Open ports after upgrading to SP2(?!)

Last week I finally decided to upgrade my pc with SP2.
I did a "Shields Up"-test to discover I suddenly have open ports, and not the least (80, 443!)

Since I never before encountered them, and (therefore also) am a little rusty when it comes to adjusting my firewall (SygatePersonalFW) I'd really appreciate some advice/pointers.



GRC Port Authority Report created on UTC: 2005-10-11 at 09:04:46

Results from scan of ports: 0-1055

2 Ports Open
0 Ports Closed
1054 Ports Stealth
---------------------
1056 Ports Tested

NO PORTS were found to be CLOSED.

Ports found to be OPEN were: 80, 443

Other than what is listed above, all ports are STEALTH.

TruStealth: FAILED - NOT all tested ports were STEALTH,
- NO unsolicited packets were received,
- NO Ping reply (ICMP Echo) was received.



Can anybody get me on my way again? Not ashamed to say I've lost the forest for the trees, alas...

Thanks in advice for some help here.

regards,
slam

 

Hi,
One of the things that can happen is:
Did you scan your ip? It happens that people sometimes scan invisible proxies, like university proxies and such.
Mrk

P.S. If not, we'll advance to the next stage...

 

Not that I know of.
Forgive me for being a bit rusty; haven't been practising any 'security-maintenance' for quite some time now
Tnx for your quick reply, hope you can assist further and my knowledge is refreshed again...

slam

 

Hi,
Click start, run, type cmd.
In command prompt, type ipconfig.
The ip address that shows should be the address that you scan at grc.
Make sure it's the same. If not, you're not scanning your computer ...
If yes, then, I'll think of something else.
Mrk

 

It's the same (also checked at Sygate Online Services)

 

Hi,
Do you use messenger? Or any similar instant messenging.
Mrk

 

No , I don't anymore. Have uninstalled all of it.

 

Hi,

Are you running a web server? This could be it ...
Do you use router? Routers can sometimes have these ports open (http and https).

Try reading this:

http://grc.com/faq-shieldsup.htm

http://www.broadbandreports.com/forum/tcpport80~mode=full~days=999

Read the third post in the third url (above).

Mrk

 

Open a DOS window and type this:

netstat -an

Then press RETURN or ENTER.

Does it show that your computer is listening on those ports?

Phil

 

Hi Slam,

Have you tried all scans at http://scan.sygate.com (left-hand panel), and do they confirm your open ports or more?

There may be a forum at Sygate that discusses this problem - have you looked there for information? At the following Sygate Personal Firewall webpage there are two links to forum support:
http://smb.sygate.com/support/documents/spf/default.htm

-- Tom

 

Hmm check your firewall rules. You must be allowing one of your apps, permission to access inbound connections/server rights.

Maybe it's one of the p2p apps, like Emule,bittorrent clients

 

Could it be that you are running Skype?
Read this thread, if that is the case:
http://forums.sygate.com/vb/showthread.php?s=&threadid=13114

Jarmo