Attention LDTate

This is a quote from (my IP).

"Most viruses and worms are spread by email, in the form of spam (or junk emails). So how are these emails sent?
Viruses/worms install their own SMTP engine on compromised computer, once installed; a worm can churn out a huge volume of messages on a broadband connected PC by sending mail directly out of port 25 rather than the (my IP) mail server.
This is the default port used by an email client to connect an email server.."

(end of quote)

This quote has me concerned about how many people could be spreading virus' just by not changing a default setting.
Even if someone is already protected by good software, I believe my 'How to' is one that would be useful, as I still receive emails that have attachments and AVG doesn't always find a virus, 4 Trojans found in the last week from emails that are not legitimate emails.(all were .zip files places in attachments)
I am running AVG Anti-virus Free with Outpost Firewall Pro 2009, also run Spyware Blaster and Malwarebytes' Anti-Malware, all are updated daily.

I do hope that my "How to" is able to be answered and posted in the "Windows 101" Forum, if seen fit by LDTate.
And what a great idea this "Windows 101" is !

This post has been edited by Jkc73: Oct 12 2008, 11:03 PM

Something is not right in this scenario. First, I assume you mean ISP and not IP.

Second, if you have AVG, SB, and MBAM, along with your firewall, AND you keep Windows current, AND you never open attachments and downloads without scanning first, AND, most importantly, you stay away from sites badguys wallow in (porn, illegal gambling, and primarily P2P sites that condone the illegal filesharing of copyrighted materials - songs, movies, published writings), then you should not be getting any Trojans. And by "you" I mean every user of that computer.

Where's your spam blocker?







This post has been edited by Digerati: Oct 13 2008, 05:56 AM

I don't see this as a "How to", more an informational message since it doesn't actually tell you how to do anything.

Here is a link with some more information on this: http://www.hoax-slayer.com/smtp-engine.html

This post has been edited by Ztruker: Oct 13 2008, 10:32 AM

True statement of course, Thanks for the correction.


To add to my software list, Ccleaner, ATF Cleaner, Spybot S&D (Resident Tea Timer Disabled),WinPatrol.
All Trojans have been found by AVG when scanning incoming emails, I received a few of those credit card emails, and 1 from an airline asking me to check my invoice, 1 other saying that my credit had been credited with $150 to Translate some document that was attached (no virus was found)???. 1 of the emails was not even addressed to me, the 1st 3 letters of the name were the same, I checked the properties and the server had sent it to me, though it wasn't my email name, I didn't check the IP( though I would suspect it has to be mine) unless it is mail generated from my own machine, I don't know enough in this area


My ISP would send monthly messages telling me what they had stopped.
Since I changed from "Outlook Express" to "Windows Live Mail" my ISP no longer supports!
Can you recommend an anti-spam/spam blocker program?

Thanks Digerati



Ztruker, my intention here was to suggest the "How to..", and gain more input from the other members with more knowledge, as I do believe their is always something to be learned as you have added and other members with input will to!
Until eventually the information has been gathered and the question formatted, and deemed fit or not to be posted as part of the "Windows 101" "How to.."

Thanks for all your input

This post has been edited by Jkc73: Oct 13 2008, 01:10 PM

SPAMmer bots send out e-mail from an infected computer by imitating a legitimate mail server. All e-mail from server to server is transmitted over port 25. Anybody can connect to port 25 on a mail server (yahoo, msn, etc.) and start sending mail to recipients that the server hosts if a valid e-mail address is known. Many ISPs now a days completely block home users from using port 25. This prevents a computer that should not be sending out e-mail in this fashion from doing so. This is why you have to setup a non-standard port for your mail client to use when connecting to your ISPs mail servers, and they require a name and password.

If a user had a home router setup, or some other type of gateway/firewall that could be programmed to block any outbound communications to port 25 then they could ensure that there own computers are not being used to send out spam even if they were infected. However, blocking port 25 is not going to eliminate any spam coming into you whatsoever. This is something completely different.

The information that you are on to is simply a method for preventing infected computers from becoming spam bots and spamming people. As I said earlier, many wise ISPs have already blocked this port to prevent you or your neighbor from sending out spam on their networks. For business customers, and customers who use static IP addresses, they allow this type of communication because many of those customers host their own e-mail services.

Its an old thread, but I had to add my two cents.