Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Wanet Telecoms Ltd on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Ports listening? 1

Status
Not open for further replies.
GUJUm0deL

GUJUm0deL

Programmer
Jan 16, 2001
3,676
US
HI all, I am using ZoneAlarm PRO on my WinXP Pro. According to ZA "Generic Host Process for Win32 Services Listening to Ports: TCP 5000 and UPD 1900" - is that normal?

I did a google search and it says Port 5000 is a backdoor used by malicious software to pass sensitive info. If those ports are not supposed to listening to, how do I turn them off?

I am using a Linksys Wireless-G broadand router (Model WRT54G)

Thanks!

____________________________________
Just Imagine.
 
Sort by date Sort by votes
Hi,

This behaviour is normal... but concerns about XP's uPnP service (which listens for TCP connections on port 5000 and for UDP packets arriving on port 1900) were raised quite some time ago as a possible attack vector.

Have a look at Steve Gibson's article at for detailed information plus a utility to disable uPnP.

Hope this helps...
 
Upvote 0 Downvote
Sounds like this is the SSDP Discovery Service in action.


5000 TCP SSDP legacy event notification SSDP Discovery Service
1900 UDP SSDP SSDP Discovery Service


832017 - Port Requirements for the Microsoft Windows Server System

Description of Universal Plug and Play Features in Windows XP

 
Upvote 0 Downvote
Oops... I forgot to add:

Have a look at the commandline 'DiamondCS OpenPorts v1.00' (a port-to-process mapper for NT/2K/XP available from This freeware utility shows you all open TCP and UDP ports on your system, including owner processes.

If any owner process shows just as a ProcessID in OpenPorts' then Nir Sofer's freeware 'CurrPorts' utility (available from will show you what process is using what ProcessID.

Hope this helps...
 
Upvote 0 Downvote
I'm a bit confused, how is this a uPnP or SSDP?

I thought I would be able to simply disable this port from listening. I looked at the articles but i'm no netwrok admin so I got sorta lost in the "guide".

____________________________________
Just Imagine.
 
Upvote 0 Downvote
uPnP is the same as SSDP... just two different ways of describing the same discovery service.

You asked in your original post 'how do I turn them off?'. Now you've disabled the service, that's it. You don't have to do anything else.

Hope this helps...



 
Upvote 0 Downvote
Yup, that did help. Just outta curiousity is there a legitimate reason to have UPnP enabled? Esp if this poses a secururity risk. Does this mean Vista has this service disabled?

____________________________________
Just Imagine.
 
Upvote 0 Downvote
Certain software can use uPnP to automatically open necessary ports on routers that support this feature. This can be a good thing, but can also be a liability. Hence the warning about it. There are other uses if I'm not mistaken, but this is the one I'm primarily aware of.
 
Upvote 0 Downvote
So if I desable UPnP and then I have a software that tries to open it up (for legitimate reasons) will I get a prompt asking me if this OK or will it be denied? And, assuming I allow this one instance is the UPnP opened up permanatly until I once again turn it off?

____________________________________
Just Imagine.
 
Upvote 0 Downvote
Have another read of the article.

Description of Universal Plug and Play Features in Windows XP

Once disabled it is so until you enable it. You would either get a Prompt, or the Device will not work (or rather not be discovered) if it requires the Service.


This although more related to Vista, gives you some idea or what might require the Service from time to time.

SSDP Discovery
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

CDIV
  • Locked
  • Question
USB ports won't work 1
Replies
3
Views
356
goombawaho
goombawaho
John0616
  • Locked
  • Question
Net use and LPT ports
Replies
7
Views
439
DSummZZZ
DSummZZZ
hpsait
  • Locked
  • Question
Lenovo G50 not recognising anything on USB 2 ports
Replies
3
Views
217
rclarke250
rclarke250
descendant
  • Locked
  • Question
Com Ports
Replies
1
Views
110
xwb
xwb
BrianNeiman
  • Locked
  • Question
Windows CE 5.2.23137.5.3.9 - Bluetooth and Com Ports
Replies
0
Views
96
BrianNeiman
BrianNeiman

Part and Inventory Search

Sponsor

Back
Top