I know I have seen something along these lines, but can anyone tell me where I can find a site or program that will help me trace or track an ip?
Thanks in advance
Needs some help for tracking or tracing an ip
-
SeedOfChaos
- Posts: 8651
- Joined: Sat Apr 22, 2000 12:00 am
- Location: Comfortably Numb
I am not quite sure what you mean. In case you meant it as "Now I know who their provider is, but I can't find any info about the end user".
Well, that's intended that way. Because if it were easily possible to trace the exact address, nobody would be safe in the internet anymore. IP's are easy to get, physical addresses aren't.
If you look closely at the whois output, there is usually a "abuse contact" mentioned, like "abuse@abc.com". If said person did something to you which violated his/her Terms of Service (spam, harrassing you, trying to hack your computer, etc.), email them with the IP and the time when you got the IP, and describe what said person did. Include any kind of proof, like firewall logs (if said person tried to hack you), chat histories, as text or screenshot, whatever. See how things go from there.
If it's just for fun, I doubt you'll be able to get the exact physical address of said person. Unless you know their real name, then you can get the area by looking at the whois output and check a phone book or something.
Cheers,
Ronald
Well, that's intended that way. Because if it were easily possible to trace the exact address, nobody would be safe in the internet anymore. IP's are easy to get, physical addresses aren't.
If you look closely at the whois output, there is usually a "abuse contact" mentioned, like "abuse@abc.com". If said person did something to you which violated his/her Terms of Service (spam, harrassing you, trying to hack your computer, etc.), email them with the IP and the time when you got the IP, and describe what said person did. Include any kind of proof, like firewall logs (if said person tried to hack you), chat histories, as text or screenshot, whatever. See how things go from there.
If it's just for fun, I doubt you'll be able to get the exact physical address of said person. Unless you know their real name, then you can get the area by looking at the whois output and check a phone book or something.
Cheers,
Ronald
ex-WoW-addict
Right.
IP numbers can be loosely associated to Social Security Numbers. I can peace together any number of IP numbers but without a tie to “who” has that IP I’m wasting time. If I have an SSN but no name, or date of birth, I’m stuck with a 9 digit number.
IP numbers can be loosely associated to Social Security Numbers. I can peace together any number of IP numbers but without a tie to “who” has that IP I’m wasting time. If I have an SSN but no name, or date of birth, I’m stuck with a 9 digit number.
People will forget what you said... and people will forget what you did... but people will never forget how you made them feel.
-
Kip Patterson
- Senior Member
- Posts: 4438
- Joined: Wed Jun 07, 2000 12:00 pm
- Location: Columbus, Ohio
To explain just a bit more, blocks of IP's are issued (sold) to ISPs. They then allocate them to their end users, sometimes through another ISP or agent.
For most home users, the IP assignment is not permanent. That's why it is important to have precise date and time info so that the ISP can figure out who was using the IP at the time of the harrassment.
There can be further complications. The offender may have been using a proxy, that is, a server with which he commmunicated which then passed on the traffic to your IP.
If you have any reason whatsoever to think that this is more than a casual kid thing, please call the police. There are a lot of real sickies out there creating tragedies.
Kip
For most home users, the IP assignment is not permanent. That's why it is important to have precise date and time info so that the ISP can figure out who was using the IP at the time of the harrassment.
There can be further complications. The offender may have been using a proxy, that is, a server with which he commmunicated which then passed on the traffic to your IP.
If you have any reason whatsoever to think that this is more than a casual kid thing, please call the police. There are a lot of real sickies out there creating tragedies.
Kip
A chance to post some links to sites that deal with Children and the Internet should never be missed so here is a list I found:
http://www.cyberangels.org/
http://www.disney.go.com/cybersafety/
http://www.ed.gov/pubs/parents/internet/
http://www.getnetwise.org/
http://www.microsoft.com/info/safeonlinedefault.htm
http://www.missingkids.com/html/ncmec_d ... safty.html
http://www.nchafc.org.uk/internet/
http://www.netparenting.com/
http://www.rcmp-grc.gc.ca/html/websafety.htm
http://www.safesurfin.com/
http://www.theguardianangel.com/
If only one of these sites helps then it's reason enough to have the list bookmarked.
Apologies for broken link (if any). I haven't checked them.
On the subject of IP addresses, if the IP is a static one then you will see a result in the person is online. What you will see is the name of the computer (see "Log Off, ##### after pressing the start button).
Of course, what has been said about proxy servers is right and the computer will be masked.
Is the abuse in the form of emails or chat?
If you were to break down the info on the header of an email if that is how this is happening, you will find a number of IP's in there.
To do that: Right click the message in "Inbox" and select "Properties". You should see a button named "View Source" or similar. Open that and read from the top down to where the addresses finish. There will be 3 or 4 IP addresses there to check out.
Again, this will not give a result if it is through a proxy.
I did this recently and found the computer name and the ISP using the NeoTrace Express program Blebs linked. It solved a puzzle that had been going on for a number of months.
Once you have the info, then use the abuse@ option.
Hope this helps.
Croc.
http://www.cyberangels.org/
http://www.disney.go.com/cybersafety/
http://www.ed.gov/pubs/parents/internet/
http://www.getnetwise.org/
http://www.microsoft.com/info/safeonlinedefault.htm
http://www.missingkids.com/html/ncmec_d ... safty.html
http://www.nchafc.org.uk/internet/
http://www.netparenting.com/
http://www.rcmp-grc.gc.ca/html/websafety.htm
http://www.safesurfin.com/
http://www.theguardianangel.com/
If only one of these sites helps then it's reason enough to have the list bookmarked.
Apologies for broken link (if any). I haven't checked them.
On the subject of IP addresses, if the IP is a static one then you will see a result in the person is online. What you will see is the name of the computer (see "Log Off, ##### after pressing the start button).
Of course, what has been said about proxy servers is right and the computer will be masked.
Is the abuse in the form of emails or chat?
If you were to break down the info on the header of an email if that is how this is happening, you will find a number of IP's in there.
To do that: Right click the message in "Inbox" and select "Properties". You should see a button named "View Source" or similar. Open that and read from the top down to where the addresses finish. There will be 3 or 4 IP addresses there to check out.
Again, this will not give a result if it is through a proxy.
I did this recently and found the computer name and the ISP using the NeoTrace Express program Blebs linked. It solved a puzzle that had been going on for a number of months.
Once you have the info, then use the abuse@ option.
Hope this helps.
Croc.
Croc.
Remember: Wherever you go in life, you take yourself with you.It will be long, it will be hard and there will be no withdrawal.
Winston Churchill
-
SeedOfChaos
- Posts: 8651
- Joined: Sat Apr 22, 2000 12:00 am
- Location: Comfortably Numb