Point of curiosity - how do you expand the headers?
Josette -- It depends on what program you're using. If you're on Outlook Express, right click on the email in the list, select "properties" and then click the "details" tab. You'll see several "Received from" entries; usually the bottom one shows the actual email address that originated the message.
If you're using Yahoo, Hotmail, or another Web-based mail program, there are highlighted links at the top of the screen that you just click to expand the headers.
I've been receiving messages, about one a day, that claim to be huge files, but contain no message and no attachment. I've assumed that since there is no attachment, I'm safe.
Not entirely. I've received worms the same way, without an apparent attachment. If your antivirus program is scanning the emails, it should identify it if it's infected. If you're running OE 5.0 or 5.5 without the later security patches, the worm can run itself; but if you have the security patches, or use OE 6.0, it won't open and all you'll see is that blank screen. If you're running Netscape or another mail program, the worm won't open itself.
The first supposedly came from the SciFi Bulletin Boad! Another was from a poster here (who did not send it) and today a "returned" message (that I hadn't sent) to someone with a definite DS name. The others were total unknowns. So, I'd really be curious to try that expanding the header and see if those are the worm and if it's all from the same place.
Yep, I've been getting the message from "Ezboard postmaster" as returned mail. But if you check the extended headers, it comes from an Earthlink address, and it may be from the person on this board who did get infected.