Some @$$ keeps emailing me viruses. The website links don't work and he says to reply with UNSUBSCRIBE as the subject. So I do and he replies with:

From: "friendship" < truefriends@lovers.net >
To: < Hani3@btinternet.com > (NOT MY EMAIL)
Sent: Wed,31 Jul 2002 05:43:26 PM
Subject: Origin of Friendship

Hi
Check the Attachement ..
See u

Hani Zuhur-Adi


This is in Microsoft Outlook. Is there anyway in Outlook to find the IP so that I can trace it and contact the ISP?

I'd just block the sender using Outlook's Junk Mail blocking features and be done with the guy. The best spam mail is the stuff that's filtered out and never reaches you.

Right-click the mail and click options and it will show you the full headers complete with IPs etc...

also you should know not to reply to spam because it just confirms the validity of your account for the spammer. you will then receive more spam...

Post the headers here and I'll help you parse them

Return-Path: <Hani3@btinternet.com>
Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176])
by www.etecc.com (8.10.2/8.10.2) with ESMTP id g6UHeVa04490
for <alec@totalfreelance.com>; Tue, 30 Jul 2002 12:40:31 -0500
Received: from host62-7-111-144.in-addr.btopenworld.com ([62.7.111.144] helo=mail.btinternet.com)
by protactinium.btinternet.com with smtp (Exim 3.22 #8)
id 17Zkc2-0006rW-00
for alec@totalfreelance.com; Wed, 31 Jul 2002 04:57:27 +0100
Wrom: DADRZFSQHYUCDDJBLVLMHAALPTCXLYRWTQTI
To: alec@totalfreelance.com
Subject: Fw: Nice Friendship to check !!
Date: Wed,31 Jul 2002 04:58:52 PM
X-Mailer: Microsoft Outlook Express 5.50.4133.2400
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary=olpxgsn
Message-Id: <E17Zkc2-0006rW-00@protactinium.btinternet.com>
X-UIDL: 6^?"!'l%#!(?o"!~^3"!


I contacted the btinernet staff about it. Thats where it looks like its coming from.

Thanks.

That would be my best guess too. Make sure you sent them the full headers so they can track down the source of it on their servers.

All they should need is this:


Received: from host62-7-111-144.in-addr.btopenworld.com ([62.7.111.144] helo=mail.btinternet.com)
by protactinium.btinternet.com with smtp (Exim 3.22 #8)
id 17Zkc2-0006rW-00
for alec@totalfreelance.com; Wed, 31 Jul 2002 04:57:27 +0100


Then just grep their connection logs to see who was connected to the IP 62.7.111.144 at 04:57:27 on Wed July 31st.

Originally posted by phpcoder
...
he says to reply with UNSUBSCRIBE as the subject. So I do
...


This is not a good idea. If you do anything to unsubscribe from a spam list, they will know that your email address is a valid and active one. So it will make your address of more value to them, and will probably make you a higher priority for sending spam.

Originally posted by Ahmad


This is not a good idea. If you do anything to unsubscribe from a spam list, they will know that your email address is a valid and active one. So it will make your address of more value to them, and will probably make you a higher priority for sending spam.

I said exactly that in my post. Please take the time to read before posting. :rolleyes: