| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 33123 | 2003-05-07 22:18:00 | Best site for "Whois" IP address queries | Billy T (70) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 142198 | 2003-05-07 22:18:00 | Hi Team I have been receiving some strange emails lately with the subject line blank and a one word message: "test". Fortunately my email client is set so that receipts are not sent when messages are opened so the reverse trail is cold, but I am curious to learn more about my anonymous correspondent. The sender uses a cryptic Xtra address, but the associated IP adresses show that it is coming via Telstra-Clear from an overseas address. Which are the best and most informative "whois" lookup services so that I can find out the source? Cheers Billy 8-{) :| |
Billy T (70) | ||
| 142199 | 2003-05-07 23:24:00 | I use www.geektools.com "Whois" is a link at the top of the page. Argus |
argus (366) | ||
| 142200 | 2003-05-07 23:37:00 | Hello Billy, I use a suite called netlab.exe, which includes whois, finger, DNS, trace, ping, synchclock, etc. Unfortunately the original site from which it could be downloaded has now gone but the program can be downloaded from here (www.hyperspace.eol.pl) as NetLab.exe. It actually downloads as NetLab1.exe, it is version 1.4, mine is 1.3 When run a set of files is extracted to a generated folder called NetLab The only small problem is that this version has a set of inbuilt time servers and other addresses that want to connect out to the internet. They can all be deleted, but dont delete the 4 Whois servers. They cover the 4 quarters of the globe to find location and details of most urls. The value of this package is that "all" the tools you need to get info on a url or IP address are collected together. Cheers. |
Terry Porritt (14) | ||
| 142201 | 2003-05-08 01:54:00 | I recommend www.SamSpade.org which has online utilities and also a downloadable win32 program. Also the network tools at http: are very good. | -=JM=- (16) | ||
| 142202 | 2003-05-08 02:42:00 | I just type "whois 203.97.99.25" in a shell, and get an output like: % [whois.apnic.net node-2] % How to use this server www.apnic.net % Whois data copyright terms www.apnic.net inetnum: 203.97.96.0 - 203.97.127.255 netname: CLIX-COMPASS-NZ descr: Compass Communications Limited descr: Please send complaints to abuse@compass.net.nz country: NZ admin-c: SM97-AP tech-c: SM97-AP remarks: Delegated by CLEAR Communications Ltd, Auckland, New Zealand notify: netobjs@clear.net.nz mnt-by: MAINT-CLIX-NZ changed: netobjs@clear.net.nz 20010628 status: ALLOCATED PORTABLE source: APNIC person: Steve McCarthy address: Compass Communications Limited address: Level 3 address: 6-8 Seafield View Road address: Auckland address: New Zealand phone: +64 9 359-8910 fax-no: +64 9 359-8912 e-mail: smccarthy@compass.net.nz nic-hdl: SM97-AP mnt-by: MAINT-CLIX-NZ changed: netobjs@clear.co.nz 20011222 source: APNIC surely someones written a similar prog for you windoze people?? .Clueless |
Clueless (181) | ||
| 142203 | 2003-05-08 04:42:00 | That must be Penguin material Clueless. The last time I tried writing in a shell my pencil broke, and when I looked for the reply I got an eyeful of sand.:p Thanks to other posters, I'll try your suggestions. Cheers Billy 8-{) :D |
Billy T (70) | ||
| 142204 | 2003-05-08 04:47:00 | I use a useful App called NeoTrace Express. I think its no longer supported by the manufacturer, or is part of some other software or something... Anyways, Its shareware, so search google for it! NTX325.exe is the file name, so look for that, if ya can find it I'll upload it coz its tiny. It does a Graphical display of the connect, where its coming from, where your data goes thru to get to it, stuff like that! I wouldnt be without it on days when the net seems to go so slowly.. I now know why... Coz my data's going around the world 2 1/2 times ;-) Cheers Chilling_Silence |
Chilling_Silently (228) | ||
| 142205 | 2003-05-08 05:51:00 | Thanks Chill Two problems: 1) Tiny is now 800 KB 2) McAfee now own it (must be either good or a threat) and all (download) roads lead to their website except this German one, but it is a Monster URL (translate.google.com e%2520Express&prev=/search%3Fq%3DNTX325.exe%2B%26hl%3Den%26lr%3D%26ie% 3DUTF-8%26sa%3DG) however I have successfully downloaded. Cheers Billy 8-{) :D |
Billy T (70) | ||
| 142206 | 2003-05-08 06:17:00 | Well, Netlab spat the dummy and found nothing, and Neotrace was fine up until the voluntary registration screen, which promptly fired me straight back to McAfee again. I ran it in trial mode though and it came up with the goods. The emails come in via Xtra alright, but they are variously sourced from either Canada (BC) or central Australia (Comindico?). I suspect the latter is just another bounce through an insecure server as the details contained a name for the owner and his ISP address. Do you have a registration code for Neotrace Chill? It probably woudn't work anyway, but since it is a free version (that McAfee want to nobble) I don't think it is improper to hijack another install code to try. No doubt I will hear to the contrary if I am wrong. Cheers Billy 8-{) |
Billy T (70) | ||
| 142207 | 2003-05-08 11:26:00 | I might have copy of the Neotrace progume on my Hdd before McAfee took over it. I will have a look tomorrow & I see if I can find it. I will let you know when I find it :) |
stu140103 (137) | ||
| 1 2 3 | |||||