Help identify this host - Page 2
Page 2 of 2 FirstFirst 12
Results 11 to 13 of 13

Thread: Help identify this host

  1. #11
    Junior Member
    Join Date
    Jul 2003
    Posts
    23
    I had exactly the same problem about 6 months ago...it was Windows update on this occasion....I disabled it in services and it stopped - hope that helps...

  2. #12
    Senior Member
    Join Date
    Jul 2004
    Posts
    469
    Originally posted here by Gixxer
    Thanks guys, I sent Mr. Noam Freedman and little email, lets see if I get a response. I'm going up to the user's machine now to ring his neck. First, I'm going to that segment to do a little sniffing. Once my "nose" gets full, I'll report back.

    I'll keep you posted.
    I'd love to know what you wrote in this email. I really think this is the wrong approach to your problem. Its most likely legit traffic coming from them, that your client is requesting. The research should be done on that client machine.

    I can just imagine being a hosting company that hosts thousands of sites and getting an email about someones computer trying to contact my site. I would venture to guess you won't get a reply at all.

    An email from you before you do any research is going to be taken as finger pointing.

  3. #13
    Member
    Join Date
    Jan 2002
    Posts
    61
    zENGER,

    I think you took my post the wrong way, I don't know how that would have happened. Maybe it was the whole "ring his neck" thinkg. I didn't send a nasty email over to the hosting company. Below is the message that I sent and although I haven't received a response yet this time I have in the past. I could see your point if I was shooting off nasty emails to every top 5 hosting company on my reports but that's not the case. Once in a while when it is not clear what sort of traffic it is an email might get sent. I think if the approach is done correctly, it is a good way to find out more of where data is being sent.




    Noam,

    Good afternoon, one of our internal hosts has consistently had a large amount of web traffic destined to 80.67.76.26. Which is an ip address that resides under your ownership ( 80.67.75.0 - 80.67.77.255 ). This user is usually one of the top talkers on the network. I was hoping you could shed some light onto what sort of target this ip address is and why users on our network would access it?
    Thanks for your help,


    -Travis Morgan

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •