I was browsing through some websites on holiday break and came across a story over at www.grc.com about some DDoS attacks. It got me thinking about my PC and network security.
Ive been doing the PC my whole life like most of you probably have, so I feel I know enough to get around.
I use all the basic protections, firewall, antivirus, antispyware, HOSTs file, updates, utilities to fix the small XP problems and so forth.

My problem is with my open ports.
Zonealarm Pro does a pretty decent job of handling it, but I downloaded and tried HoverIP (http://www.hoverdesk.net/dl/en/HoverIP.zip) and found several open ports. HoverIP scans a range of ports on a range of IPs and tells you what it sees. I scanned both PCs on the network, the loopback of my PC and the DSL modems IP. Most of the open ports are common, 25, 80, 110. But there are some others that I dont understand. Below is a screen of what I came up with.

Im not looking to know exactly whats keeping them open, cause it'd probably be a little tough not being infront of this PC, but any help on which ones arent generally needed would be a great help.

I havent finished the complete scan as of now. But Im doubting theres much going on above 30000 anyway. Not to mention its 2 AM and I cant sit up to wait for it to finish....

Im sure that Ive forgotten some important information, but Im sure youll let me know. :]

Thanks for any help anyone can give.

Oh, and any style, approach or security measure that I overlooked please let me know.

Top left: Loopback
Top Right: My PC on home network
Bottom Left: Family PC on home network
Bottom Right: DSL Modem

http://i11.tinypic.com/2h6zg2f.jpg

PS: Im not so much paranoid so much as overly bored.

The DDoS attacks were on Hal Turner, weren't they?

If so: He's a white supremacist asshole douchebag who needs to be put in his place. I mean, ****, a Mexican called his show and he yelled "GET OFF THE AIR SPIC" and hung up the phone.

From what I can tell the ports on the modem are your external ones and they are fine.

-----------------------------------------

What you are doing is scanning for open ports on your PC. This means little. What type of network do you have setup i.e. are you behind a router? or do you just have a straight usb modem.

To see what ports are open on your PC that a hacker would see.

Download nmap here (http://insecure.org/nmap/)

Install it.

Go to google and type "what is my ip?"

Go to one of the sites and see what your IP is.

leave the browser open and go start => Run and type CMD and press enter.

type cd.. and press enter keep doing this until you are left with just c:

Then type cd Program Files\Nmap.

This should take you to the Nmap directioy.

To run Nmap type Nmap and then your ip address that you found eariler.

Leave it to run and it should tell you what ports the outside world can see.

-----------------------------------------

Even if you have no open ports you cannot protect yourself from DDoS attacks on your internet connection. Constant requests of all nature can be fired at your modem and bring your connection to a grinding halt. All you are doing is protection your machines.

I did that once... completely invisible. =]

thanks for the help. i had a feeling that the port scan did nothing when i looked through the zonealarm log and saw that it blocked the program from even testing the family pc.
as for my network, it goes dsl modem > router > PC
it hit me this morning after i woke up some that all the open ports didnt even matter on both PCs because only those 4 where even open to the internet.
ill give nmap a try and see how that goes. :]

im also not worried about a DDoS. i feel that im just an individual running on 256 dsl, so im not a big target.

annnd i had no idea that guy was like that. didnt even know he had a tv show. just thought he could write an interesting article to be honest.