What to do with someones IP?

What's the best way to setup a home network? Why should I care about BGP?

What to do with someones IP?

Post by iistapp on Tue Mar 09, 2010 4:46 pm
([msg=36409]see What to do with someones IP?[/msg])

No idea if this is the right place to post it so feel free to move it.

Oh well, with the "netstat -n" command in cmd I found my friends IP as we were transfering some stuff over msn.(With some help). It came up a lot of IP's and stuff and had no idea where to even start, but with the first numbers in his IP I had only 4 diff to choose between which made it all quite easy. So I wonder, how do I know for sure which IP that could have been his by using the netstat -n command?

Also tryed by not transfering a file and found it then aswell, but I'm not sure if that is because we already had been transfering something or not?

So just for fun, when I got his IP what can I do to his computer or whoevers computer that I have the IP for?
I didn't want to try out random commands, as I'm not sure what would have been legal or not:P


And I wonder - When I found hes ip it was bla.bla.bla.bla:"some random numbers" What would these "random numbers" be?
User avatar
iistapp
Poster
Poster
 
Posts: 134
Joined: Tue Apr 21, 2009 9:44 am
Location: Norway
Blog: View Blog (0)


Re: What to do with someones IP?

Post by insomaniacal on Tue Mar 09, 2010 5:03 pm
([msg=36410]see Re: What to do with someones IP?[/msg])

You could try using netstat -b, which lists the program that's making the connection as well. So it'd be easier to isolate your friend's IP.

That being said, there's not much you can do with an IP. You could try to scan it for open ports, and go from there, but that's about it. There's no magic "hack" command.
It's not who votes that counts, it's who counts the votes
insomaniacal.blog.com
User avatar
insomaniacal
Addict
Addict
 
Posts: 1210
Joined: Sun May 24, 2009 10:21 am
Blog: View Blog (0)


Re: What to do with someones IP?

Post by iistapp on Tue Mar 09, 2010 5:28 pm
([msg=36412]see Re: What to do with someones IP?[/msg])

What about pinging or tracing the IP? Like to find the location or is that just in the movies? :(
User avatar
iistapp
Poster
Poster
 
Posts: 134
Joined: Tue Apr 21, 2009 9:44 am
Location: Norway
Blog: View Blog (0)


Re: What to do with someones IP?

Post by orwell84 on Tue Mar 09, 2010 6:01 pm
([msg=36415]see Re: What to do with someones IP?[/msg])

iistapp wrote:What about pinging or tracing the IP? Like to find the location or is that just in the movies? :(

There is a javascript "GeoIP" function that annoying ads to use to advertise their crap. i.e. "Find attractive women near <yourtown>" or "<name> lives in <yourtown> and made $563 from google!" I'm not quite sure how it works or how it's implemented but I'm sure you could search that.
You could also do a whois reverse-dns lookup on it, and that could tell you their ISP...
nmap (http://insecure.org) is a port scanning tool (which is what insomniacal referred to), but be careful and get permission (preferably written) from your friend that you're allowed to scan their network. Otherwise you'd be breaking federal law.
Also, as insomaniacal said, there is no magical "hack" command/button for an IP address. They certainly help for network-based exploits, but it's not really very useful to just have an IP address.
Last edited by orwell84 on Fri Mar 12, 2010 7:09 pm, edited 1 time in total.
Mens et manus.
User avatar
orwell84
Poster
Poster
 
Posts: 112
Joined: Fri Feb 20, 2009 8:20 pm
Blog: View Blog (0)


Re: What to do with someones IP?

Post by insomaniacal on Tue Mar 09, 2010 6:30 pm
([msg=36419]see Re: What to do with someones IP?[/msg])

Yea, I forgot to mention what Orwell pretty much said. If you do a lookup on the IP address, you'll most likely be able to get their general location (Country/State or Province/sometimes city), as well as their ISP. It's probably a dynamic IP, meaning the owner changes periodically, so there's very little actual "tracing" that could be done.

In movies it might work in such a way that you could trace it to their front door, but in real life, Cops could get the IP, and then politely ask the ISP if they would provide records that would help determine where the owner lived/is living.
It's not who votes that counts, it's who counts the votes
insomaniacal.blog.com
User avatar
insomaniacal
Addict
Addict
 
Posts: 1210
Joined: Sun May 24, 2009 10:21 am
Blog: View Blog (0)


Re: What to do with someones IP?

Post by sanddbox on Tue Mar 09, 2010 6:53 pm
([msg=36423]see Re: What to do with someones IP?[/msg])

Like the others said, besides DoSing them (lame) or figuring out a few details (city, isp, etc)... you can't do much.
Image

HTS User Composition:
95% Male
4.98% Female
.01% Monica
.01% Goat
User avatar
sanddbox
Expert
Expert
 
Posts: 2331
Joined: Sat Jul 04, 2009 5:20 pm
Blog: View Blog (0)


Re: What to do with someones IP?

Post by r-ID on Wed Mar 10, 2010 10:17 am
([msg=36455]see Re: What to do with someones IP?[/msg])

things you can do:
* write it down on the paper;
* read out loud;
* tell the IP to your mom;
* create secret society and worship that IP;
* nothing;
* nothing again;
* still nothing;
* yet another nothing
* try to build time machine, travel in time and make yourself to forget about that daamn IP.
r-ID
Poster
Poster
 
Posts: 172
Joined: Mon Dec 29, 2008 6:04 pm
Blog: View Blog (0)


Re: What to do with someones IP?

Post by iistapp on Wed Mar 10, 2010 12:16 pm
([msg=36460]see Re: What to do with someones IP?[/msg])

sanddbox wrote:Like the others said, besides DoSing them (lame) or figuring out a few details (city, isp, etc)... you can't do much.


DoSing? Couldn't find out much about that on google or maybe I'm just googeling the wrong thing.

Anyways, thanks for the replys :) I'll do some reading on the stuff mentioned. Thanks again!
User avatar
iistapp
Poster
Poster
 
Posts: 134
Joined: Tue Apr 21, 2009 9:44 am
Location: Norway
Blog: View Blog (0)


Re: What to do with someones IP?

Post by UNL2009 on Thu Mar 11, 2010 3:12 pm
([msg=36540]see Re: What to do with someones IP?[/msg])

r-ID pretty much said it...
UNL2009
New User
New User
 
Posts: 22
Joined: Sun Sep 07, 2008 2:32 pm
Blog: View Blog (0)


Re: What to do with someones IP?

Post by Defience on Thu Mar 11, 2010 3:36 pm
([msg=36541]see Re: What to do with someones IP?[/msg])

iistapp wrote:
sanddbox wrote:Like the others said, besides DoSing them (lame) or figuring out a few details (city, isp, etc)... you can't do much.


DoSing? Couldn't find out much about that on google or maybe I'm just googeling the wrong thing.

Anyways, thanks for the replys :) I'll do some reading on the stuff mentioned. Thanks again!


http://en.wikipedia.org/wiki/Denial-of-service_attack

iistapp, here is an example of what others have said.....the following information is based on your ip address and as you can see, it won't lead to your front door:

Code: Select all
OrgName:    RIPE Network Coordination Centre
OrgID:      RIPE
Address:    P.O. Box 10096
City:       Amsterdam
StateProv: 
PostalCode: 1001EB
Country:    NL

ReferralServer: whois://whois.ripe.net:43

NetRange:   88.0.0.0 - 88.255.255.255
CIDR:       88.0.0.0/8
NetName:    88-RIPE
NetHandle:  NET-88-0-0-0-1
Parent:     
NetType:    Allocated to RIPE NCC
NameServer: NS-PRI.RIPE.NET
NameServer: NS3.NIC.FR
NameServer: SEC1.APNIC.NET
NameServer: SEC3.APNIC.NET
NameServer: SUNIC.SUNET.SE
NameServer: TINNIE.ARIN.NET
NameServer: NS2.LACNIC.NET
Comment:    These addresses have been further assigned to users in
Comment:    the RIPE NCC region. Contact information can be found in
Comment:    the RIPE database at http://www.ripe.net/whois
RegDate:    2004-04-01
Updated:    2009-05-18

# ARIN WHOIS database, last updated 2010-03-10 20:00
# Enter ? for additional hints on searching ARIN's WHOIS database.
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at https://www.arin.net/whois_tou.html



Deferred to specific whois server: whois.ripe.net...


% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See http://www.ripe.net/db/support/db-terms-conditions.pdf

% Note: This output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '88.88.0.0 - 88.91.255.255'

inetnum:        88.88.0.0 - 88.91.255.255
org:            ORG-NA38-RIPE
netname:        NO-TELENOR-DSL-4
descr:          Telenor Business Solutions AS
country:        NO
admin-c:        TIAR5-RIPE
tech-c:         TRR5-RIPE
tech-c:         TBS-RIPE
status:         ASSIGNED PA
remarks:        - - - - - - - - - - - - - - - - - - - - - - - - - - - -
remarks:        - -  For abuse matters, mailto: abuse@telenor.net - - -
remarks:        - - - - - - - - - - - - - - - - - - - - - - - - - - - -
mnt-by:         AS8210-MNT
mnt-by:         TNXHM-MNT
mnt-lower:      AS8210-MNT
mnt-routes:     AS8210-MNT
mnt-domains:    TNXHM-MNT
source:         RIPE # Filtered

irt:            IRT-TELENOR
address:        Abuse Response Team
address:        Snarøyveien 31
address:        1331 Fornebu
address:        Norway
signature:      PGPKEY-D823A253
encryption:     PGPKEY-D823A253
admin-c:        TBS-RIPE
tech-c:         TBS-RIPE
auth:           PGPKEY-CD6DAD17
auth:           PGPKEY-3AB6D28A
irt-nfy:        abuse@telenor.net
mnt-by:         TNXHM-MNT
source:         RIPE # Filtered

organisation:   ORG-NA38-RIPE
org-name:       Telenor Business Solutions AS
org-type:       LIR
address:        Telenor Business Solutions AS
                Thor-Henrik Kvandahl
                Snaroyveien 30
                N-1331 Fornebu
                NORWAY
phone:          +47 810 77 000
fax-no:         +47 947 70 424
abuse-mailbox:  abuse@telenor.net
admin-c:        EAO-RIPE
admin-c:        HSO3-RIPE
admin-c:        TBS-RIPE
admin-c:        MHE12-RIPE
admin-c:        OG-RIPE
admin-c:        THK-RIPE
admin-c:        FH1273-RIPE
mnt-ref:        AS8210-MNT
mnt-ref:        RIPE-NCC-HM-MNT
mnt-ref:        TNXHM-MNT
mnt-by:         RIPE-NCC-HM-MNT
source:         RIPE # Filtered

role:           Telenor Internet Address Registry
address:        Telenor Norway
address:        Snaroyveien 30
address:        N-1331 Fornebu
address:        Norway
phone:          +47 67 89 00 00
admin-c:        THK-RIPE
tech-c:         THK-RIPE
tech-c:         TNA4-RIPE
nic-hdl:        TIAR5-RIPE
abuse-mailbox:  abuse@telenor.net
mnt-by:         AS8210-MNT
source:         RIPE # Filtered

role:           Telenor Routing Registry
address:        Telenor Networks AS
address:        Snaroyveien 30
address:        N-1331 Fornebu
address:        Norway
phone:          +47 67 89 00 00
admin-c:        TNA4-RIPE
tech-c:         TNA4-RIPE
tech-c:         HH1585-RIPE
tech-c:         THA-RIPE
tech-c:         TYNF-RIPE
nic-hdl:        TRR5-RIPE
mnt-by:         AS8210-MNT
source:         RIPE # Filtered

role:           TBS AS - Customer Internet Access
address:        Telenor Telecom Solutions AS
address:        Snaroyveien 30
address:        NO-1331 Fornebu
address:        Norway
phone:          +47 67890000
abuse-mailbox:  abuse@telenor.net
admin-c:        EAO-RIPE
admin-c:        OG-RIPE
admin-c:        FH1273-RIPE
tech-c:         DAHL-RIPE
tech-c:         MS16606-RIPE
tech-c:         MHE12-RIPE
tech-c:         SA6488-RIPE
tech-c:         IMH7-RIPE
nic-hdl:        TBS-RIPE
mnt-by:         TNXHM-MNT
source:         RIPE # Filtered

% Information related to '88.88.0.0/13AS2119'

route:          88.88.0.0/13
descr:          TELENOR-INTERNET
descr:          Telenor Nordic AS, Norway
origin:         AS2119
mnt-by:         AS8210-MNT
source:         RIPE # Filtered


    Domain owner info (Whois / Abuse)
Whois record :

% Kopibeskyttet, se http://www.norid.no/domenenavnbaser/whois/kopirett.html
% Rights restricted by copyright. See http://www.norid.no/domenenavnbaser/whois/kopirett.en.html

Domain Information

Domain Name................: online.no
Organization Handle........: TTSA5O-NORID
Registrar Handle...........: REG766-NORID
Legal-c Handle.............: MO361P-NORID
Tech-c Handle..............: TH17R-NORID
Zone-c Handle..............: TH17R-NORID
Nameserver Handle..........: NS1232H-NORID
Nameserver Handle..........: NS1231H-NORID

Additional information:
Created:         1999-11-15
Last updated:    2006-12-21

NORID Handle...............: TTSA5O-NORID
Organization Name..........: Telenor Telecom Solutions AS
Organization Number........: 976967631
Post Address...............: Snarøyveien 30
Postal Code................: NO-1331
Postal Area................: Fornebu
Country....................: NO
Phone Number...............: +47 81 07 70 00
Fax Number.................: +47 67 89 40 90
Email Address..............: hostmaster@telenor.net

Additional information:
Last update:     2005-11-18
User avatar
Defience
Addict
Addict
 
Posts: 1277
Joined: Thu Jun 12, 2008 3:16 pm
Blog: View Blog (0)


Next

Return to Networking

Who is online

Users browsing this forum: No registered users and 0 guests