Quickly Check for Connectable Listening Internet Ports This Internet Port Probe attempts to establish standard TCP Internet connections with a handful of standard, well-known, and often vulnerable Internet service ports on YOUR computer. Since this is being done from our server, successful connections demonstrate which of your ports are "open" or visible and soliciting connections from passing Internet port scanners. Your computer at IP:  63.24.208.145  Is being 'NanoProbed'. Please stand by. . .

Total elapsed testing time: 9.982 seconds
(See "NanoProbe" box below.)

Port

Service

Status

Security Implications

21

FTP

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

23

Telnet

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

25

SMTP

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

79

Finger

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

80

HTTP

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

110

POP3

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

113

IDENT

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

135

RPC

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

139

Net BIOS

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

143

IMAP

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

443

HTTPS

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

445

MSFT DS

Stealth!

There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

Note: Several of the "Service" names shown above link directly to items on the ShieldsUP! FAQ Page to provide specific discussion of ports and services. If the port status shown above concerns you, please read the general descriptions below, then click on the port's service name for specific discussion.

NanoProbe Port Probe was placed online Oct. 17, 2001 If you have used ShieldsUP! in the past, you may have just noticed that the Port Probe system is much faster than ever before. This is the result of the emerging deployment of our much-anticipated NanoProbe Technology. It is finally becoming real. Since MUCH more than speed will be coming soon, be sure to join our free, user-managed eMail system to be notified of new developments during the next few months. Click this link to learn more about our eMail system.

Demystifying Your System's Ports This enhanced Port Probe facility is just the beginning. I have some exciting "port awareness" innovations planned for the near future. So please be sure to add yourself to our eMail system so I can keep you in the loop and appraised of new developments. (I only send a few pieces of eMail per year, and you can easily remove yourself from our eMail system at any time, so you need not worry about receiving a flood of self-serving commercial eMail from me. That will never happen.)

Port Status Descriptions: Stealth! If all of the tested ports were shown to have stealth status, then for all intents and purposes your computer doesn't exist to scanners on the Internet! It means that either your computer is turned off or disconnected from the Net (which seems unlikely since you must be using it right now!) or an effective stealth firewall is blocking all unauthorized external contact with your computer. This means that it is completely opaque to random scans and direct assault. Even if this machine had previously been scanned and logged by a would-be intruder, a methodical return to this IP address will lead any attacker to believe that your machine is turned off, disconnected, or no longer exists. You couldn't ask for anything better. There's one additional benefit: scanners are actually hurt by probing this machine! You may have noticed how slowly the probing proceeded. This was caused by your firewall! It was required, since your firewall is discarding the connection-attempt messages sent to your ports. A non-firewalled PC responds immediately that a connection is either refused or accepted, telling a scanner that it's found a live one ... and allowing it to get on with its scanning. But your firewall is acting like a black hole for TCP/IP packets! This means that it's necessary for a scanner to sit around and wait for the maximum round-trip time possible — across the entire Net, into your machine, and back again — before it can safely conclude that there's no computer at the other end. That's very cool. NOTE: If your system did NOT show up as Stealth! but you wish that it could, you;ll need to use one of the inexpensive (or FREE in the case of ZoneAlarm 2!) personal firewalls I've discovered. I will also be creating my own firewall which you can monitor and be informed of, by adding yourself to my eMailing System. But in the meantime . . . I'd advise you not to wait! (Especially since ZoneAlarm 2 is completely FREE for individual use!)

Closed "Closed" is the best you can hope for without a stealth firewall in place. Anyone scanning past your IP address will immediately detect your PC, but "closed" ports will quickly refuse connection attempts. Your computer might still be crashed or compromised through a number of known TCP/IP stack vulnerabilities. Also, since it's much faster for a scanner to re-scan a machine that's known to exist, the presence of your machine might be logged for further scrutiny at a later time — for example, when a new TCP/IP stack vulnerability is discovered. You should stay current with updates from your operating system vendor since new "exploits" are being continually discovered and they are first applied upon known-to-exist machines . . . like this one! AS NOTED ABOVE: If your system did NOT show up as Stealth! but you wish that it could, you will need to use one of the inexpensive personal firewalls I've discovered. If your system's security is a concern (as I'm afraid it needs to be in this day and age), I would advise you not to wait!

OPEN! If one or more of your ports are shown as OPEN! then one of the following two situations must be true: You have servers running on those open ports: If your system is running Internet servers on the ports shown as OPEN, you should stay current with PC industry security bulletins. New security vulnerabilities are being found continually. When crackers learn of a new vulnerability, they quickly grab their scanner logs to search for systems that have been scanned in the past and are of the known-to-be-vulnerable type. This allows them to be attacking logged systems within moments of learning of a newly located security hole. It is therefore important for you to respond to any news of new vulnerabilities in your systems as quickly as possible. The crackers are hoping you'll take your time. You DO NOT have servers running on those open ports: If you are not actively offering Internet services through the ports shown as OPEN, something is very wrong with your system: It is actively advertising its presence on the Internet and soliciting the attention of ALL PASSING PORT SCANNERS! Logs of open ports are maintained by crackers and used as points of attack. Either a server has been started without your knowledge — as is done by Trojan horse programs like Back Orifice — or you may be running one of the many "Evil Port Monitors" which has altered your system's "open port profile" in order to monitor TCP/IP connections. Evil Port Monitors will tell you that a passing scanner has just successfully probed into your system . . . but the problem (for you) is that it was a successful scan probe and the existence of your system's wide open ports will have been noticed and logged! Your system may be monitored for Internet attacks without alerting crackers to your presence by using a real personal firewall product — instead of one of the many evil port monitors. For the best monitoring and protection I recommend ZoneLab's FREE firewall: ZoneAlarm 2.x. (See the "Personal Firewalls" page for more information.) For the most reliable results you are invited to use our FREE IP Agent: The ShieldsUP! tests depend upon accurately determining your computer's Internet Protocol (IP) address. If your IP address is incorrectly determined the wrong machine will be mistakenly tested. In addition, computers with multiple network connections — like a modem and a network adapter — can have more than one IP address. And machines with only one IP address can have it effectively "hidden" or "masqueraded" if the connection passes through any sort of firewall, proxy server, or other buffering agent. IP Agent easily manages all such complications. It determines your machine's current IP address — or addresses — then contacts this ShieldsUP! website for you. If your machine had a single IP address you'll be taken right to the main ShieldsUP! page. If more than one IP address was found you'll be able to choose among the available addresses. IP Agent is super small (less than 20k bytes) and quick to download since I wrote it — as I write everything — in 100% pure assembly language. Click the screen shot image above or any link in this box to quickly download IP Agent and give it a whirl! Press your browser's BACK button to return to where you were.

Purchasing Info		GRC Mail System		To GRC's Home		Tech Support		Discussions

The contents of this page are Copyright (c) 2001 by Gibson Research Corporation.
SpinRite, ChromaZone, ShieldsUP, NanoProbe, the character 'Moe' (shown above),
and the slogan "It's MY Computer" are registered trademarks of Gibson Research
Corporation (GRC), Laguna Hills, CA, USA. GRC's web and customer privacy policy.
~ ~ ~