Home > Ask the Microsoft Exchange Experts > Richard Luckett: Spam and Security Questions & Answers > Track IP address of virus sender's system
Ask The Exchange Expert: Questions & Answers
EMAIL THIS

Track IP address of virus sender's system

Richard Luckett EXPERT RESPONSE FROM: Richard Luckett

Pose a Question
Other Exchange Categories
Meet all Exchange Experts
Become an Expert for this site


Exchange Server tips, tutorials and expert advice
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


>
QUESTION POSED ON: 16 January 2006
How can I track the IP address of the virus sender's system?

>
You can use a tool like Sam Spade to "help" you find the source of the infected item by parsing e-mail headers and performing Who is lookups on the source IP addresses.

The bad news is that it will usually lead to a dead end (unregistered block of IP addresses) or a zombie (Grandpa's unprotected and severely infected machine). Not to say that work won't pay off at all, because now you can filter all mail coming from that IP address. But, you know the downside -- there are bad people that aren't directly involved with these bots. And there are plenty more zombies for the bots to use.

I think as long as you are going to stay connected to the Internet you have to consistently ask yourself: How can I do a better job of preventing the viruses I'm receiving from infecting me?

Do you have comments on this Ask the Expert Q&A? Let us know.
Related information from SearchExchange.com:

  • Peer Advice: Antivirus programs -- which one do you prefer?
  • Free Download: EICAR's Antivirus Test File
  • Resource Center: Virus Protection tips and resources

    		•

    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google



    RELATED CONTENT
    Richard Luckett: Spam and Security
    How effective is tracking the IP address of an email hacker?
    Why can't I grant users permissions to an Exchange public folder?
    How can I configure Exchange IMF to allow an IP address or DNS?
    Tool helps identify inbound Exchange Server email flow issues
    Configure SMTP relay restrictions in Exchange Server 2003 to stop spam
    How to lock down an SMTP relay to prevent spam in Exchange Server 2003
    Connecting an Apple iPhone to Exchange Server on Windows SBS 2003
    Why does a security alert pop up when accessing Outlook Web Access?
    Exchange email sent to a domain using SPF authentication is returned
    Selectively set email permissions for Exchange groups

    Spam and virus protection
    How to install Forefront Security for Exchange Server
    Block Web beacons and protect OWA users from spam
    Controlling spam in Exchange 2007 at the edge transport server level
    How file-level antivirus software can harm your Exchange Server
    Problems with email spoofing on SBS 2003
    Exchange Insider e-zine
    Securing your Exchange Server 2007 journaling archives
    Troubleshooting Outlook Web Access issues on a 64-bit system
    Microsoft Exchange Server security dos and don'ts
    Troubleshooting Microsoft Exchange Server Event ID error 6009
    Spam and virus protection Research

    RELATED GLOSSARY TERMS
    Terms from Whatis.com − the technology online dictionary
    backscatter spam  (SearchExchange.com)
    greylist  (SearchExchange.com)
    image spam  (SearchExchange.com)
    KnujOn  (SearchExchange.com)
    Sender ID  (SearchExchange.com)
    spam confidence level  (SearchExchange.com)
    spamblock  (SearchExchange.com)
    spim  (SearchExchange.com)
    tarpitting  (SearchExchange.com)
    Vouch by Reference (VBR)  (SearchExchange.com)

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary



    Search and Browse the Expert Answer Center
    Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
    Browse our Expert Advice



    Outlook Web Access (OWA) Tips and Advice
    HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsMultimediaWhite PapersIT Downloads
    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    SEARCH 
    TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Site Map




    All Rights Reserved, Copyright 2004 - 2009, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts