Solved

How to deal with open ports?

Posted on 2003-10-22
5
5,880 Views
Last Modified: 2013-12-04
This is not a specific case or emergency.

I would like to know how to close open ports, who has opened those ports and information about why those ports are open.
I know I have no trojans, virus, etc... but sometimes I find some open ports that I dont know which program did it.
Right now I've the 8086 port opened, and I still cant figure out why.

Is there any software, registry stuff or somewhere to check about all this, and close those ports?

I know everybody fix this kind of problem telling about to install a firewall, but I still feel curious about what my computer is doing and why.

Thanx.
0
Comment
Question by:tatoon
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 3

Expert Comment

by:FlamingSword
ID: 9600231
Get ZoneAlarm, it is the easiest way to begin the path you have chosen.
0
 
LVL 3

Expert Comment

by:FlamingSword
ID: 9600276
Here's the free, non-trial version. Using downloads like this help you to decide which products to pay for, which improvements you want, and regtister for essential upgrades:
http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp;jsessionid=1W4kdzT2kanaF4EUtIpCc5iBw54eK736HGq5pSPvCFVsryN8CA1V!-119358174!-1062696903!7551!7552!-1842707748!-1062696904!7551!7552?lid=home_zainfo
0
 
LVL 3

Expert Comment

by:FlamingSword
ID: 9600321
> everybody fix this kind of problem telling about to install a firewall, but I still feel curious about what my computer is doing and why.

It is hard to really find out why, no matter how experienced you are, or points that you have.

A point of clarification: ZoneAlarm does not just close port. It is a door, not a wall. So when a product tries to use a port, the first thing to do is make sure ZA not only tells you, but prompts you for permission. Such as, do you want to let Internet Explorer access the Experts-Exchange? (say 'yes', you like us)

So it does give you more information and control than a freeware would need to.
0
 
LVL 5

Accepted Solution

by:
juliancrawford earned 50 total points
ID: 9602422
If you want to close/block open ports then the best way to go about it is IPSECPOL.
This will block ports, IP addresses or subnets at the socket level layer so your firewall wont even see them knocking down the door.
Here is a link with the basic walkthrough to setup a IPSECPOL rule.
http://www.microsoft.com/serviceproviders/columns/using_ipsec.asp

As to why the ports are open, a very good tool is available  from www.foundstone.com - called Vision (freeware).
Vision will show what ports are open - what programs are opening these ports and what IP addresses are connecting to these open ports.
It will also allow you to terminate the connection - but its best used as an investigative tool.
Here is a link where you can obtain Vision from ..
http://www.foundstone.com/index.htm?subnav=resources/navigation.htm&subcontent=/resources/proddesc/vision.htm

:)
0
 
LVL 12

Expert Comment

by:gidds99
ID: 9611196
This will show you who/what is connected to that port:

http://www.sysinternals.com/ntw2k/source/tcpview.shtml

Its free and easy to use.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
OfficeMate Freezes on login or does not load after login credentials are input.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question