Buzz
Sharing data over LAN using the NetBIOS protocol is a common daily need, particularly in offices and organizations. However, this also poses a hidden danger of falling victim to WannaCry malware when your computer system connects to LAN, WAN, or the Internet. All information about your Domain, Workgroup, and Computer name can be easily identified through NetBIOS, with ports being the central point of the highest attack frequency.
Among the newly used ports on Windows XP/7/2000/2003 systems, port 445 TCP is used for the SMB service transmitted over TCP. The SMB protocol, also known as Server Message Block, is used for data sharing on Windows XP/7/2000/2003 systems. Therefore, to prevent WannaCry, you need to immediately block port 445 on the Firewall. Due to the complex nature of this virus, Mytour shares with you today how to close port 445 on Windows XP/7/2000/2003 to prevent WannaCry. Join us for more insights.
Closing Port 445 on Windows XP/7/2000/2003 to Prevent WannaCry
Disable Port 445 - Closing Port 445
Step 1: To close port 445, follow these steps. Press the Windows + R key combination, then enter Regedit to access the Registry Editor.
Step 2: Next, navigate to Computer > HKEY_LOCAL_MACHINE > SYSTEM > CurrentControlSet > Services > NetBT > Parameters.
Step 3: In the Parameters section, locate a file named TransportBindName, double-click to open it. Clear all values in the Value data of TransportBindName, then press OK to confirm.
Step 4: Restart your computer, open Command Prompt, and type Netstat -an. You will no longer observe port 445 in operation.
For the remaining ports, simply turn off NetBIOS through the following steps.
Disable NetBIOS over TCP/IP.
To disable NetBIOS over TCP/IP on Windows XP/7/2000/2003 or Windows 10, follow these steps:
Step 1: Right-click on the Network icon in the bottom right corner of the screen and select Open Network and Sharing Center.
Step 2: In the Network and Sharing Center window, click on Change adapter settings.
Step 3: Next, in Network Connections, right-click on the active network and choose Properties.
Step 4: When the Ethenet Properties dialog appears, double-click on Internet Protocol Version 4 or select Properties.
Step 5: In the General section, click on Advanced.
Step 6: Switch to the WINS tab, here check the box next to Disable NetBIOS over TCP/IP, and then press OK.
Thus, Mytour has shared with you the method to close port 445 on Windows XP/7/2000/2003 to prevent Wanna Cry, the ransomware that has been trending recently. Additionally, in our previous article, we provided readers with guidelines on handling the WannaCry malware from the National Cyber Security Center. If you are not familiar with this information, you can refer to the article on dealing with WannaCry from the National Cyber Security Center.
