Nuisance or erroneous bounced email messages

Spammers commonly forge the headers of messages they send, making it appear as though they originated elsewhere. This is called "spoofing". Spammers harvest vast numbers of email addresses, or even guess common email addresses, and then put these addresses in the "To:" and the "From:" fields of the millions of email messages they send out. Some of the messages they send will end up bouncing, and when they do, the forged address in the "From:" (or "Sender") field, which may be yours, receives a non-delivery receipt (or bounce).

There are also viruses, such as Klez and Sobig, which spoof the sender's address. An infected computer sends out infected messages and puts addresses in the "To:" and "From:" fields that it finds somewhere on the infected computer (the email addresses it finds don't have to be in the contacts lists of the email program, but could even be, for example, in a stored document or cached web page). Again, if the "To:" address doesn't work, the message bounces, but it bounces back to the "From:" address, which may be yours.

To make sure that your computer is not infected, UITS recommends that you update your virus pattern file and scan your computer. For help, see For Symantec virus protection software, what are my options for updating the virus definitions? and Using Symantec/Norton AntiVirus Corporate Edition in Windows, how do I immediately scan a file, folder, or drive for viruses? If you find no viruses, then you can assume that your email address was spoofed.

There is unfortunately very little you can do about these messages, because the only way to trace the spammer or the infected computer is by investigating the full headers of the original message sent (not the bounced message), and only the receiver of the original message can enable those headers. The receiver in many of these "bounced email" cases is the automatic mailer from the domain of the non-working address that was in the "To:" field. Normally, these automatic "bounced email" messages do not contain the full headers of the original message sent. You could try to contact the organization whose automatic mailer sent you the bounce message and ask for the full headers, but this takes a lot of effort and isn't usually successful.

For tips on how to reduce the opportunities for both spammers and viruses to get your email address, see:

• How to minimize spam
• Spam basics
• How to minimize spam
• How to respond to spam
• Measures used by IU to reduce spam and virus-infected email
• Email fraud

Services and Support

• Accounts and Passphrases
  • Overview
    • Eligibility
    • Logging in at IU
    • Your responsibilities as a computer user at IU
    • Glossary
  • Common tasks and troubleshooting
    • Accounts
    • Quotas
    • Passphrases
    • Account termination
    • IU Address Book listings
    • If you're associated with multiple IU campuses
  • Types of accounts
    • Logging in at IU
    • Email
    • File storage
    • Web space
    • Printing
    • Research systems
    • Instructional database
    • Other accounts
• Email
  • Overview
    • IU email systems
    • Email at each IU campus
    • Email glossary
  • Common Tasks and Troubleshooting
    • Reading email
    • Problems sending or receiving email
    • Organizing email
    • Using attachments
    • Finding addresses
    • Sending email to groups of people
    • Viruses
    • Junk email
    • Email policies
• Internet, Phone, & Video Connections
  • Internet Connections
    • Registering your computer
    • Ethernet in campus housing
    • Dialing into IU's modem pools
    • Wireless
    • VPN
    • Ethernet
    • Dial-up
    • Connecting to the ADS Domain
    • Outside ISPs
    • GreekNet
    • General information
    • Equipment infrastructure
    • Glossary
  • Telephone services
    • Telephone equipment
    • Telephone features and instructions
    • Telephone services in campus housing
    • Wireless and cellular services
    • Rates and billing
    • Operator services
    • Support, repair, and troubleshooting
  • Video
    • Group videoconferencing
    • Desktop videoconferencing
    • Streaming
    • Purchasing
    • Resources
• Labs, Classrooms, and Instructional Resources
  • Labs
    • Locations, hours, staffing
    • Available software and hardware
    • Multimedia tools in the Information Commons
    • Adaptive technology
    • Reservations
    • Printing
    • Software installation requests
    • Employment
    • Standards and practices
    • Getting help
  • Classrooms
    • Classrooms and equipment
    • Classroom recording
    • Videoconferencing facilities
    • Software installation requests
    • Facility and system design consulting
    • Getting help
  • Instructional resources
    • Course development and management tools
      • Course management tools
      • Assessment tools
      • Collaboration tools
      • Database server access for instruction
      • Creating your own instructional media/Web materials
    • Materials, media, and assistance for instructors
      • One-on-one consulting
      • Instructional strategies
      • Library technology resources
      • Media collections
      • Media duplicating
      • Funding for instructional technology projects
      • Special resources for your students
      • Geospatial data
• Software and Hardware
  • Software
    • IUware Online
    • Obtaining and licensing software
    • Software on campus
    • Requesting software on UITS shared systems
    • Resources for help with software
  • Hardware
    • Buying hardware
    • Hardware on campus
    • Hardware repairs
    • Disposing of old hardware
• Training and Workshops
  • Instructor-led training
  • Online and self-study training
  • Certification and testing
  • Seminars, lectures, and users' groups
  • Training in adaptive software
  • Training requests
• Web Publishing
  • Central hosting
  • Web development tools
  • Web security and access control
  • Policies
  • Resources and information
  • Web development services
  • Podcasting
• Information Systems
  • Enterprise applications
  • Decision Support Services
  • Enterprise Web Technical Services
  • Geographic Information Systems
  • Computer Operations
• Scholarly Cyberinfrastructure
  • Supercomputing and data analysis
    • Systems
    • Software
    • Services
    • Grid computing
    • Digital Library Program
  • Visualization
    • Facilities and services
  • Storage
    • Removable media
    • Long-term centralized storage
    • Temporary centralized storage
    • Slashtmp
• Security and Policies
  • Security
    • Reporting a technology incident
    • Security recommendations
    • Security tools
    • ITSO security bulletins
    • Indiana University Trustees Security Resolution
  • Policies
    • Technology policies at IU
    • Reporting a technology incident
    • E-commerce
    • Institutional and personal information
    • Non-Disclosure Agreement
    • Copyright and fair use

• Ask for Help
• Knowledge Base
• Services Directory
• Staff List
• IT News and Events
• Notices and Alerts

• About UITS
• Contact UITS
• Job Opportunities
• Press Room
• Rates and Costs
• Site Map
• Comments

• Copyright 2005-2008, The Trustees of Indiana University
• Copyright Complaints
• Last updated: Mon, 08 Dec 2008