July 30th, 2003 08:33 PM
July 30th, 2003 08:37 PM
July 30th, 2003 08:39 PM
July 30th, 2003 08:42 PM
you could use neotrace if you can find a copy as neoworx where taken over by mcaffe, however it features a graphical route tracer which shows the attackers location on a world map, and also some information on the attacker.
July 30th, 2003 08:44 PM
Cheers for that fella - I went on and stuck in the IP and apparently that computer is located somewhere in Leeds. Pretty nifty stuff !!!! In fact when I checked on Firewall I found this dude had tried scanning me 3 times so far in the last half an hour. Scary stuff.
Another question - when your Firewall blocks a data packet that has been sent to you, does that mean someone has tried to "ping" your PC ???
July 30th, 2003 10:35 PM
"Sunny" Bolton???.......you might try Sam Spade v1.14 or better. it is a pretty comprehensive internet analysis tool.
Please read the guidelines first, as it warns you about the etiquette of using some of its components.......I would not want you to get into any trouble!!!
BTW, just because you get scanned, does not mean that the owner of the PC is doing it...there are plenty of Bots and RATs around, so their machine may just be infected.
July 30th, 2003 10:56 PM
The internet provider who owns the ip address is the location that will show up, not nesisary where the person lives. Friend of mine had Rogers Cable, same as me, his IP says located in somewhere in US, can't remember the state, but He lives in Canada Ontario.
I went on and stuck in the IP and apparently that computer is located somewhere in Leeds. Pretty nifty stuff !!!!
The own of the ip address is whos location is found, a customer assigned the ip, may live in another country or state.
July 31st, 2003 12:33 AM
July 31st, 2003 01:52 AM
Yes we get your unused rain over here on the East Coast. In answer to your question, a RAT is a "Remote Access Trojan"......basically it opens a backdoor, and the victim PC can be hijacked in flight, when it is connected. Tends to be a problem for ADSL/ISDN, always on type connections. It basically means that the victim's PC can be used for whatever the RAT owner wants.
I still recommend Sam Spade (free for private use) as it is pretty comprehensive.
You mentioned 15 minutes? it is just (only just) possible, that your man was on an internet gaming session and got cut off. If his opponent then logged out, you might have picked up his ID (only if you use the same ISP) and the man's machine was trying to contact that ID. This would have to be in the first 15 minutes that you were logged onto the internet.
Leeds? might I suggest a squadron of Tornado GR4's in a dawn raid....can't be too careful