What are the ransomware ports?

The ransomware ports are 135, 139, 138, 137 and 445; they can be prevented by closing the ports. Specific method: first close the port in the firewall; then open the "Local Group Policy Editor", click "Windows Settings" - "Security Settings" - "IP Security Policy", create an IP security policy and close the relevant ports.

The operating environment of this tutorial: Windows 7 system, Dell G3 computer.

Generally ransomware can attack through ports 135, 139, 138, 137, and 445. However, these ports are not used by ordinary computer users. It is recommended that users close them.

First of all, we can use the following methods to see which ports are opened by the computer:

1. Execute the "cmd" command in the "Run" window and open the cmd command window

#2. Enter the name netstat -an and press the Enter key (Enter key) to run. You can see which ports are opened on the computer, as shown in the figure below. ;

Generally speaking, ordinary computer users only need to open port 80, and other less used ports can be closed to prevent hacker attacks.

Specific method:

1. Close the port in the firewall

2. Run——>gpedit.msc——windows settings——> ;Security settings——>IP security policy——Create IP security policy and close relevant ports

For more related articles, please visitPHP Chinese website! !

The above is the detailed content of What are the ransomware ports?. For more information, please follow other related articles on the PHP Chinese website!