From: "Richard Stevens" <richard@xxxxxxxxxxxx>
To: <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: RE: [SPAM] - [Full-disclosure] RE: obtain an IP of an MSN
Messengercontact - Email found in subject
Date: Wed, 5 Apr 2006 13:38:09 +0100
MIME-Version: 1.0
Received: from lists.grok.org.uk ([195.184.125.51]) by
bay0-pamc1-f2.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.1830); Wed,
5 Apr 2006 05:39:19 -0700
Received: from lists.grok.org.uk (localhost [127.0.0.1])by
lists.grok.org.uk (Postfix) with ESMTP id E4EC5716;Wed, 5 Apr 2006
13:38:30 +0100 (BST)
Received: from comms.tccnet.local (unknown [212.42.172.68])by
lists.grok.org.uk (Postfix) with ESMTP id CB69E68for
<full-disclosure@xxxxxxxxxxxxxxxxx>;Wed, 5 Apr 2006 13:38:10 +0100 (BST)
X-Message-Info: JGTYoYF78jHCX29z4c5lUVPHK8Trelonzb6rFVyrzxg=
X-Original-To: full-disclosure@xxxxxxxxxxxxxxxxx
Delivered-To: full-disclosure@xxxxxxxxxxxxxxxxx
Content-class: urn:content-classes:message
X-MimeOLE: Produced By Microsoft Exchange V6.5.7226.0
X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [SPAM] -
[Full-disclosure] RE: obtain an IP of an MSN Messengercontact - Email found
in subject
Thread-Index: AcZYp6QyCoijzprqRdGImjq5XDPZYAABaNpQ
X-BeenThere: full-disclosure@xxxxxxxxxxxxxxxxx
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: An unmoderated mailing list for the discussion of security
issues<full-disclosure.lists.grok.org.uk>
List-Unsubscribe:
<https://lists.grok.org.uk/mailman/listinfo/full-disclosure>,
<mailto:full-disclosure-request@xxxxxxxxxxxxxxxxx?subject=unsubscribe>
List-Archive: <http://lists.grok.org.uk/pipermail/full-disclosure>
List-Post: <mailto:full-disclosure@xxxxxxxxxxxxxxxxx>
List-Help: <mailto:full-disclosure-request@xxxxxxxxxxxxxxxxx?subject=help>
List-Subscribe:
<https://lists.grok.org.uk/mailman/listinfo/full-disclosure>,
<mailto:full-disclosure-request@xxxxxxxxxxxxxxxxx?subject=subscribe>
Errors-To: full-disclosure-bounces@xxxxxxxxxxxxxxxxx
Return-Path: full-disclosure-bounces@xxxxxxxxxxxxxxxxx
X-OriginalArrivalTime: 05 Apr 2006 12:39:19.0840 (UTC)
FILETIME=[F585A200:01C658AD]
I don't think it makes any difference if its natted.
Try a
telnet maila.microft.com 25
>From behind your nat router
Then do a netstat.
You'll get either the public ip address of the server, or the public IP
address of the nat router/firewall that the server is behind.
-----Original Message-----
From: full-disclosure-bounces@xxxxxxxxxxxxxxxxx
[mailto:full-disclosure-bounces@xxxxxxxxxxxxxxxxx] On Behalf Of Nick
Eoannidis
Sent: 05 April 2006 12:52
To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [SPAM] - [Full-disclosure] RE: obtain an IP of an MSN Messenger
contact - Email found in subject
Um this will not work on most dsl connections as the network is NAT'd
you need a direct connection to the internet to use the msn netstat
trick
either a DSL modem or a dialup modem that gives your machine the WAN IP
- then this will work.
Nikon,
xyberpix wrote:
Message: 6
Date: Tue, 4 Apr 2006 13:27:52 +0100
From: xyberpix <xyberpix@xxxxxxxxxxxx>
Subject: Re: [Full-disclosure] obtai an IP of an MSN Messenger contact
To: Ian stuart Turnbull <ian.t7@xxxxxxxxxxxxx>
Cc: full-disclosure@xxxxxxxxxxxxxxxxx
Message-ID: <C6DE7C2B-BDD2-47AE-8890-ED1C9F54E578@xxxxxxxxxxxx>
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
If he's online, send him a file, as you're sending the file, do an
netstat -an, and you should see the address that you're transferring to.
That is so long as he's not using a proxy ;-)
HTH
Blog: http://blogs.securiteam.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/