Wednesday, October 19, 2016

Where did the email come from?

Emails are like snails - they leave a trail. This email is no different than any other email ever sent. The focus of this post is:

Question: Where did this email originate from?

 Let's focus on this:




What are we looking at? This is a visualization of the data contained in the header of the Wikileaks Podesta email... All those strange looking names... are server names... you can Google them and find out where they live. So let's do that and see what we find:

The email in question originated from SNT150-W75 65.55.90.9 - (the IP isn't in the graphic, but is in the data itself). Using http://www.iplocationtools.com/65.55.90.9.html we find that this is a Microsoft server located in San Antonio, TX:


Un-expert, Lightly Researched Conclusion: This email's first stop after the "Send" button was clicked (by a yet to be determined sender) was a Microsoft server in San Antonio, TX.

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)