Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 6 subscribers
  • Views 2544 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to find the email a threat is coming from?

wirth

An friend of mine has been getting a couple of threat notifications from Sophos Anti-Virus with the text "Virus/Spyware Troj-Redir-T has been detected and listed in Quarantine Manager". Obviously somebody is sending her this virus again and again. The threat seems to be in an attachment by the name FullDetails.html but she has no idea with which emails these attachments are being sent to her. She has no emails with such an attachment - possibly because Anti-Virus removed the attachment from such emails.

Is there a possibility to find out the exact email that contains the threat?

If not - why not? Are there possibly other products (whether from Sophos or a different company) that would be more specific about the origin of such a threat?

Thanks for your help.

:1010968


This thread was automatically locked due to age.
Parents
  • 0

    Hello desertman,

    I could write the person who has sent me this email

    that's what I assumed you want to do. You apparently have more than some knowledge, nevertheless it is often (almost) impossible to identify the originating computer or account. Nowadays in most  cases the relevant information is either suppressed or cleverly hidden (the malware writers are no idiots in that respect) and the apparent (and pretended) sender is an innocent victim. 

    Why is there no email with an attachment

    Is the mail client Mail? Just a guess - it might be contained in an older mail, get temporarily extracted, blocked and subsequently (automatically) deleted from the temporary location.

    Christian 

    :1011072
Reply
  • 0

    Hello desertman,

    I could write the person who has sent me this email

    that's what I assumed you want to do. You apparently have more than some knowledge, nevertheless it is often (almost) impossible to identify the originating computer or account. Nowadays in most  cases the relevant information is either suppressed or cleverly hidden (the malware writers are no idiots in that respect) and the apparent (and pretended) sender is an innocent victim. 

    Why is there no email with an attachment

    Is the mail client Mail? Just a guess - it might be contained in an older mail, get temporarily extracted, blocked and subsequently (automatically) deleted from the temporary location.

    Christian 

    :1011072
Children
No Data