• Go to page :
  • 1 2
  • Text Only
Voting History
rated:

Member Summary

Car History Reports
Thanks Neilium
Disclaimer
Most Recent Posts
The website no longer works bro. This was a very good website and sadly it is no longer working. If you ever create anot... (more)

MrBolt (Aug. 29, 2013 @ 10:14a) |

Where is your dealership?

IwantItCheaper (Sep. 05, 2013 @ 8:48p) |

Any good alternatives out there now?

defaultusername (Sep. 28, 2013 @ 9:10a) |

Thanks for visiting FatWallet.com. Join for free to remove this ad.

Great find!

Hard to tell what danger there is in using this, but it doesn't look very reputable. Owned by someone named Vlad Sid and has this domain oj the same IP, which looks equally questionable.

http://vsid.net/

nixGuru said:   Hard to tell what danger there is in using this, but it doesn't look very reputable. Owned by someone named Vlad Sid and has this domain oj the same IP, which looks equally questionable.

http://vsid.net/


Vlad is a reformed vampire. very reputable.

nixGuru said:   Hard to tell what danger there is in using this, but it doesn't look very reputable.

Who cares, I am not putting MY VIN# in there. Autotrader.Com has VIN#'s on most cars, but not always a free autochek.
Looking for a used car for my teen, so this was great timing.
Thanks MC.

Great find. I am currently looking at used cars.

nixGuru said:   Hard to tell what danger there is in using this, but it doesn't look very reputable. Owned by someone named Vlad Sid and has this domain oj the same IP, which looks equally questionable.

http://vsid.net/


So what you're trying to say is:

In Soviet Russia, VIN check you?

I am an IT security specialist. That is why I am questioning it. If Mr Cheap wants to use it, then that is fine. The information may be gotten through questionable means of stolen access to an api or you could be joining a Russian botnet. Or he could just be doing this out of kindness and goodwill.

nixGuru said:   I am an IT security specialist. That is why I am questioning it. If Mr Cheap wants to use it, then that is fine. The information may be gotten through questionable means of stolen access to an api or you could be joining a Russian botnet. Or he could just be doing this out of kindness and goodwill.

but if you entering VIN's of cars that aren't yours OR cars you USED to own, I don't see any risk.

nixGuru said:   I am an IT security specialist.


Then you have no idea what your talking about. Unless you have armed guards surrounding your car at all times...you know how I (or anyone else) can find out your VIN ? Simply writing it down from any where you park (since it's clearly visible through your windshield or a similar area in most cars).

Mr Cheap- The point was that there may be no harm in using it, and maybe the information it gives you is correct. But it could by stolen through means of connecting to an external api that violates terms of use or is for paying customers, or there is code that could potentially be malicious in intent. If he has zero information about himself or why he did it or even is associated with any firm, then it raises an eyebrow.

If it all is on the up and up, then good find and I am sure people will save some cash because of it.

respdoc said:   nixGuru said:   I am an IT security specialist.


Then you have no idea what your talking about. Unless you have armed guards surrounding your car at all times...you know how I (or anyone else) can find out your VIN ? Simply writing it down from any where you park (since it's clearly visible through your windshield or a similar area in most cars).


Perhaps I wasn't clear. I am not concerned about the VIN data.

nixGuru said:   Mr Cheap- The point was that there may be no harm in using it, and maybe the information it gives you is correct. But it could by stolen through means of connecting to an external api that violates terms of use or is for paying customers, or there is code that could potentially be malicious in intent. If he has zero information about himself or why he did it or even is associated with any firm, then it raises an eyebrow.

If it all is on the up and up, then good find and I am sure people will save some cash because of it.


I can personally say it is accurate. Pulled up an old car I owned, all the history prior to my owning it and during my ownership was accurate. I can't vouch for the info after I owned it, but have no reason to think it's fake.

nixGuru said:   Mr Cheap- The point was that there may be no harm in using it, and maybe the information it gives you is correct. But it could by stolen through means of connecting to an external api that violates terms of use or is for paying customers, or there is code that could potentially be malicious in intent. If he has zero information about himself or why he did it or even is associated with any firm, then it raises an eyebrow.

If it all is on the up and up, then good find and I am sure people will save some cash because of it.


wouldn't a malware or virus program detect any nefarious stuff?

and if it's a "pirated" source, I'm sure this will get shut down soon enough.

MISTERCHEAP said:   
wouldn't a malware or virus program detect any nefarious stuff?

and if it's a "pirated" source, I'm sure this will get shut down soon enough.


To the first question, it depends. Many exploits can take a while before they can be addressed. Modern virus and malware scanning is done by signatures, which is inherently flawed. That said, I suspect that if anything isn't right here, it would be the origin of the information.

I just got back from BlackHat 2013, and there was one guy who reportedly had over one million Pcs and thousands of mobile phones under botnet control, just for himself. In this case, he gained control by luring them to a website.

nixGuru said:   

To the first question, it depends. Many exploits can take a while before they can be addressed. Modern virus and malware scanning is done by signatures, which is inherently flawed. That said, I suspect that if anything isn't right here, it would be the origin of the information.

I just got back from BlackHat 2013, and there was one guy who reportedly had over one million Pcs and thousands of mobile phones under botnet control, just for himself. In this case, he gained control by luring them to a website.


Enough with the changing of stories. The website is fine along with giving out your VIN (since anyone can get access to it..if they want). Big difference between being cautious and paranoid. You fall into the latter.

nixGuru said:   I just got back from BlackHat 2013, and there was one guy who reportedly had over one million Pcs and thousands of mobile phones under botnet control, just for himself. In this case, he gained control by luring them to a website.

Imagine how many PCs and mobile phones Fatwallet has managed to take over in the last 14 years.

labboypro said:   

Imagine how many PCs and mobile phones Fatwallet has managed to take over in the last 14 years.


As long as that saves me money!


Enough with the changing of stories. The website is fine along with giving out your VIN (since anyone can get access to it..if they want). Big difference between being cautious and paranoid. You fall into the latter.

Not sure what you mean by changing of stories.

Seriously, if you want to use it then fine. All my points are completely valid and were to only offered as food for thought.

Again, I think the likelihood is what Mr. Cheap said. That maybe it is a pirated source, so to speak.

Guys, just to be clear, I love Fat Wallet and people like Mr Cheap that find deals. I use FW all the time. I just don't understand why some people get negative when someone is just offering an educated thought on the deal. I see this in other threads too. If don't care, then do whatever you want.

I would rather people feel welcome to come to FW over other similar sites, and they should be welcomed into the community if they are trying to help out.

Adding my 2cents to the mixes, the site seems like this guy private site based on what he put on the Q&A. So it could get shut down or move to another url in the future. But free is free.

excellent fine. thx op

MISTERCHEAP said:   nixGuru said:   Mr Cheap- The point was that there may be no harm in using it, and maybe the information it gives you is correct. But it could by stolen through means of connecting to an external api that violates terms of use or is for paying customers, or there is code that could potentially be malicious in intent. If he has zero information about himself or why he did it or even is associated with any firm, then it raises an eyebrow.

If it all is on the up and up, then good find and I am sure people will save some cash because of it.


wouldn't a malware or virus program detect any nefarious stuff?

and if it's a "pirated" source, I'm sure this will get shut down soon enough.


You are crazy if you think a virus or anti-malware software will protect you. That stuff is all reactionary and all it takes to evade a signature is changing a single bit. If you want to be safe(r) while surfing, get a dedicated web browsing VM that you restore each time you browse.

As for being pirated, it would depend where the hosting service is located. Blindly thinking the world is all sunshine and lollipops will probably end up with your system being part of a bot net.

My statements are not a reflection on the deal; simply trying to not have people get their system owned by blind ignorance of thinking anti-malware software is the the holy grail of preventing infections.

evilwon said:   

You are crazy if you think a virus or anti-malware software will protect you. That stuff is all reactionary and all it takes to evade a signature is changing a single bit. If you want to be safe(r) while surfing, get a dedicated web browsing VM that you restore each time you browse.

As for being pirated, it would depend where the hosting service is located. Blindly thinking the world is all sunshine and lollipops will probably end up with your system being part of a bot net.

My statements are not a reflection on the deal; simply trying to not have people get their system owned by blind ignorance of thinking anti-malware software is the the holy grail of preventing infections.


Thank you, Evilwon. That was exactly my point.

nixGuru said:   evilwon said:   

You are crazy if you think a virus or anti-malware software will protect you. That stuff is all reactionary and all it takes to evade a signature is changing a single bit. If you want to be safe(r) while surfing, get a dedicated web browsing VM that you restore each time you browse.

As for being pirated, it would depend where the hosting service is located. Blindly thinking the world is all sunshine and lollipops will probably end up with your system being part of a bot net.

My statements are not a reflection on the deal; simply trying to not have people get their system owned by blind ignorance of thinking anti-malware software is the the holy grail of preventing infections.


Thank you, Evilwon. That was exactly my point.


what is a VM and how do you get it/use it?

MISTERCHEAP said:   

what is a VM and how do you get it/use it?


Honestly, you could go that route or use a livecd specifically for web browsing. My favorite VM software, which is free and works great on Windows, is VirtualBox. You just install it, start it up, install a free Linux distro like Mint off of Iso, and use that to browse. That was good advise from Evilwon. VM means virtual machine. It is just a way of installing something on top of another operating system without having a seperate computer.

MISTERCHEAP said:   what is a VM and how do you get it/use it?
VM is Virtual Machine
VMware site

nixGuru also mentioned a LiveCD (of which there are LiveDVDs & boot from flash drives like UNetbootin)

The virtual operating systems allow you to use your computer & network w/o making changes to the operating system that you are familiar w/. It is used for testing purposes to determine if the operating system (software) will play nice w/ the hardware on your computer.

I believe that what he is promoting is to use a virtual operating system so that "bad guys" can't mess w/ the operating system that you normally use. When I clean porn off friends' computer systems, I usually throw in a LiveCD for them to use when they go back to those places.

VirtualBox is awesome, mature, free software for making highly-customizable virtual machines that will run a plethora of different OS's and run them quickly if your system has decent specs and a processor with virtualization extensions. +1 on that recommendation. You can also streamline the process with sandboxing software which is just a thin VM acting as a buffer between you and the big bad internet, which might be a better solution for the less technological types out there.

And AV signatures won't protect from everything but they will save you from a lot. Decent security software will also perform heuristics analysis, which is important because even unidentified metamorphic code wouldn't slip by - hopefully anyway. I'd argue that good heuristics and rootkit scanning should be prioritized for Windows users, even more so for pre-Win7 users. Signatures + Heuristics + Antirootkit + Sandbox/VM = Extremely Good Chances.

Sooooo - oh yeah the deal! The page source looks innocent enough, nothing looks malicious. It is free and it works but I wouldn't expect it to last long. Even the page mentions AutoCheck by name who takes $30 for single lookups and $45 for unlimited in a month, so it's hard to think of what the motivation would be especially since AutoCheck can prosecute users who abuse the system for commercial use. I started to wonder if maybe this was some high school kid who's doing this because he's bored and unmotivated in class... and then I found this:

https://www.facebook.com/vlad.sid.75


Thanks OP…Useful stuff.

Good point!!

I did a search myself since I have a working carfax account to check out the info. This site shows the actual number of the title updates/renews however, the odometer# and service info is not up to date.

voonli said:   I did a search myself since I have a working carfax account to check out the info. This site shows the actual number of the title updates/renews however, the odometer# and service info is not up to date.

title says nothing about service updates, and cars I knew the history of which I've checked were quite accurate on odometer readings.

Thank OP. I checked several of my cars and the info was accurate.

There's definately some paranoia churning in this thread but I think most of that is unfounded. Vehicle registration info, including the VIN, owners and other records are public records which are freely available and is how this information is available. Aside from taking the normal precautions you would whenever using an unknown site, I don't think there's a whole lot to be afraid of.

nixGuru said:   I am an IT security specialist. That is why I am questioning it. If Mr Cheap wants to use it, then that is fine. The information may be gotten through questionable means of stolen access to an api or you could be joining a Russian botnet. Or he could just be doing this out of kindness and goodwill. Next thing you know, you'll be telling us Niko Bellic isn't a man to be trusted. These altruistic things are done for the glory of mother Russia, need we really know more?

nixGuru said:   MISTERCHEAP said:   

what is a VM and how do you get it/use it?


Honestly, you could go that route or use a livecd specifically for web browsing. My favorite VM software, which is free and works great on Windows, is VirtualBox. You just install it, start it up, install a free Linux distro like Mint off of Iso, and use that to browse. That was good advise from Evilwon. VM means virtual machine. It is just a way of installing something on top of another operating system without having a seperate computer.


don't forget the tin foil on your head.

evilwon said:   That stuff is all reactionary and all it takes to evade a signature is changing a single bit.

not exactly. most apps inc. real time heuristics now. there's also the fact that if you are simply 'slightly mindful' on sec (i.e. behind NAT, periodically run system drive scan with spybot, MAM, SAS, and your A/V of choice, and don't haphazardly execute everything you download), you'll be alright. Anything more is for geeks with too much time on their hands who love providing unsolicited information.

p.s. most black hat hackers are incredible losers, the few that aren't get all the attention

I don't pull out my pet dragon* often, but nix and evil convinced me. Perhaps not as safe as using a Virtual Box, but as much useful stuff as the Comodo browser blocks, I feel relatively safe using it.

If anything happens, it's just my office computer anyways, no big loss




*My pet dragon may not be nearly as cool as the one's I saw on a TV show a few months ago. However, I definitely learned that: from time to time a situation may present itself when it may be cool to have a pet dragon.

StartByServingOthers said:   I don't pull out my pet dragon* often, but nix and evil convinced me.

I do hope we are still talking about computer security....

respdoc said:   StartByServingOthers said:   I don't pull out my pet dragon* often, but nix and evil convinced me.

I do hope we are still talking about computer security....


LOL Respdoc, good one.

link is dead

Skipping 36 Messages...
Any good alternatives out there now?



Disclaimer: By providing links to other sites, FatWallet.com does not guarantee, approve or endorse the information or products available at these sites, nor does a link indicate any association with or endorsement by the linked site to FatWallet.com.

Thanks for visiting FatWallet.com. Join for free to remove this ad.

TRUSTe online privacy certification

While FatWallet makes every effort to post correct information, offers are subject to change without notice.
Some exclusions may apply based upon merchant policies.
© 1999-2014