Hi,
Thanks found them in the security center exception list and have turned off all the ports that I can't verify with any of my applications.
Will monitor this regularly and hopefully eliminate the possible entry via them.
Will also relate any activity that may open one of the ports in the future whenever we install or allow this type of activity.
Again thanks for all the help. I have run Spybot and have a clean system except for the normal tracking cookies etc.