Can an IP address be traced through email?

Post your general questions about IP address here.
soy64
Junior Member
Posts: 5
Joined: Wed Apr 13, 2011 9:18 am

Can an IP address be traced through email?

Post by soy64 » Wed Apr 13, 2011 9:26 am

I was wondering if an IP address can be traced to the specific person that sent the email?

jordan6223
New Member
Posts: 1
Joined: Wed Apr 13, 2011 11:29 am

Re: Can an IP address be traced through email?

Post by jordan6223 » Wed Apr 13, 2011 11:35 am

Yes it can but I don't know which language you follow. If you're english I will try and translate what I found.
Which program are you using for email?

Jordan6223

User avatar
Chrispcritters
Forum Administrator
Posts: 2464
Joined: Tue Mar 02, 2010 5:41 pm
Location: 127.0.0.1 | ::1
Contact:

Re: Can an IP address be traced through email?

Post by Chrispcritters » Wed Apr 13, 2011 1:15 pm

Tracing an email to specific individual would require a subpoena.
Founder & CEO of WhatIsMyIPAddress.com.
You can follow me on Twitter and Facebook for some behind the scenes info.

soy64
Junior Member
Posts: 5
Joined: Wed Apr 13, 2011 9:18 am

Re: Can an IP address be traced through email?

Post by soy64 » Thu Apr 14, 2011 11:11 am

Jordan6322 - English is my language

Is it possible to track an ip # from a email I recieved from someone. Then after tracking that ip # can I find the exact person that sent it?

soy64
Junior Member
Posts: 5
Joined: Wed Apr 13, 2011 9:18 am

Re: Can an IP address be traced through email?

Post by soy64 » Thu Apr 14, 2011 11:27 am

Would it be routed to as a Yahoo Ip #?

iastaff
Active Member
Posts: 439
Joined: Sat Apr 03, 2010 8:12 pm
Contact:

Re: Can an IP address be traced through email?

Post by iastaff » Fri Apr 15, 2011 4:30 pm

Chrispcritters wrote:Tracing an email to specific individual would require a subpoena.
Read what the admin said. This advice is correct. You'd need to get law enforcement involved in order to trace a specific user. Other than that, all you can get are generalities.

acyclovir
Junior Member
Posts: 7
Joined: Fri Mar 11, 2011 4:32 pm

Re: Can an IP address be traced through email?

Post by acyclovir » Mon Apr 18, 2011 6:06 pm

Hi, people!

I am going to weigh in here on a subject I know something about.

I started my spam- and malware-hunting career several years ago, starting with email spam. I learned how to break down full email headers to decipher their real origins, discarding the fake IP numbers and relay servers in the process.

It *is* possible, in most cases, to figure out the true originating IP number of a spam or malicious email. The information is in the full header, and you can nearly always discard the relay IP numbers and the fakes, and when you're done, you're left with the originator.

Post the full header here, or forward the complete email to me at swampmonster@att.net, and I bet I can break it down and find the source. I am ready to prove that most malicious emails can be traced.

Hope to hear from you.

iastaff
Active Member
Posts: 439
Joined: Sat Apr 03, 2010 8:12 pm
Contact:

Re: Can an IP address be traced through email?

Post by iastaff » Tue Apr 19, 2011 11:43 am

I disagree. I'll stake my paycheck that you can't decipher an email header that was routed over an ssh 768-bit encrypted connection and come out with the originator's ip address.

whyme34
Active Member
Posts: 13
Joined: Thu Apr 21, 2011 10:35 am

Re: Can an IP address be traced through email?

Post by whyme34 » Thu Apr 21, 2011 10:47 am

Im new here and I need help please before I go crazy with my depression. I have two people emailing me and I need to find out if both of them know each other, or if both of them are located in the same area. Please help me :(
That's her email to me:
From Erykah vazquez Tue Feb 8 23:03:21 2011
X-Apparently-To: dulcerocio02@yahoo.com via 209.191.91.181; Tue, 08 Feb 2011 15:03:23 -0800
Return-Path: <erykahlove@gmail.com>
Received-SPF: pass (mta1170.mail.sk1.yahoo.com: domain of erykahlove@gmail.com designates 74.125.82.44 as permitted sender)
X-YMailISG: WHIKxKscZApRrESxUgAixUpK7VIZ30UKD7IFKhjtBIHi_LqK
UqsjkNabgX.7VwsoFdW6qBActX9xnkUgOrF4jIfaQe2hP9dSx1llw9jTYAj.
MkeXfesUc_yiKOJ6MEt1gq0dkw0DeWluvlfGB9dEp94PK7UVtA.o.qtWGLHr
IDNKM8Zn_c9DFtnnOa..zrlL3zxMJ2RtRtjtRxansZozpVD82FtvfFDvenh8
FU8MqGURiB.2nrXkvWADlinnk.wo4hY8.FEVNnF.9dP5P3gl53DexAsgE5ql
nkvq.3NYNCJwkdOOq0qDWnUBZ_KZalpHTkXiu_44oWDoz5UEfSEsrT2mXT0h
Nh9FlBgmtggpSG_NL7t0pCukFq0B3Wv4SGlENtSgrh6xGTnjG_qqi8TIwqko
ntkpybVVMAn00FrByEZ2kicfPjSeOJjNE3QmYmlqwX8cvP1Vr.FJVJseo47S
6FJzcRnQpbVA1Hjzh8bqgeMWmHSCGAjlGjRlG_YBboqgHKCS7MqsNgTso4eo
69mRj9k271NMECYnHu6kTVFJ.p_dJa6IszewYUXi49av5X.iz5LFacuiQ.KO
wnGB39wieEiHMjJWLKShuoTsbAQgQNZHo5rXL6bT9p9ollCLfhv3eSj2nQz0
kyaqW5OkhKpyht_Lnif6e32EFCGqqWxFx3FNjDCqYnaEVXGHYUOQazQZkDM0
3cew6qDFMSsK5QG51v4UOz9O4iEprXzbeMrfcTngeMOlumhPGNQm4T9wlD_N
u8a.JeDa0uZgqTGZPrD_5O2JPtQowY4TK7ho7.D5AJVBWN36mD6825Zj5bwb
2rbEKCI9OAmjwfNbWXYkD86v_bUEVMj9cCCauY8cxSGC3zGsiSi_Qan6dcKF
O74dHLP8ZcA4H6zwCB24hrzcTMDKCAKU0bGkawBeo2JSplGEcZ2QYHBMzQXq
EcQgGPoDLY5rQABRguzl6PB69s28gEb6RXPQ9WfK0KW7bAWfnKBRHgTphAMP
_KePZQyfSV75B.gRcFez3p6rj6lDSuQEqxjyupHp8ZrfOKx8CgWqRbQKRlLK
iB5hWYao3FRO6AiwQttwzFYVEGfAaKhHevwYoCYXJi6y4uamALXXS9BOXSMS
DRnqjUS.M_cAkqdit_B9Jn5eED.Ab7OMK6GlkhVsggZmBDn50ha07TK0wYfk
aZp574i2yYKtaBpLIC4Fw_vvEJpR1MwVxpjbhfKAbdmxiyK7ShxxnD.erJYH
CTB0.DttWGCRAIxQ1sA1mXUyw8HLdXEEp.zIwp4E5gekXZsI_zhQlQ.niczR
IJZU9Lk19Q56uCc.GQ1sIFr8UFc-
X-Originating-IP: [74.125.82.44]
Authentication-Results: mta1170.mail.sk1.yahoo.com from=gmail.com; domainkeys=pass (ok); from=gmail.com; dkim=pass (ok)
Received: from 127.0.0.1 (EHLO mail-ww0-f44.google.com) (74.125.82.44)
by mta1170.mail.sk1.yahoo.com with SMTP; Tue, 08 Feb 2011 15:03:23 -0800
Received: by mail-ww0-f44.google.com with SMTP id 36so6727469wwa.25
for <dulcerocio02@yahoo.com>; Tue, 08 Feb 2011 15:03:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=gamma;
h=domainkey-signature:mime-version:in-reply-to:references:date
:message-id:subject:from:to:content-type:content-transfer-encoding;
bh=WZ6UzVKnGV2zBZqBBmCU59f4TWUwH1c7ypX8Hyz6x3o=;
b=c5nIp/V6BlwwZBuzGb7dgjwsg3uVdp52Hna5wfvANrUohH8PaCphbuUzZee95gWZxM
gb8Z1OSFCXueMWGMTSqLuGXhDXtWrhLJ3Q+G3ZZHfeJqudqEHbN6WVOOQR2aKueA5bbr
hY2J6x1YMxZEsOdF/0G6ZaXANdE6DKoxbYaWc=
DomainKey-Signature: a=rsa-sha1; c=nofws;
d=gmail.com; s=gamma;
h=mime-version:in-reply-to:references:date:message-id:subject:from:to
:content-type:content-transfer-encoding;
b=IWT8JNml9Zt9Ch0dslFqWSEgMV9T06E5acL1P1I2ezmpdjdjYT0iOIoK4Mmxiy8GW7
6HsQcw6r6w0SlE8tf6b7ENlkICvYzWdI3XiM5TtCVmNT0INL/9o9inLkls0xosuVfVYq
1VlwPUauuHLHLuDE2M3ybqXeCkSo75onqnWZE=
MIME-Version: 1.0
Received: by 10.216.186.142 with SMTP id w14mr18323415wem.18.1297206201688;
Tue, 08 Feb 2011 15:03:21 -0800 (PST)
Received: by 10.216.179.72 with HTTP; Tue, 8 Feb 2011 15:03:21 -0800 (PST)
In-Reply-To: <755592.44543.qm@web36306.mail.mud.yahoo.com>
References: <AANLkTinsFgkVZbfDyrZ=gHfUkS+Eo39CSqVwmrhxWrRi@mail.gmail.com>
<755592.44543.qm@web36306.mail.mud.yahoo.com>
Date: Tue, 8 Feb 2011 15:03:21 -0800
Message-ID: <AANLkTinEqrxAS4wRmc6rif0jpXK7bycT7KHFYR=J5K2G@mail.gmail.com>
Subject: Re: Hola
From: Erykah vazquez <erykahlove@gmail.com>
To: Rocio <dulcerocio02@yahoo.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Length: 5179

Email from him:
From curijb@yahoo.com Tue Mar 8 01:17:49 2011
X-Apparently-To: dulcerocio02@yahoo.com via 209.191.91.182; Mon, 07 Mar 2011 17:18:02 -0800
Return-Path: <curijb@yahoo.com>
Received-SPF: none (mta1239.mail.sk1.yahoo.com: domain of curijb@yahoo.com does not designate permitted sender hosts)
X-YMailISG: 9P6k0FgcZAq5iG4abHBGDG8UZ0XhFR4.EPmewQxztFxKRYgO
_8tfuW9_2DJMK9B3rm3pCuDsSdNBeNl.STejdbbc5Ot1aIsngqVOidIKxBpV
XbsGOcQN9xwNP1Yo0a3kkKwAH95DQ4mtDKR4O2ltIdYRu2wPnwP0X2hH9k22
9hs4xeexB1hbxcgBL5aEc_o10LRZOHiZneHeRVJjBoUwasSel9oT_TMee1A_
FOTY.q4KRwopNriAwWmm4DHZQjn1PwFCGDeuzTroJ3ZIHZw9ISNBVHri6Ecg
Lez6Wexh9B47dXxZkW1gleqSl6IztXOqGumJKMV5R_Kiz8c6siEoYMTZf5DG
NF5MASWW6jgKXDjkEn0OPhKl3DfrBeaIXKFVJUeSwqSP73HL03uPWgZZIKKu
QmZixaxvF2aRaO1Eef7UGzrdPdPlNSaD_LfMdAhX21jtSwk76WjhfWkB3Dnh
27a6Me_PZzYPn76SDMEedA4u.Wief8s0nFQY4B5iUb6DFdTBaOMbkliKRHJm
8JPZ0Wo7lBUqpbBWVkvyCKqMpUesyKQNNMVedF93G62fpzLiUt7Xm1LgrJP6
uoSRm_rVWIdpLowAhDBsYcFEhnaiAMweENJd_E5l1wR0QG8BQ702PsyZUjV2
m8N708Sx5vyFhYO_YhksH52cyaOyfh2WZWReshJApGqu3k0FOCnY536RDDBv
PRxOLxQBBXt.FTU7T.FxoRC4bu8583Jn5Omnf4GaLYEKSPD5LX47r82oX6MS
49NJO45EY4he4vuK5MWg35vrW2tO4WxWJZeC9xHSEcv0yX5tQM3acxO3lC2s
qA8MuECGNQ35a1T2qkhJgaRRfbXdtm0sU5dlcqlvc63RAA1YGujPozqAiJwj
SI5H4oD4L9kP03hY.StEk.fVChbAOI3UwT67xS4LQEHwoLlCPzGO26vD_ZB0
lxXsrsvqtTF1uL9I9K8N6_Pmfasv2FRJOIdeUd1v31mc8VvgAuPWYb2fQ4BE
6_wbhnZTbPnNTwO.HcpDns8GnG7lF4eoa0TqebCnChGbbbgxfLxRuiKdiu0D
jsFPvt5238gvK1ybiCACmEOJxuozrfjvnChdMmOdNjT8v_ZcHIKpGPQyfPKD
TZcODjqQeyqEc44o8WPpTxkQmoEA_NhSYcpeWg1CupHCMDuyQMISFoS123Tz
YH60xdnDuvzfKCff3wj3HW3KK690LpKK5VvG1I1KHQ--
X-Originating-IP: [98.136.86.52]
Authentication-Results: mta1239.mail.sk1.yahoo.com from=yahoo.com; domainkeys=pass (ok); from=yahoo.com; dkim=permerror (bad sig)
Received: from 127.0.0.1 (HELO smtp113-mob.biz.mail.ac4.yahoo.com) (98.136.86.52)
by mta1239.mail.sk1.yahoo.com with SMTP; Mon, 07 Mar 2011 17:18:01 -0800
Received: (qmail 69189 invoked from network); 8 Mar 2011 01:18:01 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
s=s1024; d=yahoo.com;
h=DKIM-Signature:Received:X-Yahoo-SMTP:X-YMail-OSG:X-Yahoo-Newman-Property:Subject:From:Content-Type:X-Mailer:Message-Id:Date:To:Content-Transfer-Encoding:Mime-Version;
b=sZRC+r0LgZqk0qC3XtcpjNlrJ3IN1UmSbQR2c6gGObZ5RjhOZAwVmyIveLkX/ysS96dwuWyglRgM59WubHkj07jO0gwrKwUjE+98SZwWi45w6jgKdVuX3i6cE7SNGGcN2opRbQJzQwWEOKci9DooUfp5Z6P8gC8SJxii96/7Kow= ;
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1299547081; bh=eYBZlDSz13rdQEgfVholuhU6zmsz5jEfX3bCbPWOcl8=; h=Received:X-Yahoo-SMTP:X-YMail-OSG:X-Yahoo-Newman-Property:Subject:From:Content-Type:X-Mailer:Message-Id:Date:To:Content-Transfer-Encoding:Mime-Version; b=Y9BIcXFGtjVCTVCa658gZViF1L8Zxnql45sn3fBo+jMpe+ebf1pYmodjlrJ6bJg2ckBlk7w5Ok+a9O7SBQxaqgAmMnRzjThZHT3KxaqMywW8DNOeoI2HLavsM0yua8IkEM2Gn+FZ0OrC5miakP7FBBkbkAx0MUffVClTBLHkAhE=
Received: from [10.24.239.97] (curijb@166.205.136.163 with xymcookie)
by smtp113-mob.biz.mail.ac4.yahoo.com with SMTP; 07 Mar 2011 17:17:56 -0800 PST
X-Yahoo-SMTP: l31B0s.swBD147OFYA6uY5k3uQ--
X-YMail-OSG: w1.xQ90VM1ngHGalYuKUKSguDJ.AXpP6eaYuO69r8piN6t9
5KcdroELcaW5knCGlJJKsw5VPSj8R_TTUvQu.Gaup3cnH2p9xiDdrWOGtjtt
NV0j4fFaIiiIr1fDrcehZoO0whld4cRe.dkJcSGHG6l1Q5tRus3gvIDkQeo8
RJhs12B8O7pPZYjD0.cmPeX17X.EJMcvAxnrTkDQwMoC4MXy_2QM4OfcLWvV
IXxcxB3JgxCF8bfZV9qhSZqxu65jLwSUAYdEbGkRI7FvlaPjd1E.QnkGTAAk
RnAfClght2frkqvTZrmKrTgugGX8887Cwqh6_og7xcMZoBiIKvjcvn2KyBcY
Of0FTT2HRrUEaxhb_aoSDgQ--
X-Yahoo-Newman-Property: ymail-3
Subject: Como estas!
From: curijb@yahoo.com
Content-Type: text/plain;
charset=utf-8
X-Mailer: iPhone Mail (8C148a)
Message-Id: <6823736F-9DAE-409C-BC96-D7CFBB4F96FC@yahoo.com>
Date: Mon, 7 Mar 2011 17:17:49 -0800
To: Rocio Bonilla <dulcerocio02@yahoo.com>,
Rocio Bonilla <fpuente@nielsenhaley.com>,
"Fatima \(Amor De Mi Vida\)" <rociofa32@hotmail.com>
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (iPhone Mail 8C148a)
Content-Length: 1551

johnplayers
New Member
Posts: 1
Joined: Fri Apr 22, 2011 11:57 am

Re: Can an IP address be traced through email?

Post by johnplayers » Fri Apr 22, 2011 10:07 pm

yes ma,its so easy to find out the ip address of email sender.this is so simple trick.well,i dont explain it here.

Locked

Who is online

Users browsing this forum: No registered users and 6 guests