| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 47558 | 2004-07-30 01:52:00 | tracking an e-mail imposter | KatiMike (242) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 256632 | 2004-07-30 01:52:00 | For some 5 weeks a work associate has been recieving rubbish via e-mail / virus laden attachments purporting to be from me . Initially I thought MyDoom spoofing etc, and did a through check over my computer "just in case' - all fine .As the weeks have gone by I've come to thinking that in fact there is more malicious intent behind this , the frequency has increased to daily , and he's just started to recieve similar e-mails stating there from another party known to us . I asked the recipient to check the message source and forward it to me Turns out the sender was 222-152-66-48.jetstream.xtra.co.nz I think from looking at the info supplied [ I'm with Orcon] . So how do I find out who this is ??? Any advise appreciated as I'd like to enter into meaningful discussions personally with the miscreant , many thanks for any thoughts , Mike W |
KatiMike (242) | ||
| 256633 | 2004-07-30 02:07:00 | I hate to be obvious but wouldn't you just talk to Telecom (xtra) | robc (2685) | ||
| 256634 | 2004-07-30 02:11:00 | Search the APNIC database and then continually pester Telecom . apnic . net/db/index . html" target="_blank">www . apnic . net After a certain age, if you don't wake up aching in every joint, you are probably dead - Tommy Mein |
Merlin (503) | ||
| 256635 | 2004-07-30 02:17:00 | I agree contact xtra by phone or email try abuse at xtra dot co dot nz give them the details they should follow it up but because of privacy issues you may not be informed of follow up action taken by the isp. I have done this with an off shore isp , one of their customers was sending viruses to me and I believe they werent aware of it (well before doom blaster etc were heard of). |
beama (111) | ||
| 256636 | 2004-07-30 02:17:00 | > Turns out the sender was > 222-152-66-48.jetstream.xtra.co.nz I think from > looking at the info supplied [ I'm with Orcon] . So > how do I find out who this is ??? I think you will find that it will be a computer on xtra jetstream network which has a spoofing virus & that computer also has your e-mail address in it, or it has found it on the internet. I suggest you talk to your ISP Orcon & see what they say then talk to xtra if need be. |
stu120404 (268) | ||
| 256637 | 2004-07-30 04:11:00 | Many thanks for the help - I'd thought of ringing Xtra but thought they'd probably not be able to give me any details because of privacy issues etc . That's why I thought I'd ask for advise about how I can "Snoop " around and try and find the sender myself . The link to the APNIC was great thanks , returned the result [ I think ] that Xtra is responsible for the addresses 222.152.64.0 to 222.152.95.255 and it reports status as allocated non-portable ... does this mean a static IP ? Thanks for the thoughts re spoofing virus stu120404 ; I thought this may be the case just seems a bit odd to have gone on for over 5 weeks now , and now involves a 3rd party . All 3 of us are directors on a small board dealing with community issues , so seems odd the chairman has been the one recieving all these e-mails , first supposedly from me , then supposedly from the secretary . I'll keep an eye on further message source information and confirm it's always coming from the same address , then s'pose I'll have to inform Telecon and let them deal with it . Just a bit annoyed I may never get to find out who gets off impersonating me X-( Ah well , such is life ... thanks once more for the help , Mike W |
KatiMike (242) | ||
| 256638 | 2004-07-30 05:28:00 | > The link to the APNIC was great thanks , returned the > result [ I think ] that Xtra is responsible for the > addresses 222.152.64.0 to 222.152.95.255 and it > reports status as allocated non-portable ... does > this mean a static IP ? Nope it is not a static IP, a Lot of Xtra (I think is the only ISP who has that range) Jetsurf / Jetstreem customers use that IP address. Including me who has a 222.152.XX.XXX IP address as well. |
stu120404 (268) | ||
| 1 | |||||