Port Authority Edition – Internet Vulnerability Profiling
by Steve Gibson,  Gibson Research Corporation.

Determine the status of your
system's first 1056 ports

This Internet service ports "grid scan" determines the status —  Open,  Closed, or  Stealth — of your system's first 1056 TCP ports.
32 ports, represented by each horizontal row, are probed as a group. The results are posted as the next set of ports are probed.
During off-peak hours the entire scan requires just over one minute.
For guaranteed accuracy, the scanning time will increase during peak usage when many people are sharing our scanning bandwidth.
A scan of a stealthed system is up to four times slower since many more probes must be sent to guarantee against Internet packet loss.
The test may be abandoned at any time if you do not wish to wait for the scan to finish.
You may hover your mouse cursor over any grid cell to determine which port it represents, or click on the cell to jump to the corresponding Port Authority database page to learn about the port's specific role, history, and security consequences. (Depress SHIFT when clicking to open new window and allow unfinished test to continue.)

Your computer at IP:

 81.132.66.87 

Is being carefully examined:

0 / <nil> / Reserved1 / tcpmux / TCP Port Service Multiplexer2 / compressnet / Management Utility3 / compressnet / Compression Process45 / rje / Remote Job Entry67 / echo / Echo89 / discard / Discard1011 / systat / Active Users1213 / daytime / Daytime14151617 / qotd / Quote of the Day18 / msp / Message Send Protocol19 / chargen / Character Generator20 / ftp-data / File Transfer Protocol / Default Data Channel21 / ftp / File Transfer Protocol / Control Channel22 / ssh / SSH Remote Login Protocol23 / telnet / Telnet24 / privmail / Private Mail System25 / smtp / Simple Mail Transfer Protocol2627 / nsw-fe / NSW User System FE28 / - / (Used by 'Amanda' Trojan)29 / msg-icp / MSG ICP30 / - / (Used by 'Agent 40421' Trojan)31 / msg-auth / MSG Authentication31
32 3233 / dsp / Display Support Protocol3435 / privprnt / Private Printer Server3637 / time / Time38 / rap / Route Access Protocol39 / rlp / Resource Location Protocol4041 / graphics / Graphics42 / nameserver / Host Name Server43 / nicname / Who Is44 / mpm-flags / Message Processing Module / Flags45 / mpm / Message Processing Module / Receive46 / mpm-snd / Message Processing Module / Send47 / ni-ftp / NI FTP48 / auditd / Digital Audit Daemon49 / tacacs / Login Host Protocol50 / re-mail-ck / Remote Mail Checking Protocol51 / la-maint / IMP Logical Address Maintenance52 / xns-time / XNS Time Protocol53 / domain / Domain Name Server54 / xns-ch / XNS Clearinghouse55 / isi-gl / ISI Graphics Language56 / xns-auth / XNS Authentication57 / privterm / Private Terminal Access58 / xns-mail / XNS Mail59 / privfs / Private File Service6061 / ni-mail / NI MAIL62 / acas / ACA Services63 / whois++ / whois++63
64 64 / covia / Communications Integrator (CI)65 / tacacs-ds / TACACS-Database Service66 / sql*net / Oracle SQL*NET67 / bootps / Bootstrap Protocol Server68 / bootpc / Bootstrap Protocol Client69 / tftp / Trivial File Transfer70 / gopher / Gopher71 / netrjs-1 / Remote Job Service72 / netrjs-2 / Remote Job Service73 / netrjs-3 / Remote Job Service74 / netrjs-4 / Remote Job Service75 / privdial / Private Dial Out Service76 / deos / Distributed External Object Store77 / privRJE / Private RJE Service78 / vettcp / vettcp79 / finger / Finger80 / http / World Wide Web HTTP Protocol81 / hosts2-ns / HOSTS2 Name Server82 / xfer / XFER Utility83 / mit-ml-dev / MIT ML Device84 / ctf / Common Trace Facility85 / mit-ml-dev / MIT ML Device86 / mfcobol / Micro Focus Cobol87 / privlnk / Private Terminal Link88 / kerberos / Kerberos89 / su-mit-tg / SU/MIT Telnet Gateway90 / dnsix / DNSIX Securit Attribute Token Map91 / mit-dov / MIT Dover Spooler92 / npp / Network Printing Protocol93 / dcp / Device Control Protocol94 / objcall / Tivoli Object Dispatcher95 / supdup / SUPDUP95
96 96 / dixie / DIXIE Protocol Specification97 / swift-rvf / Swift Remote Virtural File Protocol98 / tacnews / TAC News99 / metagram / Metagram Relay100101 / hostname / NIC Host Name Server102 / iso-tsap / ISO-TSAP Class 0103 / gppitnp / Genesis Point-to-Point Trans Net104 / acr-nema / ACR-NEMA Digital Imag. & Comm. 300105 / csnet-ns / Mailbox Name Nameserver106 / 3com-tsmux / 3COM-TSMUX107 / rtelnet / Remote Telnet Service108 / snagas / SNA Gateway Access Server109 / pop2 / Post Office Protocol - Version 2110 / pop3 / Post Office Protocol - Version 3111 / sunrpc / SUN Remote Procedure Call112 / mcidas / McIDAS Data Transmission Protocol113 / ident / Authentication Service114 / audionews / Audio News Multicast115 / sftp / Simple File Transfer Protocol116 / ansanotify / ANSA REX Notify117 / uucp-path / UUCP Path Service118 / sqlserv / SQL Services119 / nntp / Network News Transfer Protocol120 / cfdptkt / CFDPTKT121 / erpc / Encore Expedited Remote Pro.Call122 / smakynet / SMAKYNET123 / ntp / Network Time Protocol124 / ansatrader / ANSA REX Trader125 / locus-map / Locus PC-Interface Net Map Ser126 / nxedit / NXEdit127 / locus-con / Locus PC-Interface Conn Server127
128 128 / gss-xlicen / GSS X License Verification129 / pwdgen / Password Generator Protocol130 / cisco-fna / cisco FNATIVE131 / cisco-tna / cisco TNATIVE132 / cisco-sys / cisco SYSMAINT133 / statsrv / Statistics Service134 / ingres-net / INGRES-NET Service135 / epmap / DCE endpoint resolution136 / profile / PROFILE Naming System137 / netbios-ns / NetBIOS Name Service138 / netbios-dgm / NetBIOS Datagram Service139 / netbios-ssn / NetBIOS Session Service140 / emfis-data / EMFIS Data Service141 / emfis-cntl / EMFIS Control Service142 / bl-idm / Britton-Lee IDM143 / imap / Internet Message Access Protocol144 / uma / Universal Management Architecture145 / uaac / UAAC Protocol146 / iso-tp0 / ISO-IP0147 / iso-ip / ISO-IP148 / jargon / Jargon149 / aed-512 / AED 512 Emulation Service150 / sql-net / SQL-NET151 / hems / HEMS152 / bftp / Background File Transfer Protocol153 / sgmp / SGMP154 / netsc-prod / NETSC155 / netsc-dev / NETSC156 / sqlsrv / SQL Service157 / knet-cmp / KNET/VM Command/Message Protocol158 / pcmail-srv / PCMail Server159 / nss-routing / NSS-Routing159
160 160 / sgmp-traps / SGMP-TRAPS161 / snmp / SNMP162 / snmptrap / SNMPTRAP163 / cmip-man / CMIP Manager164 / cmip-agent / CMIP Agent165 / xns-courier / Xerox166 / s-net / Sirius Systems167 / namp / NAMP168 / rsvd / RSVD169 / send / SEND170 / print-srv / Network PostScript171 / multiplex / Network Innovations Multiplex172 / cl/1 / Network Innovations CL/1173 / xyplex-mux / Xyplex174 / mailq / MAILQ175 / vmnet / VMNET176 / genrad-mux / GENRAD-MUX177 / xdmcp / X Display Manager Control Protocol178 / nextstep / NextStep Window Server179 / bgp / Border Gateway Protocol180 / ris / Intergraph181 / unify / Unify182 / audit / Unisys Audit SITP183 / ocbinder / OCBinder184 / ocserver / OCServer185 / remote-kis / Remote-KIS186 / kis / KIS Protocol187 / aci / Application Communication Interface188 / mumps / Plus Five's MUMPS189 / qft / Queued File Transport190 / gacp / Gateway Access Control Protocol191 / prospero / Prospero Directory Service191
192 192 / osu-nms / OSU Network Monitoring System193 / srmp / Spider Remote Monitoring Protocol194 / irc / Internet Relay Chat Protocol195 / dn6-nlm-aud / DNSIX Network Level Module Audit196 / dn6-smm-red / DNSIX Session Mgt Module Audit Redir197 / dls / Directory Location Service198 / dls-mon / Directory Location Service Monitor199 / smux / SMUX200 / src / IBM System Resource Controller201 / at-rtmp / AppleTalk Routing Maintenance202 / at-nbp / AppleTalk Name Binding203 / at-3 / AppleTalk Unused204 / at-echo / AppleTalk Echo205 / at-5 / AppleTalk Unused206 / at-zis / AppleTalk Zone Information207 / at-7 / AppleTalk Unused208 / at-8 / AppleTalk Unused209 / qmtp / The Quick Mail Transfer Protocol210 / z39.50 / ANSI Z39.50211 / 914c/g / Texas Instruments 914C/G Terminal212 / anet / ATEXSSTR213 / ipx / IPX214 / vmpwscs / VM PWSCS215 / softpc / Insignia Solutions216 / CAIlic / Computer Associates Int'l License Server217 / dbase / dBASE Unix218 / mpp / Netix Message Posting Protocol219 / uarps / Unisys ARPs220 / imap3 / Interactive Mail Access Protocol v3221 / fln-spx / Berkeley rlogind with SPX auth222 / rsh-spx / Berkeley rshd with SPX auth223 / cdc / Certificate Distribution Center223
224 224 / masqdialer / masqdialer225226227228229230231232233234235236237238239240241242 / direct / Direct243 / sur-meas / Survey Measurement244 / inbusiness / inbusiness245 / link / LINK246 / dsp3270 / Display Systems Protocol247 / subntbcst_tftp / SUBNTBCST_TFTP248 / bhfhs / bhfhs249250251252253254255255
256 256 / rap / RAP257 / set / Secure Electronic Transaction258 / yak-chat / Yak Winsock Personal Chat259 / esro-gen / Efficient Short Remote Operations260 / openport / Openport261 / nsiiops / IIOP Name Service over SSL262 / arcisdms / Arcisdms263 / hdap / HDAP264 / bgmp / BGMP265 / x-bone-ctl / X-Bone CTL266 / sst / SCSI on ST267 / td-service / Tobit David Service Layer268 / td-replica / Tobit David Replica269270271272273274275276277278279280 / http-mgmt / http-mgmt281 / personal-link / Personal Link282 / cableport-ax / Cable Port A/X283 / rescap / rescap284 / corerjd / corerjd285 / - / (Used by 'WCTrojan' Trojan)286 / fxp-1 / FXP-1287 / k-block / K-BLOCK287
288 288289290291292293294295296297298299300301302303304305306307308 / novastorbakcup / Novastor Backup309 / entrusttime / EntrustTime310 / bhmds / bhmds311 / asip-webadmin / AppleShare IP WebAdmin312 / vslmp / VSLMP313 / magenta-logic / Magenta Logic314 / opalis-robot / Opalis Robot315 / dpsi / DPSI316 / decauth / decAuth317 / zannet / Zannet318 / pkix-timestamp / PKIX TimeStamp319 / ptp-event / PTP Event319
320 320 / ptp-general / PTP General321 / pip / PIP322 / rtsps / RTSPS323324325326327328329330331332333 / texar / Texar Security Port334 / - / (Used by 'Backage' Trojan)335336337338339340341342343344 / pdap / Prospero Data Access Protocol345 / pawserv / Perf Analysis Workbench346 / zserv / Zebra server347 / fatserv / Fatmen Server348 / csi-sgwp / Cabletron Management Protocol349 / mftp / mftp350 / matip-type-a / MATIP Type A351 / matip-type-b / MATIP Type B351
352 352 / dtag-ste-sb / DTAG353 / ndsauth / NDSAUTH354 / bh611 / bh611355 / datex-asn / DATEX-ASN356 / cloanto-net-1 / Cloanto Net 1357 / bhevent / bhevent358 / shrinkwrap / Shrinkwrap359 / nsrmp / Network Security Risk Management Protocol360 / scoi2odialog / scoi2odialog361 / semantix / Semantix362 / srssend / SRS Send363 / rsvp_tunnel / RSVP Tunnel364 / aurora-cmgr / Aurora CMGR365 / dtk / DTK366 / odmr / ODMR367 / mortgageware / MortgageWare368 / qbikgdp / QbikGDP369 / rpc2portmap / rpc2portmap370 / codaauth2 / codaauth2371 / clearcase / Clearcase372 / ulistproc / ListProcessor373 / legent-1 / Legent Corporation374 / legent-2 / Legent Corporation375 / hassle / Hassle376 / nip / Amiga Envoy Network Inquiry Proto377 / tnETOS / NEC Corporation378 / dsETOS / NEC Corporation379 / is99c / TIA/EIA/IS-99 modem client380 / is99s / TIA/EIA/IS-99 modem server381 / hp-collector / hp performance data collector382 / hp-managed-node / hp performance data managed node383 / hp-alarm-mgr / hp performance data alarm manager383
384 384 / arns / A Remote Network Server System385 / ibm-app / IBM Application386 / asa / ASA Message Router Object Def.387 / aurp / Appletalk Update-Based Routing Pro.388 / unidata-ldm / Unidata LDM389 / ldap / Lightweight Directory Access Protocol390 / uis / UIS391 / synotics-relay / SynOptics SNMP Relay Port392 / synotics-broker / SynOptics Port Broker Port393 / meta5 / Meta5394 / embl-ndt / EMBL Nucleic Data Transfer395 / netcp / NETscout Control Protocol396 / netware-ip / Novell Netware over IP397 / mptn / Multi Protocol Trans. Net.398 / kryptolan / Kryptolan399 / iso-tsap-c2 / ISO Transport Class 2 Non-Control over TCP400 / work-sol / Workstation Solutions401 / ups / Uninterruptible Power Supply402 / genie / Genie Protocol403 / decap / decap404 / nced / nced405 / ncld / ncld406 / imsp / Interactive Mail Support Protocol407 / timbuktu / Timbuktu408 / prm-sm / Prospero Resource Manager Sys. Man.409 / prm-nm / Prospero Resource Manager Node Man.410 / decladebug / DECLadebug Remote Debug Protocol411 / rmt / Remote MT Protocol412 / synoptics-trap / Trap Convention Port413 / smsp / Storage Management Services Protocol414 / infoseek / InfoSeek415 / bnet / BNet415
416 416 / silverplatter / Silverplatter417 / onmux / Onmux418 / hyper-g / Hyper-G419 / ariel1 / Ariel 1420 / smpte / SMPTE421 / ariel2 / Ariel 2422 / ariel3 / Ariel 3423 / opc-job-start / IBM Operations Planning and Control Start424 / opc-job-track / IBM Operations Planning and Control Track425 / icad-el / ICAD426 / smartsdp / smartsdp427 / svrloc / Server Location428 / ocs_cmu / OCS_CMU429 / ocs_amu / OCS_AMU430 / utmpsd / UTMPSD431 / utmpcd / UTMPCD432 / iasd / IASD433 / nnsp / NNSP434 / mobileip-agent / MobileIP-Agent435 / mobilip-mn / MobilIP-MN436 / dna-cml / DNA-CML437 / comscm / comscm438 / dsfgw / dsfgw439 / dasp / dasp Thomas Obermair440 / sgcp / sgcp441 / decvms-sysmgt / decvms-sysmgt442 / cvc_hostd / cvc_hostd443 / https / secure http protocol (SSL)444 / snpp / Simple Network Paging Protocol445 / microsoft-ds / Microsoft Directory Service446 / ddm-rdb / DDM-RDB447 / ddm-dfm / DDM-RFM447
448 448 / ddm-ssl / DDM-SSL449 / as-servermap / AS Server Mapper450 / tserver / Computer Supported Telecomunication Applications451 / sfs-smp-net / Cray Network Semaphore server452 / sfs-config / Cray SFS config server453 / creativeserver / CreativeServer454 / contentserver / ContentServer455 / creativepartnr / CreativePartnr456 / macon-tcp / macon-tcp457 / scohelp / scohelp458 / appleqtc / apple quick time459 / ampr-rcmd / ampr-rcmd460 / skronk / skronk461 / datasurfsrv / DataRampSrv462 / datasurfsrvsec / DataRampSrvSec463 / alpes / alpes464 / kpasswd / kpasswd465 / urd / URL Rendesvous Directory for SSM466 / digital-vrc / digital-vrc467 / mylex-mapd / mylex-mapd468 / photuris / proturis469 / rcp / Radio Control Protocol470 / scx-proxy / scx-proxy471 / mondex / Mondex472 / ljk-login / ljk-login473 / hybrid-pop / hybrid-pop474 / tn-tl-w1 / tn-tl-w1475 / tcpnethaspsrv / tcpnethaspsrv476 / tn-tl-fd1 / tn-tl-fd1477 / ss7ns / ss7ns478 / spsc / spsc479 / iafserver / iafserver479
480 480 / iafdbase / iafdbase481 / ph / Ph service482 / bgs-nsi / bgs-nsi483 / ulpnet / ulpnet484 / integra-sme / Integra Software Management Environment485 / powerburst / Air Soft Power Burst486 / avian / avian487 / saft / saft Simple Asynchronous File Transfer488 / gss-http / gss-http489 / nest-protocol / nest-protocol490 / micom-pfs / micom-pfs491 / go-login / go-login492 / ticf-1 / Transport Independent Convergence for FNA493 / ticf-2 / Transport Independent Convergence for FNA494 / pov-ray / POV-Ray495 / intecourier / intecourier496 / pim-rp-disc / PIM-RP-DISC497 / dantz / dantz498 / siam / siam499 / iso-ill / ISO ILL Protocol500 / isakmp / isakmp501 / stmf / STMF502 / asa-appl-proto / asa-appl-proto503 / intrinsa / Intrinsa504 / citadel / citadel505 / mailbox-lm / mailbox-lm506 / ohimsrv / ohimsrv507 / crs / crs508 / xvttp / xvttp509 / snare / snare510 / fcp / FirstClass Protocol511 / passgo / PassGo511
512 512 / exec / remote process execution513 / login / remote login a la telnet514 / syslog / syslog515 / printer / spooler516 / videotex / videotex517 / talk / like tenex link518519 / utime / unixtime520 / efs / extended file name server521 / ripng / ripng522 / ulp / ULP523 / ibm-db2 / IBM-DB2524 / ncp / NCP525 / timed / timeserver526 / tempo / newdate527 / stx / Stock IXChange528 / custix / Customer IXChange529 / irc-serv / IRC-SERV530 / courier / rpc531 / conference / chat532 / netnews / readnews533 / netwall / for emergency broadcasts534 / mm-admin / MegaMedia Admin535 / iiop / iiop536 / opalis-rdv / opalis-rdv537 / nmsp / Networked Media Streaming Protocol538 / gdomap / gdomap539 / apertus-ldp / Apertus Technologies Load Determination540 / uucp / uucpd541 / uucp-rlogin / uucp-rlogin542 / commerce / commerce543543
544 544 / kshell / krcmd545 / appleqtcsrvr / appleqtcsrvr546 / dhcpv6-client / DHCPv6 Client547 / dhcpv6-server / DHCPv6 Server548 / afpovertcp / AFP over TCP549 / idfp / IDFP550 / new-rwho / new-who551 / cybercash / cybercash552 / devshr-nts / DeviceShare553 / pirp / pirp554 / rtsp / Real Time Stream Control Protocol555556 / remotefs / rfs server557 / openvms-sysipc / openvms-sysipc558 / sdnskmp / SDNSKMP559 / teedtap / TEEDTAP560 / rmonitor / rmonitord561562 / chshell / chcmd563 / nntps / secure nntp protocol (SSL) (was snntp)564 / 9pfs / plan 9 file service565 / whoami / whoami566 / streettalk / streettalk567 / banyan-rpc / banyan-rpc568 / ms-shuttle / microsoft shuttle569 / ms-rome / microsoft rome570 / meter / demon571 / meter / udemon572 / sonar / sonar573 / banyan-vip / banyan-vip574 / ftp-agent / FTP Software Agent System575 / vemmi / VEMMI575
576 576 / ipcd / ipcd577 / vnas / vnas578 / ipdd / ipdd579 / decbsrv / decbsrv580 / sntp-heartbeat / SNTP HEARTBEAT581 / bdp / Bundle Discovery Protocol582 / scc-security / SCC Security583 / philips-vc / Philips Video-Conferencing584 / keyserver / Key Server585 / imap4-ssl / IMAP4+SSL (use 993 instead)586 / password-chg / Password Change587 / submission / Submission588 / cal / CAL589 / eyelink / EyeLink590 / tns-cml / TNS CML591 / http-alt / FileMaker Inc. - HTTP Alternate (see Port 80)592 / eudora-set / Eudora Set593 / http-rpc-epmap / HTTP RPC Ep Map594 / tpip / TPIP595 / cab-protocol / CAB Protocol596 / smsd / SMSD597 / ptcnameservice / PTC Name Service598 / sco-websrvrmg3 / SCO Web Server Manager 3599 / acp / Aeolon Core Protocol600 / ipcserver / Sun IPC server601 / syslog-conn / Reliable Syslog Service602 / xmlrpc-beep / XML-RPC over BEEP603 / idxp / IDXP604 / tunnel / TUNNEL605 / soap-beep / SOAP over BEEP606 / urm / Cray Unified Resource Manager607 / nqs / nqs607
608 608 / sift-uft / Sender-Initiated/Unsolicited File Transfer609 / npmp-trap / npmp-trap610 / npmp-local / npmp-local611 / npmp-gui / npmp-gui612 / hmmp-ind / HMMP Indication613 / hmmp-op / HMMP Operation614 / sshell / Secure SSLshell615 / sco-inetmgr / Internet Configuration Manager616 / sco-sysmgr / SCO System Administration Server617 / sco-dtmgr / SCO Desktop Administration Server618 / dei-icda / DEI-ICDA619 / compaq-evm / Compaq EVM620 / sco-websrvrmgr / SCO WebServer Manager621 / escp-ip / ESCP622 / collaborator / Collaborator623 / asf-rmcp / ASF Remote Management and Control Protocol624 / cryptoadmin / Crypto Admin625 / dec_dlm / DEC DLM626 / asia / ASIA627 / passgo-tivoli / PassGo Tivoli628 / qmqp / QMQP629 / 3com-amp3 / 3Com AMP3630 / rda / RDA631 / ipp / IPP (Internet Printing Protocol)632 / bmpp / bmpp633 / servstat / Service Status update (Sterling Software)634 / ginad / ginad635 / rlzdbase / RLZ DBase636 / ldaps / secure ldap protocol (SSL) (was sldap)637 / lanserver / lanserver638 / mcns-sec / mcns-sec639 / msdp / MSDP639
640 640 / entrust-sps / entrust-sps641 / repcmd / repcmd642 / esro-emsdp / ESRO-EMSDP V1.3643 / sanity / SANity644 / dwr / dwr645 / pssc / PSSC646 / ldp / LDP647 / dhcp-failover / DHCP Failover648 / rrp / Registry Registrar Protocol (RRP)649 / cadview-3d / Cadview-3d - streaming 3d models over the internet650 / obex / OBEX651 / ieee-mms / IEEE MMS652 / hello-port / HELLO_PORT653 / repscmd / RepCmd654 / aodv / AODV655 / tinc / TINC656 / spmp / SPMP657 / rmc / RMC658 / tenfold / TenFold659660 / mac-srvr-admin / MacOS Server Admin661 / hap / HAP662 / pftp / PFTP663 / purenoise / PureNoise664 / asf-secure-rmcp / ASF Secure Remote Management and Control Protocol665 / sun-dr / Sun DR666667 / disclose / campaign contribution disclosures - SDR Technologies668 / mecomm / MeComm669 / meregister / MeRegister670 / vacdsm-sws / VACDSM-SWS671 / vacdsm-app / VACDSM-APP671
672 672 / vpps-qua / VPPS-QUA673 / cimplex / CIMPLEX674 / acap / ACAP675 / dctp / DCTP676 / vpps-via / VPPS Via677 / vpp / Virtual Presence Protocol678 / ggf-ncp / GNU Generation Foundation NCP679 / mrm / MRM680 / entrust-aaas / entrust-aaas681 / entrust-aams / entrust-aams682 / xfr / XFR683 / corba-iiop / CORBA IIOP684 / corba-iiop-ssl / CORBA IIOP SSL685 / mdc-portmapper / MDC Port Mapper686 / hcp-wismar / Hardware Control Protocol Wismar687 / asipregistry / asipregistry688 / realm-rusd / REALM-RUSD689 / nmap / NMAP690 / vatp / VATP691 / msexch-routing / MS Exchange Routing692 / hyperwave-isp / Hyperwave-ISP693 / connendp / connendp694 / ha-cluster / ha-cluster695 / ieee-mms-ssl / IEEE-MMS-SSL696 / rushd / RUSHD697 / uuidgen / UUIDGEN698 / olsr / OLSR699 / accessnetwork / Access Network700701702703703
704 704 / elcsd / errlog copy/server daemon705 / agentx / AgentX706 / silc / SILC707 / borland-dsj / Borland DSJ708709 / entrust-kmsh / Entrust Key Management Service Handler710 / entrust-ash / Entrust Administration Service Handler711 / cisco-tdp / Cisco TDP712713714715716717718719720721722723724725726727728729 / netviewdm1 / IBM NetView DM/6000 Server/Client730 / netviewdm2 / IBM NetView DM/6000 send731 / netviewdm3 / IBM NetView DM/6000 receive732733734735735
736 736737738739740741 / netgw / netGW742 / netrcs / Network based Rev. Cont. Sys.743744 / flexlm / Flexible License Manager745746747 / fujitsu-dev / Fujitsu Device Control748 / ris-cm / Russell Info Sci Calendar Manager749 / kerberos-adm / kerberos administration750751752753754 / tell / send755756757758759760761762763764765766767 / phonebook / phone767
768 768769770771772773774775776777 / multiling-http / Multiling HTTP778779780781782783784785 / - / (Used by 'Network Terrorist' Trojan)786787788789790791792793794795796797798799799
800 800801802803804805806807808 / - / (Used by 'WinHole' Trojan)809810 / fcp-udp / FCP811812813814815816817818819820821822823824825826827828 / itm-mcell-s / itm-mcell-s829 / pkix-3-ca-ra / PKIX-3 CA/RA830831 / - / (Used by 'Neurotic Kat' Trojan)831
832 832833834835836837838839840841842843844845846847 / dhcp-failover2 / dhcp-failover 2848849850851852853854855856857858859860861862863863
864 864865866867868869870871872873 / rsync / rsync874875876877878879880881882883884885886 / iclcnet-locate / ICL coNETion locate server887 / iclcnet_svinfo / ICL coNETion server info888 / cddbp / CD Database Protocol889890891892893894895895
896 896897898899900 / omginitialrefs / OMG Initial Refs901 / smpnameres / SMPNAMERES902 / ideafarm-chat / IDEAFARM-CHAT903 / ideafarm-catch / IDEAFARM-CATCH904905906907908909910911 / xact-backup / xact-backup912 / apex-mesh / APEX relay-relay service913 / apex-edge / APEX endpoint-relay service914915916917918919920921922923924925926927927
928 928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959959
960 960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989 / ftps-data / secure ftp protocol / data over SSL990 / ftps / secure ftp protocol / control over SSL991 / nas / Netnews Administration System991
992 992 / telnets / secure telnet protocol over SSL993 / imaps / secure imap4 protocol over SSL994 / ircs / secure irc protocol over SSL995 / pop3s / secure pop3 protocol over SSL (was spop3)996 / vsinet / vsinet99799899910001001 / - / (popular with Trojans - see details)1002 / ms-ils / Microsoft Netmeeting ILS Service100310041005 / - / (Used by 'Theef' Trojan)100610071008 / - / (Used by 'Lion' & 'AutoSpy' Trojans)10091010 / surf / surf (also used by 'Doly' Trojan)1011 / - / (Used by 'Doly' Trojan)1012 / - / (Used by 'Doly' Trojan)101310141015 / - / (Used by 'Doly' Trojan)1016 / - / (Used by 'Doly' Trojan)1017101810191020 / - / (Used by 'Doly' Trojan)102110221023 / - / Reserved1023
1024 1024 / ms-svchost / Microsoft Generic Service Host1025 / ms-svchost / Microsoft Generic Service Host1026 / ms-svchost / Microsoft Generic Service Host1027 / ms-svchost / Microsoft Generic Service Host1028 / ms-svchost / Microsoft Generic Service Host1029 / ms-svchost / Microsoft Generic Service Host1030 / ms-svchost / Microsoft Generic Service Host1031 / iad2 / BBN IAD1032 / iad3 / BBN IAD1033 / netinfo-local / local netinfo port1034 / activesync / ActiveSync Notifications1035 / - / (Used by 'Multidropper' Trojan)1036 / pcg-radar / RADAR Service Protocol1037103810391040 / netarx / Netarx10411042 / - / (Used by 'BLA' Trojan)104310441045 / fpitp / Fingerprint Image Transfer Protocol10461047 / neod1 / Sun's NEO Object Request Broker1048 / neod2 / Sun's NEO Object Request Broker1049 / td-postman / Tobit David Postman VPMN1050 / cma / CORBA Management Agent1051 / optima-vnet / Optima VNET1052 / ddt / Dynamic DNS Tools1053 / remote-as / Remote Assistant (RA)1054 / brvread / BRVREAD1055 / ansyslmd / ANSYS - License Manager1055

The port number of any location on the grid above may be determined by floating
your mouse over the square. Most web browsers will display a pop-up window to
identify the port. Otherwise, see the URL display at the bottom of your browser.

Open    Closed    Stealth
Total elapsed testing time: 23.243 seconds





Solicited TCP Packets: RECEIVED (FAILED) — As detailed in the port report below, one or more of your system's ports actively responded to our deliberate attempts to establish a connection. It is generally possible to increase your system's security by hiding it from the probes of potentially hostile hackers. Please see the details presented by the specific port links below, as well as the various resources on this site, and in our extremely helpful and active user community.



Unsolicited Packets: PASSED — No Internet packets of any sort were received from your system as a side-effect of our attempts to elicit some response from any of the ports listed above. Some questionable personal security systems expose their users by attempting to "counter-probe the prober", thus revealing themselves. But your system remained wisely silent. (Except for the fact that not all of its ports are completely stealthed as shown below.)



Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation.

Why the first 1056 Ports?

Internet ports are numbered from 1 through 65535, but the first 1023 ports are special. By tradition, and some enforcement, ports 1 through 1023 are generally reserved for the acceptance of incoming connections by services running on the receiving system. Internet services "listen" on various standard low-numbered ports so that clients wishing to have access to those services know where they may be found. Web servers traditionally listen on port 80, eMail servers listen on ports 25 and 110, FTP servers listen on port 21 and Telnet servers listen on port 23. And the list goes on. Here's the official Internet Assigned Numbers Authority (IANA) port assignment list.

Although it is possible to have higher-numbered ports listening for incoming connections, our scan of the entire "service port range" will detect all standard services running and listening on the standard service ports.

Due to the insecure behavior of Microsoft's Windows operating systems, we have added an additional 33 ports to these first 1023 ports, bringing the total to 1056. Windows has a tendency to establish globally available listening services on the first few ports in the "client port" range which begins just past 1023. If you are not running a personal firewall, or you are allowing ShieldsUP! probes into your network, you may discover one or more additional open ports at, or just above, 1024.

Strange Results?
Personal firewalls are beginning to exhibit "adaptive behavior". The grid shown to the left starts off showing ports mostly closed with a few open (mostly blue with a few red cells). Then at some point it suddenly switches into "stealth mode". This can occur when a firewall "adapts" to the scanning IP and raises its defenses against just the attacker. This complicates the job of accurately checking a system's security.

Two things you can do: If you are not certain whether your firewall is adaptive, you can re-run any test here to compare the results. Differing behavior often indicates that your firewall has "learned" that it is being probed from our IP and is treating it differently. For the most accurate scan results, disable any adaptive behavior during the testing.

You can use these tests to learn exactly how your firewall deals with probes to specific ports, and to port ranges.

Beyond providing a comprehensive test of your
system's first 1056 ports, this service ports
scan can be used for additional research:

Service Ports Scan Application Guide
( Cool things you can do with our Service Ports Probe )

Detecting Ports Blocked by Your ISP

Internet service providers often block specific traffic entering their network before it reaches their customers, or after leaving their customers before it exits their network. This is sometimes done to block the exploitation of common security vulnerabilities, and sometimes to prevent their customers from offering proscribed Internet services.

As a customer, it can be useful and interesting to know which service ports, if any, an ISP has chosen to preemptively block in order to restrict their customers' global Internet traffic.

ISP port blocking can be easily tested, often quite rapidly, by arranging to allow the ShieldsUP! probe to have access to an unprotected computer. Since all non-stealth machines will respond to every open request — either affirmatively or negatively — ports appearing as STEALTH will be those blocked by your ISP, corporate firewall, or other external agency.


 If your system is unprotected, without any personal firewall or NAT router, any ports showing as stealth are being blocked somewhere between your computer and the public Internet. This is probably being done by your ISP. Internet traffic directed to your computer at the stealth ports will be dropped before reaching your machine.
 

 If your system has a personal firewall that can be instructed to "trust" a specific remote IP, you can temporarily instruct it to trust the ShieldsUP! probe IP of [4.79.142.206]. If, after doing so, most of the service ports change to either open or closed , you have succeeded and any which remain stealth are being blocked by your ISP.
 

 If your system is operating behind a residential "NAT" router, the router will be acting as a natural and excellent hardware firewall. But that's not what you want for the moment. You can temporarily remove your NAT router and connect an unprotected computer directly to your cable modem or DSL line. Or, if you are comfortable reconfiguring your NAT router, you may be able to point the router's "DMZ" at one of your computers which has been instructed to "trust" our probe IP of [4.79.142.206]. If, after doing so, most of the service ports change to either open or closed , you have succeeded and any remaining stealth are being blocked by your ISP.
 

 Finally, if your Internet security system, NAT router, personal firewall, or whatever, can produce detailed logs of incoming Internet packets, you could leave your existing security in place, clear your log, run the service ports scan, then carefully inspect your log for any consistently missing port probes. We send out four sets of probing packets because individual packets are sometimes dropped along the way. Therefore, it won't be unusual to see occasional missing packets from your logs. What you're looking for is a complete lack of packets bound for a specific port. A careful and detailed examination of your log will reveal any missing ports which are being blocked before they reach your logging tool. (Note that this technique is not quite as foolproof as the other approaches since ISPs could be blocking outbound packets from their customers, which the other approaches would detect but log-watching would not.)

After completing the experiments above, remember to return your system to its previous tight security and verify that everything is safe again by re-running any of our tests.




Checking a NAT Router's WAN Security

Residential broadband "NAT" routers which allow many computers to share a single Internet connection are becoming quite popular. We love them for the security they provide to the machines placed behind them since any NAT router functions as a natural and excellent hardware firewall.

However, the Internet or "WAN" (Wide Area Network) side connection of many NAT routers and DSL gateways is not as secure as it should be. Many routers ship with web, ftp, or Telnet management ports wide open! And many are still configured with their well-known default administrative passwords. Although the router may be protecting the machines behind it, it might not be protecting itself without your deliberate closing of remote "WAN" administration ports.

ShieldsUP! automatically tests your NAT router's WAN-side security because the router's WAN IP is the single public IP that connects your internal private network to the public Internet. When a test is initiated by any system behind a NAT router, we are testing the public-side security of the router itself and not the security of the individual machines which are located behind and protected by the router.




Adaptive IDENT Stealthing Experimentation

The IDENT protocol's port 113 is quite problematical and tricky to stealth. If the user's port 113 is completely stealthed, connections to some remote Internet servers such as eMail, Internet Relay Chat (IRC), and others, may be delayed or denied altogether. For this reason, many NAT routers and personal firewalls do not attempt to stealth port 113, they settle for leaving it closed. One of the first things that caught my eye about the ZoneAlarm personal firewall was that it was clever about handling port 113: It "adaptively stealthed" the port.

To understand the following discussion, you should familiarize yourself with the details of the IDENT protocol and port 113. Please read port 113's Port Authority database page before proceeding.

Even after many years, the (free) ZoneAlarm personal firewall from Zone Labs is the only personal firewall to "adaptively" stealth port 113. Unlike any other firewall or NAT router (any of which could also do the same) this allows port 113 to be stealthed to any passing Internet scanners or probes, but "unstealthed" for any valid IDENT connection attempts originating from remote servers with which the user's computer is attempting to connect. (Since this could easily be done by any personal firewall or even NAT routers, I am hopeful that this feature might yet appear in other products.)

"Adaptive Stealthing" means that when a TCP SYN packet arrives to request a connection to your machine's port 113, ZoneAlarm checks, on the fly, to see whether your machine currently has any sort of "relationship" with the remote machine (such as a pending outgoing connection attempt). If so, the remote machine is considered to be "friendly" and its IDENT request packet is allowed to pass through ZoneAlarm's firewall. But if the IDENT originating machine is not known to ZoneAlarm as a "friendly" machine, the connection requesting packet is dropped and discarded, rendering port 113 stealth to all unknown port scanners. It's very slick.

IDENT, ZoneAlarm, and ShieldsUP!

Even though your computer's web browser already has a relationship with the web server at GRC, our tests originate from a different "foreign" IP address. ZoneAlarm therefore drops incoming packets to port 113 from this different probing IP address and ZoneAlarm users see that port 113 is stealthed to passing Internet scans.

To demonstrate how ZoneAlarm (and perhaps someday other firewalls or NAT routers) selectively "unstealth" port 113 — but only for known "friendly" machines — we simply initiate a connection from your web browser to the ShieldsUP! scanning IP. Even though the connection attempt will ultimately fail (since there's no web server at the probing address), ZoneAlarm will note the outgoing attempt and will unstealth port 113 for subsequent probes.

 Step One: Verify that our scan currently show port 113 stealthed. (You may wish to use one of the other remote port tests which will be faster than an entire 1056-port grid scan.)

 Step Two: Open a secondary web browser window to initiate a connection to the probing IP. (Users of Microsoft Internet Explorer can press Ctrl-N to "clone" their current browser window.)

 Step Three: In the secondary web browser window, click this URL or enter this address:

http://4.79.142.206

This second connection attempt will ultimately fail, but ZoneAlarm will notice the effort, which is all that's necessary.

 Step Four: Finally, refresh the port probe window or repeat the scan to check your system's current port status. You should find that port 113 is no longer "stealth" to the probing IP address because you are attempting to connect to it and it has been determined to be "friendly".

 Step Five: If you're curious, stop and close the secondary web browser window and periodically refresh your port probe window to see how long the "friendly" status persists before Zone Alarm returns the probing IP to unknown status and port 113 to full stealth.


NOTE: Clicking the "http" link above may convince a clever firewall that the remote scanning IP is "friendly" and help to demonstrate its adaptive IDENT handling. But the packets sent to us with that link will also trigger our "Unsolicited Packet" detection since those packets were not received in direct response to our probes.

In order to reset the memory of these deliberately unsolicited packets you must redisplay the initial ShieldsUP! "Greetings" page. (That link will take you there.)


 ShieldsUP!!  Services
You may select any service from among those listed above . . .
Or enter a port to lookup, or the ports for a custom probe to check, then
choose the service. Your computer at IP 81.132.66.87 will be tested.

Home Page Purchasing Tech Support Mailing List Projects Free Stuff Discussions

Home Page
Gibson Research Corporation is owned and operated by Steve Gibson.  The contents
of this page are Copyright (c) 2007 Gibson Research Corporation. Spinrite, ShieldsUP,
NanoProbe, and any other indicated trademarks are registered trademarks of Gibson
Research Corporation, Laguna Hills, CA, USA. GRC's web and customer privacy policy.