Thanks Chris, For time being what I did was just stopped RPC service.But any idea what to do with the nsws port? What a hacker can do if that port is opened to outside word.And if the rpc port is open whay kind of threat you can expect? Thanks in advance Divyaprakash