Summary: People can tell very little from your IP address. They cannot, for example, tell who or where you are. How much they can tell varies a great deal.
What exactly can someone tell from your IP address and what can they do with it? Can they find personal details or my precise geographical location?
•
In most cases your IP address is very easy to determine. But how much it says about you, specifically, depends on your ISP and what kind of IP address you have.
•
Finding someone else's IP can be as easy as looking at the full headers of email that they've sent you or monitoring network connections for certain types of instant messaging and chat applications. Web sites routinely get IP address information for all visitors. The very nature of how the internet works dictates that when two computers talk to each other, they know each other's IP addresses.
But once you've received an IP address, what can you tell about it?
Some IP's are easy - they're static and have a DNS name associated with them. For example, in a Windows XP Command Shell, enter the following command:
ping -a 17.254.3.183
The "-a" switch tells ping to do a "reverse DNS lookup" and print the first domain name it finds associated with the IP address you've specified. In this case, ping should include "apple.com" in its output, which is a domain name assigned to that IP.
With that domain name you can then do a "whois" lookup using whois tools. That information will often include the information about the individual or organization that owns the domain. In this example it does not, but it includes the name of the registrar, markmonitor.com. Visiting that site there is a small "whois" link which when run against "apple.com" returns all the information that you might want. Apple.com is owned, not surprisingly, by Apple Computer, Inc. and full address and contact information is available.
What if the ping doesn't work or doesn't return a domain name? Then things get less precise.
In this case, we go to ARIN and use their IP "whois" tool. If we enter an IP address such as 206.124.145.17, we'll find that it's part of a block of addresses assigned to an ISP. In order to determine who actually is using that IP address, if anyone, the ISP would have to get involved. Note that without their involvement, the physical location of a machine at a specific IP address can not be determined.
Now, it's important to note that an IP address may or may not identify a specific computer. In many cases, such as large corporations, it identifies a gateway of some sort that acts as a router or proxy for any number of computers. Behind the gateway, the computers can all see each other, but from the internet the individual machines are indistinguishable from each other. They all look like they come from the same IP address.
The same is true when you use a router at home. You might have any number of computers behind it, but from the internet, it appears as if you have only one IP address. Your individual computers are not directly accessible by default.
And that leads to my final point: use a router or a firewall. If you connect directly to the internet, then your IP address can be used by others on the network to attempt to connect directly to your PC and exploit any vulnerabilities. By using a router, your computer cannot be contacted directly. Alternately, a firewall blocks the intruders from gaining access to your machine even if they do reach it.
Article C2293 - February 28, 2005
Leo A. Notenboom, i have read lots of your articles about how people cannot get much from your ip address.
Then how do you explain this: someone from youtube found my ip address through my youtube account (i had never posted any information about me not my name or city or anything and i used a separate email account for my yt account). So once they had my ip address they somehow found my myspace!! Even though i had separate emails for both myspace and youtube, and i hadn't communicated through email with the person.
So how did he do that? I understand that it is very hard to get an ip address through yt but how then did he find my myspace? And is it possible he could also find out my email?
Posted by: popipop at May 7, 2007 1:47 AMHi, Got a guy who has scammed me out of a lot of money. I have spoke to him on MSN and have our convo saved. Any idea of how i can track his location etc.
Posted by: Ross at June 4, 2007 8:53 AMAny help will be appreciated.
Thanks
Ross
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Contact the authorities. There's nothing you can do on your own.
Thanks,
Leo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (MingW32)
iD8DBQFGZDg7CMEe9B/8oqERAqFmAJ0VjQzkMmtDveDbw+XJ+jyQLCvPUQCfWM7n
Posted by: Leo A. Notenboom at June 4, 2007 9:05 AMKsmc4ewVyJidcGtPDHZE7b0=
=y1J3
-----END PGP SIGNATURE-----
I was able to find the exact location of a computer through an IP address. There were some anonyomous postings on my website that were derogatory in nature. I got the IP from the posting, plugged it into geobites.com and found the longitude and latitude of the location of the computer. Then went to a site that converted longitude and latitude into a general location and was able to use a gps instrument and find the offending house.
Posted by: Joanna at June 14, 2007 5:41 PM-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I'm closing comments on this article.
Please read
http://ask-leo.com/how_do_i_find_out_whos_at_a_particular_ip_address.html for
information on tracing IP addresses, and what it takes to do so.
Leo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
iD8DBQFGy00dCMEe9B/8oqERAgqZAJ9eXh353KZwwyItAOeuEP1nIXFD5gCfcxT5
Posted by: Leo A. Notenboom at August 21, 2007 1:37 PMikVObbk4J/y97P3N1jWA/Nc=
=Ubhp
-----END PGP SIGNATURE-----