我有一个电子邮件标题,其中显示以下信息,我相信这是伪造的。
这封邮件据说来自一个 Gmail 帐户,但我不确定是不是这样。通常情况下,你会从下往上阅读邮件标题,这表明这封邮件来自
mail-am1.bigfish.com 213.199.154.202(微软服务器),但奇怪的是,邮件的顶行看起来像是来自谷歌的平行旅程。
什么可能导致我看到的模式(可能是垃圾邮件,因为 Google 服务器似乎不存在)?
Received: from mail-yi0-f41.google.com (209.85.218.41) by AM1EHSMHS013.bigfish.com (10.3.207.151)
Received: from AM1EHSMHS013.bigfish.com (unknown [10.3.201.249]) by mail60-am1.bigfish.com (Postfix)
Received: from mail60-am1 (localhost.localdomain [127.0.0.1]) by mail60-am1 (MessageSwitch)
Received: by 10.142.58.20
Received: by 10.68.19.4
Received: by abc25
Received: from mail60-am1 (localhost.localdomain [127.0.0.1]) by mail60-am1-R.bigfish.com (Postfix)
Received: from mycompanyrelay.gmessaging.net (10.90.1.161) by mymail.mycompany.com (10.90.0.178)
Received: from mycompanyrelay.gmessaging.net (localhost.localdomain [127.0.0.1]) by localhost.gmessaging.net (Postfix)
Received: from mail60-am1-R.bigfish.com (mail-am1.bigfish.com [213.199.154.202]) by mycompanyrelay.gmessaging.net
答案1
虽然这些标题看起来很奇怪,原因有很多,但其中最重要的原因是它们是部分标题。这封电子邮件完全有可能最初来自 Microsoft,发送到 G-mail 帐户,然后被转发到另一个电子邮件帐户。这将导致电子邮件包含来自 Microsoft 的标题、来自 GMail 的接收标题、来自 GMail 的发送标题以及您组织的接收标题。