Windows Support Calls,
> from an Indian-accented guy wanting me to download software because my
> machine has been 'sending them messages'.
>
This scam is well known and I had to deal with it on someone's machine. In
that case they had installed software requiring a password to log on. The
person had previously been getting phone calls asking for money. She swore
she hadn't done anything to let them get access to her machine but she had
to have done something. Password crackers didn't work so after recovering
the few personal files she had using my trusty Puppy Linux boot stick, I
reinstalled her system.

I assume the phone call is random but I'm not sure what they do after
that, have the victim type in a url. Problem with that is a lot of the
people I deal with would have trouble doing that. Anyway, I'm sure like
any scam, they get enough victims to make it worth while.