PDA

View Full Version : Calling ndikta



AlexB
06-05-2005, 11:14 PM
Hi,

what can you tell about this piece of e-mail header:

Recieved: from unknown (HELO localhost.localdomain)[10.50.30.160](envelope sender<olgua555@list.ru>


Alex

Non veritas verba amanda

nditka
06-07-2005, 11:29 AM
All I can tell is I wonder what some of you are trying to find in those headers? They easily can be changed to any you want.
Local host and ip 10.50.30.160. Ip looks like from Vladivostok but I'm not quite sure. However maybe it was your neighbour who decided to laugh at you.

AlexB
06-07-2005, 03:02 PM
My neighbour, haha, I don't think so.

Source IP is :Recieved from aqua,relinfo.ru(ns.mari-el[195.161.208.130], which gets you as far as volgatelecom.

Well, I'm interested in just who was trying to shaft me.

Alex

Non veritas verba amanda

nditka
06-07-2005, 09:29 PM
Dial-up was used, hu? :)
SMTP server -

Organization Name......: Lingva University
Street Address.........: Ugo-Vostok, Gulder 1-13-68
City...................: Karaganda
State..................:
Postal Code............:
Country................: KZ

Administrative Contact/Agent
NIC Handle.............: AI149-SL
Name...................: Anort Inc
Phone Number...........: 455774
Fax Number.............: 455774
Email Address..........: ulan1986@rambler.ru

Servers
Primary server.........: ns1.anort.com
Primary ip address.....: 217.107.234.227

Secondary server.......: ns.mari-el.ru
Secondary ip address...: 195.161.208.130

AlexB
06-07-2005, 10:16 PM
Hi,

Yes a dialup server. COMP2.mshome.net(214.237.dialup.mari-el.ru[217.107.237.214] by aqua.reinfo.ru(8.12.11/8.12.11) with ESMTP id j4PxTiV001085

Alex

Non veritas verba amanda

AlexB
06-09-2005, 04:03 PM
That place, Karanganda, is like in the middle of nowhere, Kazakstan. Given the address for the money wire was in Kazan, what's going on ?

ALex

Non veritas verba amanda

nditka
06-10-2005, 11:39 AM
Alex, do you have many her emails? It's needed to look at all or several full headers to tell where she sticks. I bet she is in Kazaxstan, as for Kazan, probably there is her 'workmate' or relative there.
Anyway, I don't want to tell scammers how to become smarter here, can tell you via email how I've found a person once cos of dial-up. Ha-ha. Dial-up - das ist gut. :)
Or you email me mvg2130@mail.com

AlexB
06-10-2005, 03:12 PM
Hi Ndkita,

I have about 8 I think, I'll forward all the headers to you tonight by e-mail.

Cheers,

Alex

Non veritas verba amanda

imported_admin
06-10-2005, 06:44 PM
Secondary server.......: ns.mari-el.ru
Secondary ip address...: 195.161.208.130

Kazan, Cheboksary, Yoshkar-Ola, etc. -> all in Mari-El (Russia)

Regards,
Admin

AlexB
06-10-2005, 09:38 PM
Thanks admin,

that's my original take. I'll be interested to see how Ndtika worked that out.

Alex

Non veritas verba amanda