1. About open ports (first and second port test images), I think I have disabled tens of services in the
Windows XP OS itself. So no issues for me there. There are tutorials that guide you how to disable unnecessary services in XP. Of course you have to determine wheter you need specific service etc, and don't go disabling essential services (predictable consequence...).
http://img20.imageshack.us/my.php?image=r5lk9.jpghttp://g.imageshack.us/thpix.phphttp://img171.imageshack.us/my.php?image=r6hk7.jpghttp://g.imageshack.us/thpix.phphttp://img115.imageshack.us/my.php?image=r7ac8.jpghttp://g.imageshack.us/thpix.phphttp://img406.imageshack.us/my.php?image=r8ye8.jpghttp://g.imageshack.us/thpix.php
Personally I'll recommend that you some of these tutorial type articles (
1,
2) and use common sense to disable the totally needless services.
My parent's computer had all this crud enabled and set to 'auto', and I had to waste an entire day before I gave up and formatted + reinstalled because the entire system had become compromised with more crap than anyone can imagine. :wall:
2. Don't worry much about
Ping failure. People can ping you when you are connected but since with dataone (NIB-2) we get new IP everytime we connect the chances are small that you'll
get harrased. If you want to disable ping (and once you do so you will not be able to ping or traceroute websites unless you re-enable it in modem), you have to block all traffic in ICMP protocol.
To do this, click on the "protocol" in your third image (filterky2.png), select ICMP and block both incoming and outgoing traffic. Since I do not have that particular model, you'll have to rely on
google if you are not able to understand certain step. But I can show you my configuration for some idea:
http://img519.imageshack.us/my.php?image=r2tl9.jpg
3.
DMZ we have already discussed. For precise steps on how to keep it disabled, you'll have to search on google. Something like "disable DMZ on
Huawei MT841".
4. This converstation started with utorrent. Which port is utorrent using now. I recommend that you probe that particular port with GRC shield's up (it allows you to test specific ports, port ranges...) after you have made all these changes. Test while utorrent is not running.
(More in next post...too many images etc.)