Page 1 of 1

for IP address need details

Posted: Tue May 23, 2017 7:42 am
by shankar5899

I could trace out and get the IP address for the mail id :[email protected] and got the IP address: But now need to find out the domain name, sub domain name etc to find exactly where this mail id is originated.Similarly [email protected] also received from this IP address.

Please help to resolve.Let me know if you need more details. Send the result to my registered mail id.

Also share if any command on NSlookup to trace sub domain anmes.

please help to trace below email

Posted: Tue May 23, 2017 7:44 am
by shankar5899
Mail sent by: [email protected]
from IP:

Delivered-To: {removed}
Received: by with SMTP id f4csp562200qke;
Fri, 12 May 2017 23:23:38 -0700 (PDT)
X-Received: by with SMTP id b4mr10697472pll.107.1494656618207;
Fri, 12 May 2017 23:23:38 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1494656618; cv=none;; s=arc-20160816;
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;; s=arc-20160816;
ARC-Authentication-Results: i=1;;
dkim=pass [email protected];
spf=neutral ( is neither permitted nor denied by best guess record for domain of [email protected]) smtp.mailfrom=[email protected]
Return-Path: <[email protected]>
Received: from ( [])
by with ESMTPS id q7si5274591pfd.332.2017.
for <{removed}>
(version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
Fri, 12 May 2017 23:23:36 -0700 (PDT)
Received-SPF: neutral ( is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=;
dkim=pass [email protected];
spf=neutral ( is neither permitted nor denied by best guess record for domain of [email protected]) smtp.mailfrom=[email protected]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;; s=default; h=Message-ID:Subject:To:From:Date: Content-Type:MIME-Version:Sender:Reply-To:Cc:Content-Transfer-Encoding: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive;
bh=24pnQ0x4OeEN+9mYmrwvloawwTCcQuCgotJxnSyku6w=; b=SwD84gMajj/ZCmv80cCzlUE4Y yuZk0hsAKVSEAytjScHDYT3JXtOt9cYLw50XwFL2iu0I7Hy7MHV0Obl9VUhhEidYxt/G8yKxuNVBX tDH2euUKfMVjryQNNee8FULmJhNWm1JGeRLKrdVZEBV6oXUMY0vVrkgbu7tNsGRiZratk1IIUGQ6n QL759p80Gg6Yo2Odnz+azBeKqMMcaJDXw0uLz2Geh4rf57o8l68aK/+XigCGpV/eCVLIzLqx3MPar isCO6CFeY5xlXSv383bZooNtyDnxQ6GNliTnIlDBvmSmBwqV+5+PDX8v2rDBFCm2MR9YBA/VaLjrj 23V/u2c0g==;
Received: from [] (port=41354 by with esmtpa (Exim 4.87) (envelope-from <[email protected]>) id 1d9QSi-0035oD-Qx for {removed}; Sat, 13 May 2017 06:23:34 +0000
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=_4285c9b0a31006628218be8475c7a08d"
Date: Sat, 13 May 2017 06:23:32 +0000
From: [email protected]
To: {removed}
Subject: Refund to sb investment solutions
Message-ID: <[email protected]>
X-Sender: [email protected]
User-Agent: Roundcube Webmail/1.0.6
X-Authenticated_sender: [email protected]
X-OutGoing-Spam-Status: No, score=-1.0
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname -
X-AntiAbuse: Original Domain -
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain -
X-Get-Message-Sender-Via: authenticated_id: [email protected]
X-Authenticated-Sender: [email protected]

Re: please help to trace below email

Posted: Tue May 23, 2017 9:46 am
by Chrispcritters
The email and website are both hosted by a company called HostGator. Unfortunately the email headers do not include the sender's IP address, just that of the hosted mail server.

Here's the domain name registration contact information:

Registrant ID:EDT_65084720
Registrant Name:Manoj Sing Nagar
Registrant Organization:N/A
Registrant Street1:Road No. 20 , Connaught Place
Registrant Street2:
Registrant Street3:
Registrant City:Delhi
Registrant State/Province:Other
Registrant Postal Code:110001
Registrant Country:IN
Registrant Phone:+91.9211159491
Registrant Phone Ext.:
Registrant FAX:
Registrant FAX Ext.: