You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 2008-01-15 11:22 pm
- Captain Red
- Member
- Registered: 2008-01-04
- Posts: 59
What's up with the *.255.*.* Addresses?
Specifically what brings this up is a hit I got from an 85.255.120.* address, the discovery of 23 others in the database, and my inability to ban it in PHPbb2 without the ban being converted to "85.*.120.*".
I have only the vaguest of understandings of the special nature of the "255" value in an IP address, and would be grateful for any explanation anyone could point me to or give.(if I can't ban the blackguards without taking a goodly chunk of the net with them, I at least want to know why. :¬)
Offline
#2 2008-01-16 3:23 am
- fspamlist
- Member
- Registered: 2008-01-06
- Posts: 33
Re: What's up with the *.255.*.* Addresses?
Wow, I'm not sure...
but I do know that 255 is that last numerical value that an IP part can contain.
255.255.255.255 is a theoretical "end" to the Internet.
Offline
#3 2008-01-16 5:05 am
- Russ
- Guest
Re: What's up with the *.255.*.* Addresses?
I think it may be a bug in phpBB that was never fixed. Most likely has something to do with the decimal to hex conversion that phpBB does on IP addresses before it stores them in the database.
#4 2008-01-16 7:18 am
- Captain Red
- Member
- Registered: 2008-01-04
- Posts: 59
Re: What's up with the *.255.*.* Addresses?
Thanks guys(at least I'm not the only one confused and/or it's happening to. That's a horrible sentiment, isn't it?)
I did a whois search on the hit I got (85.255.120.219) and found that it is owned by UkrTeleGroup Ltd. They're in charge of all the addresses from 85.255.112.0 to 85.255.127.255.
I'm probably going to ban everything they cover, but their whois record also included an abuse-mailbox: abuse@ukrtelegroup.com.ua . So now I'm wondering: would it be at all worth my time to send a report to them?
Offline
#5 2008-01-16 9:26 pm
- Mousetyme
- Member
- Registered: 2008-01-06
- Posts: 14
- Website
Re: What's up with the *.255.*.* Addresses?
So now I'm wondering: would it be at all worth my time to send a report to them?
It certainly would be worth a shot. Maybe they would be willing to help. Can't hurt to try.
Offline
#6 2008-01-16 9:37 pm
- TeMerc
- Member
- From: Phx. AZ
- Registered: 2007-12-19
- Posts: 51
- Website
Re: What's up with the *.255.*.* Addresses?
Thanks guys(at least I'm not the only one confused and/or it's happening to. That's a horrible sentiment, isn't it?)
I did a whois search on the hit I got (85.255.120.219) and found that it is owned by UkrTeleGroup Ltd. They're in charge of all the addresses from 85.255.112.0 to 85.255.127.255.
I'm probably going to ban everything they cover, but their whois record also included an abuse-mailbox: abuse@ukrtelegroup.com.ua . So now I'm wondering: would it be at all worth my time to send a report to them?
That entire range is well known for malware, reportiong them is a colossal waste of time, just block the range. There isn't anything of value coming from there.
See more here:
http://hosts-file.net/?s=85.255.120.219&sDM=1#matches
Last edited by TeMerc (2008-01-16 9:38 pm)
Offline
#7 2008-01-17 3:16 am
- Captain Red
- Member
- Registered: 2008-01-04
- Posts: 59
Re: What's up with the *.255.*.* Addresses?
So now I'm wondering: would it be at all worth my time to send a report to them?
It certainly would be worth a shot. Maybe they would be willing to help. Can't hurt to try.
That entire range is well known for malware, reportiong them is a colossal waste of time, just block the range. There isn't anything of value coming from there.
See more here:
http://hosts-file.net/?s=85.255.120.219&sDM=1#matches
Thanks for the input guys. Thanks especially for that host-file link, TeMerc. Probably gonna get some good use out of that.
Offline
#8 2008-01-17 6:10 am
- TeMerc
- Member
- From: Phx. AZ
- Registered: 2007-12-19
- Posts: 51
- Website
Re: What's up with the *.255.*.* Addresses?
Thanks for the input guys. Thanks especially for that host-file link, TeMerc. Probably gonna get some good use out of that.
What Steven\MysteryFCM has to offer will amaze you. And it's gonna get better. He joined today.
Offline
#9 2008-01-17 6:14 am
- Mousetyme
- Member
- Registered: 2008-01-06
- Posts: 14
- Website
Re: What's up with the *.255.*.* Addresses?
After reading the amount of crap that comes out of this IP, I decided to do a blanket ban. Thank you TeMerc that link helped a lot
Offline
#10 2008-01-18 5:50 am
- TeMerc
- Member
- From: Phx. AZ
- Registered: 2007-12-19
- Posts: 51
- Website
Re: What's up with the *.255.*.* Addresses?
After reading the amount of crap that comes out of this IP, I decided to do a blanket ban. Thank you TeMerc that link helped a lot
No problem. Keep Stevens hphosts online bookmarked in a handy spot, I use it all the time now for my malware research.
Offline
Pages: 1