The other day I got an e-mail from google saying they prevented a suspicious log-in and showed some info. Sure enough it was unknown. The ip-address it gave was, 114.97.83.45 it was from china but im worried he may strike again if nobody does something and i dont know how to do that stuff.
What exactly is this "stuff" you are talking about?
There is not much you can do with an ip...
um, just change your password.
if you want to fuck with him, learn some shit in the process... port scan the ip, telnet into the open ports and see if theres a login header. search the login header on exploit databases and see if any of the services have a buffer overflow. if they do, download the exploit code and compile it, then use metasploit to exicute the attack.
also, not your personal army.
Most IP addresses change from day to day. The IP you saw yesterday may not be the same person it is today. Also with it being based in China there's a very high probability of it being either a compromised machine or a proxy server, so you could end up attacking an innocent person in the process who just happened to download the wrong file. There are way too many factors to take into consideration before an attack and having just a (most likely dynamic) IP doesn't help much. In all honesty it's nothing to worry about, it's like getting an alert from your antivirus saying it quarantined a file, while the alert may startle you a bit it just means that it was able to stop the progression of the attack. If you're truly afraid just change the password and call it a day.
% [whois.apnic.net node-7] % Whois data copyright terms <a href="http://www.apnic.net/db/dbcopyright.html">http://www.apnic.net/db/dbcopyright.html</a>
inetnum: 114.96.0.0 - 114.103.255.255 netname: CHINANET-AH descr: CHINANET Anhui PROVINCE NETWORK descr: China Telecom descr: No.31,jingrong street descr: Beijing 100032 admin-c: JW89-AP tech-c: JW89-AP country: CN remarks: service provider status: ALLOCATED PORTABLE remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+ remarks: This object can only be updated by APNIC hostmasters. remarks: To update this object, please contact APNIC remarks: hostmasters and include your organisation's account remarks: name in the subject line. remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+ changed: [email protected] 20080516 mnt-by: APNIC-HM mnt-lower: MAINT-CHINANET-AH mnt-routes: MAINT-CHINANET-AH source: APNIC
person: Jinneng Wang address: 17/F, Postal Building No.120 Changjiang address: Middle Road, Hefei, Anhui, China country: CN phone: +86-551-2659073 fax-no: +86-551-2659287 e-mail: [email protected] nic-hdl: JW89-AP mnt-by: MAINT-NEW changed: [email protected] 19990818 source: APNIC
EDIT: it seems all these spammers are from China wtf?
I know some of these words!
i see what you're saying, i guess it doesn't matter as long as it doesn't happen again
Weird man, the same thing happened to me!!
Thursday, November 22, 2012 2:57:33 PM GMT //
IP Address: 183.205.221.240 //
Location: Puyang, Henan, China
just call him and say fuck off you cunt
any one who uses gmail will get these that is why i have a yahoo at a inbox of about 256000 msg that i will never open only sites i trust i give my gmail too
Just letting you guys know i just now had this happen to one of my Gmail accounts.. Its an account i RARELY use. Here is the Info.
Oh yes, I hate those china hackers, please someone go Internet justice league and use their own tactics on them! DDos him or whatever, teach him a god damn lesson!
Dude same thing happened to me!!! Didn't know this was such a common occurrence.