Finding out emailer's contact info

[indtint]

I'm new here so if I'm not in the right place please advise me.

We had a man posing as a customer attempt to lure one of my staff to a vacant home (not his property) claiming he needed a quote for window tint. As she was leaving she informed me she was giving someone a quote for residential tint. The time of year, his name, and the fact there was no profile for him made me suspicious. I later confirmed he didn't own the home, nor did the owner know him. He continues to state it's his property (he doesn't know we found out he a fraud. When asking for a email and a phone number we were able to determine both we made within the last 24hrs. I contacted Google both by email and voice. They were not concerned about this at all. Any help on how I can identify this individual or the origination of the email would be greatly appreciated. Thank you for any help you can give. Below is the header info.


Header:
Return-Path: <3n1kyyhgkadqwee[email protected]>
Delivered-To: [email protected]
Received: from bospopproxy13.eigbox.net ([10.20.15.6])
by bospop27.eigbox.net with LMTP
id 2O9iKqFZMmKfcQAA5kiHlw
(envelope-from <3n1kyyhgkadqweew[email protected]>)
for <[email protected]
Return-path: <3n1kyyhgkadqwee[email protected]>
Envelope-to: [email protected]
Delivery-date: Wed, 16 Mar 2022 17:41:53 -0400
Received: from [10.115.3.3] (helo=bosimpinc03)
by bosmailscan06.eigbox.net with esmtp (Exim)emoved
id 1nUbOz-0007rQ-Cg
for [email protected]; Wed, 16 Mar 2022 17:41:53 -0400
Received: from mail-qt1-f198.google.com ([209.85.160.198])
by bizsmtp with ESMTP
id UbOynOjdFxO2hUbOznIwct; Wed, 16 Mar 2022 17:41:53 -0400
X-EN-OrigIP: 209.85.160.198
X-EN-IMPSID: UbOynOjdFxO2hUbOznIwct
Received: by mail-qt1-f198.google.com with SMTP id bb15-20020a05622a1b0f00b002e06ae2f56cso2294958qtb.12
for <[email protected]>; Wed, 16 Mar 2022 14:41:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=google.com; s=20210112;
h=mime-version:date:reply-to:precedence:list-unsubscribe:feedback-id
:list-id:references:message-id:subject:from:to;
bh=cdl6za4cGs4MKGKP+lIstb0iv3vEcU+n4WZ27aLgqfQ=;
b=cN7ekN5CrEDxoCoDcRrPZSw3aeDR2C+9xdcRCZn4IBpH80U+MlajpG1s+FEZAykUNv
yaaCnNyxxZAXgZKI4UjgB/vCi0Db8XBxJ+11vbU6YRNh6eQzwi9cfHHtSaRXvLsoPfxq
z5PvxuqDuaZslqqBGas04BtR660KrxG8056qRwFf46vF5u1aKI+DHTOfu/QaZkBEvtaI
5ovREvGIjHyJh0UDlYSekp5MqrO6spQAm8yitovIUPlulS8jVaDUrrB8P9+ciIapPUT3
o8tlIZuHEHNpleykmZUnLQwN8qFRJfbr8vz//kWPxUBJnTmU1aYzT0CE6wnz0iJaNYWK
V8uw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20210112;
h=x-gm-message-state:mime-version:date:reply-to:precedence
:list-unsubscribe:feedback-id:list-id:references:message-id:subject

[Chrispcritters]

In order to get the user's IP address and any details about the user Google might have you would need to hire a lawyer, file a lawsuit, and subpoena the account records from Google. This may get you a phone number and IP address(es). From there you would need to subpoena the wireless carrier and ISP to find the phone account holder and who the IP address(es) were assigned to at the time the account was accessed. From talking with lawyers in the past this like would cost in excess of $10,000. If they're using a non-us phone carrier and ISP this may not even be possible.

You may be able to save a step and send the person a link and trick them into clicking it so that their IP address is recorded for you. Services like Grabbify and IPlogger would do that.