On Tue, 13 Oct 2015 04:15:21 -0400 (EDT), Jochen Spieker wrote: > > It looks like the mail was delivered directly through > smtp02.wow.cmh.synacor.com by a user who successfully authenticated > using the username thecoughingcanary.
On Wed, 14 Oct 2015 05:04:55 -0400 (EDT), Brian <a...@cityscape.co.uk> wrote: > > Your mails all have > > X-Authed-Username: emxpbnV4bWFuQHdvd3dheS5jb20= > > The one to aol.com has > > X-Authed-Username: dGhlY291Z2hpbmdjYW5hcnlAd293d2F5LmNvbQ== > > so did not come from your account. > > Someone has access (legitimately or not) to the second account and is > sending mails with a forged envelope From. Your only recourse is to > present the evidence to the ISP and let them deal with it. Thank you, Jochen and Brian, that is exactly the kind of information I was looking for. I now know that my e-mail account has not been hacked, just spoofed. I will report this to my ISP. Thanks to all who participated in this thread. -- .''`. Stephen Powell <zlinux...@wowway.com> : :' : `. `'` `-