Hi. Someone got into one of my e-mail accounts and sent a somewhat threatening e-mail to another of my accounts and I was wondering if there was any way to get their IP address from the e-mail and how could/would I go about finding out WHO that is from said IP address? I hope that made sense. Anyone who knows FOR SURE can e-mail me at shavatheimpaler@hotmail.co
This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.
Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.
If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.
Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.
Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.
Access the answers to your technology questions today.
30-day free trial. Register in 60 seconds.
Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.
Try it out and discover for yourself.
30-day free trial. Register in 60 seconds.
Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.
Well, usually the headers contain a lot of info, sometimes even the senders IP address. This, however, may not lead far; it may be spoofed or a dynamic IP. Possibly the ISP can be nailed down and told about the event.
To view the full message headers, you need to adjust your e-mail client.
Regards
/RID
Someone may have faked a message from one of your accounts to another.
I could EASILY send you a message that to the unitiated looked like it came from your own account.
You would have to check the full headers to tell where it really came from. There is PLENTY of information on how to decode mail headers on the various anti-spam sites out there.
Here is just one:
http://www.stopspam.org/em
You could find more with good old Google:
http://www.google.com/sear
> e-mail me at shavatheimpaler
No, we are public, not secretive folk here.
> how could/would I go about finding out WHO that is
Well, one way is to only tell your friends what your ID is. Now that you've decided to make the ID publicly known, then it can be anybody. Note, this is actually one of the reasons for our use of HotMail, namely, for our eSpam account.
> looking at the headers may provide you with some info as to the origin
This is true, but due to surrogacy and spoofing, this will likely not show the culprit. But it may tell more about method. For example, The origin could have been your own machine after you yourself had turned it on.
> one of my e-mail accounts and sent a somewhat threatening e-mail to another of my accounts
If you are talking of a machine at work, then I express need for caution in permitting others to think you are abusive, and then you leave it logged on while you go get a drink or to meeting or restroom.
If this is home usage and cable, then it is probably a neighbor who can be ID'd by that smirk they cannot hide.
> Anyone who knows FOR SURE
Only YOU can know for sure, since you are aware of volumes of information you have not identified for us here.
Can I just reiterate that the chances are no one got in to anyones account (home/work/web) and that someone has just FAKED a message from/to that person.
Also, Visual Route and similar programs can go off three sets of information. The WHOIS database for those IPs (often outdated), geographic information contained in the DNS zone files (often not there because few people bother), and their own internal databases (which often know little more then the country/region).
Ie basically they aren't very accurate in the majority of circumstances.
Finally some ISPs will respond to the abuse@.... account. While many may not reply direct to you they may still act on the information you provide. I'm a mail administrator at a hosting company and I can assure you whilst I don't reply to every email I get I do investigate and act on them.
Hey, sorry that someone stole your password , and played a prank on you, but remember it is your fault for not taking proper precautions.Yes, you can trace back to where the email originated, but it is not 100% sure that the source is the source :-). Someone that could be smart enough to steal your password wouldnt be foolish enough to send u back a mail from his house :-) .
Anywayz to stop this from happening again u could follow the following steps :p
1) CHANGE YOUR PASSWORD, ENSURE THAT IT IS A COMBINATION OF LETTERS AND NUMBERS IN A COMPLEX SEQUENCE ;-)
2) CHANGE YOUR BIRTHDATE ( NEVER PROVIDE YOUR ACTUAL BIRTHDATE , AS YOUR FRIENDS OR FOES COULD MAKE A CALCULATED GUESS )
3) CHANGE YOUR SECRET QUESTION AND REMEMBER THE DAMN ANSWER TO IT :-)
4) BE WEARY OF ATTACHMENTS THAT ASK FOR YOUR PASSWORD .
5) ALWAYS MAKE SURE THAT U COMPLETELY SIGNOUT OF HOTMAIL.
cheers :-)
See Microsoft's response here:
http://www.microsoft.com/s
Looks like cracker could have done it last september, but they have now taken step to eliminate that feature
"a report was published detailing a security vulnerability through which an attacker could change a user's Microsoft® .NET Passport password and gain the ability to access and use the account."
"have allowed an attacker to change the password and gain access to a targeted account by "
"Microsoft disabled the feature "
This question has been classified as abandoned. I will make a recommendation to the moderators on its resolution in approximately one week. I would appreciate any comments by the experts that would help me in making a recommendation.
It is assumed that any participant not responding to this request is no longer interested in its final deposition.
If the asker does not know how to close the question, the options are here:
http://www.experts-exchang
zenlion420
EE Page Editor
No comment has been added lately, so it's time to clean up this TA.
I will leave the following recommendation for this question in the Cleanup topic area:
PAQ - no points refunded
Please leave any comments here within the next seven days.
PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!
zenlion420
EE Page Editor
Business Accounts
Answer for Membership
by: PakaPosted on 2003-01-17 at 15:27:34ID: 7750806
Your best bet at this point is to change the password on your account if you haven't already done so. The only way to get the IP address of the sender would be to go to your email provider and have them track it.
Good luck,
Paka