All of the ports are assocatiated with a program or service running on your machine. For example, port 110 suggests that you have some sort of email program / service running. The trick here is to find out which programs are using which port, evaluate if they are nescecerry, and close that service if not.
For a list of which programs / services use which ports, go to the following url: http://www.iana.org/assignments/port-numbers Hope this helps, Jason lambert. Unemployed security guy in london... :-) --- phiber2001 <[EMAIL PROTECTED]> wrote: > These are ports that are open in one of my w2k > [ntfs] professionals > machines. this pc runs 2 firewalls and an ids with a > real time virus > guard. I want to make some sense out of this and > want to know how to close > these (only the malicious like 445) ports and how to > do further analysis on > these. > > Any kind of help will be highly appreciated. > > TCP 0.0.0.0:135 0.0.0.0:0 > LISTENING > TCP 0.0.0.0:445 0.0.0.0:0 > LISTENING > TCP 0.0.0.0:1025 0.0.0.0:0 > LISTENING > TCP 0.0.0.0:1026 0.0.0.0:0 > LISTENING > TCP 0.0.0.0:1027 0.0.0.0:0 > LISTENING > TCP 0.0.0.0:3372 0.0.0.0:0 > LISTENING > TCP 0.0.0.0:8431 0.0.0.0:0 > LISTENING > TCP 127.0.0.1:110 0.0.0.0:0 > LISTENING > UDP 0.0.0.0:445 *:* > UDP 0.0.0.0:500 *:* > UDP 0.0.0.0:10000 *:* > UDP 127.0.0.1:1029 *:* > > > _________________________________________________________ > Do You Yahoo!? > Get your free @yahoo.com address at > http://mail.yahoo.com > __________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com
