Quote:
|
the stupidity of this case is that the person seems to act like a burglar who leavse his name/address at the crime scene.
|
Not really, thats why I was going to suggest you remove some of that information.
There is a very high chance that the IP used for the hack is actually just another hacked IP that the hacker is using as a proxy.
They link up 5, or 10, or 15 different hacked systems and proxy via each one to hack further IP's. This hides their steps and reduces the chance of being caught, while adding to the number of hacked systems they have access to.
The IP they used to attempt to hack your site is probably another innocent site or persons broadband connection, who happened to actually have a vulnerability to allow the hacker in, and now the hacker is running the same hack scans from that hacked connection.