Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » ISP Blocked my access because of spam
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
The Pirate Bay targeted by spammers and scammers: watch out! »
« After Boclean , What to use ?  
AuthorAll Replies


leibold
Premium,MVM
join:2002-07-09
Sunnyvale, CA
clubs:

reply to bofkentucky
Re: ISP Blocked my access because of spam

Everything you said is correct for detecting that a regular mailserver is running on the system that allows for incoming email.
However the ISP complained about email send (not received) by "Kentucky Joe". If his computer is infected with a trojan/virus the software will use a mail client to transmit the email or have an embedded mail server solely for sending email with bothering to receive email.
Looking for any ports in listening state is still useful, because the trojan/virus may have established a backdoor to allow remote control of the computer. However that backdoor may not be listening on standard email ports.

Assuming that the ISP correctly identified "Kentucky Joe's" internet connection as the source of the spam and further assuming he isn't deliberately sending spam the two most likely explanations are:
1.) one (or more) of the computers on his home network is(are) infected and need to be cleaned up.
2.) someone else in the neighborhood is making unauthorized use of his wireless network.
--
Got some spare cpu cycles ? Join Team Helix or Team Starfire!
to forum · permalink · · 2009-05-24 16:42:56 · Reply to this


nwrickert
sand groper
Premium,MVM
join:2004-09-04
Geneva, IL
·AT&T U-Verse
·AT&T Midwest
said by leibold See Profile :

1.) one (or more) of the computers on his home network is(are) infected and need to be cleaned up.
2.) someone else in the neighborhood is making unauthorized use of his wireless network.
Yes, good analysis. These possibilities are what the OP needs to check.

Attempting to block the outgoing mail would just be a bandaid solution, and probably not very effective. Securing the wireless network (if one is used), and cleaning out the malware on all computers on the home LAN is the way to deal with this problem.
--
AT&T dsl; Westell 327w modem/router; openSuSE 11.0; firefox 3.0.10
to forum · permalink · · 2009-05-24 17:05:55 · Reply to this
-
Forums » Up and Running » Security » SecurityThe Pirate Bay targeted by spammers and scammers: watch out! »
« After Boclean , What to use ?  

Saturday, 05-Dec 04:16:56 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [163] Comcast Releasing Promised Usage Meter
· [145] Avast Antivirus Has Gone Mad
· [126] Comcast Makes NBC Universal Acquisition Official
· [104] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [101] Google Invades ISP, OpenDNS Turf With Google Public DNS
· [89] The Bandwidth Hog Does Not Exist
· [83] FCC Ponders Moving From PSTN To IP Voice
· [81] Latest Consumer Reports Survey Not Kind To AT&T
· [74] Sprint Defuses GPS Privacy Media Bomb
· [70] Baltimore To Ban Lazy Cable Installs
Most people now reading
· False positive in Avast! or is it real? [Security]
· Windows 7 boot manager editing questions [Microsoft Help]
· DNS options, what are YOU using? [TekSavvy]
· Evading throttling with uTP / uTorrent 1.9a [TekSavvy]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Google takes aim at browser redirection [Security]
· Maximizing Rogue DPS for 3.1 [World of Warcraft]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· UPS - What do you people think happened? [General Questions]
· What to use while demonoid is down? [Filesharing Software]