Email scam or can Emails be mis-delivered ?

newprouser · 08-12-09, 01:51 PM

I jus got a mail which was probably meant for somebody else ! I would like to know how this is possible ???

though it contains marketing stuff i'm unable to understand how in the hell it reached me ?

email_scam.JPG

**mickey** · 08-12-09, 01:56 PM

Originally Posted by newprouser

I jus got a mail which was probably meant for somebody else ! I would like to know how this is possible ???

though it contains marketing stuff i'm unable to understand how in the hell it reached me ?

email_scam.JPG

i am also getting such wierd stuffs...

the email id is mail2sc@gmail while mine is mail2sc@del1.. i dont know what the hell is this... better is to stay away from such sites... and not to sign up with them.

newprouser · 08-12-09, 02:09 PM

well if you post email id like you did above, i won't wonder why

p.s. remove those ids for your own good

**mickey** · 08-12-09, 02:13 PM

first one is not mine, and second one is not complete..

its a long domain...

newprouser · 08-12-09, 02:37 PM

:lol:

clever mickey

**panchabhut** · 08-12-09, 03:48 PM

who is shruti batra78

**mickey** · 08-12-09, 04:37 PM

interestingly i got daemon bounce back when i mailed the cited mail ids..

newprouser · 08-12-09, 05:16 PM

Originally Posted by panchabhut

who is shruti batra78

all ids mentioned there are unknown to me !

**mickey** · 08-12-09, 05:25 PM

batado np...
is she your new gf???

**Luke Skywalker** · 08-13-09, 01:13 AM

Sender Domain address is this 208.109.199.53 which is hold by GoDaddy.com which is a domain registring site.

whois info:-

OrgName: GoDaddy.com, Inc.
OrgID: GODAD
Address: 14455 N Hayden Road
Address: Suite 226
City: Scottsdale
StateProv: AZ
PostalCode: 85260
Country: US

NetRange: 208.109.0.0 - 208.109.255.255
CIDR: 208.109.0.0/16
NetName: GO-DADDY-SOFTWARE-INC
NetHandle: NET-208-109-0-0-1
Parent: NET-208-0-0-0-0
NetType: Direct Allocation
NameServer: CNS1.SECURESERVER.NET
NameServer: CNS2.SECURESERVER.NET
NameServer: CNS3.SECURESERVER.NET
Comment:
RegDate: 2006-04-12
Updated: 2007-06-14

OrgAbuseHandle: ABUSE51-ARIN
OrgAbuseName: Abuse Department
OrgAbusePhone: +1-480-624-2505
OrgAbuseEmail: abuse@godaddy.com

OrgNOCHandle: NOC124-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-480-505-8809
OrgNOCEmail: noc@godaddy.com

OrgTechHandle: NOC124-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-480-505-8809
OrgTechEmail: noc@godaddy.com

# ARIN WHOIS database, last updated 2009-08-11 20:00
# Enter ? for additional hints on searching ARIN's WHOIS database.

Did anyone notice that sender & receiver are same. I think email was sent from this domain but by some other domain as it has its SMTP port open which I found out after scanning. If you want to take any action contact them. Also by the way , what was the site they were advertising. Give me its name.

newprouser · 08-13-09, 01:25 AM

Originally Posted by Luke Skywalker

Also by the way , what was the site they were advertising. Give me its name.

Mobile SMS, send SMS to any mobile in India, SMS, SMS, text messaging, SMS chat, Mobile SMS, SMS to any network: Smsfi

**Luke Skywalker** · 08-13-09, 01:40 AM

Whois info of this site:

OrgName: Liquid Web, Inc.
OrgID: LQWB
Address: 4210 Creyts Rd.
City: Lansing
StateProv: MI
PostalCode: 48917
Country: US

ReferralServer: rwhois://rwhois.liquidweb.com:4321/

NetRange: 67.225.128.0 - 67.225.255.255
CIDR: 67.225.128.0/17
OriginAS: AS32244
NetName: LIQUIDWEB-8
NetHandle: NET-67-225-128-0-1
Parent: NET-67-0-0-0-0
NetType: Direct Allocation
NameServer: NS.LIQUIDWEB.COM
NameServer: NS1.LIQUIDWEB.COM
Comment:
RegDate: 2007-11-26
Updated: 2008-01-23

OrgAbuseHandle: ABUSE551-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-800-580-4985
OrgAbuseEmail: abuse@liquidweb.com

OrgTechHandle: IPADM47-ARIN
OrgTechName: IP Administrator
OrgTechPhone: +1-800-580-4985
OrgTechEmail: ipadmin@liquidweb.com

# ARIN WHOIS database, last updated 2009-08-11 20:00
# Enter ? for additional hints on searching ARIN's WHOIS database.

Found a referral to rwhois.liquidweb.com:4321.

%rwhois V-1.5:003eff:00 rwhois.liquidweb.com (by Network Solutions, Inc. V-1.5.7.4)
network:Class-Name:network
network:ID:NETBLK-SMSFICOM.67.225.186.189/32
network:Auth-Area:67.225.128.0/17
network:Network-Name:SMSFICOM-67.225.186.189
network:IP-Network:67.225.186.189/32
network:IP-Network-Block:67.225.186.189-67.225.186.189
network:Organization;I:SMSFICOM
network:Org-Name:smsfi.com
network:Street-Address:6-D, Racquet Court Rd, Civil Lines, Delhi - 110054
network:City

elhi
network:State

elhi
network:Postal-Code:110054
network:Country-Code:India
network:Tech ;I:vaibjain@gmail.com
network:Abuse:abuse@sourcedns.com
network:Created:20090812
network:Updated:20090812
network:Updated-By:admin@sourcedns.com

network:Class-Name:network
network:ID:NETBLK-SOURCEDNS.67.225.128.0/17
network:Auth-Area:67.225.128.0/17
network:Network-Name:SOURCEDNS-67.225.128.0
network:IP-Network:67.225.128.0/17
network:IP-Network-Block:67.225.128.0 - 67.225.255.255
network:Organization;I:SOURCEDNS
network:Org-Name:SourceDNS
network:Street-Address:4210 Creyts Rd.
network:City:Lansing
network:State:MI
network:Postal-Code:48917
network:Country-Code:US
network:Tech-Contact;I:admin@sourcedns.com
network:Created:20071126
network:Updated:20071126
network:Updated-By:admin@sourcedns.com
network:Abuse:abuse@sourcedns.com

%ok

This site is registered indirectly to GoDaddy.com

Email was sent from the 208.109.199.53. Most probably by forging it as Shruti. Contact the vaibjain@gmail.com . If he don't take anyaction then network:Abuse. But network abuse is last resort.

Email was not mis delivered. It is a new art of spamming.

newprouser · 08-13-09, 01:43 AM

well first i'd like to see if any more mails come.
i got two random mails actually.

there was only one company who knew this ID and i wondering if they sold it or did sth like that.

Thanks for the detective work :thumbup:

**Luke Skywalker** · 08-13-09, 01:44 AM

I didn't knew about this type of spamming before. Only theoritically I knew not practically.

newprouser · 08-13-09, 01:49 AM

Its only a guess. btw the nigerian scammers are getting intelligent too. they get the numbers from local directory/companies and send messages. Inspite of subscribing to DNC,i get messages !

**Punch Farce** · 08-13-09, 02:10 AM

Originally Posted by newprouser

I jus got a mail which was probably meant for somebody else ! I would like to know how this is possible ???

though it contains marketing stuff i'm unable to understand how in the hell it reached me ?

Are you serious you are wondering how this is possible?
I thought you would figure this out. This happens all the time
in marketing junk mails and normal mails too.

I put my own email in the to: list and the rest of the
recipients in the Bcc: list.

PB

newprouser · 08-13-09, 02:29 AM

Originally Posted by Punch Bala

Are you serious you are wondering how this is possible?
I thought you would figure this out. This happens all the time
in marketing junk mails and normal mails too.

I put my own email in the to: list and the rest of the
recipients in the Bcc: list.

PB

elementary, my dear Watson, and I missed !

Thread: Email scam or can Emails be mis-delivered ?

LinkBack

Thread Tools

Display

Email scam or can Emails be mis-delivered ?

Thread Information

Users Browsing this Thread

Similar Threads

Email Address Validity Checker

Emails: where do you store them ?

Posting Permissions