Elitetorrents.org-fbi ? Peerguardian (Loose Change Forum)

Hello everybody,

Everytime I click on "Click here to watch Loose Change - 2nd Edition" PeerGuardian tells me something about a blocked IP of "elitetrrents.org-FBI"? "FBI" sounds strange to me in a forum about 9/11. Does anybody know what that mean?

Im new to this group so plz don't be angry if this question is stupid or mentioned before in any other thread.

Thanx for your help!

Wunjo74

Please supply FULL link that you click...

i.e. http://video.google.co.uk/videoplay?docid=...&q=loose+change

Full link...

CODE

http://video.google.co.uk/videoplay?docid=1519312457137943386&q=loose+change

You can get the full link by "right-click" / "copy shortcut" - then "paste" in reply.

Thanks

LE
[thumbsup]

The link goes directly to: http://www.seeloosechange.com/

It's the link on the main-page of www.loosechange911.com ("Click here to watch Loose Change - 2nd Edition")

QUOTE (Wunjo74 @ Aug 2 2006, 01:33 PM)

The link goes directly to: http://www.seeloosechange.com/

It's the link on the main-page of www.loosechange911.com ("Click here to watch Loose Change - 2nd Edition")

mmm

strange...

I know that the seeloosechange.com link puts it in a small frame, I will need to investigate more.

One last question, when you go directly to the Google link (that's embedded in the frame), do you get any alerts ?

Direct Link to try : http://video.google.com/videoplay?docid=-5...&q=loose+change

Please let me know.

Many thanks

LE
[thumbsup]

Thanx for your reply. :)

With the the link "http://video.google.com/videoplay?docid=-5946593973848835726&q=loose+change" I have no such alert. Only if I get to the page via www.seeloosechange.com the message appears in PeerGuardian while the connection gets blocked.

Maybe you'd like to try it yourself. You can download PeerGuardian at http://phoenixlabs.org/pg2/

QUOTE (Wunjo74 @ Aug 2 2006, 03:04 PM)

Thanx for your reply. :)

With the the link "http://video.google.com/videoplay?docid=-5946593973848835726&q=loose+change" I have no such alert. Only if I get to the page via www.seeloosechange.com the message appears in PeerGuardian while the connection gets blocked.

Maybe you'd like to try it yourself. You can download PeerGuardian at http://phoenixlabs.org/pg2/

It must be a "seeloosechange.com" issue... [hmm]

I will carry out some investigations... which will take me some time, I would prefer not to install new software, but will use my "old fashioned" methods :D and report back...

The "SeeLooseChange.com" domain was provided by member "TCUHornedFrogs" as a useful, easy to remember domain...

Profile : http://s15.invisionfree.com/Loose_Change_F...rofile&MID=1578

Personally I would have preferred if he just forwarded it, without the frame etc.

If you don't mind reporting your findings and concerns to him directly whilst I investigate further, I would appreciate it.

His PM link is : http://s15.invisionfree.com/Loose_Change_F...CODE=4&MID=1578

His Email link is : http://s15.invisionfree.com/Loose_Change_F...ODE=00&MID=1578

And see if he gives you any reason (please let us know).

This is the first time I have heard anything like this in the several months we have used his donated domain (which is outside our control).

If I find anything, I'll report back, if you could do the same it would be appreciated.

Many thanks

LondonEye
[thumbsup]

I've just found a threat in this forum dealing with the same topic. The link ist --> http://s15.invisionfree.com/Loose_Change_F...?showtopic=8159 Maybe it's nothing new, so the member "TCUHornedFrogs" might already know. -Good lord, I hope you can even understand by bad English... :o

Hi

Been carrying out some research and asked a few regulars to check...

Looks like a problem with Peer Guardian Firewall Software and it misquoting the reverse DNS lookup !!!

Both elitetorrents.org and seeloosechange.com point to the same IP address (i.e. virtual servers on 64.202.189.170), the true reverse lookup is...

Reverse DNS for IP --- 64.202.189.170 = pwfwd-v01.prod.mesa1.secureserver.net

See traces using visualroute...

Trace to ELITETORRENTS.ORG

CODE

---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
| Hop | %Loss | IP Address | Node Name | Location | Tzone | ms | Graph | Network |
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
| 0 | | 205.234.111.160 | DTG315 | * | | | | Defender Technologies Group, LLC DEFENDER-1 |
| 1 | | 205.234.111.129 | r03-8.iad.defenderhosting.com | ?Ashburn, VA, USA | -05:00 | 0 | x | Defender Technologies Group, LLC DEFENDER-1 |
| 2 | | 205.234.111.17 | r01.iad.defenderhosting.com | ?Ashburn, VA, USA | -05:00 | 0 | x | Defender Technologies Group, LLC DEFENDER-1 |
| 3 | | 198.186.192.252 | - | ... | | 0 | x | Prescient Software, Inc. NETBLK-PRESCIENT01 |
| 4 | | 69.31.31.113 | 134.po2.ar1.iad1.us.nlayer.net | Dulles, VA, USA | -05:00 | 0 | x | nLayer Communications Internal/Backbone NLYR-69-31-31-0-1 |
| 5 | | 69.31.31.137 | xe-4-0-0.cr1.iad1.us.nlayer.net | Dulles, VA, USA | -05:00 | 0 | x | nLayer Communications Internal/Backbone NLYR-69-31-31-0-1 |
| 6 | | 69.22.142.101 | so-3-2-0.cr1.nyc3.us.nlayer.net | New York, NY, USA | -05:00 | 6 | x | nLayer Communications Internal/Backbone NLYR-69-22-141-0-1 |
| 7 | | 69.31.95.130 | po1.ar1.nyc3.us.nlayer.net | New York, NY, USA | -05:00 | 6 | x | nLayer Communications Internal/Backbone NLYR-69-31-95-0-1 |
| 8 | | 198.32.160.22 | ny-iix.above.net | ... | | 7 | x | Exchange Point Blocks NET-EP-1 |
| 9 | | 64.125.29.250 | so-1-0-0.mpr2.lga3.us.above.net | New York, NY, USA | -05:00 | 6 | x | Abovenet Communications, Inc ABOVENET |
| 10 | | 64.125.30.21 | so-4-0-0.mpr2.lga1.us.above.net | New York, NY, USA | -05:00 | 8 | x- | Abovenet Communications, Inc ABOVENET |
| 11 | | 64.125.27.153 | so-4-0-0.cr2.lga1.us.above.net | New York, NY, USA | -05:00 | 5 | x | Abovenet Communications, Inc ABOVENET |
| 12 | | 64.125.28.65 | so-1-0-0.mpr2.iad1.us.above.net | Dulles, VA, USA | -05:00 | 5 | x | Abovenet Communications, Inc ABOVENET |
| 13 | | 64.125.28.129 | so-1-0-0.cr2.dca2.us.above.net | Washington, DC, USA | -05:00 | 5 | x | 64.125.28.129 |
| 14 | | 64.125.28.205 | so-3-2-0.cr2.dfw2.us.above.net | Dallas, TX, USA | | 37 | x | Abovenet Communications, Inc ABOVENET |
| 15 | | 64.125.29.33 | so-5-1-0.mpr2.iah1.us.above.net | Houston, TX, USA | | 42 | x | Abovenet Communications, Inc ABOVENET |
| 16 | | 64.125.31.61 | so-0-0-0.mpr1.iah1.us.above.net | Houston, TX, USA | | 42 | x | Abovenet Communications, Inc ABOVENET |
| 17 | | 64.125.27.202 | so-4-0-0.mpr2.phx2.us.above.net | ?San Jose, CA | | 70 | x | Abovenet Communications, Inc ABOVENET |
| 18 | | 64.124.113.62 | 64.124.113.62.godaddy.com | ?San Jose, CA | | 70 | x | Abovenet Communications, Inc ABOVENET |
| 19 | | 64.202.161.53 | ip-64-202-161-53.secureserver.net | ... | | 72 | x | Go Daddy Software, Inc. GO-DADDY-SOFTWARE-INC |
| 20 | | 64.202.160.1 | ip-64-202-160-1.secureserver.net | ... | | 79 | x-- | Go Daddy Software, Inc. GO-DADDY-SOFTWARE-INC |
| 21 | 100 | | | | | | | |
| 22 | 100 | | | | | | | |
| 23 | 100 | | | | | | | |
| 24 | 66 | 64.202.189.170 | pwfwd-v01.prod.mesa1.secureserver.net | ... | | 76 | x | Go Daddy Software, Inc. GO-DADDY-SOFTWARE-INC |
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Trace to SEELOOSECHANGE.COM

CODE

---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
| Hop | %Loss | IP Address | Node Name | Location | Tzone | ms | Graph | Network |
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
| 0 | | 205.234.111.160 | DTG315 | * | | | | Defender Technologies Group, LLC DEFENDER-1 |
| 1 | | 205.234.111.129 | r03-8.iad.defenderhosting.com | ?Ashburn, VA, USA | -05:00 | 0 | x | Defender Technologies Group, LLC DEFENDER-1 |
| 2 | | 205.234.111.17 | r01.iad.defenderhosting.com | ?Ashburn, VA, USA | -05:00 | 0 | x | Defender Technologies Group, LLC DEFENDER-1 |
| 3 | | 198.186.192.252 | - | ... | | 0 | x | Prescient Software, Inc. NETBLK-PRESCIENT01 |
| 4 | | 69.31.31.113 | 134.po2.ar1.iad1.us.nlayer.net | Dulles, VA, USA | -05:00 | 16 | x-- | nLayer Communications Internal/Backbone NLYR-69-31-31-0-1 |
| 5 | | 69.31.31.137 | xe-4-0-0.cr1.iad1.us.nlayer.net | Dulles, VA, USA | -05:00 | 0 | x | nLayer Communications Internal/Backbone NLYR-69-31-31-0-1 |
| 6 | | 69.22.142.101 | so-3-2-0.cr1.nyc3.us.nlayer.net | New York, NY, USA | -05:00 | 9 | x | nLayer Communications Internal/Backbone NLYR-69-22-141-0-1 |
| 7 | | 69.31.95.130 | po1.ar1.nyc3.us.nlayer.net | New York, NY, USA | -05:00 | 5 | x | nLayer Communications Internal/Backbone NLYR-69-31-95-0-1 |
| 8 | | 198.32.160.22 | ny-iix.above.net | ... | | 7 | x | Exchange Point Blocks NET-EP-1 |
| 9 | | 64.125.29.250 | so-1-0-0.mpr2.lga3.us.above.net | New York, NY, USA | -05:00 | 6 | x | Abovenet Communications, Inc ABOVENET |
| 10 | | 64.125.30.21 | so-4-0-0.mpr2.lga1.us.above.net | New York, NY, USA | -05:00 | 64 | ---x------ | Abovenet Communications, Inc ABOVENET |
| 11 | | 64.125.27.153 | so-4-0-0.cr2.lga1.us.above.net | New York, NY, USA | -05:00 | 5 | x | Abovenet Communications, Inc ABOVENET |
| 12 | | 64.125.28.65 | so-1-0-0.mpr2.iad1.us.above.net | Dulles, VA, USA | -05:00 | 5 | x | Abovenet Communications, Inc ABOVENET |
| 13 | | 64.125.28.129 | so-1-0-0.cr2.dca2.us.above.net | Washington, DC, USA | -05:00 | 5 | x | 64.125.28.129 |
| 14 | | 64.125.28.205 | so-3-2-0.cr2.dfw2.us.above.net | Dallas, TX, USA | | 37 | x | Abovenet Communications, Inc ABOVENET |
| 15 | | 64.125.29.33 | so-5-1-0.mpr2.iah1.us.above.net | Houston, TX, USA | | 54 | x- | Abovenet Communications, Inc ABOVENET |
| 16 | | 64.125.31.61 | so-0-0-0.mpr1.iah1.us.above.net | Houston, TX, USA | | 42 | x | Abovenet Communications, Inc ABOVENET |
| 17 | | 64.125.27.202 | so-4-0-0.mpr2.phx2.us.above.net | ?San Jose, CA | | 70 | x | Abovenet Communications, Inc ABOVENET |
| 18 | | 64.124.113.62 | 64.124.113.62.godaddy.com | ?San Jose, CA | | 70 | x | Abovenet Communications, Inc ABOVENET |
| 19 | | 64.202.161.53 | ip-64-202-161-53.secureserver.net | ... | | 72 | x | Go Daddy Software, Inc. GO-DADDY-SOFTWARE-INC |
| 20 | | 64.202.160.1 | ip-64-202-160-1.secureserver.net | ... | | 75 | x- | Go Daddy Software, Inc. GO-DADDY-SOFTWARE-INC |
| 21 | 66 | 64.202.189.170 | pwfwd-v01.prod.mesa1.secureserver.net | ... | | 73 | x | Go Daddy Software, Inc. GO-DADDY-SOFTWARE-INC |
| 22 | 66 | 64.202.189.170 | seeloosechange.com | ... | | 74 | x | Go Daddy Software, Inc. GO-DADDY-SOFTWARE-INC |
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

The owners of elitetorrents.org have a "funny" registration...

QUOTE

Domain ID:D104608983-LROR
Domain Name:ELITETORRENTS.ORG
Created On:07-Jul-2004 23:51:37 UTC
Last Updated On:13-Jul-2006 15:26:56 UTC
Expiration Date:07-Jul-2007 23:51:37 UTC
Sponsoring Registrar:Go Daddy Software, Inc. (R91-LROR)
Status:CLIENT DELETE PROHIBITED
Status:CLIENT RENEW PROHIBITED
Status:CLIENT TRANSFER PROHIBITED
Status:CLIENT UPDATE PROHIBITED
Registrant ID:GODA-011841734
Registrant Name:ICE FBI
Registrant Organization:Department of Justic
Registrant Street1:1234 Washington Avenue
Registrant Street2:
Registrant Street3:
Registrant City:Washington DC
Registrant State/Province:District of Columbia
Registrant Postal Code:90650
Registrant Country:US
Registrant Phone:+1.0000000000
Registrant Phone Ext.:
Registrant FAX:
Registrant FAX Ext.:
Registrant Email:no-piracy@ice.gov
Admin ID:GODA-211841734
Admin Name:First Last
Admin Organization:FBI
Admin Street1:1234 Washington Avenue
Admin Street2:
Admin Street3:
Admin City:Washington DC
Admin State/Province:Washington
Admin Postal Code:90650
Admin Country:US
Admin Phone:+1.8885551212
Admin Phone Ext.:
Admin FAX:
Admin FAX Ext.:
Admin Email:piracy@fbi.gov
Tech ID:GODA-111841734
Tech Name:First Last
Tech Organization:FBI
Tech Street1:1234 Washington Avenue
Tech Street2:
Tech Street3:
Tech City:Washington DC
Tech State/Province:Washington
Tech Postal Code:90650
Tech Country:US
Tech Phone:+1.8885551212
Tech Phone Ext.:
Tech FAX:
Tech FAX Ext.:
Tech Email:piracy@fbi.gov
Name Server:PARK11.SECURESERVER.NET
Name Server:PARK12.SECURESERVER.NET
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:
Name Server:

Looks bogus and I doubt FBI use GoDaddy or append FBI to their network address !!!

Maybe someone trying to put the fear into folks [thmdwn] - But Peer Guardian is DEFINATELY giving incorrect information out [nonono]

I hope this helps or puts your mind at rest... Personally I would use a product like zonealarm firewall or similar... www.zonelabs.com

All the best

LondonEye
[thumbsup]

View Full Version: Elitetorrents.org-fbi ? Peerguardian