The RPC Endpoint Mapper (port 135) is definitely not required by RDP, and it is perfectly reasonable (and suggested) to block it on a firewall so non local hosts cannot attempt to enumerate and exploit services. I only say this with certainty because I have many hosts configured like this, and actually just tested it to make sure I wasn't crazy ;-)
But the fact is that both use slightly different methods to "close" Ports 135, 137-139. And using CurrPorts only checks which Ports are opened at that moment in time. I think that if eg. a service that you can potentially use is still enabled, Ports 135, 137-139 can still potentially be opened by eg. malware (especially if you run as an Admin). Sep 15, 2009 · Second, Port 135 is used to support a variety of MS services but id not associated with tracert. It's actually The RPC (Remote Procedure Call) Endpoint Mapper and is a fairly crucial service. However, it should be in stealth mode as far as GRC is concerned, assuming you have run the stealth port wizard from within CIS/Firewall/Common tasks/ So here is how to close a port using Windows Firewall. (I will be using Windows 10; minor adjustments these instructions may be necessary if you are still using Windows 7 or 8.1.) Type “firewall” in the Start menu’s search box and click on the Windows Defender Firewall app when it appears in the results. Aug 30, 2009 · suppose you see a program "abc" running on port 333 which you dont want to then either you can take the PID of the program goto task manager and add PID columns and serach for it and end process tree or from the elevated command prompt run the command "netsh firewall close port opening 333".however the command works only if you are using Sep 18, 2013 · PORT STATE SERVICE REASON 135/tcp open msrpc syn-ack 139/tcp open netbios-ssn syn-ack 445/tcp open microsoft-ds syn-ack 1110/tcp filtered nfsd-status no-response 5357/tcp open wsdapi syn-ack 49152/tcp open unknown syn-ack 49153/tcp open unknown syn-ack What Andrew Daviel said. An ‘open port’ is a somewhat misleading term, as it suggests that someone has neglected to close it, or even that it somehow resembles an entity through which any old thing can enter, like a door or a gate.
how to close port 135 Solutions | Experts Exchange
Mar 10, 2020 · Organizations can allow port 445 access to specific Azure Datacenter and O365 IP ranges to enable hybrid scenarios where on-premises clients (behind an enterprise firewall) use the SMB port to talk to Azure file storage. You should also allow only SMB 3.x traffic and require SMB AES-128 encryption. See the References section below for more
Alternatively, you can upgrade/patch your OS (there is patch downloadable from Microsoft), or you can close port 135. Port 135 is used by Messenger Service (not MSN Messenger) and exploited in popup net send messenger spam [MSKB 330904]. To stop the popups you'd need to filter port 135 at the firewall level or stop the messenger service. The service uses all the following ports: 135/tcp, 135/udp, 137/udp 138/udp, 139/tcp, 445/tcp.
GRC | DCOMbobulator May 04, 2013 The dangers of open port 139 - SearchSecurity And how do I close the port? If you are on Windows-based network that is running NetBios, it is perfectly normal to have port 139 open in order to facilitate that protocol. How do I close msrpc ports? - Windows 7 Help Sep 18, 2013 How to Close Port 21: 6 Steps (with Pictures) - wikiHow