Toggle sidebar

How do I find an IP address ?

  • Hey Guest, Early bird pricing on the Summer Moot (29th July - 10th August) available until April 6th, we'd love you to come. PLEASE CLICK HERE to early bird price and get more information.
Status
Not open for further replies.
Humpback

Humpback

On a new journey
Dec 10, 2006
1,231
0
67
1/4 mile from Bramley End.
Calling all computer buffs
I had an email today from this esteemed site saying someone (giving an IP address) had tried to log onto my account.
Now I would like to check who it was.
Any pointers as to how to go about this would be welcomed.
Alan
 
CLEM

CLEM

Bushcrafter (boy, I've got a lot to say!)
Jul 10, 2004
2,433
439
Stourbridge
Humpback said:
Calling all computer buffs
I had an email today from this esteemed site saying someone (giving an IP address) had tried to log onto my account.
Now I would like to check who it was.
Any pointers as to how to go about this would be welcomed.
Alan
Click to expand...
Me too,I had the same email earlier!:confused:
 
Toadflax

Toadflax

Native
Mar 26, 2007
1,783
5
64
Oxfordshire
Although this problem turned out to be a problem with the BCUK site, you can often find the 'owner' of an IP address (or domain) from your own PC.

I'm writing this assuming that you don't know anything! If you know what I'm talking about, then this message isn't aimed at you! :)

Assuming that you are running Windows XP, Click on Start | Run and enter the command "cmd" (without the quotes) - alternatively, select Start | Programs | Accessories | Command Prompt. You should get a black window appearing.

Type in the command "nslookup" (again without the quotes) and press <Return>. You should get a few messages followed by a chevron prompt (>).

Simply type in the IP address that you want to find (e.g. 83.170.96.59) and you should then get the name of the computer that has that IP address. In this case it is server40058.uk2net.com, which sounds very much like an ISP name. If you then Google uk2net.com, it does indeed turn out to be a web hosting company. You can do the reverse, and type in a domain name (e.g. www.bushcraftuk.com) which returns the IP address 83.170.96.59) so we can see that this site is hosted here.

If you want a bit more information, do a Google for a "whois" web site and enter the domain name that you are interested in (e.g. bushcraftuk.com - remember to omit the "www.") and you should then get some details about who owns the domain and how long the current registration lasts. If it is a business, you can usually get the actual street address, but personal registrants can opt out of having their address publicly available. In this case the domain is apparently owned by TUCOWS (not a big white polar bear).

Load of non-bushcrafty information, and you're all probably thinking that he's just showing off his knowledge - which is probably true. :eek:


Geoff
 
T

Tourist

Settler
Jun 15, 2007
507
1
Northants
Same problem. The location is City of London, I also got the service providers details.

Thats about as far as you'll get as a civvy - you need warrants n' things to get any further, theoretically.
 
Jodie

Jodie

Native
Aug 25, 2006
1,561
11
54
London
www.google.co.uk
Geoff that was very interesting and useful actually, thanks. I've used the DNS lookup
and general whois-y stuff but I've never accessed it via C:\

I also miss telnet :)
 
Martyn

Martyn

Bushcrafter through and through
Aug 7, 2003
5,252
33
58
staffordshire
www.britishblades.com
dgcalvert said:
Although this problem turned out to be a problem with the BCUK site, you can often find the 'owner' of an IP address (or domain) from your own PC.

I'm writing this assuming that you don't know anything! If you know what I'm talking about, then this message isn't aimed at you! :)

Assuming that you are running Windows XP, Click on Start | Run and enter the command "cmd" (without the quotes) - alternatively, select Start | Programs | Accessories | Command Prompt. You should get a black window appearing.

Type in the command "nslookup" (again without the quotes) and press <Return>. You should get a few messages followed by a chevron prompt (>).

Simply type in the IP address that you want to find (e.g. 83.170.96.59) and you should then get the name of the computer that has that IP address. In this case it is server40058.uk2net.com, which sounds very much like an ISP name. If you then Google uk2net.com, it does indeed turn out to be a web hosting company. You can do the reverse, and type in a domain name (e.g. www.bushcraftuk.com) which returns the IP address 83.170.96.59) so we can see that this site is hosted here.

If you want a bit more information, do a Google for a "whois" web site and enter the domain name that you are interested in (e.g. bushcraftuk.com - remember to omit the "www.") and you should then get some details about who owns the domain and how long the current registration lasts. If it is a business, you can usually get the actual street address, but personal registrants can opt out of having their address publicly available. In this case the domain is apparently owned by TUCOWS (not a big white polar bear).

Load of non-bushcrafty information, and you're all probably thinking that he's just showing off his knowledge - which is probably true. :eek:


Geoff
Click to expand...


All well and good if you are hunting down the owner of a website, but if you are trying to locate an individual internet user through their IP address alone, you are bang out of luck unless the ISP is happy to help and pass on their details - which they never do. All you can do is find out the ISP and that's it. In the case of many ISP's who use proxy servers, It's almost impossible for them to locate an individual beyond a broad geographic area from the IP alone, because the IP only points to the shared proxy server. To locate an exact machine using AOL for example, you also need the MAC address - and of course, AOL's help. Even with ISP's that give their users unique IP addresses, they usually change according to each login session, so you need the ISP's help to determine who was using a particular IP during a particular login. Even if in the fairly rare event that the IP is a permanent, static IP, you are unlikely to get any more info on the user beyond the ISP. You could run a port scan and hope one of their ports is open and try and dig some info out that way, but that would depend on them not having a firewall and is quite illegal anyway.
 
Status
Not open for further replies.

Similar threads

Pattree
Adjudication re stealth camping.
Replies
4
Views
495
Bushcraft Chatter
Pattree
Pattree
S
Hello everyone
Replies
18
Views
510
Introductions & Welcomes
Sublimeleonism
S
H
What are the worst-case-scenario hiking situations?
Replies
58
Views
2K
Hygiene and First Aid / Medicinal
Great egret
Great egret
H
Tent heating?
Replies
15
Views
954
Shelter & Sleeping
nigelp
nigelp
dwardo
Its been a long time since I put needle to leather.
Replies
12
Views
633
DIY and Traditional crafts
Tony
Tony

BCUK Shop

We have a a number of knives, T-Shirts and other items for sale.

SHOP HERE
Top Bottom