• Welcome to Valhalla Legends Archive.
 

AIM SN Ip tracking...

Started by Ishbar, September 22, 2005, 05:30 PM

Previous topic - Next topic

Ishbar

 I've encountered a problem recently with a friend of mine.

This boy happens to be stalking her. "Supposidly" He knows much personal information of hers, but worst of all i've seen several accounts of his "attacks" In California and Ohio. I'm confused though because I live in CT...Now to get to the point...

I was currious as to find out if its possible to aquire someones Ip from their Aim sn. I know theres netstat -n through D/C and Command Prompt, but this character wont connect with me, nor the girl he's harrassing. I know that some sites give location to Ip's so thats all I need..is his IP and im set from there on out. So if anyone has any information at all on this subject please respond. :(

His sn is: DoeBoY2510

Mine is: x IshbarQ x

MyndFyre

If they talk, have her direct-connect with him.  Packetlog.
QuoteEvery generation of humans believed it had all the answers it needed, except for a few mysteries they assumed would be solved at any moment. And they all believed their ancestors were simplistic and deluded. What are the odds that you are the first generation of humans who will understand reality?

After 3 years, it's on the horizon.  The new JinxBot, and BN#, the managed Battle.net Client library.

Quote from: chyea on January 16, 2009, 05:05 PM
You've just located global warming.

Ishbar

I said...he WONT connect with her..I know theres someway though to find it. Obviously AIM contains the sn's ip.

rabbit

Packet log some convos and look for IP's in the logs.
Grif: Yeah, and the people in the red states are mad because the people in the blue states are mean to them and want them to pay money for roads and schools instead of cool things like NASCAR and shotguns.  Also, there's something about ketchup in there.

Tazo

That wont work, messages are relayed through the server.

nslay

Packet logging is overkill
Just get Sysinternal's TCPView and watch the connections in real time.  TCPView even displays the programs they are associated with...so packet log is particularly a bad idea if you have a lot of traffic...it certainly doesn't associate connections with their programs like TCPView does.

Joe[x86]

Quote from: Tazo on September 22, 2005, 07:26 PM
That wont work, messages are relayed through the server.
One.. two.. three times thats been stated!

I don't know of any way other than DC to get their IP. =/

EDIT -
nslay, if you use a quality packet logger (ethereal) you can use a filter such as ((tcp.port == 6112)), which clearly will only show Battle.net packets, instead of AIM, but you get my drift.
Quote from: brew on April 25, 2007, 07:33 PM
that made me feel like a total idiot. this entire thing was useless.

nslay

#7
Quote from: Joe on September 22, 2005, 08:51 PM
Quote from: Tazo on September 22, 2005, 07:26 PM
That wont work, messages are relayed through the server.
One.. two.. three times thats been stated!

I don't know of any way other than DC to get their IP. =/

EDIT -
nslay, if you use a quality packet logger (ethereal) you can use a filter such as ((tcp.port == 6112)), which clearly will only show Battle.net packets, instead of AIM, but you get my drift.

We're assuming direct connect, in which case they aren't forwarded through the AOL servers.
Who cares about packets?  We're looking for the IP, not the information being sent.
So, as soon as a direct connect is established one side directly connected to other...the IP can be seen through netstat or TCPView.

Edit: a packet logger doesn't usually associate the connections to their program counterparts, nor does it usually give you the option to forcefully drop connections...no windows utility that I know of gives you that kind of verbosity and power.  Packet loggers are used to watch information being transmitted and recieved...TCPView is a small and powerful tool that allows you to watch incoming and outgoing connections in real time while examining which program is responsible for which connection...it also allows you to forcefuly drop connections which I thought was pretty cool.  TCPView isn't a packet logger.

Explicit

So in other words, that guy is stalking her?
I'm awake in the infinite cold.

[13:41:45]<@Fapiko> Why is TehUser asking for wang pictures?
[13:42:03]<@TehUser> I wasn't asking for wang pictures, I was looking at them.
[13:47:40]<@TehUser> Mine's fairly short.

nslay

Quote from: Ishbar on September 22, 2005, 06:31 PM
I said...he WONT connect with her..I know theres someway though to find it. Obviously AIM contains the sn's ip.

Maybe file transfer?

Topaz

You're not likely to get his IP. Why does it matter so much, anyway? And how do you know where the attacks originate from?

Joe[x86]

Aw crap, I read a daRktYpE post.. agh, my brain!

QuoteYou're not likely to get his IP.
Pound it my eThug. Now, lets get back on topic and fix it.
QuoteWhy does it matter so much, anyway?
READ.
QuoteAnd how do you know where the attacks originate from?
READ.
Quote from: brew on April 25, 2007, 07:33 PM
that made me feel like a total idiot. this entire thing was useless.

MyndFyre

Joe, since when did you become the forum police, always posting on-topic stuff and never missing anything that was said?
QuoteEvery generation of humans believed it had all the answers it needed, except for a few mysteries they assumed would be solved at any moment. And they all believed their ancestors were simplistic and deluded. What are the odds that you are the first generation of humans who will understand reality?

After 3 years, it's on the horizon.  The new JinxBot, and BN#, the managed Battle.net Client library.

Quote from: chyea on January 16, 2009, 05:05 PM
You've just located global warming.

Eric

Generally the only information you can get from an IP address is information about the user's ISP which includes the server's contact information, location and a range of IPs that they currently own.

iago

Quote from: nslay on September 22, 2005, 09:01 PM
We're assuming direct connect, in which case they aren't forwarded through the AOL servers.

He specifically said that isn't an option. 

File-transfer isn't a bad idea, though.  I think file-transfers are direct connections. 
This'll make an interesting test for broken AV:
QuoteX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*