An email published by WikiLeaks on Friday may reveal the very moment John Podesta’s emails were hacked — and it doesn’t appear that the Russians did it.

On March 19, 2016, Podesta received an alert from Google that “someone just used your password to try to sign in to your Google Account” from the IP address 134.249.139.239 — Dnepropetrovsk, Ukraine.

“The revelation that the attempted entry into Podesta’s account occurred from Ukraine is sure to disappoint Democrats who insist that Vladimir Putin’s government is behind the hacks.”

Podesta’s assistant Sarah Latham — who apparently knows nothing about Google or the internet — forwarded the email to Charles Delavan, a Clinton campaign IT worker, to make sure it was real.

Delavan told her promptly that “this is a legitimate email. John needs to change his password immediately, and ensure that two-factor authentication is turned on his account … It is absolutely imperative that this is done ASAP.”

Interestingly, however, it may have taken Podesta about 72 hours to do this. The date of the original Google alert — March 19, 2016 — is noteworthy, because as of right now it appears that the hard cutoff date for all leaked Podesta emails is March 21, 2016.

[lz_related_box id=”234145″]

An email sent after that day has yet to be released and may not exist in the trove of Podesta emails of which WikiLeaks is in possession.

While it’s impossible to say for sure that the Google alert in question is connected to the hack of Podesta’s email, this time frame does suggest there could be a connection.

The revelation that the attempted entry into Podesta’s account occurred from Ukraine is sure to disappoint Democrats who insist that Vladimir Putin’s government is behind the hacks.