HOW TO DETECT THE IP OF ANYONE CONNECTED YOU

HI FRIENDS NOW I M GOING TO TELL YOU THE TRICK OF HOW TO DETECT THE IP ADDRESS OF SOMEONE WHO IS CONNECTED TO YOU


Try doing the following to someone who is connected(online) and using ICQ98 with
their IP preference set to (N/A):


1. Send them a message, chat or check their away message.


2. Open a DOS prompt, then type "netstat -a" (without the quotes) at the prompt.

e.g. c:\windows\netstat -a
the following is an example of what you should see :

Active Connections

Proto Local Address Foreign Address State
TCP franck-a:0 0.0.0.0:0 LISTENING
TCP franck-a:1029 0.0.0.0:0 LISTENING
TCP franck-a:1030 0.0.0.0:0 LISTENING
TCP franck-a:1090 0.0.0.0:0 LISTENING
TCP franck-a:1091 0.0.0.0:0 LISTENING
TCP franck-a:1098 0.0.0.0:0 LISTENING
TCP franck-a:1099 0.0.0.0:0 LISTENING
TCP franck-a:1093 0.0.0.0:0 LISTENING
TCP franck-a:1090 server5.syd.www.ozemail.net:80 CLOSE_WAIT
TCP franck-a:1091 server5.syd.www.ozemail.net:80 CLOSE_WAIT
TCP franck-a:1098 server5.syd.www.ozemail.net:80 CLOSE_WAIT
TCP franck-a:1099 p3-max35.auck.ihug.co.nz:1054 ESTABLISHED
TCP franck-a:137 0.0.0.0:0 LISTENING
TCP franck-a:138 0.0.0.0:0 LISTENING
TCP franck-a:nbsession 0.0.0.0:0 LISTENING
UDP franck-a:1029 *:*
UDP franck-a:1093 *:*
UDP franck-a:nbname *:*
UDP franck-a:nbdatagram *:*

so as you can see from the above information,

------> p3-max.auck.ihug.co.nz:1054 ESTABLISHED
is what we are interested in. The next thing we want to do is ping this person to
get their numeric IP.

3. So at the DOS prompt, type "ping p3-max35.auck.ihug.co" minus the quotes and the bit on
the end that say's ---> :1054 ESTABLISHED <--- We are not interested in this bit.
e.g. c:\windows\ping p3-max35.auck.ihug.co.nz


4. Well low and behold!! you should be able to see their IP address just about now :)

the following is an example of what you should see :

Pinging p3-max35.auck.ihug.co.nz [209.76.151.67] with 32 bytes of data:
Reply from 209.76.151.67: bytes=32 time=1281ms TTL=39
Request timed out.
Reply from 209.76.151.67: bytes=32 time=1185ms TTL=39
Request timed out.

Ping statistics for 209.76.151.67:
Packets: Sent = 4, Received = 2, Lost = 2 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 1185ms, Maximum = 1281ms, Average = 616ms


5. So as you can see, this person's IP is ---> 209.76.151.67 and can be easily targeted
by someone wishing to nuke him.



6. If you like you can also type netstat -n which gives you the IP without pinging them as
shown above.

C:\WINDOWS\netstat -n

the following is an example of what you might see:

Active Connections

Proto Local Address Foreign Address State
TCP 203.21.7.181:1067 209.108.151.76:80 CLOSE_WAIT
TCP 203.21.7.181:1069 209.108.151.76:80 CLOSE_WAIT
TCP 203.21.7.181:1070 209.108.151.76:80 CLOSE_WAIT
TCP 203.21.7.181:1072 209.108.151.77:80 CLOSE_WAIT
TCP 203.21.7.181:1074 209.108.151.76:80 CLOSE_WAIT
TCP 203.21.7.181:1084 209.76.151.67:1054 ESTABLISHED

As you can see, the numeric IP---> 203.76.151.67 <--- (Foreign Address) is the IP we want.

Posted by

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)