GoFuckYourself.com - Adult Webmaster Forum - View Single Post

raymor · 10-19-2011, 08:09 PM

Here's a simple technique that HAS worked well for the "gee honey, I don't know how this charge for midget porn got on our CC" chargebacks:

email the customer asking nicely about it if they haven't emailed you already.
Look in the Received header to get their IP.
Compare the IP from their email to their IP in Strongbox or similar.
If you see that the IP the emailed from is tne same as the IP they logged in from, you're gold.

Whois their IP. It's best if they logged in from work.

Knowing that they DID log in to the site, check the logs, or just the Strongbox report.

Send them a nice email, telling them not worry because you have identified the internet address of the person who some their card and used it to watch "babysitter footjobs" and "geeks take strapons in the ass".

Don't worry, you say, we've identified the thief as someone at ABC Widget Inc. Tomorrow morning we'll send all of the relevant server logs to the tech department at ABC so thet can look up the IP address to see which of their employees some your card and used it for porn. We'll also forward the IP address to the local PD so they prosecute the ABC employee who stole the card.

When the IP does match and you can name yheir employer like that, it normally takes about five minutes for them to remember that the ABC employee watching foot brutish videos was them. No need to contact the IT department, they say, it's all been a mistake. They'll gladly pay for that strapon video. They just forgot they had watched that at work.

The same approach can work naming their ISP if they only logged in from home, but of course work is much better.

Again, this applies only when the Strongbox or other reports show the IP is at least from the same company as they connection they used to email you.

10-19-2011, 08:09 PM
raymor Confirmed User Join Date: Oct 2002 Posts: 3,745	Here's a simple technique that HAS worked well for the "gee honey, I don't know how this charge for midget porn got on our CC" chargebacks: email the customer asking nicely about it if they haven't emailed you already. Look in the Received header to get their IP. Compare the IP from their email to their IP in Strongbox or similar. If you see that the IP the emailed from is tne same as the IP they logged in from, you're gold. Whois their IP. It's best if they logged in from work. Knowing that they DID log in to the site, check the logs, or just the Strongbox report. Send them a nice email, telling them not worry because you have identified the internet address of the person who some their card and used it to watch "babysitter footjobs" and "geeks take strapons in the ass". Don't worry, you say, we've identified the thief as someone at ABC Widget Inc. Tomorrow morning we'll send all of the relevant server logs to the tech department at ABC so thet can look up the IP address to see which of their employees some your card and used it for porn. We'll also forward the IP address to the local PD so they prosecute the ABC employee who stole the card. When the IP does match and you can name yheir employer like that, it normally takes about five minutes for them to remember that the ABC employee watching foot brutish videos was them. No need to contact the IT department, they say, it's all been a mistake. They'll gladly pay for that strapon video. They just forgot they had watched that at work. The same approach can work naming their ISP if they only logged in from home, but of course work is much better. Again, this applies only when the Strongbox or other reports show the IP is at least from the same company as they connection they used to email you. __________________ For historical display only. This information is not current: support@bettercgi.com ICQ 7208627 Strongbox - The next generation in site security Throttlebox - The next generation in bandwidth control Clonebox - Backup and disaster recovery on steroids