Re: Returned Email but I Didn't Send it

Re: Returned Email but I Didn't Send it: Posted by Blevins on July 11th, 2003; "Carol and Allen Bredt" <abredt@Xsocal.rr.com> wrote:

Chances are, someone with your email address in their address book is
infected.; Posted by Carol and Allen Bredt on July 11th, 2003; Is there something I should do about it?

--
C and A Bredt (Remove X from To: address for private e-mail)
"Blevins" <blevins@mchsi.com> wrote in message
news:%VoPa.31619$H17.9748@sccrnsc02...; Posted by Frans Meijer on July 11th, 2003; On Fri, 11 Jul 2003 06:20:44 GMT, "Carol and Allen Bredt"
<abredt@Xsocal.rr.com> wrote:

No.; Posted by Chuck on July 11th, 2003; On Fri, 11 Jul 2003 06:20:44 GMT, "Carol and Allen Bredt"
<abredt@Xsocal.rr.com> wrote:

IF you could contact some of the folks that reported the infected
email to your ISP, and IF some of them had saved the original infected
email, you MIGHT be able to identify the infection source thru the
headers in the original emails, and report that to the ISP of the
originator. That ISP then MIGHT be interested in identifying and
reporting to their customer who MIGHT be unaware that they're
infected. Based upon the number of examples you could provide, this
MIGHT happen faster.

If you did, you would be doing a lot of folks a big favor. So this
has merit. But it could be a lot of work.

Chuck Croll
cacrollthespam@yahoo.com
Spam sucks - PLEASE get rid of the spam before emailing me!
Trusted Computing? Right! http://www.againsttcpa.com/
WHAT IS THE CBDTPA? http://www.stoppoliceware.org/; Posted by Gabriele Neukam on July 11th, 2003; On that special day, Carol and Allen Bredt, (abredt@Xsocal.rr.com)
said...

As Chuck said, if the original header of the infected mail is included,
you can identify at least the ISP from which the mail was sent, by
filling in the IP number in the header of said mail into a form on the
internet, which is connected to a Whois service.

Such forms can be found at:
http://www.iks-jena.de/cgi-bin/whois
http://www.samspade.org/

Then find the "abuse" address (hopefully the ISP has got one, I am
getting Sobig.E even from the Peoples republic of China), and write a
mail that you got this incorrect bounce, because the sender is a
different one, and INCLUDE THE ORIGINAL HEADER OF THE MAIL THAT CAUSED
THE BOUNCE.

This one piece of information is *vital*, else the infected sender
cannot be traced down.

BTW: If you have a look at alt.comp.anti-virus, the sister newsgroup of
this one (a spinoff created when this group was under attack by a
"hipcrime" news flooder), I have recently sent there a rant on exactly
this problem, with the title, "Sobig.E is driving me crazy". You're not
alone, sadly.

Good luck.

Gabriele Neukam

Gabriele.Neukam@t-online.de

--
Ah, Information. A good, too valuable theses days, to give it away, just
so, at no cost.; Posted by Spambe Gone on July 13th, 2003; In article <0HsPa.102537$98.3678210@twister.socal.rr.com>, "Carol and
Allen Bredt" <abredt@Xsocal.rr.com> wrote:

If the "To Address" is not in your Outlook address book, it's likely
someone else with your address in their address book is infected.

Look at the Email header. You may see clues as who the infected is.

S

Similar Posts

Cannot compose ,reply or send email on Sasktel email system (Computers & Technology) by pcbutts1
Thousands of returned email (Computer Security) by jayvee
returned Hotmail email (Computers & Technology) by news.ntlworld.com
Email Returned to Senders (Computers & Technology) by mennikatz
email returned as undeliverable (Computers & Technology) by steamskunk