|
Hi guys, anyone has an idea on how to identify then trace the IP address of someone you're chatting with over at an Instant Messenger?
My friend got harassed over the net, and I'm not talking about simple badmouthing, the guy sent obscene pics to my friend which can't be unseen. She wants justice handed over to that fucker, and I want to help her.:D
So, anyone know a legit program (the ones w/o viruses, better if it's just a website) that can identify and possibly trace IPs? thanks a lot. The email add is still alive.
My browser closes whenever I go to sites with those, I guess my anti-virus is overprotective.
EDIT: My friend really insists on getting the IP of the person, I tried to convince her on settling on spambots but to no avail.
|
someone sent your friend boobies? ^_^
|
If you can get them to accept a trojan everything would be easier, and more illegal.
What happened to just signing them up to loads of spam, easy and effective.
|
On November 05 2009 22:22 JohnColtrane wrote:
someone sent your friend boobies? ^_^
nope, a pic of his dick and a webcam view of the same thing.
|
sent pictures of your own dick back?
|
|
|
|
|
I just wanted to let you know in a totally non-dick way that you want the word "obscene" not "obscure"
|
|
|
On November 05 2009 22:32 JohnColtrane wrote:
sent pictures of your own dick back?
I didn't want to degrade him too much.
thanks for the links guys, trying them out now...
|
I'm not quite sure to where you want to trace it?
|
What do you achieve by knowing where that guy is?
You probably won't even know that guy. And if you did, what difference does it make?
|
On November 05 2009 23:12 Cloud wrote:
What do you achieve by knowing where that guy is?
You probably won't even know that guy. And if you did, what difference does it make?
Well, apparently, my friend felt she (and the other victims) felt raped, online.
|
Its more reliable than asking for asl.
|
Braavos36373 Posts
tell them not to accept messages from people not on their friend list
|
On November 05 2009 23:21 Hot_Bid wrote:
tell them not to accept messages from people not on their friend list
yeah, easier said than done really. 
I'm just consoling her right now and you know the feeling when you can't tell them what do to because it's already done? Damn it's hard.
Thanks for the help guys, we tried but it was just plain impossible.
|
On November 05 2009 23:17 SilverSkyLark wrote:
Well, apparently, my friend felt she (and the other victims) felt raped, online.
Whaaaaaaaa? Creeped out, sure. Scared, maybe. But raped? Please. That's an insult to actual rape victims. Stop talking with random people and you won't have this problem. The other alternative is to get over it; it's a dick, big deal. If she was dumb enough to give this guy her name/address/personal information, then the problem is on a whole different level.
Also, if she was so offended by the picture or the webcam (whichever came first), why did she stick around long enough to see the other?
|
I'm actually on the side of the guy that sent her pics. Since when is sending pics grounds for "justice" in the form of spambots or whatever it is you have in mind?
What if you find out he's in another country?
Just forget about it.
|
Snet
United States3573 Posts
What exactly do you plan on doing if you do find out where he is? Report him to the police? Unless your friend is underage then I seriously doubt anyone will even pay attention to you.
My advice is just to get over it, and learn from your mistakes. It's only a picture of a penis, now she has learned an incredible lesson to not accept images or links from people she doesn't know - and this will probably save her from viruses or worse in the future.
|
On November 05 2009 23:21 Hot_Bid wrote:
tell them not to accept messages from people not on their friend list
Aside from this, I would say:
a) sent pics of your dick back.
b) wire shark or something to trace the packets.
|
On November 05 2009 23:17 SilverSkyLark wrote:Show nested quote +On November 05 2009 23:12 Cloud wrote:
What do you achieve by knowing where that guy is?
You probably won't even know that guy. And if you did, what difference does it make? Well, apparently, my friend felt she (and the other victims) felt raped, online.
ROFLMAO!!
That's like the stupidest thing i've heard about this kind of happening.
She saw a dick, such a big deal. Internet's full of dicks anyway, no matter where you go it just pops out a dick out of nowhere. So i don't see the big deal.
|
Sweden33719 Posts
1) Find a she-male striptease video. Having to look through tonnes of she-male porn to find this might not be the most fun task in the world, but you can ask Baal or Strafe or something.
2) Have your friend reply back, introducing said video as her "reciprocation".
3) Profit.
Yeah, no "??????" step, just immediate profit!
|
|
|
FrozenArbiter wins the thread lolol
definitely do that.
|
On November 06 2009 00:23 Grobyc wrote:Show nested quote +On November 05 2009 23:21 Hot_Bid wrote:
tell them not to accept messages from people not on their friend list Aside from this, I would say: a) sent pics of your dick back. b) wire shark or something to trace the packets.
This. Only, provide a link to a page that is NOT your dick that records the ip of any visitors. Then use that ip with any of the aforementioned utilities. I've caught many rapists this way, or at least pinpointed their location to the nearest city/state of whatever proxy server they were using..
|
On November 05 2009 22:35 b3h47pte wrote:You can use a packet sniffer to get his IP like using Ethereal http://www.ethereal.com/
b) wire shark or something to trace the packets.
guys cmon... instant messages go through a server, you aren't directly connected to each other, so using a packet sniffer would just give you the ip of the server facilitating the exchange -_-. It would be a HUGE security risk if you could figure out someone's IP from an IM conversation, for example if you knew someone's IM from facebook or something, you could start a conversation with them and then potentially figure out their address from their IP.
And to the OP: Who the FUCK cares if a guy sent naked pictures online? ffs. OMG IT'S A HUMAN BODY NOOOOO. It's not like there was any physical contact whatsoever. Your friend should stop being such an overreacting piece of shit and realize that viewing a picture is not the same as being raped.
|
As was mentioned twice, for getting the IP address of the other person, you just need a packet tracer/dumpper/sniffer/whatever you want to call it open and running a trace on your Ethernet (wireless) adapter.
In the old days, everybody's favorite (mostly Unix) tool for this was tcpdump, one of those handy command-line tools. More recently, there's been a long-going open-source project to do the same, except providing a GUI and a whole lot of more features. using some of the old libraries of tcpdump (pcap or packet capture).
It was called Ethereal (somebody mentioned to use Ethereal), but a few years back the name was changed to Wireshark because of trademark issues (somebody mentioned to use Wireshark). Ethereal is deprecated.
Wireshark is legit software under GPL used by network professionals and researchers (and many more -- it has a large user base and good documentation), and it shouldn't be too hard to figure out. No worries on this end.
|
Canada9720 Posts
if this guy thinks there's "justice" on the internet, and he wants to help a girl find someone who sent her gross pics (roflmao), then he won't be figuring out wireshark any time soon.
this is all pretty dumb
|
On November 06 2009 02:44 Myrmidon wrote:
As was mentioned twice, for getting the IP address of the other person, you just need a packet tracer/dumpper/sniffer/whatever you want to call it open and running a trace on your Ethernet (wireless) adapter.
In the old days, everybody's favorite (mostly Unix) tool for this was tcpdump, one of those handy command-line tools. More recently, there's been a long-going open-source project to do the same, except providing a GUI and a whole lot of more features. using some of the old libraries of tcpdump (pcap or packet capture).
It was called Ethereal (somebody mentioned to use Ethereal), but a few years back the name was changed to Wireshark because of trademark issues (somebody mentioned to use Wireshark). Ethereal is deprecated.
Wireshark is legit software under GPL used by network professionals and researchers (and many more -- it has a large user base and good documentation), and it shouldn't be too hard to figure out. No worries on this end.
I can't believe you just attempted to give a history lesson of packet sniffers when you don't even understand that a packet sniffer is going to be useless in this situation. See my above post.
|
On November 06 2009 02:50 AcrossFiveJulys wrote:Show nested quote +On November 06 2009 02:44 Myrmidon wrote:
As was mentioned twice, for getting the IP address of the other person, you just need a packet tracer/dumpper/sniffer/whatever you want to call it open and running a trace on your Ethernet (wireless) adapter.
In the old days, everybody's favorite (mostly Unix) tool for this was tcpdump, one of those handy command-line tools. More recently, there's been a long-going open-source project to do the same, except providing a GUI and a whole lot of more features. using some of the old libraries of tcpdump (pcap or packet capture).
It was called Ethereal (somebody mentioned to use Ethereal), but a few years back the name was changed to Wireshark because of trademark issues (somebody mentioned to use Wireshark). Ethereal is deprecated.
Wireshark is legit software under GPL used by network professionals and researchers (and many more -- it has a large user base and good documentation), and it shouldn't be too hard to figure out. No worries on this end. I can't believe you just attempted to give a history lesson of packet sniffers when you don't even understand that a packet sniffer is going to be useless in this situation. See my above post.
Yeah I'm retarded, thanks. Haven't used IM in years and forgot somehow it's not P2P. Last I used it, I sent files over direct connection, but this is obviously not the case here?
edit: I only use IRC these days, and that I would realize is obviously through a server, but yeah...just stupid of me sorry. I know better.
|
On November 06 2009 02:38 AcrossFiveJulys wrote:guys cmon... instant messages go through a server, you aren't directly connected to each other, so using a packet sniffer would just give you the ip of the server facilitating the exchange -_-. It would be a HUGE security risk if you could figure out someone's IP from an IM conversation, for example if you knew someone's IM from facebook or something, you could start a conversation with them and then potentially figure out their address from their IP. And to the OP: Who the FUCK cares if a guy sent naked pictures online? ffs. OMG IT'S A HUMAN BODY NOOOOO. It's not like there was any physical contact whatsoever. Your friend should stop being such an overreacting piece of shit and realize that viewing a picture is not the same as being raped.
With AIM i'm pretty sure you can do Direct Connection and with MSN you can just initiate a file transfer. Right? both cases would allow you to connect directly.
|
This thread is too funny. Raped online? LMAO!
Seriously man I understand you are trying to get in this girls pants but in the US (idk about the Philippines) there is much better ways than nerd revenge. Unless this girl get turned on by nerd rage, you are taking the hard route.
And if you are not trying to get in her pants and legitimately trying to get this guy in trouble I REALLY doubt any cop will give 2 shits about this, it's just plain dumb  !
|
As has already been said, it's unlikely you're going to pin this guy's location down and be able to teach him a lesson using the IP.
If your friend has him on any instant messenger program, they have an email address for him, try googling it using "his_email@whatever.com" with the quotation marks included to filter out anything but that exact address. See what turns up, you may get links for any forums, boards or groups he's signed up to. Could also be used to check for him on social networking sites.
Now... that kind of information could be used in interesting ways, especially if you have pictures.
If all else fails, post his email address and the webcam pics on 4chan along with a message tailored to ignite their fury then sit back and let them do your work for you. Or create a craigslist advert in the men seeking men section on his behalf.
|
On November 06 2009 03:33 Diamondback2 wrote:And if you are not trying to get in her pants and legitimately trying to get this guy in trouble I REALLY doubt any cop will give 2 shits about this, it's just plain dumb !
Would be ironic if, when the OP finally makes his move she cries RAPE!
|
On November 06 2009 03:14 b3h47pte wrote:Show nested quote +On November 06 2009 02:38 AcrossFiveJulys wrote:On November 05 2009 22:35 b3h47pte wrote:You can use a packet sniffer to get his IP like using Ethereal http://www.ethereal.com/ b) wire shark or something to trace the packets. guys cmon... instant messages go through a server, you aren't directly connected to each other, so using a packet sniffer would just give you the ip of the server facilitating the exchange -_-. It would be a HUGE security risk if you could figure out someone's IP from an IM conversation, for example if you knew someone's IM from facebook or something, you could start a conversation with them and then potentially figure out their address from their IP. And to the OP: Who the FUCK cares if a guy sent naked pictures online? ffs. OMG IT'S A HUMAN BODY NOOOOO. It's not like there was any physical contact whatsoever. Your friend should stop being such an overreacting piece of shit and realize that viewing a picture is not the same as being raped. With AIM i'm pretty sure you can do Direct Connection and with MSN you can just initiate a file transfer. Right? both cases would allow you to connect directly.
Well, that is true but only if both people agree to initiate the transfer (which is the security measure). I was assuming, possibly erroneously, that he had shared the pictures with her without initiating a direct connection (this can be done), but if they indeed initiated a direct connection then of course packet sniffing to obtain the offender's IP would be possible.
Anyway, it's too late to get the guy's IP at this point unless your friend can trick him into this kind of situation and log the packet exchanges.
|
Depending on the messaging application this may require some form of direct connection to the target machine (such as AOL Instant Messenger's "Direct Connect" option for image/audio messaging). In addition, to make things easier by way of reducing output, don't have any other instant messages and/or direct connections active except for the one to the target machine while following the guide.
During an instant message/direct connection open the Start menu. On XP click Run, type "cmd" without quotes into the box and click OK. For Vista just type "cmd" without quotes and hit Enter. At this point I'd recommend clicking the program icon in the upper left corner and choosing "Properties." Then, under the "Layout" tab, increase the width of the window by 10 to 20 pixels. This should make reading the output easier.
In the command prompt type "cd C:\" without quotes then press the Enter key. This takes you to your root directory. I'm compulsive and I like to start in the root directory. Type "cls" without quotes then press the Enter key. This clears the command line interface. I'm compulsive and I like to start with a clear CLI. Type "netstat -b" then press the Enter key. This provides you with some output. I'm compulsive and I lik... wait, this gave us some output.
+ Show Spoiler +
What you see at this point is output of current connections being made to/from your PC. Look for the row(s) with the name of the messaging application's executable (aim.exe, msmgs.exe, yahoomessenger.exe, etc). The IP in the "Foreign Address" column will be that of the target machine. If there are multiple results look for the odd one out of the bunch. It won't be a connection to login.messaging.aol.com or snc1.facebook.com or the sort. It will be something like 192.168.1.100 except that it won't be anything like 192.168.x.x (where x is a number from 0 to 255) because that range is reserved for private networks. It'll be some numbers though.
So now you've got their IP address. From here you can do a number of things that may or may not be legal depending on where you reside. I won't delve into any major details one way or the other but typically the legal route is to gather all the necessary data (time of occurrence, offender's IP address, chat-logs, etc) and present it to their ISP's abuse department and/or the proper authorities. If the offender is outside of your country you might be SOL; I couldn't say. Perhaps someone here that speaks legalese could assist in that area.
Edit: I should add that you may end up with the IP of a proxy server, which won't do you any good. Also, as already debunked above, a packet sniffer is good for a man in the middle attack on a network you're connected to but won't help for this. No extra tools are needed to get an IP, just the command prompt that comes with every copy of Windows.
|
On November 05 2009 23:47 Ingenol wrote:Show nested quote +On November 05 2009 23:17 SilverSkyLark wrote:
Well, apparently, my friend felt she (and the other victims) felt raped, online. Whaaaaaaaa? Creeped out, sure. Scared, maybe. But raped? Please. That's an insult to actual rape victims. Stop talking with random people and you won't have this problem. The other alternative is to get over it; it's a dick, big deal. If she was dumb enough to give this guy her name/address/personal information, then the problem is on a whole different level. Also, if she was so offended by the picture or the webcam (whichever came first), why did she stick around long enough to see the other?
I gotta say Im disgusted aswell, I have friends that have been raped IRL, raped online??  ??? ..... I have no words .... no words ....
|
On November 06 2009 03:14 b3h47pte wrote:Show nested quote +On November 06 2009 02:38 AcrossFiveJulys wrote:On November 05 2009 22:35 b3h47pte wrote:You can use a packet sniffer to get his IP like using Ethereal http://www.ethereal.com/ b) wire shark or something to trace the packets. guys cmon... instant messages go through a server, you aren't directly connected to each other, so using a packet sniffer would just give you the ip of the server facilitating the exchange -_-. It would be a HUGE security risk if you could figure out someone's IP from an IM conversation, for example if you knew someone's IM from facebook or something, you could start a conversation with them and then potentially figure out their address from their IP. And to the OP: Who the FUCK cares if a guy sent naked pictures online? ffs. OMG IT'S A HUMAN BODY NOOOOO. It's not like there was any physical contact whatsoever. Your friend should stop being such an overreacting piece of shit and realize that viewing a picture is not the same as being raped. With AIM i'm pretty sure you can do Direct Connection and with MSN you can just initiate a file transfer. Right? both cases would allow you to connect directly.
That's what I thought.
If OP really cares, worth a try anyway.
|
On November 05 2009 23:17 SilverSkyLark wrote:Show nested quote +On November 05 2009 23:12 Cloud wrote:
What do you achieve by knowing where that guy is?
You probably won't even know that guy. And if you did, what difference does it make? Well, apparently, my friend felt she (and the other victims) felt raped, online.
LOL. Then I've been raped countless times and not in the vag or anything but in THE ASS.
I demand JUSTICE!
|
On November 06 2009 00:09 Sadistx wrote:
I'm actually on the side of the guy that sent her pics. Since when is sending pics grounds for "justice" in the form of spambots or whatever it is you have in mind?
What if you find out he's in another country?
Just forget about it.
I agree, not to mention on webcam, you have to accept somebody's webcam or go to a site. You don't just have a webcam of somebody's dick in your face out of nowhere.
|
lol @ rape comment.
what lokomia said will work if you can get a direction connection. from there you can do all kinds of fun stuff.
OR (and this really doesnt require much skill) find their facebook page (you has email address of them right?). get him back on webcam. take stills when he shows his penis. email it to everyone relevant to their life. profit.
|
If the IM protocol is peer-to-peer, you can use a packetsniffer and sort through ALL of the information. If users are anonymized by the protocol, you can only really complain to the service that the user account be warned/destroyed.
Not sure what Windows folks like/trust, but tcpdump is a standard issue for Unix-based folks and easy to grep through.
If they are behind a proxy then you're out of luck, and you probably have near-zero chance of prosecuting (certainly in the US, but I don't know how gung-ho law enforcement is where you are).
|
On November 06 2009 08:30 mmp wrote:
If the IM protocol is peer-to-peer, you can use a packetsniffer and sort through ALL of the information. If users are anonymized by the protocol, you can only really complain to the service that the user account be warned/destroyed.
Not sure what Windows folks like/trust, but tcpdump is a standard issue for Unix-based folks and easy to grep through.
If they are behind a proxy then you're out of luck, and you probably have near-zero chance of prosecuting (certainly in the US, but I don't know how gung-ho law enforcement is where you are).
Not to mention that the RIAA/MPAA/etc can't do diddly with only a person's IP address in the states. Cases are dropped left & right because it isn't sufficient evidence. This leads me to seriously doubt turning them over to the authorities will help, even if the OP's friend and the offender are both in the USA. Assuming they didn't use a proxy and your friend had their real IP address, they would have probably needed to have sent your friend child pornography or something conspiring of a terrorist attack for our authorities to bother wasting time and money. I don't see them looking into online sexual harassment.
That leaves the less legal alternatives that are available. I could try to explain the short route using a RAT but my testicles descended too long ago to bother with them. They died off in the mid to late 90's anyway, after a majority of the hackers of that generation adapted their tools over as legal Network Administration Utilities or went off to to become the security professionals of today (I'm looking at you l0pht -> @stake -> Symantec) which means 99% of what worked then is detected by modern antivirus software. Unless your friend's target was overly trusting and too stupid to have some form of antivirus and/or firewall, these wouldn't work. And that leaves the long way...
I'd have to start with use of port scanners to search for vulnerable services on the remote machine. I'd most certainly have to find one with GUI because I don't see your friend using CLI to do this (and even giving them a GUI they'd probably want step-by-step screencaps because they didn't understand a majority of what was in front of them). Even if I did explain all that and they (meaning I) successfully found a door in, I'd have to follow up with yet another guide covering how to "pick the lock," so to speak. To be honest, I feel that teaching any of this would likely be a disservice to the internet as a whole. I'm not willing to teach someone such methods so that they might run off and abuse the knowledge. Especially when they don't possess enough skill to find the methods for themselves. Not that it isn't all out there, but that I won't make it any easier than what I have. Your friend could've found the same guide I posted above with a three word search on Google ("get IP AIM" or "get IP MSN" or whatever). Three words and a press of the Enter key would have saved me the time spent writing the guide above. Three more ("Port Scan IP") could probably get them another step along the way but it's up to them to figure it out. I've already said too much.
|
|
|
|
|
|
EPT![[image loading]](http://www.funnychill.com/files/funny-pictures/wat.jpg)
