How Can I Tell Where This Email Is Really Coming From?

by 14 comments
I have a problem that may be more serious than I thought.

I am getting emails from one of my other email accounts but I am not
sending them.

Now, I know to look at the header and see if there is another email
address listed, but there isn't. The only email address listed in the header
is my own.

Is there something else I can look at to see where this email is really
coming from?

I do see this:

Received: from [85.100.56.163] (port=4674 helo=xxxxxx.com)
by xxxx.xxxxxxxx.com with smtp (Exim 4.68)
(envelope-from <myaddress@mydomain.com>)
id 1LEA0M-0002CG-Ru
for myaddress@mydomain.com; Sat, 20 Dec 2008

I have removed all the actual information because I don't want to publicly
get somebody in trouble, but where it says port=4674 and then there
is a domain after it, is that where the email is actually orginating from?

I replaced my actual email address with myaddress@mydomain.com.

Any help anybody can give me on this will be appreciated.

Thanks.
#main internet marketing discussion forum #coming #email
  • Profile picture of the author KirkMcD
    Is that the entire header?

    This is where it originated, if it is.
    Received: from [85.100.56.163]
    Here is the Whois for the ip:
    http://www.db.ripe.net/whois?form_ty..._search=Search
  • Profile picture of the author Andy Fletcher
    Its a common spamming trick to send people email from themselves. Depending on what software is used for the mail server is definitely possible to block this kind of spam.

    You'll need to find out what IP address you actually send email from (this will be the IP address of your SMTP server) then you can blacklist your own email accounts unless they come from the real IP address.
  • Profile picture of the author Andy Fletcher
    Oh, and another thing, your biggest problem will most likely be the computer sending it is owned by some completely unsuspecting guy/girl who has had their computer compromised by a virus which has installed an SMTP server on it.
  • Profile picture of the author Andy Fletcher
    The simplest fix is actually to just blacklist your own email addresses. How often do you email yourself anyway?

Next Topics on Trending Feed