cpayne wrote: > Robert Braver wrote: >> Hello Payne, >> >> On Wednesday, October 17, 2007, 9:08:53 PM, you wrote: >> >> c> I am getting a lot mail which I know is from a mail program use by >> c> spammers, called the bat. >> >> > Yea, I did a search. And found you are right, shame that most of the > spam I am using is coming from the mail program.
Correction. The spam *claims* to be coming from The Bat!. With near perfect certainty, I can tell you the spam was not generated by The Bat, Outlook, or whatever other program might appear in the User-Agent or X-Mailer header. It is no more believable than the From: header, and it is forged just as often (ie: nearly always). It is generally advisable for spammers to fake this header to look like a real mail client, as best they can, because it makes spam detection harder. So they do. In reality nearly all spam is generated by custom software that runs in the background on infected PCs in botnets. Think about it, the mail viruses that infected the PC in the first place can generate emails to spread themselves.. Spamming activity is simply good reuse of the same code. So, your spam was probably generated by a fragment of code from the Storm worm, mydoom, bagel, etc, possibly glued together with some other code for the differing payload needs. But no spammer is going to be foolish enough to put: User-Agent: Storm Worm Botnet v 3.12.0 But we can all dream... :)
