Surplus and Adventure Sticky?

[Pandabean]

Only a static IP address, many of us don't have them.

I thought that was how they used to catch and ban spammers?

[Shewie]

Only a static IP address, many of us don't have them.

The ISP address will do, we all have those

[Ahjno]

I thought that was how they used to catch and ban spammers?

Spammers are usually caught by us with aid of SpiSe - unless they're reported by members.

[andythecelt]

A few points to keep in mind.
1. I have been lied to repeatedly by people working for this company and I'm not the only member here who has been. It makes me take anything said by any of their staff with a pinch of salt, rightly or wrongly.
2. Why on earth would a hacker bother to go to all that trouble just to give me a bit of lip? It's just not logical.
3. I've still not received any response to my (admittedly slightly tongue in cheek, see point 1 above) request that my issues with the company be dealt with here in public and not in private. In fact the only response I received was from the 'hacker'. That really is a remarkable coincidence.

Can I have my money back now please?

[rik_uk3]

The ISP address will do, we all have those

Not if you use a proxy server I thought? Handy to have for accessing some US sites that don't stream to the UK.

[Wayland]

What the **** is your problem, I would have thought any way of getting complaints dealt with quickly would be welcomed! If you can't be assed to send a PM then don't complain!

That sort of attitude seems to be exactly the problem.

Hi,
I don't know what's going on here but I was told there were some replies to this thread supposedly posted by me. I have just had a look and can say with certainty that I have not posted anything since my original posts where I offered to try and sort out problems.
Anyone who knows me would know that I very rarely swear, and would not do so on a public forum!
I would not post my email address.
And if I were to swear I would get the spelling correct 'assed' instead of a***d, (I put the *** in so technically haven't sworn).
Someone must have hacked my account or found my password, I had to request a new one when I logged in this time, as it had been changed!
I would appreciate it if the moderator would remove the offensive posts.
I would also like to reiterate my offer to deal with any complaints if members are unable to resolve any problems by phone or email. The company, Surplus and Adventure, realise they need to improve their complaints procedures and offering help through the forum is part of their efforts to do so!
Pete.

I'm sure you would like to remove your post now as it illustrates precisely the type of response that many members have reported from your company.

As I said in my first post, I think it is time to make this thread sticky to protect our members from such appalling business practices.

[Tony]

ok all, let's calm down a bit till we've sorted this out a little, there's no point having more fuel added to the fire, enough has been said already.

[Martyn]

The ISP address will do, we all have those

It's of mixed benefit Rich. Tracking someones IP is only really any use if they use a service provider who issues unique IP's on each login. With ADSL it can be helpful as people often dont reboot their router for months, even years. But some turn it off every day, which results in huge long lists of IP addresses, each of which get dynamically reallocated to other users of the same ISP. Also, some ISP's like AOL use a proxy server and route all their customers through that, making it impossible to track an individual back further than the proxy without the help of AOL itself. Also people who use dialups have a different IP on each connect. Again these IP's get reallocated to others and are used dynamically, meaning you often see the same IP allocated to completely different individuals who just happen to be using the same service provider. Sometimes you can proves things, but it's rare. More often you just get circumstantial evidence which supports a suspicion, which is all that is needed usually. Sometimes you get nothing to go on at all. It all depends on the type of connection and the service provider being used.

One thing I would say, is that in over 10 years of being a vbulletin admin, I have never known a genuine example of an account being brute-force hacked. Sometimes an individual may use a computer in a library, cafe or university and forget to log out, then another person clicks on a link in the browser history and gets logged in by the active cookie - but in this example, I think it's unlikely that the person used a library computer, if they are a web administrator, then they usually know to log out of such machines anyway. The person is using a domain email address, which means they either have domain control or an allocated email address from someone who has domain control - meaning they are authorised one way or the other. It's possible that the account on here was accessed on an office or shop computer and then left open and another employee wrote the messages, but that's not much better.

In short, it's almost unheard of to have a vbulletin account brute-forced hacked, so that's out. It's possible a public computer was used and the user forgot to log out, but I doubt it (and an IP search would reveal the use of libraries/cafes/universities etc as they do use static IP's). It's possible a work computer was used and another employee made the comments - but I doubt it, why would they? The issue of "dont phone the shop, contact me directly" makes me smell a rat too. As Ged said earlier, that's not how companies do things. Web developers dont suddenly become complaints handlers (unless the owner, web developer and complaints handler are all one person). Lastly, the comments made in this thread are consistent with the history of the company and the numerous complaints made about their customer service and people skills. Conjecture mostly, draw your own conclusions, I've drawn mine.

[hedgerowpete]

It's of mixed benefit Rich. Tracking someones IP is only really any use if they use a service provider who issues unique IP's on each login. With ADSL it can be helpful as people often dont reboot their router for months, even years. But some turn it off every day, which results in huge long lists of IP addresses, each of which get dynamically reallocated to other users of the same ISP. Also, some ISP's like AOL use a proxy server and route all their customers through that, making it impossible to track an individual back further than the proxy without the help of AOL itself. Also people who use dialups have a different IP on each connect. Again these IP's get reallocated to others and are used dynamically, meaning you often see the same IP allocated to completely different individuals who just happen to be using the same service provider. Sometimes you can proves things, but it's rare. More often you just get circumstantial evidence which supports a suspicion, which is all that is needed usually. Sometimes you get nothing to go on at all. It all depends on the type of connection and the service provider being used.

One thing I would say, is that in over 10 years of being a vbulletin admin, I have never known a genuine example of an account being brute-force hacked. Sometimes an individual may use a computer in a library, cafe or university and forget to log out, then another person clicks on a link in the browser history and gets logged in by the active cookie - but in this example, I think it's unlikely that the person used a library computer, if they are a web administrator, then they usually know to log out of such machines anyway. The person is using a domain email address, which means they either have domain control or an allocated email address from someone who has domain control - meaning they are authorised one way or the other. It's possible that the account on here was accessed on an office or shop computer and then left open and another employee wrote the messages, but that's not much better.

In short, it's almost unheard of to have a vbulletin account brute-forced hacked, so that's out. It's possible a public computer was used and the user forgot to log out, but I doubt it (and an IP search would reveal the use of libraries/cafes/universities etc as they do use static IP's). It's possible a work computer was used and another employee made the comments - but I doubt it, why would they? The issue of "dont phone the shop, contact me directly" makes me smell a rat too. As Ged said earlier, that's not how companies do things. Web developers dont suddenly become complaints handlers (unless the owner, web developer and complaints handler are all one person). Lastly, the comments made in this thread are consistent with the history of the company and the numerous complaints made about their customer service and people skills. Conjecture mostly, draw your own conclusions, I've drawn mine.

i had to get my YOUNG son to translate this into english, lol
after reading the whole thread it does seam to sound like several companies i have heard about from several industries with questionable ethics. I come from a bee keeping forum and there is one person who has set up 4 companies one after another after each one fails, it does seem to be getting quite common, poor quality internet based services. shame realy as it does put one off from using this or other companies like them

[Martyn]

i had to get my YOUNG son to translate this into english, lol

Sorry, what it basically says is I think our web developer is telling fibbs.

Forum accounts almost never actually get hacked. It's a very difficult thing to do, that requires a lot of time and effort from a determined and technically knowledgeable individual. Which begs the question, why would they bother? Accounts that get compromised are almost always a result of carelessness - not logging out after using a public or office computer. If someone else at surplus and adventure made these comments, you again have to ask why would they? They would risk getting sacked for the bad PR. Which leaves public computers, libraries, universities and the like. If none of the IP's resolve to such, then the only other possibility, is our man is telling fibbs.

[ArmySurplusUK]

You're a webdeveloper ... Would think you have some feeling for anything digital / computertechie ... Same goes for a save password ...

I'll look into it.

Can you tell me what IP address was found?

[calibanzwei]

It is even worth following up? General consensus is that either;
a/ you're a 'representative' of a negatively thought of company (not surprising regarding the stories told within this thread and your own attitude)
b/ a 'faker', trying to obtain client details by saying you're a/
c/ someone who has 'hacked' this account or either a/ or b/
d/ some combination of the above

Lock teh thread ;D

[dwardo]

ok all, let's calm down a bit till we've sorted this out a little, there's no point having more fuel added to the fire, enough has been said already.

Just incase this was missed.........

[Corso]

It is even worth following up? General consensus is that either;
a/ you're a 'representative' of a negatively thought of company (not surprising regarding the stories told within this thread and your own attitude)
b/ a 'faker', trying to obtain client details by saying you're a/
c/ someone who has 'hacked' this account or either a/ or b/
d/ some combination of the above

Lock teh thread ;D

hmmm what he said.

[Seoras]

Ok folks

I have deleted two posts that contain links to hacking forums. Until I speak with Admin they will stay that way.

Re the last few posts about calming down - Please do it.

Cheers

George

[Tony]

It's very interesting that this thread has gone from issues with Surplus & Adventure to issues with bcuk, especially since we don't really have any, any system can be hacked but bcuk has not been, especially your account, it seems to me though that just to make sure we'll just make it completely unable to do anything so that any hacker gets bored, or maybe we should just delete it and have done.

Looking at the first IP's they were via 'threembb.co.uk' which is likely a mobile device of some sort, now I'd imagine that your mobile is less secure than bcuk so that's probably the first place to look.

I'll leave this thread open for now so that the actual issue of sorting out peoples purchases can be accomplished, if there's any more talk of someone else did this or that, the sites been hacked, etc etc, I'll ban the account, ban the IP's and do all the other stuff I can do and leave this for everyone to read including google.

Everyone, please now keep to the issue of items that need refunding, replacing etc and do not wander off anywhere else, I really have had enough of this one, thanks.

[ArmySurplusUK]

Thank you, I quite agree, the thread should be about customer problems and as I said when I first posted on the forum my offer is still there for any customer who is unable to resolve his or her complaint by phone or email.
I was going to suggest that a friend (someone I was at university with, who now runs an Internet security company) might take a look at the forums defences, but as you say why would anyone want to hack the forum. There is another possible way that the posts were made but let's get back to the original purpose of the thread!

If you can't say something good about someone, don't say anything at all

.

[mrcharly]

I was going to suggest that a friend (someone I was at university with, who now runs an Internet security company) might take a look at the forums defences, but as you say why would anyone want to hack the forum.
.

If I were the forum owner, no way would I let a random stranger, recommended by another stranger "take a look at the forum's defences".
If there was a problem with the forum defences, then we would be seeing problems with more than one person's account.

The fact that this has not happened suggests that the problem you have had must be entirely down to problems at your end.

[Martyn]

If I were the forum owner, no way would I let a random stranger, recommended by another stranger "take a look at the forum's defences".
If there was a problem with the forum defences, then we would be seeing problems with more than one person's account.

The fact that this has not happened suggests that the problem you have had must be entirely down to problems at your end.

The forum hasn't been hacked, it's BS.

[Martyn]

Thank you, I quite agree, the thread should be about customer problems and as I said when I first posted on the forum my offer is still there for any customer who is unable to resolve his or her complaint by phone or email.
I was going to suggest that a friend (someone I was at university with, who now runs an Internet security company) might take a look at the forums defences, but as you say why would anyone want to hack the forum. There is another possible way that the posts were made but let's get back to the original purpose of the thread!
.

Mate, if you want to move forward, then I would stop trying to blame forum security issues for the ill-advised comments either you, someone in your house or in your office made earlier in this thread. It's obviously BS and it's just irritating. A simple apology would have bought more grace. A wise man once said, if you find yourself in a hole, stop digging.

[Tony]

Thank you, I quite agree, the thread should be about customer problems and as I said when I first posted on the forum my offer is still there for any customer who is unable to resolve his or her complaint by phone or email.
I was going to suggest that a friend (someone I was at university with, who now runs an Internet security company) might take a look at the forums defences, but as you say why would anyone want to hack the forum. There is another possible way that the posts were made but let's get back to the original purpose of the thread!
.

Ok, obviously you've missed something here, Shelly suggests that You obviously don't get what I'm saying to I should inculcate rather than go with my immediate reaction of just banning you, I'll highlight the key bits just one more time of the post made right before yours.

Tony, the site Admin and owner says:
I'll leave this thread open for now so that the actual issue of sorting out peoples purchases can be accomplished, if there's any more talk of someone else did this or that, the sites been hacked, etc etc, I'll ban the account, ban the IP's and do all the other stuff I can do and leave this for everyone to read including google.

Everyone, please now keep to the issue of items that need refunding, replacing etc and do not wander off anywhere else, I really have had enough of this one, thanks.

[Astral]

I am being left in total frustration by this company. Today is day 7 of constant calling and still not one reply to any of my email. (Except the one about a payment issue I had at the start. Funny how that was rectified in under an hour!!!) This company is a ruse, they lie about what they have in stock, they take your money and then they just ignore you. One of my items was a birthday present for my dad and as I'm a student I have very little money and couldn't afford to buy another one that would actually arrive in time. So on my dads birthday I had to explain why there was no gift and how I can't even contact them to ask when and if it will turn up! I am so angry I made the mistake of using this joke of a store.

[Astral]

I have had appalling service from this company. I had to track the guy down just to get somebody to email me a response to the complaint I've had for weeks now!! I have now been told in a rather offensive email that totally ignored every complaint and request for an answer I made. They "think" they "might" get a delivery from their supplier next week with my item and then "might" be able to send out the order I paid for a 3-5 day delivery on. I am so angry at the terrible way I have been treated. The staff are rude (If you do ever get through on the phone) and uncaring, hanging up to get rid of you. I have never had a worse customer experience in my life and I'm now gathering evidence for my complaint with trading standards.

Honestly I didn't think a business could exist run so badly! It beggars belief these rouges! To anyone who may be thinking of using them. DO NOT RISK IT!

[Astral]

Just to update people on what kind of service you can expect from this company. I have just gotten through on the phone after a week and a half of trying and asked to speak to a manager. I was informed nobody was in charge today and to ring back tomorrow... to which I stated after taking this long to get through I want to have my complaint heard today, I was upfront and honest about how I am recording everything for my dispute with trading standards and was advised to record all correspondence, this included the phonecalls to which the lady I spoke to freaked out and told me what I was doing was illegal. (No its not...) and to not ring again. She then hung up on me and my three subsequent calls even when I said "if I don't record it will you actually help me out?" (Why they won't is beyond me. As a business owner myself having it recorded that I can deal with complaints swiftly and politely is a good thing in my eyes.)

Then told me they are not-obliged to deal with me anymore because of this dispute!!! So because I've complained they are refusing to help me. I am so mad at this company, absolute shambles of customer service. I have no idea if my issue will ever be resolved!

They are now ignoring me again.

[mountainm]

http://www.reviewcentre.com/reviews253866.html

oh dear...

[Wayland]

[ged]

They are now ignoring me again.

You need to send them a seven day letter.

http://www.bushcraftuk.com/forum/sho...279#post961279


Almost anything else they can and will laugh at, and keep your money.

Here's the official Government advice:

http://www.direct.gov.uk/en/Governme...ghts/index.htm

[udamiano]

If goods were purchased using a credit card I would start an official complaint trough your credit card agency. if paid by other methods, then raise a complaint to your bank.

I would then file a 7 day notice through the courts for the cost of the goods plus admin costs, then serve this via registered post. this can all be done easily online

A complaint via the office of fair trading, with a further complaint for breach of the sales and supply contract within reasonable time scales would also follow.

At all these processes a record of costs would be kept to add to the original served notice.

[Astral]

I will be following all these up thank you if my issue is not resolved. Currently Pete is showing some effort to resolve this however I am still awaiting any response from the admin team. She was so rude on the phone it was unreal, laughed when I said I had a complaint! I have been informed to wait for a response from the admin (Via email as they still won't phone me) about why the product was listed as in stock when it wasn't. I have doubts they'll even email me personally,

[Astral]

Of course we're now into May and the "Imminent" delivery of my purchase has not arrived. I have not even had a reply back to the message I sent a week ago asking what date the delivery would be! I am now being ignored totally again and can't help but feel this delivery was fictional and they were just fobbing me off to buy time.

Honestly gob smacked at how terrible this company is. They have effectively mugged me!

If I don't get a reply today I am tempted to drive up to their store and demand to speak to somebody face to face to collect my refund. I will be go that way next week and I'm sick of being ignored and lied too! Disgraceful.