Tracking Down Scam email Details using Source of email, from Outlook

In summary, tracking down scam email details can be done using the source of the email, from Outlook. By checking the email header, one can determine the IP address and location of the sender. Additionally, examining the email content and attachments for suspicious links or requests for personal information can also help identify and avoid potential scams. Outlook also offers features such as phishing protection and spam filters to help users detect and block fraudulent emails. Staying vigilant and being cautious when opening emails from unknown sources can help prevent falling victim to email scams.
  • #1
WWGD
Science Advisor
Gold Member
7,376
11,342
TL;DR Summary
Trying to track down details from a scammer/spanner. I have the IP addresses of some of the servers in the path, including the source, destination
Hi,
Trying to track down a spammer, using the source that Outlook provides for all emails received. The message seems to have gone through several servers, and have failed several security/legitimacy tests, such as SPF. I have the IP addresses, server names of the source (77.178...) and destination addresses; including the domain owner, narrowing down the source to central Europe. Can this tracking be done by using the email message ID, which is a unique identifier , i.e., no two emails are assigned the same email ID. I guess contacting the complaints department of the domain owner?
Message-ID is alpha ( a through z)-numeric( decimal), with 38 spaces; I guess this provides ##36^{38} ## choices, though I guess length can be increased, enough for the I guess, several billion sent yearly.
 
Computer science news on Phys.org
  • #2
I think it's a fool's errand. Some of these sites cater to scammers and will resist giving up the spammer's identification or email.

There was a story about a woman who was incensed by an explicit, offensive spam email she received. She complained to a news media outlet, and they decided to conduct an investigation, eventually locating the spammer.

However, the investigation had its challenges. The originating site, a seemingly innocent industrial server farm, initially denied involvement until conclusive proof was provided, at which point they released the spammer's ID information.

She met with the spammer and told him how mortified she was to receive this piece of spam. She asked, "What would you do if your daughter got this email?" He said he had a family of small kids and would stop doing it.

I remember seeing or reading this story but can't find any citation.
 
  • Like
Likes WWGD
  • #3
Well, maybe. Bit I've received at least 5-6 similar ones since Last August alone.
 
  • #4
That is why we have spam folders.

When I receive spam by regular mail, I just put it in the bin; I don't try to contact the sender. It is even easier with emails and automatic filters.
 
  • #5
jack action said:
That is why we have spam folders.

When I receive spam by regular mail, I just put it in the bin; I don't try to contact the sender. It is even easier with emails and automatic filters.
Valid point, but these are scammers , threatening to blackmail me, and this is around the 7th such mail in a year. Edit: This time too, they're spoofing my email address, which can cause me trouble. And I get to do something different and practice my cybersecurity skills.
 
Last edited:
  • #6
"Message ID" is not a required part of SMTP so anyone can put whatever they want there. It will be useless in identification.
 

Similar threads

Using Word for Equation Editing
Replies
15
Views
1K
Recently received email from PF. is it spam?
Replies
7
Views
3K
Physics Forums Privacy Policy
Replies
0
Views
96K
What are the drawbacks of using non-anonymous cryptocurrencies like Bitcoin?
Replies
12
Views
1K
Did You Receive a Fake eBay Email? How to Protect Your Account Today
Replies
12
Views
6K
Praise My feedback, one month and half experience in PF so far
Replies
1
Views
2K
STOP: 0x0000008E (0xC000005, 0XBF04DF7B, 0xED924B18 0X000000000)
Replies
23
Views
5K
TabletPCs for Science and Science Teaching [blog entry from 2006]
Replies
4
Views
3K
BRS: PKI Cryptosystems for SA/Ms: A Tutorial
Replies
13
Views
3K
Requesting suggestions for languages, libraries, and architectures for parallel (and sometimes non parallel) numerical and scientific computations
Replies
8
Views
3K

Hot Threads

Recent Insights

Back
Top