RE: [SLE] OT: Yahoo Account Hacked
Thank you. I dont know how to do a reverse DNS look up, or whois. -----Original Message----- From: David SMITH [mailto:dave.smith@st.com] Sent: Monday, September 19, 2005 11:19 AM To: Gerald Humphreys Subject: Re: [SLE] OT: Yahoo Account Hacked On Mon, Sep 19, 2005 at 11:10:30AM +0200, Gerald Humphreys wrote:
Ok thanks..i couldnt fina an email link on there website
Also do a reverse DNS lookup and a whois lookup and report them to their ISP. -- David Smith | Tel: +44 (0)1454 462380 Home: +44 (0)1454 616963 STMicroelectronics | Fax: +44 (0)1454 462305 Mobile: +44 (0)7932 642724 1000 Aztec West | TINA: 065 2380 GPG Key: 0xF13192F2 Almondsbury | Work Email: Dave.Smith@st.com BRISTOL, BS32 4SQ | Home Email: David.Smith@ds-electronics.co.uk
Gerald Humphreys wrote:
Thank you. I dont know how to do a reverse DNS look up, or whois.
Have a look at http://www.dnsstuff.com Albert -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.344 / Virus Database: 267.11.1/104 - Release Date: 16/09/2005
I will..thanks for the link. Gerald -----Original Message----- From: Albert [mailto:albert@fastworx.com] Sent: Monday, September 19, 2005 11:35 AM To: suse-linux-e@suse.com Subject: RE: [SLE] OT: Yahoo Account Hacked Gerald Humphreys wrote:
Thank you. I dont know how to do a reverse DNS look up, or whois.
Have a look at http://www.dnsstuff.com Albert -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.344 / Virus Database: 267.11.1/104 - Release Date: 16/09/2005 -- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
i have the 64 bit ftp iso versions of 9.2 and 9.3 installed in my system. I have been able to watch / process / burn video / audio / pics from all types of sources, mostly thru a long list of packages from Packman. But in both systems i had to back up and install strange combinations of 64/32 bit versions of various packages. There is just too much 64 bit stuff that simply does not work. That is especially true with "plugins" for browser packages, including "basic" plugins like flash, real player, wmv file capability and "plugger", which behave differently in Mozilla, Firefox and Konqueror!!! Overall I would say that my multimedia capabilities are about 90% of my son's xp gaming machine, but that is neither good enough nor is it "clean" enough. The final insult to injury comes when an "upgrade" just kills instead of enhancing a package. Thank God I have found how to revert to previous versions thru Yast. There must be an easier way. Can we have a small discussion on which is the more complete approach? Is there anything to be gained by using 64 bit multimedia and browser packages in SUSE today?
kanenas wrote:
i have the 64 bit ftp iso versions of 9.2 and 9.3 installed in my system. I have been able to watch / process / burn video / audio / pics from all types of sources, mostly thru a long list of packages from Packman. But in both systems i had to back up and install strange combinations of 64/32 bit versions of various packages. There is just too much 64 bit stuff that simply does not work. That is especially true with "plugins" for browser packages, including "basic" plugins like flash, real player, wmv file capability and "plugger", which behave differently in Mozilla, Firefox and Konqueror!!! Overall I would say that my multimedia capabilities are about 90% of my son's xp gaming machine, but that is neither good enough nor is it "clean" enough. The final insult to injury comes when an "upgrade" just kills instead of enhancing a package. Thank God I have found how to revert to previous versions thru Yast. There must be an easier way. Can we have a small discussion on which is the more complete approach? Is there anything to be gained by using 64 bit multimedia and browser packages in SUSE today?
To the question, the answer has to be no. No one has yet got around to providing 64-bit plugins, so the 32-bit apps are all we have to do the job. I've installed 32-bit firefox and MPlayer so I can use the available plugins. Regards Sid. -- Sid Boyce ... Hamradio License G3VBV, licensed Private Pilot Retired IBM/Amdahl Mainframes and Sun/Fujitsu Servers Tech Support Specialist Microsoft Windows Free Zone - Linux used for all Computing Tasks
You can do a reverse DNS lookup in the exact same way as a forward DNS lookup. For example: nslookup 192.168.1.1 or nslookup myhost.mydomain.com You can also use "dig" to get a bit more info (the actual dns record), e.g. dig 192.168.1.1 Kind Regards, -- Ben Staniford (023) 9236 9315 http://www.staniford.net On Monday 19 September 2005 10:33, Gerald Humphreys wrote:
Thank you. I dont know how to do a reverse DNS look up, or whois.
-----Original Message----- From: David SMITH [mailto:dave.smith@st.com] Sent: Monday, September 19, 2005 11:19 AM To: Gerald Humphreys Subject: Re: [SLE] OT: Yahoo Account Hacked
On Mon, Sep 19, 2005 at 11:10:30AM +0200, Gerald Humphreys wrote:
Ok thanks..i couldnt fina an email link on there website
Also do a reverse DNS lookup and a whois lookup and report them to their ISP.
-- David Smith | Tel: +44 (0)1454 462380 Home: +44 (0)1454 616963 STMicroelectronics | Fax: +44 (0)1454 462305 Mobile: +44 (0)7932 642724 1000 Aztec West | TINA: 065 2380 GPG Key: 0xF13192F2 Almondsbury | Work Email: Dave.Smith@st.com BRISTOL, BS32 4SQ | Home Email: David.Smith@ds-electronics.co.uk
Thanks..thats going to work. now iam going to get a program called neo tracer which basicly traces the IP and shows you the route on a map. regards Gerald -----Original Message----- From: Ben Staniford [mailto:ben@staniford.net] Sent: Monday, September 19, 2005 11:57 AM To: suse-linux-e@suse.com Subject: Re: [SLE] OT: Yahoo Account Hacked You can do a reverse DNS lookup in the exact same way as a forward DNS lookup. For example: nslookup 192.168.1.1 or nslookup myhost.mydomain.com You can also use "dig" to get a bit more info (the actual dns record), e.g. dig 192.168.1.1 Kind Regards, -- Ben Staniford (023) 9236 9315 http://www.staniford.net On Monday 19 September 2005 10:33, Gerald Humphreys wrote:
Thank you. I dont know how to do a reverse DNS look up, or whois.
-----Original Message----- From: David SMITH [mailto:dave.smith@st.com] Sent: Monday, September 19, 2005 11:19 AM To: Gerald Humphreys Subject: Re: [SLE] OT: Yahoo Account Hacked
On Mon, Sep 19, 2005 at 11:10:30AM +0200, Gerald Humphreys wrote:
Ok thanks..i couldnt fina an email link on there website
Also do a reverse DNS lookup and a whois lookup and report them to their ISP.
-- David Smith | Tel: +44 (0)1454 462380 Home: +44 (0)1454 616963 STMicroelectronics | Fax: +44 (0)1454 462305 Mobile: +44 (0)7932 642724 1000 Aztec West | TINA: 065 2380 GPG Key: 0xF13192F2 Almondsbury | Work Email: Dave.Smith@st.com BRISTOL, BS32 4SQ | Home Email: David.Smith@ds-electronics.co.uk
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
ok all this is how i traced and what i got. yhis isnt the ip from tha hacker but just testing how i will do it. Nodes: 24 Node Data Node Net Reg IP Address Location Node Name 1 - - 192.168.0.23 CAPE TOWN carnage-1587c7a 2 1 - 192.168.0.1 Unknown 3 2 - 196.37.25.241 Alexandra 4 3 - 168.209.113.177 Unknown 5 4 1 196.26.0.9 Alexandra core2b-rba-gi8-0-0.rtr.isnet.net 6 3 - 168.209.0.94 Unknown 7 3 - 168.209.244.3 Benoni core1b-ny.nmszone.is.co.za 8 5 2 208.192.177.205 New York pos1-2.ig2.nyc4.alter.net 9 6 2 152.63.22.14 New York 0.so-0-0-0.xl1.nyc4.alter.net 10 6 2 152.63.0.173 New York 0.so-4-0-0.tl1.nyc9.alter.net 11 6 2 152.63.9.245 New York 0.so-7-0-0.il1.nyc9.alter.net 12 6 2 152.63.23.58 New York 0.so-0-0-0.ir1.nyc12.alter.net 13 7 2 146.188.4.82 Southwark so-5-1-0.tr1.lnd9.alter.net 14 - - 0.0.0.0 Unknown No Response 15 8 3 158.43.150.97 Southwark pos3-0.cr1.lnd10.gbb.uk.uu.net 16 8 3 158.43.253.129 Southwark pos1-0.cr1.lnd6.uk.gbb.uu.net 17 8 2 158.43.193.234 Southwark pos0-0.gw1.lnd6.alter.net 18 7 4 146.188.69.126 Southwark g1-3.cr01.tn5.bb.pipex.net 19 9 4 62.72.140.3 Southwark g0-1-5.cr03.tn5.bb.pipex.net 20 10 4 62.72.144.121 Southwark g0-2.cr01.te1.bb.pipex.net 21 10 4 62.72.144.113 Southwark f1-0.cr01.pr1.bb.pipex.net 22 10 4 62.72.144.118 Southwark g0-2.cr02.pr1.bb.pipex.net 23 10 4 62.72.144.101 Southwark v4093.ar01.pr1.dco.pipex.net 24 11 5 217.199.188.224 Southwark ns.4t2bunker.com Packet Data Node High Low Avg Tot Lost 1 0 0 0 1 0 2 1 1 1 1 0 3 2 2 2 1 0 4 2668 2668 2668 1 0 5 3039 3039 3039 1 0 6 2508 2508 2508 2 1 7 3419 3419 3419 2 1 8 2687 2687 2687 1 0 9 2441 2441 2441 1 0 10 2639 2639 2639 1 0 11 3155 3155 3155 1 0 12 3032 3032 3032 1 0 13 3458 3458 3458 1 0 14 ---- ---- ---- 2 2 15 2315 2315 2315 1 0 16 2233 2233 2233 1 0 17 2416 2416 2416 1 0 18 2867 2867 2867 1 0 19 2188 2188 2188 1 0 20 2752 2752 2752 1 0 21 2662 2662 2662 1 0 22 2604 2604 2604 1 0 23 2873 2873 2873 1 0 24 3006 3006 3006 1 0 Network Data Network id#: 1 OrgName: Internet Assigned Numbers Authority OrgID: IANA Address: 4676 Admiralty Way, Suite 330 City: Marina del Rey StateProv: CA PostalCode: 90292-6695 Country: US Network id#: 2 OrgName: African Network Information Center OrgID: AFRINIC Address: CSIR/icomtek Address: 43A Address: PO Box 395 City: Pretoria StateProv: Gauteng PostalCode: 0001 Country: ZA Network id#: 3 OrgName: African Network Information Center OrgID: AFRINIC Address: CSIR/icomtek Address: 43A Address: PO Box 395 City: Pretoria StateProv: Gauteng PostalCode: 0001 Country: ZA Network id#: 4 OrgName: African Network Information Center OrgID: AFRINIC Address: CSIR/icomtek Address: 43A Address: PO Box 395 City: Pretoria StateProv: Gauteng PostalCode: 0001 Country: ZA Network id#: 5 OrgName: UUNET Technologies, Inc. OrgID: UU Address: 22001 Loudoun County Parkway City: Ashburn StateProv: VA PostalCode: 20147 Country: US Network id#: 6 OrgName: UUNET Technologies, Inc. OrgID: UU Address: 22001 Loudoun County Parkway City: Ashburn StateProv: VA PostalCode: 20147 Country: US Network id#: 7 OrgName: RIPE Network Coordination Centre OrgID: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL Network id#: 8 OrgName: RIPE Network Coordination Centre OrgID: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL Network id#: 9 PIPEX Communications (formerly GX Networks Ltd) Carlton House 27A Carlton Drive London SW15 2BS Network id#: 10 PIPEX Communications (formerly GX Networks Ltd) Carlton House 27A Carlton Drive London SW15 2BS Network id#: 11 OrgName: RIPE Network Coordination Centre OrgID: RIPE Address: P.O. Box 10096 City: Amsterdam StateProv: PostalCode: 1001EB Country: NL Registrant Data Registrant id#: 1 Registrant: Internet Solutions Private Bag X163 Bryanston, Gauteng 2021 ZA Registrant id#: 2 Registrant: MCI, Inc 22001 Loudoun County Parkway Ashburn, VA 20147 US Registrant id#: 3 Registrant: UUNET Technologies, Inc 22001 Loudoun County Parkway Ashburn, VA 20147 US Registrant id#: 4 Registrant: MCI WorldCom Limited Reading International Business Park Basingstoke Road Reading, Berkshire rg2 6da UK 75 6a
Ben, Gerald, On Monday 19 September 2005 02:57, Ben Staniford wrote:
You can do a reverse DNS lookup in the exact same way as a forward DNS lookup.
For example:
nslookup 192.168.1.1
or
nslookup myhost.mydomain.com
You can also use "dig" to get a bit more info (the actual dns record), e.g.
dig 192.168.1.1
Also use "whois" to get detailed IP block assignment records. E.g.: % whois 195.135.220.3 % This is the RIPE Whois query server #2. % The objects are in RPSL format. % % Note: the default output of the RIPE Whois server % is changed. Your tools may need to be adjusted. See % http://www.ripe.net/db/news/abuse-proposal-20050331.html % for more details. % % Rights restricted by copyright. % See http://www.ripe.net/db/copyright.html % Note: This output has been filtered. % To receive output for a database update, use the "-B" flag % Information related to '195.135.220.0 - 195.135.223.255' inetnum: 195.135.220.0 - 195.135.223.255 netname: DE-SUSE descr: SuSE Linux AG country: DE admin-c: CD644-RIPE [ 27 lines omitted ]
Kind Regards,
-- Ben Staniford
Randall Schulz
participants (6)
-
Albert -
Ben Staniford -
Gerald Humphreys -
kanenas -
Randall R Schulz -
Sid Boyce