?
Solved

Tracing (or partially tracing an IP address)

Posted on 2003-02-20
9
Medium Priority
?
374 Views
Last Modified: 2010-04-11
Hi Folks

First timer here so be gentle :-)

I've recently received a number of threatening emails from a Hotmail address. I think they originate from a Forum I used to belong to and I'd like to trace the culprit, or more liekly, even narrow it down to a geographic area/Service Provider if possible.

I've tried using the tools at
http://www.samspade.org
to check the IP address from the email namely 62.173.97.83 to no avail  :-(

I realise this is a very inexact science but any advice much appreciated.

Regards

Andrew

62.173.97.83
 
0
Comment
Question by:Andrew_Sam
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 1

Expert Comment

by:dmytton
ID: 7986597
FIrstly, you can report these messages to Hotmail by e-mailing abuse@hotmail.com. Make sure you include the message headers. They will then investigate and most likely close the account.

However, I did a Network Lookup at network-tools.com and found out who the IP address belongs to, you can view the information here:

http://www.network-tools.com/default.asp?prog=network&Netnic=whois.ripe.net&host=62.173.97.83

You can then contact the owner of the IP address and explain what happened.
0
 
LVL 2

Expert Comment

by:omk
ID: 7986694
Name:    unallocated.star.net.uk
Address:  62.173.97.83
0
 

Author Comment

by:Andrew_Sam
ID: 7987088
Many thanks for the replies dmytton and omk.

Other knowing now that the culprit is using the ISP http://www.star.net.uk/ and reporting the problem to them (& Hotmail) am I right in assuming I can narrow it down no further?

0
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

 

Author Comment

by:Andrew_Sam
ID: 7987089
Many thanks for the replies dmytton and omk.

Other knowing now that the culprit is using the ISP http://www.star.net.uk/ and reporting the problem to them (& Hotmail) am I right in assuming I can narrow it down no further?

0
 
LVL 56

Expert Comment

by:andyalder
ID: 7987151
It's probably dynamic address so the only one who can narrow it down further is the ISP who will need to know the exact time from the email header so they can look in their radius logs to find which account it is. They're not going to tell you who it is though but they will tell the police so if it's really threatening you can forward it to your local copshop. www.thamesvalley.police.uk/crime-reduction/internet-crime3.htm
0
 

Author Comment

by:Andrew_Sam
ID: 7987413
Thanks Andy
0
 

Author Comment

by:Andrew_Sam
ID: 7987414
Thanks Andy
0
 
LVL 1

Accepted Solution

by:
dmytton earned 400 total points
ID: 7988784
Other than that, there is nothing else you can do really.
0
 

Author Comment

by:Andrew_Sam
ID: 7989964
Many thanks everyone
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ever wonder what it's like to get hit by ransomware? "Tom" gives you all the dirty details first-hand – and conveys the hard lessons his company learned in the aftermath.
If you're a modern-day technology professional, you may be wondering if certifications are really necessary. They are. Here's why.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question