Track IP address of virus sender's system

Learn the tools you need to track an IP address of a virus sender's system.

Richard Luckett, Learn IT Solution Group LLC

Published: 16 Jan 2006

How can I track the IP address of the virus sender's system?

You can use a tool like Sam Spade to "help" you find the source of the infected item by parsing e-mail headers and performing Who is lookups on the source IP addresses.

The bad news is that it will usually lead to a dead end (unregistered block of IP addresses) or a zombie (Grandpa's unprotected and severely infected machine). Not to say that work won't pay off at all, because now you can filter all mail coming from that IP address. But, you know the downside -- there are bad people that aren't directly involved with these bots. And there are plenty more zombies for the bots to use.

I think as long as you are going to stay connected to the Internet you have to consistently ask yourself: How can I do a better job of preventing the viruses I'm receiving from infecting me?

Do you have comments on this Ask the Expert Q&A? Let us know.

Related information from SearchExchange.com:

Peer Advice: Antivirus programs -- which one do you prefer?

Free Download: EICAR's Antivirus Test File

Resource Center: Virus Protection tips and resources

Dig Deeper on Exchange Server setup and troubleshooting

Related Q&A from Richard Luckett

Why is there an Outlook folder missing from Outlook Web App?

Some folders in a mailbox on Exchange Server 2013 are not showing up on the folder list in the OWA virtual directory but do appear in other views. Continue Reading

Why won't the Exchange 2013 Edge Transport Server install?

We have a Client Access Server and Mailbox Server on Exchange 2013 and we want to install an Edge Transport role on another machine. I joined the ... Continue Reading

How do I configure Outlook Anywhere for specific external use?

How can I enable Outlook Anywhere to allow internal use for all users and external use for only some users in Exchange 2013? Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Windows Server experts

View all Windows Server questions and answers

SearchServerVirtualization

Explore native and third-party VM automation tools' features

VMware and Microsoft offer native tools that provide VM automation capabilities, but admins should also look at third-party ...

Use multiple Dockerfiles for complex application configuration

Dockerfiles can help with application configurations, but there are some questions you must consider, such as how many ...

An introduction to VMware vRealize Operations Cloud

VMware is set to release a cloud-based management software as a service in 2020, which uses predictive analytics and AI features ...

SearchCloudComputing

Reduce cloud latency for remote employees and offices

Latency remains an issue for cloud users with remote facilities. See how SD-WAN and satellites can improve network performance ...

AWS multi-account management best practices with Control Tower

With the help of AWS Control Tower, organizations who own and operate multiple cloud accounts can manage them all under one roof ...

Beat vendor lock-in with a cloud exit strategy

Without a comprehensive cloud exit strategy, an organization might fall victim to vendor lock-in and find itself dependent on ...

SearchSQLServer

SQL Server database design best practices and tips for DBAs

Good database design is a must to meet processing needs in SQL Server systems. In a webinar, consultant Koen Verbeeck offered ...

SQL Server in Azure database choices and what they offer users

SQL Server databases can be moved to the Azure cloud in several different ways. Here's what you'll get from each of the options ...

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

In this book excerpt, you'll learn LEFT OUTER JOIN vs. RIGHT OUTER JOIN techniques and find various examples for creating SQL ...

SearchEnterpriseDesktop

New Ivanti CEO plans to stay close to the customer

New Ivanti CEO Jim Schaper is no stranger to the C-suite of an IT company. And he's got a plan to push the company forward.

With support for Windows 7 ending, a look back at the OS

With support for Windows 7 ending and Microsoft ushering in the end of life for the OS, tech experts and IT pros look back at its...

Image-level methods for Windows application deployment

Imaging is a crucial process, but IT must also consider application deployment. Here are methods to deploy different types of ...

SearchVirtualDesktop

5 common Citrix printing issues and how to troubleshoot them

Printing is one of the most frustrating areas of IT management, especially as a VDI admin. Troubleshoot five common Citrix ...

Citrix's performance analytics service gets granular

Citrix says its new performance analytics service for its Virtual Apps and Desktops platform will better identify the root cause ...

Citrix ADC vulnerability discovered, temporary fix released

A security firm said a Citrix ADC and Citrix Gateway vulnerability could affect more than 80,000 companies. Immediate action was ...

Track IP address of virus sender's system

Learn the tools you need to track an IP address of a virus sender's system.

Dig Deeper on Exchange Server setup and troubleshooting

Silent DDoSer

Microsoft offers bounty in hunt for Rustock spambot operators

Microsoft offers bounty in hunt for Rustock spambot operators

bot worm

Related Q&A from Richard Luckett

Why is there an Outlook folder missing from Outlook Web App?

Why won't the Exchange 2013 Edge Transport Server install?

How do I configure Outlook Anywhere for specific external use?

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchServerVirtualization

Explore native and third-party VM automation tools' features

Use multiple Dockerfiles for complex application configuration

An introduction to VMware vRealize Operations Cloud

SearchCloudComputing

Reduce cloud latency for remote employees and offices

AWS multi-account management best practices with Control Tower

Beat vendor lock-in with a cloud exit strategy

SearchSQLServer

SQL Server database design best practices and tips for DBAs

SQL Server in Azure database choices and what they offer users

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

SearchEnterpriseDesktop

New Ivanti CEO plans to stay close to the customer

With support for Windows 7 ending, a look back at the OS

Image-level methods for Windows application deployment

SearchVirtualDesktop

5 common Citrix printing issues and how to troubleshoot them

Citrix's performance analytics service gets granular

Citrix ADC vulnerability discovered, temporary fix released

Dig Deeper on Exchange Server setup and troubleshooting

Silent DDoSer

Microsoft offers bounty in hunt for Rustock spambot operators

Microsoft offers bounty in hunt for Rustock spambot operators

bot worm

Related Q&A from Richard Luckett

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.