Go Back   vb.org Archive > Community Central > Community Lounge
Reload this Page need help tracing IP
FAQ Community Calendar Today's Posts Search

Reply
Page 1 of 2 1 2
 
Thread Tools Display Modes
  #1  
Old 03-17-2008, 04:34 PM
lasto lasto is offline
 
Join Date: Jan 2002
Posts: 1,514
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default need help tracing IP
got home today and recieved this email to my email account

Received: by 10.141.4.5 with SMTP id g5cs53826rvi;
Mon, 17 Mar 2008 05:22:21 -0700 (PDT)
Received: by 10.141.43.5 with SMTP id v5mr41936rvj.216.1205756540360;
Mon, 17 Mar 2008 05:22:20 -0700 (PDT)
Return-Path: <piecesofeighty@aol.com>
Received: from imo-d21.mx.aol.com (imo-d21.mx.aol.com [205.188.144.207])
by mx.google.com with ESMTP id 39si31717902wrl.29.2008.03.17.05.22.19;
Mon, 17 Mar 2008 05:22:20 -0700 (PDT)
Received-SPF: pass (google.com: domain of piecesofeighty@aol.com designates 205.188.144.207 as permitted sender) client-ip=205.188.144.207;
Authentication-Results: mx.google.com; spf=pass (google.com: domain of piecesofeighty@aol.com designates 205.188.144.207 as permitted sender) smtp.mail=piecesofeighty@aol.com
Received: from piecesofeighty@aol.com
by imo-d21.mx.aol.com (mail_out_v38_r9.3.) id o.d45.248dce81 (37116)
for <**************>; Mon, 17 Mar 2008 08:21:55 -0400 (EDT)
Received: from webmail-me06 (webmail-me06.webmail.aol.com [64.12.88.198]) by cia-ma01.mx.aol.com (v121.4) with ESMTP id MAILCIAMA012-90fc47de6263f1; Mon, 17 Mar 2008 08:21:55 -0400
To:*********************
Subject: your sucky ass vbulletin board
Date: Mon, 17 Mar 2008 08:21:55 -0400
X-MB-Message-Source: WebUI
X-AOL-IP: 96.234.73.32
X-MB-Message-Type: User
MIME-Version: 1.0
From: piecesofeighty@aol.com
Content-Type: multipart/alternative;
boundary="--------MB_8CA56409FA32425_468_537A_webmail-me06.sysops.aol.com"
X-Mailer: AOL Webmail 35304-STANDARD
Received: from 96.234.73.32 by webmail-me06.sysops.aol.com (64.12.88.198) with HTTP (WebMailUI); Mon, 17 Mar 2008 08:21:55 -0400
Message-Id: <8CA56409FA0C1C7-468-2893@webmail-me06.sysops.aol.com>
X-Spam-Flag: NO


----------MB_8CA56409FA32425_468_537A_webmail-me06.sysops.aol.com
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"


did you know that we are going to flood your ++++ed up, shitty ass, broken-ass-links,?board every night?? Get ready boy!

----------MB_8CA56409FA32425_468_537A_webmail-me06.sysops.aol.com
Content-Transfer-Encoding: 7bit
Content-Type: text/html; charset="us-ascii"


<div>did you know that we are going to flood your ++++ed up, shitty ass, broken-ass-links,&nbsp;board every night?&nbsp; Get ready boy!</div>
<div id='u8CA56409FA0C1C7-468-2893' class='aol_ad_footer'><FONT style="color: black; font: normal 10pt ARIAL, SAN-SERIF;"><HR style="MARGIN-TOP: 10px">Supercharge your AIM. Get the <A title="http://download.aim.com/client/aimtoolbar?NCID=aolcmp00300000002586" href="http://download.aim.com/client/aimtoolbar?NCID=aolcmp00300000002586" target="_blank">AIM toolbar</A> for your browser.</FONT> </div>

----------MB_8CA56409FA32425_468_537A_webmail-me06.sysops.aol.com--


I dont know much about this but i heard IPs are traceable and they can be traced back is this possible as who ever sent the email has also made 3 accounts on my board and spammed the board really bad today with posts which i can not repeat here.


Can anyone find out if the info from above matches the ip in the pic below.
Attached Images
File Type: jpg 1.jpg (26.0 KB, 0 views)
Reply With Quote
  #2  
Old 03-17-2008, 06:33 PM
nexialys
Guest
  
Posts: n/a
Default
real hackers never announce their misfits... this guy is like all the others.. making big words to make you fear .. they usually ask you to pay them in their paypal account so they will not do it if you pay...

luckily it is not one of your threats...
Reply With Quote
  #3  
Old 03-17-2008, 06:42 PM
Paul M's Avatar
Paul M Paul M is offline
 
Join Date: Sep 2004
Location: Nottingham, UK
Posts: 23,748
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
That IP belongs to Verizon Internet Services Inc - abuse email is security[at]verizon.net
Reply With Quote
  #4  
Old 03-17-2008, 06:45 PM
optrex optrex is offline
 
Join Date: Sep 2005
Posts: 344
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
verizon are useless they wont act on it, just check out all the results on google. I had one the other week and reported it to them , you just get an automated bounce as a response.
Reply With Quote
  #5  
Old 03-17-2008, 07:20 PM
lasto lasto is offline
 
Join Date: Jan 2002
Posts: 1,514
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
ive recieved the bounce email already
Reply With Quote
  #6  
Old 03-17-2008, 07:26 PM
SEOvB's Avatar
SEOvB SEOvB is offline
 
Join Date: May 2007
Location: Indianapolis
Posts: 2,451
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
I suppose you could do the sensible thing and ban their IP at the server level, and then you won't have to worry about it much
Reply With Quote
  #7  
Old 03-17-2008, 11:15 PM
Zachariah's Avatar
Zachariah Zachariah is offline
 
Join Date: Feb 2002
Location: Canoga Park, CA
Posts: 2,125
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
Newark, NJ, USA

Name: pool-96-234-73-32.nwrknj.fios.verizon.net
IP Address: 96.234.73.32
Location: Newark (40.733N, 74.172W)
Network: VIS-BLOCK

fios = fiber optic

OrgAbuseHandle: VISAB-ARIN
OrgAbuseName: VIS Abuse
OrgAbusePhone: +1-214-513-6711
OrgAbuseEmail: security@verizon.net


Attach your e-mail and send them one. I had a few people that DOSS my site for weeks.
I sent logs of activity to ISPs of the attackers and in 2 days the attackers were gone.
Just keep logs of activity and all communications.
Reply With Quote
  #8  
Old 03-18-2008, 03:25 PM
AmbitiousOne AmbitiousOne is offline
 
Join Date: May 2007
Posts: 72
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
What do you do when someone is using a proxy server? I have had many idiots conspire to DDOS my site. And quite frankly, I can't stand hearing it. They are all on proxy server!
Reply With Quote
  #9  
Old 03-18-2008, 03:44 PM
optrex optrex is offline
 
Join Date: Sep 2005
Posts: 344
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
I use the proxy server hack and it tells me the real IP address. It seems to work quite well.
Reply With Quote
  #10  
Old 03-19-2008, 03:13 PM
alphadeity alphadeity is offline
 
Join Date: Mar 2008
Posts: 21
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default
If an attacker is good at what they do they can hide their real IP address no matter what. They best way to avoid proxy attacks is to block all proxy connections at the server level. But even this is not fool proof.
Reply With Quote
Reply
Page 1 of 2 1 2

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 02:29 PM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04144 seconds
  • Memory Usage 2,269KB
  • Queries Executed 14 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (1)postbit_attachment
  • (9)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_attachment
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete