Quote:
Originally posted by visualAd
Netbios utilises ports 137,138,139. Port 137/TCP is used for name resolution, 138/UDP is for connectionless data transfer and 139/TCP is for connection orientated data transfer.
By default these ports are protected by Windows to ensure only communication is within the local network. However, as of Windows 2000 net send makes use of the remote procedure call on port 135, which is not protected. By using port 135 the spammer is then told by the remote machine what port the messenger service is listening on. This is usually a high numbered un protected port.
Well, I didn't know that! Although the ports