how to close ports? (not just block them)

7

7seven7

New member
Local time
12:58 AM
Messages
3
Hello,

I am running windows 7 ultimate x64

after booting the pc and without visiting any website when I scan my machine localhost using command nmap -sT -O localhost

it shows the following open ports

135/tcp open msrpc
445/tcp open microsof
1025/tcp open NFS-or-I
1026/tcp open LSA-or-n
1027/tcp open IIS
1028/tcp open unknown
1029/tcp open ms-lsa
5357/tcp open wsdapi
6646/tcp open unknown

no big deal because these are all blocked to the internet with mcafee firewall but still I would like to close them for ever!

I understand 135 and 445 are usually open and I dont mind that but how about the other ports? how can I permanently close them? not just block them with the firewall?

strange thing is I see port 1027 says its IIS (internet information services) but IIS is disabled.


Thanks
7
 

My Computer My Computer

Computer Manufacturer/Model Number
sony vaio
OS
Windows 7 Ultimate x64
CPU
i3
Memory
4gb
Typically, you do not want to close ports without knowing exactly what they do to your system. Also, closing them for good might cause issues with your setup somewhere down the line. Google those programs / ports and see what they do for your system. Otherwise, I would just leave them be.
 

My Computer My Computer

OS
Windows 7 Professional x64
CPU
Intel Core 2 Quad Q9400 2.66GHz
Motherboard
Gigabyte GA-EP45-UD3P Rev1.6
Memory
4x GSkill DDR2 SDRAM 2GB 1066MHz (8GB Total)
Graphics Card(s)
XFX nVidia GeForce 9800GT
Sound Card
Integrated
Monitor(s) Displays
2x Acer H233H 23" LCD Monitor
Screen Resolution
1920 x 1080
Hard Drives
1x Intel 40GB SSD
5x Seagate 500GB 7200RPM in RAID 5
PSU
OCZ ModXStream 550W Modular Power Supply
Case
Antec 900
Cooling
Stock Fans
Keyboard
Saitek Eclipse (Red LEDs)
Mouse
Logitech VX Nano Revolution

My Computer My Computer

Computer Manufacturer/Model Number
DIY
OS
W7x64 Pro, SuSe 12.1/** W7 x64 Pro, XP MCE
CPU
Phenom II 1090T w/Noctua NH-D14 /**4400+ X2 w/CM Hyper TX 3
Motherboard
ASRock 890FX Deluxe 4/**A8N-SLI
Memory
2 x 2GB Patriot PGS34g1600LLKA/**4x1GB Corsair VS
Graphics Card(s)
EVGA GTX460 SC/**EVGA 8800GTS
Sound Card
Asus Xonar D2X/**Xonar D1
Monitor(s) Displays
Acer X233H, Dell E152FPc /**LG M237-WD
Screen Resolution
1920x1080 & 1024x768/**1980x1080
Hard Drives
WDC 2TB, 1.5TB, 1TB, 500GB,Seagate 500GB , Maxtor 80GB /**500GB Seagate & WDC 1TB Black
PSU
CM RS600 w/ APC BX1000G/**Antec 500 TP w/ APC BX1000
Case
HAF922/**Antec 1040IIB
Cooling
3x200mm, 1x140 and 1x120mm/**5x80mm fans
Keyboard
Logitech Media USB/**Saitek Eclipse
Mouse
Cordless Trackman Wheel/**Ditto
Internet Speed
3.3Mbps
Other Info
SB 560 5.1 w/ Sennheiser RS140/**Creative T20 speakers, Dvico FusionHDTV7 Gold RT, Cisco E3000, HP 5510V AIO, Linksys E3000, Belkin F5U237 hub and **F5D8055 adapter
(** = 2nd rig)
sussed them out with net-stat

looks like some are Trojans

TCP 0.0.0.0 135 N/A N/A LISTEN svchost.exe 832

TCP 0.0.0.0 445 N/A N/A LISTEN System 4

TCP 0.0.0.0 1025 N/A N/A LISTEN wininit.exe 532

TCP 0.0.0.0 1026 N/A N/A LISTEN svchost.exe 184

TCP 0.0.0.0 1027 N/A N/A LISTEN svchost.exe 412

TCP 0.0.0.0 1028 N/A N/A LISTEN lsass.exe 636

TCP 0.0.0.0 1029 N/A N/A LISTEN services.exe 584

TCP 0.0.0.0 5357 N/A N/A LISTEN System 4

TCP 0.0.0.0 6646 N/A N/A LISTEN McSvHost.exe 1564
 

My Computer My Computer

Computer Manufacturer/Model Number
sony vaio
OS
Windows 7 Ultimate x64
CPU
i3
Memory
4gb
You are running netstat on the local machine. What's more important here is ACTIVE CONNECTIONS (established). If you want to get a more realistic idea of how secure you are, run a port-scanner from the internet. Just because your PC is listening on a port, doesn't mean there's any way possible for something outside your LAN to get wind of that and establish a session. If you have a typical SOHO router, NAT prevents that, unless you circumvent it.
 

My Computer My Computer

Computer Manufacturer/Model Number
ME!
OS
Windows 7 Pro 64bit
CPU
Intel i5 750 - OCed @ 3.57GHz
Motherboard
Gigabyte P55A-UD3
Memory
8GB DDR3
Graphics Card(s)
GTX260
Sound Card
onboard sound
Monitor(s) Displays
Dual 22" LCD
Screen Resolution
1680x1050 x 2
Hard Drives
removable - 2x Samsung F1 1TB; WD Caviar Black 1TB
PSU
I forgot - 750W Antec
Case
Antec P18something
Cooling
I blow on the CPU from time to time
Mouse
Logitech MX laser
Internet Speed
7Mb
yes they all appear closed from a remote scan, they only show open in localhost. just wondered how to close these ports permanently? except 135 and 445
 

My Computer My Computer

Computer Manufacturer/Model Number
sony vaio
OS
Windows 7 Ultimate x64
CPU
i3
Memory
4gb
your request is essentially filled. it doesn't matter if they are open or not. you will not be able to close them without digging around in some places where inexperienced users should not go.

if you have and use a router, it automatically filters out those ports. they are not open to the outside world.
 

My Computer My Computer

OS
Windows 7 Professional x64
CPU
Intel Core 2 Quad Q9400 2.66GHz
Motherboard
Gigabyte GA-EP45-UD3P Rev1.6
Memory
4x GSkill DDR2 SDRAM 2GB 1066MHz (8GB Total)
Graphics Card(s)
XFX nVidia GeForce 9800GT
Sound Card
Integrated
Monitor(s) Displays
2x Acer H233H 23" LCD Monitor
Screen Resolution
1920 x 1080
Hard Drives
1x Intel 40GB SSD
5x Seagate 500GB 7200RPM in RAID 5
PSU
OCZ ModXStream 550W Modular Power Supply
Case
Antec 900
Cooling
Stock Fans
Keyboard
Saitek Eclipse (Red LEDs)
Mouse
Logitech VX Nano Revolution
You must log in or register to reply here.

Similar threads

Solved Opening Ports in a Firewall -- What to do? How does it work?
Replies
4
Views
3K
BuddhaNature
BuddhaNature
How is remote debugging allowed on Microsoft SQL Management studio?
Replies
1
Views
1K
townsbg
townsbg
Opened 2 ports, and probably not by chance, got ransomeware...
Replies
4
Views
1K
samuria
samuria
How do I close ports, including those needed for sharing files
Replies
2
Views
765
samuria
samuria
How to make bootable USB with LOTS of stuff on it -not just OS install
Replies
7
Views
3K
Ztruker
Ztruker
Back
Top