how to close ports? (not just block them)


  1. 7seven7
    Posts : 3
    Windows 7 Ultimate x64
       New #1

    how to close ports? (not just block them)


    Hello,

    I am running windows 7 ultimate x64

    after booting the pc and without visiting any website when I scan my machine localhost using command nmap -sT -O localhost

    it shows the following open ports

    135/tcp open msrpc
    445/tcp open microsof
    1025/tcp open NFS-or-I
    1026/tcp open LSA-or-n
    1027/tcp open IIS
    1028/tcp open unknown
    1029/tcp open ms-lsa
    5357/tcp open wsdapi
    6646/tcp open unknown

    no big deal because these are all blocked to the internet with mcafee firewall but still I would like to close them for ever!

    I understand 135 and 445 are usually open and I dont mind that but how about the other ports? how can I permanently close them? not just block them with the firewall?

    strange thing is I see port 1027 says its IIS (internet information services) but IIS is disabled.


    Thanks
    7
      My Computer
    Quote Quote

  3. calderon501
    Posts : 4
    Windows 7 Professional x64
       New #2

    Typically, you do not want to close ports without knowing exactly what they do to your system. Also, closing them for good might cause issues with your setup somewhere down the line. Google those programs / ports and see what they do for your system. Otherwise, I would just leave them be.
      My Computer
    Quote Quote

  4. seekermeister
    Posts : 6,618
    W7x64 Pro, SuSe 12.1/** W7 x64 Pro, XP MCE
       New #3

    Perhaps, this will be of use:

    http://www.iana.org/assignments/port-numbers
      My Computer
    Quote Quote

  6. 7seven7
    Posts : 3
    Windows 7 Ultimate x64
    Thread Starter
       New #4

    sussed them out with net-stat

    looks like some are Trojans

    TCP 0.0.0.0 135 N/A N/A LISTEN svchost.exe 832

    TCP 0.0.0.0 445 N/A N/A LISTEN System 4

    TCP 0.0.0.0 1025 N/A N/A LISTEN wininit.exe 532

    TCP 0.0.0.0 1026 N/A N/A LISTEN svchost.exe 184

    TCP 0.0.0.0 1027 N/A N/A LISTEN svchost.exe 412

    TCP 0.0.0.0 1028 N/A N/A LISTEN lsass.exe 636

    TCP 0.0.0.0 1029 N/A N/A LISTEN services.exe 584

    TCP 0.0.0.0 5357 N/A N/A LISTEN System 4

    TCP 0.0.0.0 6646 N/A N/A LISTEN McSvHost.exe 1564
      My Computer
    Quote Quote

  7. RayFinkle
    Posts : 52
    Windows 7 Pro 64bit
       New #5

    You are running netstat on the local machine. What's more important here is ACTIVE CONNECTIONS (established). If you want to get a more realistic idea of how secure you are, run a port-scanner from the internet. Just because your PC is listening on a port, doesn't mean there's any way possible for something outside your LAN to get wind of that and establish a session. If you have a typical SOHO router, NAT prevents that, unless you circumvent it.
      My Computer
    Quote Quote

  8. 7seven7
    Posts : 3
    Windows 7 Ultimate x64
    Thread Starter
       New #6

    yes they all appear closed from a remote scan, they only show open in localhost. just wondered how to close these ports permanently? except 135 and 445
      My Computer
    Quote Quote

  10. calderon501
    Posts : 4
    Windows 7 Professional x64
       New #7

    your request is essentially filled. it doesn't matter if they are open or not. you will not be able to close them without digging around in some places where inexperienced users should not go.

    if you have and use a router, it automatically filters out those ports. they are not open to the outside world.
      My Computer
    Quote Quote

 

  Related Discussions
Ping DG, ftp block/httpd block
in Network & Sharing

Hello Guys, I find this to be quite embarrassing, having an issue like this that I can't figure out. Here's what I can't do. 1. Ping DG (Default Gateway) 2. Ping my IP (96.46.29.108) 3. Can't access my router via remote, even though its setup to allow it.
There is a lot of...noise,amongst not in particularly,high-power users,but also simple home or office users about open ports,net,web ports,being used,either from Windows itself or applications.DCOM is an example of a Windows service,that is "listening" to the net,but also sends data through out...
I want to stop some features of a program. This program use a random port between 40.000 - 65.535 I added a rule to the firewall without any effect. I followed these steps: -Control Panel > Windows Firewall > Advanced Settings > Outbound Rules -New Rule > Port > 40000 - 65535 >...
I'm having a lot of trouble finding what ports an application uses. The application is called Voodo Chat, I want to block it for all of the wireless clients in my home (getting tired of them just sitting around on voodo and not doing anything done around the house :mad: ). I have a DGL-4500 router...
How to close ports
in Network & Sharing

Hello, I am trying to close port 22 and 23 in Windows 7 and have done that in WIndows Forewall Advanced Settings Inbound connections New Rule, but GRC web port checker still reports above ports as open. Can you please tell me why these ports are still open?
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 10:26.
Find Us