Hello, from an email headers, how i can know which IP address should i report to ISP? Delivery-date: Fri, 12 Sep 2014 19:03:34 -0400 Received: from [192.52.*.*] (port=3135 helo=outbound.safetysend.com) by host1.*.com with esmtp (Exim 4.82) (envelope-from <admin@yandex.ru>) id 1XSZsK-0001b4-8k for adm@*.com; Fri, 12 Sep 2014 19:03:33 -0400 Received: from APCSBS ([206.248.*.*]) by outbound.safetysend.com with MailEnable ESMTP; Fri, 12 Sep 2014 18:01:47 -0500 From: "*" <admin@yandex.ru> To: adm@*.com Code (markup): you see there are two different IPs.... which one and if possibly WHY? thank you
I can safely assume that it's the first "Received: from" I am not really familiar with yandex, but in Gmail's case, for instance, the first IP is always the sender's IP. Usually the sender's IP is enclosed with just [ ] brackets without ( ) brackets yet going around them.