Have had time to dig a little deeper. Message headers from email received:
Delivered-To:
[email protected]Received: by 10.216.84.134 with SMTP id s6csp50640wee;
Mon, 24 Feb 2014 17:15:13 -0800 (PST)
X-Received: by 10.220.95.139 with SMTP id d11mr14884257vcn.21.1393290912596;
Mon, 24 Feb 2014 17:15:12 -0800 (PST)
Return-Path: <
[email protected]>
Received: from mail-vc0-f182.google.com (mail-vc0-f182.google.com [209.85.220.182])
by mx.google.com with ESMTPS id lz6si6382884vcb.106.2014.02.24.17.15.12
for <
[email protected]>
(version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
Mon, 24 Feb 2014 17:15:12 -0800 (PST)
Received-SPF: neutral (google.com: 209.85.220.182 is neither permitted nor denied by best guess record for domain of
[email protected]) client-ip=209.85.220.182;
Authentication-Results: mx.google.com;
spf=neutral (google.com: 209.85.220.182 is neither permitted nor denied by best guess record for domain of
[email protected])
[email protected]Received: by mail-vc0-f182.google.com with SMTP id id10so6516424vcb.41
for <
[email protected]>; Mon, 24 Feb 2014 17:15:12 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20130820;
h=x-gm-message-state:mime-version:in-reply-to:references:date
:message-id:subject:from:to:content-type;
bh=Nc1QEO8pk+HISvP8szTurr9Q6Z1zkm9/VgkGEooPhbs=;
b=bn3FFMDI24bMAK9B1I5xuw1zFy0qgrHkuVnhpRbV2iZFbBBLlPpbNXGBlMdVO/rEgB
wLhZZ77vccUK/QHaa+bzXIFUZcqdOUejrwa8irqAmUnKb4zI61kxmWwg19KyGf0lE0gC
G5+w696iHMSrDJ1rxey2o5dARNz+ioIb/AGN+Lf1vBU5zb55NZtoTJDLvX11U7PEwTSV
JZfQ1vMFutCsMcpZmNVXw/vnA6qAuE3fdtzLTVzKELbM2idhqqWIO/F96TaucbeEN77D
CdP1C82Vq9V739aEdKajFtf2D6hXoBr6jrqYhah0tCdgjDwBPa0L2eKE+lJGqZyz3jxh
X4HQ==
X-Gm-Message-State: ALoCoQmPRPK46VACAkhmZGESgBSeZbEux8G1hnxaFJ2llngtdtzexI9KXvBz5QhEN1TEBz00KPfw
MIME-Version: 1.0
X-Received: by 10.58.69.111 with SMTP id d15mr226566veu.3.1393290911953; Mon,
24 Feb 2014 17:15:11 -0800 (PST)
Received: by 10.220.146.202 with HTTP; Mon, 24 Feb 2014 17:15:11 -0800 (PST)
In-Reply-To:
References:
Date: Tue, 25 Feb 2014 01:15:11 +0000
Message-ID:
Subject: Re: Order Update?
From: Xtreme Miners <[email protected]>
To: xtreme miners customer
Message headers make me think email hosted for domain xtrememiners.net is at google/gmail.
Verify looking up mail servers for domain:
> xtrememiners.net
Server: resolver1.opendns.com
Address: 208.67.222.222
Non-authoritative answer:
xtrememiners.net MX preference = 40, mail exchanger = aspmx2.googlemail.c
om
xtrememiners.net MX preference = 10, mail exchanger = aspmx.l.google.com
xtrememiners.net MX preference = 30, mail exchanger = alt2.aspmx.l.google
.com
xtrememiners.net MX preference = 50, mail exchanger = aspmx3.googlemail.c
om
xtrememiners.net MX preference = 20, mail exchanger = alt1.aspmx.l.google
.com
>
from message headers of above email:
Received-SPF: neutral (google.com: 209.85.220.182 is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=209.85.220.182;
Believe client ip of 209.85.220.182 is not client IP of person sending email but which GMail server they are logged into.
From Geo IP location service:
IP Address 209.85.220.182
Location UNITED STATES, MICHIGAN, STERLING HEIGHTS
Latitude & Longitude 42.580310, -83.030200 (42°34'49"N 83°1'49"W)
Connection GOOGLE INC.
Local Time 24 Feb, 2014 10:14 PM (UTC -05:00)
Domain GOOGLE.COM
Google has regionalized servers. Guessing client would be directed to closest server. Based on time of email, received at 5:15 PST which is roughly 2:15AM in Germany, unlikely that normal business person would be up and sending email at that time. If person in Michigan area more likely they would be sending email although still late (8:15PM) which would corroborate what I've seen elsewhere that some of the people behind the company are in the US.