Track IP address of virus sender's system

Learn the tools you need to track an IP address of a virus sender's system.

Richard Luckett

Learn IT Solution Group LLC
Published: 16 Jan 2006

How can I track the IP address of the virus sender's system?

You can use a tool like Sam Spade to "help" you find the source of the infected item by parsing e-mail headers and performing Who is lookups on the source IP addresses.

The bad news is that it will usually lead to a dead end (unregistered block of IP addresses) or a zombie (Grandpa's unprotected and severely infected machine). Not to say that work won't pay off at all, because now you can filter all mail coming from that IP address. But, you know the downside -- there are bad people that aren't directly involved with these bots. And there are plenty more zombies for the bots to use.

I think as long as you are going to stay connected to the Internet you have to consistently ask yourself: How can I do a better job of preventing the viruses I'm receiving from infecting me?

Do you have comments on this Ask the Expert Q&A? Let us know.

Related information from SearchExchange.com:

Peer Advice: Antivirus programs -- which one do you prefer?

Free Download: EICAR's Antivirus Test File

Resource Center: Virus Protection tips and resources

Dig Deeper on Exchange Server setup and troubleshooting

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Richard Luckett

Why is there an Outlook folder missing from Outlook Web App?

Some folders in a mailbox on Exchange Server 2013 are not showing up on the folder list in the OWA virtual directory but do appear in other views. Continue Reading

Why won't the Exchange 2013 Edge Transport Server install?

We have a Client Access Server and Mailbox Server on Exchange 2013 and we want to install an Edge Transport role on another machine. I joined the ... Continue Reading

How do I configure Outlook Anywhere for specific external use?

How can I enable Outlook Anywhere to allow internal use for all users and external use for only some users in Exchange 2013? Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Windows Server experts

View all Windows Server questions and answers

SearchServerVirtualization

The beginner's guide to Hyper-V

Knowing Hyper-V beyond base functions is vital to getting your money's worth out of the product. You should understand features, ...

Don't buy a GPU for machine learning unless you have the workload

Virtual GPUs and machine learning might seem like a perfect match, but specialized chips might not be worth the investment if ...

Understand KubeVirt basics to help get you started

Getting to know KubeVirt prior to use is essential. Though it relies on core Kubernetes technology, running VMs alongside ...

SearchCloudComputing

Use modern cloud security best practices

Enterprises still worry about the security of cloud and if migrating will put data at risk. Explore modern methods, technologies ...

VMware acquisition of Intrinsic denotes bigger strategic plan

VMware has acquired Intrinsic, a maker of virtualization technology that secures Node.js applications on serverless environments ...

Oracle's IaaS, cloud database in the spotlight at OpenWorld

This year's Oracle OpenWorld should provide answers for customers eager to understand its plans for IaaS, cloud databases, AI and...

SearchSQLServer

SQL Server database design best practices and tips for DBAs

Good database design is a must to meet processing needs in SQL Server systems. In a webinar, consultant Koen Verbeeck offered ...

SQL Server in Azure database choices and what they offer users

SQL Server databases can be moved to the Azure cloud in several different ways. Here's what you'll get from each of the options ...

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

In this book excerpt, you'll learn LEFT OUTER JOIN vs. RIGHT OUTER JOIN techniques and find various examples for creating SQL ...

SearchEnterpriseDesktop

New Windows vulnerabilities reveal there is no rest for weary IT

The two latest Windows security vulnerabilities reiterate the importance for IT admins to stay diligent when updating and ...

7 questions to ensure UEM supports a Windows 10 migration

The right UEM platform will go a long way in streamlining a Windows 10 migration. Ask these questions to ensure your ...

How to automate Windows 10 imaging with Packer

Windows 10 imaging isn't easy, especially with Microsoft's continuous release model. Here's how IT can use Packer and MDT to ...

SearchVirtualDesktop

Get to know Citrix Virtual Apps and Desktops LTSR and CR

Determine the differences between Citrix Virtual Apps and Desktops LTSR and CR, and understand why many customers are reluctant ...

Customers can interact with new VMware DaaS product at VMworld

VMware's new desktop-as-a-service product will get some play at VMworld. How Managed Desktops differs from its Horizon 7 offering...

Best practices to prevent RDP security issues

IT can prevent RDP security issues in a few ways. Learn how to use Group Policy and other best practices to protect against an ...

Dig Deeper on Exchange Server setup and troubleshooting

Related Q&A from Richard Luckett

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.