Results 1 to 14 of 14

Thread: can anyone decipher coding in email header?

  1. #1
    God/dess sassysummer's Avatar
    Joined
    Oct 2005
    Location
    Vancouver, WA/Portland, OR
    Posts
    2,165
    Thanks
    0
    Thanked 3 Times in 2 Posts

    Default can anyone decipher coding in email header?

    if you saw my other message, you'll know i got a weird email.

    well i think it just got more interesting.

    can anyone decipher long detailed email headers?

    what does this mean "does not designate permitted sender hosts"

    here is the header...did this really come from az?

    ````````````````````````````````````````

    From: garry mills <[email protected]>


    [ add to contacts ]
    To: [email protected]
    Cc:
    Date: Tuesday, October 17, 2006 06:34 am
    Subject: lesson teacher......
    Message-ID: <[email protected] o.com>
    Return-Path: <[email protected]>
    Delivered-To: [email protected]
    Received: (qmail 9214 invoked by uid 7; 17 Oct 2006 13:46:02 -0000
    Received: from unknown (HELO ns-mr7.netsolmail.com) (10.49.16.166) by mail2.lb.hosting.dc2.netsol.com with SMTP; 17 Oct 2006 13:46:02 -0000
    Received: from mxo1s.craigslist.org (mxo1s.craigslist.org [66.150.243.6]) by ns-mr7.netsolmail.com (8.13.6/8.13.6) with ESMTP id k9HDk1BC027565 for <[email protected]>; Tue, 17 Oct 2006 09:46:01 -0400
    Received: from localhost.localdomain (localhost [127.0.0.1]) by mxo1s.craigslist.org (Postfix) with ESMTP id F287F266C5B for <[email protected]>; Tue, 17 Oct 2006 06:46:00 -0700 (PDT)
    Received-SPF: none (mxi3s.craigslist.org: domain of [email protected] does not designate permitted sender hosts)
    Received: from web28115.mail.ukl.yahoo.com (web28115.mail.ukl.yahoo.com [217.146.182.135]) by mxi3s.craigslist.org (Postfix) with SMTP id 79A7B3A1D0 for <[email protected]>; Tue, 17 Oct 2006 06:46:00 -0700 (PDT)
    Received: (qmail 22098 invoked by uid 60001); 17 Oct 2006 13:34:22 -0000
    DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.co.uk; h=Message-ID:Receivedate:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=ZCVtgJ/ura4PNDq7qqalc+bRzaVQEhEKjEp5y1Eggmb1I5zLWtBzmqUhq a5oyCdAXPuwuxHvU8MykAYmmfnNh863d+4VU2RhUx0VLMlaDwb KBpqn9THnsaZgqGMMRtb/Rp2QyecitovoKvPntEhRNfP5zJi35ZkVW1R5cF4JCio= ;
    Received: from [209.159.175.248] by web28115.mail.ukl.yahoo.com via HTTP; Tue, 17 Oct 2006 14:34:22 BST
    MIME-Version: 1.0
    Content-Type: multipart/alternative; boundary="0-2018120826-1161092062=:18279"
    Content-Transfer-Encoding: 7bit





    Now selling Platinum Stages Poles!
    Order through me & get a FREE instructional video!



    "Normal is not something to aspire to, it's something to get away from." Jodie Foster

  2. #2
    God/dess dlabtot's Avatar
    Joined
    Jun 2005
    Location
    in your dreams, in my nightmares
    Posts
    2,085
    Thanks
    59
    Thanked 139 Times in 85 Posts

    Default Re: can anyone decipher coding in email header?

    follow all the Received: lines back to the originating IP: that's 209.159.175.248

    then lookup up the IP: 209.159.175.248 :

    Address block information:
    OrgName: PanAmSat Corporation OrgID: PNAM Address: 2857 Fork Creek Church Road City: Ellenwood StateProv: GA PostalCode: 30294 Country: US NetRange: 209.159.160.0 - 209.159.175.255 CIDR: 209.159.160.0/20 NetName: PANAMASAT-COM NetHandle: NET-209-159-160-0-1 Parent: NET-209-0-0-0-0 NetType: Direct Allocation NameServer: NS1.PANAMSAT.NET NameServer: NS2.PANAMSAT.NET Comment: RegDate: 2002-12-10 Updated: 2005-08-16 RNOCHandle: ZP65-ARIN RNOCName: Panamsat Corporation RNOCPhone: +1-404-381-2828 RNOCEmail:
    OrgTechHandle: ZP65-ARIN OrgTechName: Panamsat Corporation OrgTechPhone: +1-404-381-2828 OrgTechEmail:

    the company that owns the IP is in georgia, but whois.easydns.com lists the geographic location as Lagos, Nigeria

  3. #3
    God/dess sassysummer's Avatar
    Joined
    Oct 2005
    Location
    Vancouver, WA/Portland, OR
    Posts
    2,165
    Thanks
    0
    Thanked 3 Times in 2 Posts

    Default Re: can anyone decipher coding in email header?

    but see, when i checked 209.159.175.248 on geobytes it says gilbert az?


    what is all that address blocked info mean? how did you find it?


    and does all this mean that it didn't come from the uk? right?





    Now selling Platinum Stages Poles!
    Order through me & get a FREE instructional video!



    "Normal is not something to aspire to, it's something to get away from." Jodie Foster

  4. #4
    God/dess dlabtot's Avatar
    Joined
    Jun 2005
    Location
    in your dreams, in my nightmares
    Posts
    2,085
    Thanks
    59
    Thanked 139 Times in 85 Posts

    Default Re: can anyone decipher coding in email header?

    I got this info entering the ip address at: http://www.easywhois.com/?mode=iplookup

    http://whois.domaintools.com/209.159.175.248 also lists the location as Nigeria.

    The 'address block' is a block of IP addresses assigned to a company or organization, in this case, PanAmSat Corporation.

  5. #5
    God/dess sassysummer's Avatar
    Joined
    Oct 2005
    Location
    Vancouver, WA/Portland, OR
    Posts
    2,165
    Thanks
    0
    Thanked 3 Times in 2 Posts

    Default Re: can anyone decipher coding in email header?

    ok on easywhois it also says this...

    No reverse lookup in place for this address
    Geographical location: Lagos 05 Nigeria


    does that mean the email came from nigeria? if so, i know this is definatly a scam email...gotta love those nigerian email scams! lol

    how come two different ip lookups came up with 2 totally different locations????? that doesn't make sense





    Now selling Platinum Stages Poles!
    Order through me & get a FREE instructional video!



    "Normal is not something to aspire to, it's something to get away from." Jodie Foster

  6. #6
    God/dess dlabtot's Avatar
    Joined
    Jun 2005
    Location
    in your dreams, in my nightmares
    Posts
    2,085
    Thanks
    59
    Thanked 139 Times in 85 Posts

    Default Re: can anyone decipher coding in email header?

    Quote Originally Posted by sassysummer
    ok on easywhois it also says this...

    No reverse lookup in place for this address
    Geographical location: Lagos 05 Nigeria


    does that mean the email came from nigeria? if so, i know this is definatly a scam email...gotta love those nigerian email scams! lol
    yep

    Quote Originally Posted by sassysummer
    how come two different ip lookups came up with 2 totally different locations????? that doesn't make sense
    one of them is wrong, that's how.... they're just databases, so they can be out of date.... since we have three lookups, and two of them agree, I'd guess those two are right and the geostat one is wrong

  7. #7
    Veteran Member
    Joined
    Apr 2006
    Location
    houston
    Posts
    513
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default Re: can anyone decipher coding in email header?

    lol. doing a google search on the ip address gave this gem: (maybe unfair as i assume most IP addresses come from ISP's)

    The below is from a Scammer! Some of the emails may not look like scams, but they all lead to the same thing. The scammer will pay by check (cashier's check/money order) for more then the pet is worth, then they will ask you to send them back the difference in money. A couple weeks later you find out the check was fake and the bank will take it out of your account. This scam can be set up several ways.

    Some key points for pointing out a scammer:
    1. Doesn't care much about the pet, just the transaction.
    2. Says they will use their own shipper.
    3. 95% of the scammers are from overseas (Nigeria, Israel, South Africa)
    4. Pays you more then the pet is worth, then asks for the difference in money back.


    Email: [email protected]
    Date Caught: 10/17/2006
    IP Address: 209.159.175.248
    Host Information: 209.159.175.248

    Good day,

    i am interested in buying your (AKC Pomeranian Puppies) I will like to know if you would accept certified check cheque for the payment of the (AKC Pomeranian Puppies), i also need to know the price of the item .I have a shipping company who takes cares of my shippment .So don't bother about the shippment.

    Regards.

  8. #8
    God/dess sassysummer's Avatar
    Joined
    Oct 2005
    Location
    Vancouver, WA/Portland, OR
    Posts
    2,165
    Thanks
    0
    Thanked 3 Times in 2 Posts

    Default Re: can anyone decipher coding in email header?

    ah good...thanks!

    delete!





    Now selling Platinum Stages Poles!
    Order through me & get a FREE instructional video!



    "Normal is not something to aspire to, it's something to get away from." Jodie Foster

  9. #9
    Veteran Member
    Joined
    Apr 2006
    Location
    houston
    Posts
    513
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default Re: can anyone decipher coding in email header?

    ahh. you could have dragged it out and entertained us with the responses.

  10. #10
    Featured Member tootsie's Avatar
    Joined
    Feb 2005
    Location
    on my couch
    Posts
    1,305
    Thanks
    26
    Thanked 38 Times in 19 Posts

    Default Re: can anyone decipher coding in email header?

    Quote Originally Posted by dlabtot
    I got this info entering the ip address at: http://www.easywhois.com/?mode=iplookup

    http://whois.domaintools.com/209.159.175.248 also lists the location as Nigeria.

    The 'address block' is a block of IP addresses assigned to a company or organization, in this case, PanAmSat Corporation.


    WOW! you are really smart! how can you find someones ip address who's been writing about you online?

  11. #11
    God/dess sassysummer's Avatar
    Joined
    Oct 2005
    Location
    Vancouver, WA/Portland, OR
    Posts
    2,165
    Thanks
    0
    Thanked 3 Times in 2 Posts

    Default Re: can anyone decipher coding in email header?

    Quote Originally Posted by space_Cadet_28
    ahh. you could have dragged it out and entertained us with the responses.

    if only i had time





    Now selling Platinum Stages Poles!
    Order through me & get a FREE instructional video!



    "Normal is not something to aspire to, it's something to get away from." Jodie Foster

  12. #12
    God/dess dlabtot's Avatar
    Joined
    Jun 2005
    Location
    in your dreams, in my nightmares
    Posts
    2,085
    Thanks
    59
    Thanked 139 Times in 85 Posts

    Default Re: can anyone decipher coding in email header?

    Quote Originally Posted by tootsie
    WOW! you are really smart! how can you find someones ip address who's been writing about you online?
    You mean on a website? You can't unless you have access to the server logs or if the website shows the IP number along with the posting (which is virtually unheard-of).

  13. #13
    Member Valnice's Avatar
    Joined
    Jul 2006
    Location
    NJ
    Posts
    50
    Thanks
    13
    Thanked 2 Times in 1 Post

    Default Re: can anyone decipher coding in email header?

    Can't hackers go through other servers

  14. #14
    Sitri
    Guest

    Default Re: can anyone decipher coding in email header?

    Yes, you can also spoof an IP address or bounce it off of other servers. This is technical, the easier way is to remote access someone else's computer and then create a session from that site. Relative to emails, there are shareware servers on the internet that allow you to spoof any email address.

Similar Threads

  1. Please help me decipher this!
    By malloryknox in forum The Lounge
    Replies: 18
    Last Post: 10-22-2008, 10:48 AM
  2. Spam Email...from MY email...
    By miss marina in forum The Lounge
    Replies: 8
    Last Post: 11-02-2007, 11:13 PM
  3. medical billing and coding training
    By august in forum Other Work
    Replies: 2
    Last Post: 10-22-2006, 03:05 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •