Grab our RSS feeds Follow us on Twitter Join our Facebook Group Connect with us on LinkedIn
myITforum.com, Powered by You.
you are not logged in

Articles

Newslinks

Links

Downloads

Site Services

Community Forums

Discussion Lists

Article Search

Newsletter

Web Blogs

FAQs

Live Support

myITforum TV

Take a Poll

Monthly Drawing

myITforum Network

User Group Directory

Our Partners

About Us

Register

Login

BRONZE PARTNER:

BRONZE PARTNER:



Industry News:




  Home : Articles : Security print | email | | Forums |   print | email | | Blogs |   print | email | | Wiki |   print | email | | FAQs |   print | email | Article Search  
Gleaning Information to Report Email Abuse


Bookmark and Share

By: Rod Trent
Posted On: 10/20/2003

E-mail abuse takes many forms, from unsolicited commercial messages and advertisements, to harassment, profanity, adult content, and others. Any email you did not ask for, or sign-up to receive should be considered unsolicited.

There are a few steps to gleaning important bits of information from the unsolicited email.

  1. Viewing the e-mail header - in your email client, there should be an option for viewing the header of the email. The header contains is a list of the computer servers that carried the e-mail on its journey to your mailbox.

    For example, with Microsoft Outlook, you can view the header by opening the message and clicking on View | Options.





    NOTE: Once you have viewed the email header, you may want to keep a saved copy of it for future reference. Copy and paste the information into a text file to save it. Use Notepad to create a text file and copy the header into. Save the text file somewhere on your computer where you can easily find it.

  2. Locating the IP address - Email headers are usually read from the bottom to the top. Look for the word Received, and then start working your way up the header (line by line) until you find the first IP address.

  3. Looking up the IP address - After you hae located the IP address, go to http://www.arin.net/whois/index.html and in the Search box type the IP address you found, and then click Submit Query. You will receive results similar the following:

    OrgName: Road Runner
    OrgID: RRMA
    Address: 13241 Woodland Park Road
    City: Herndon
    StateProv: VA
    PostalCode: 20171
    Country: US

    NetRange: 65.24.0.0 - 65.27.255.255
    CIDR: 65.24.0.0/14
    NetName: ROADRUNNER-CENTRAL
    NetHandle: NET-65-24-0-0-1
    Parent: NET-65-0-0-0-0
    NetType: Direct Allocation
    NameServer: DNS1.RR.COM
    NameServer: DNS2.RR.COM
    NameServer: DNS3.RR.COM
    NameServer: DNS4.RR.COM
    Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
    RegDate: 2000-08-22
    Updated: 2002-08-14

    TechHandle: ZS30-ARIN
    TechName: ServiceCo LLC
    TechPhone: +1-703-345-3416
    TechEmail: abuse@rr.com

    OrgAbuseHandle: ABUSE10-ARIN
    OrgAbuseName: Abuse
    OrgAbusePhone: +1-703-345-3416
    OrgAbuseEmail: abuse@rr.com

    OrgTechHandle: IPTEC-ARIN
    OrgTechName: IP Tech
    OrgTechPhone: +1-703-345-3416
    OrgTechEmail: abuse@rr.com


    NOTE: Some senders of unwanted email try their best to keep you from being recognized. They will use mechanisms to hide their proper IP address and originating information.



  myITforum.com ©2010 | Legal | Privacy