Thursday 21 November 2013

1

How to identify FAKE emails and trace senders location

Posted in

Fake Emails

Fake emails or fake mails are those emails which pretend to come from a specific email address but are sent from some fake email senders. It is not hard to send fake email address. Anyone can use those free fake email sender tools available online. These tools ask for the name and email of the sender which you want to show in the email. emkei.cz is the most popular fake mail sending website.


So you must know how to identify whether the email is fake or not.

See the sample email snapshot:
See the sender's name and email. It's Mark Zuckerberg from email address mark@facebook.com.

This email is just an example. But these can be very harmful when sent by spammers. Suppose it pretends to be sent from your bank and asks for your banking username or password. There are so many examples which shows why you must know about fake emails.

How To Identify Fake Email

It is really simple to identify a fake email. Click on the down arrow at the right side of the Me as shown in the snapshot.

You will see something like this:

Here you will see some details about the email. If the email comes from a trusted source, you will be able to see two more fields, Mailed By and Signed By. See the snap below:
This method can be applied only for the emails coming from big companies like Google, Facebook,  LinkedIN, Twitter and other companies which have their own servers. Email sent from Gmail will be mailed by and signed by Gmail.

But there are so many small companies that does not have dedicated server. They use Gmail labs or their own hosting server. Email coming from those may not show these two fields in mail.

So we need to confirm this by one more way.

Now we will see the header of email.
To see the header of  email, click on down arrow at the right side of the reply icon and click on show original. Now it will open plain text email content with header information in a new tab.
Header information looks like this. Search for Received: from in this page. If there are more than one Received: from in the page, the go for the last one and see the domain there.
It shows emkei.cz in the fake mail sent by me. Now see the website emkei.cz and you will know that the domain belongs to a fake mail sender website.

If you see the header of some other emails, you will see that header comes with too many information which are not present in the header of this fake mail.

How To Trace Location Of Email Sender

Email address can be traced or not. It depends on the mail server it has been sent. If the email is sent from Gmail using GMail web, you will never get the original IP address of the sender. Some other email servers (It may be a fake mail sender) also do not reveal the IP address of the sender in the email header. But in most of the cases (Other than sender is gmail) you can easily get the IP address of the person.

To get the IP address of the sender in the email header, search for X-originating-IP: and you will get the IP address of the sender.
Now see the header of fake mail added above as snap by me, you will not find this field. It means it does not reveal the IP address of sender.


If you get the IP address, now you can use any IP tracer online tool to get the IP address. Use WhatIsMyAddress Ip Lookup tool

Note: If a person is using dialup connection with dynamic IP, IP Tracing will only trace up to the IP address of the ISP. For getting exact location, you need to contact ISP which is impossible without the permission of cyber police.

If a person has purchased a dedicated IP connection, you will get the exact location of it.

What to do if IP is Not There or Email is Sent from Gmail

If you are not able to get the IP address of the person, At least you can know the country of the email. Search for Date: and at the end of line, see the time zone:
Here the time zone is +0100. Treat it as +01:00. Although, there will be so many countries belongs to a timezone, but you may get an approx idea.

THANK YOU

1 comment:

  1. Awesome! I am really inspired with your writing skills and also with the structure for your weblog. Is this a paid topic or did you customize it your self? FAKE SMS SENDER Möglicherweise gibt es auch Arbeitnehmer, die seit langer Zeit auf ein Gespräch mit dem Chef warten und ihn mittels der SMS indirekt dazu drängen können. Man lädt sich folglich einfach selbst ins Chefbüro ein.

    ReplyDelete