?
Solved

socket23 on port 5000 (Im perplexed :-S)

Posted on 2003-02-19
6
Medium Priority
?
3,152 Views
Last Modified: 2007-12-19
Hi all,

Ok after a recent scan of my machine I have a port open that I cannot identify.

Superscan registers it as the socket23 trojan it is always on port 5000

now I have run fport and I dont see any associated appliction.

I have found the asociated PID and killed it but a new PID is just assigned to it.

I am running windows XP, any ideas people

Cheers
0
Comment
Question by:mrorange
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 1

Author Comment

by:mrorange
ID: 7982666
I am now thinking that this has something to do with the Network plug & play....
0
 
LVL 2

Accepted Solution

by:
Jason_Deckard earned 200 total points
ID: 7982669
Mr. Orange,

Quick question.  Was the application identified as a trojan because it listens on port 5000, or did a memory scan actually discover the socket23 trojan?  Is it possible this is another (legitimate) application using port 5000?

Thanks for any additional info.

-Jason
0
 
LVL 1

Author Comment

by:mrorange
ID: 7982683
ok no problem I found out what it was, that was really annoying me...

0
Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

 
LVL 1

Author Comment

by:mrorange
ID: 7982687
it was the network discovery, i have been able to disable it by running msconfig and disabling ssdp.

obviously my network plug and play wont functoin but i do this all manually...
0
 
LVL 1

Author Comment

by:mrorange
ID: 7982698
Yo uget the points for repliung so quickly...

Thanks any way... :-)

I like to be in control of all my ports :-P
0
 
LVL 2

Expert Comment

by:Jason_Deckard
ID: 7982729
Glad it worked out, and thank you for the points :)
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Ever wonder what it's like to get hit by ransomware? "Tom" gives you all the dirty details first-hand – and conveys the hard lessons his company learned in the aftermath.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question