Tonight I installed my WindowsXP Home and the Sygate Personal Firewall.
After that I went to http://www.grc.com and I tested my shields and ports.
I noticed there that Port 135 ( RPC) is allready open! The application which uses the port is c:windowssystem32svchost.exe
In my opinion its the host for the remote control feature isn´t it?
In my opionion it s a big security leak that this appliction starts without permission of the user and no one knows what application uses this port!
What do you think what kind of application the svchost.exe is?
Oh and btw, how I have to close my Identification? GRC knows my computername and the workgroup!

Port 135 is the NetBIOS-port, ususally open in Windows-Systems. RPC is port 443, open in XP-systems to make remote-desktop available.
You can disable remote in the system-setup,then yor firewall isable to block port 443, otherwise this "service" starts automatically...
By the way, try TinyPersonalFirewall, it´s more effective than Sygate... I´m running XP with it and am totally stealth under ShieldsUP from grc.com...

Port 139 is the NetBIOS-port, ususally open in Windows-Systems and sending your computers name all over the internet. RPC is port 135, open in XP-systems to make remote-desktop available.
You can disable remote in the system-setup,then your firewall isable to block these ports, otherwise this "service" starts automatically...
By the way, try TinyPersonalFirewall, it´s more effective than Sygate... I´m running XP with it and am totally stealth under ShieldsUP from grc.com...

Port 135 is definetly not Remote desktop. http://www.networkice.com/advice/Exploit...efault.htm

3389 is the Remote Control Port