Saturday 12 October 2013

How To Trace An Email Using Its IP Address


How To Trace An Email Using Its IP Address:

In the beginning of the web, tracing an email address was practically impossible. Nowadays a bunch of free tools for this purpose have sprung up all over the web. Availability of these tools combined with an improvement in tracking geographic locations of world IP addresses, have made the job a lot easier.  In this article I will explain how to trace an email address back to its original sender using freely available tools.


How To Obtain The Email Headers
To trace an email address, we first need to obtain the IP where that email came from. This can be found on the email headers. An email header  is basically code containing information necessary for communication and routing. Usually headers are hidden from regular users because they look messy and are irrelevant in the content of an email. Uncovering these headers is different for each email provider. In the following section I will cover how to un-hide these headers for the most popular email providers and programs.

Getting Email Headers in Gmail
Open the email to be traced. Besides the reply button you are going to see a small arrowhead pointing down, click on it; then click on “Show original” (see image)..


Getting Email headers in Hotmail
Open the email to be traced. Besides the reply button you are going to see a small arrowhead pointing down, click on it; then click on “View message source” (see image).

Getting Email Headers in Yahoo
Open the email to be traced. On the new email’s top menu click on the Actions button ; then click on “View Full Header” (see image).


Getting Email Headers in AOL
Open the email to be traced. On the new email’s top menu click on the Actions button; then click on “View Message Source” (see image).


Getting Email Headers in Outlook
Open the email to be traced. Besides the reply button, you are going to see a small arrowhead pointing down, click on it; a new window will appear and at the bottom of it, you will see a section named “Internet Headers“  (see image).


Identifying IP To Be Traced From the headers
Once you open the headers, look for something titled “Received:” or “X-originating-IP:” with an IP address besides it. Take a look at the image below, those are the headers from actual email spam. I have covered part of the IP in case they have cleaned up their act.


Tracing IP Address
To trace the email’s IP address, copy the IP obtained from the email headers. There are many free IP tracing services on the web; the following are some of them:
http://visualroute.visualware.com/  (use their live demo)
http://www.geobytes.com/iplocator.htm
http://www.ip-adress.com/ip_tracer/
The following is a picture of VisulRoute. It shows that the IP in question is coming from Bangalore, India.


Final Thoughts
Tracing an email address location can be very easy with the right tools.  A word of caution:  Finding an email’s source does not automatically mean the originating IP’s owner is guilty of actually sending that email. Spammers use other peoples’ IPs to prevent from being detected. They can do this in a variety of ways, such as spoofing, hacking the sender’s computer, etc.

1 comment: