I have exactly the same problem: and followed the instructions therein. It didn't do anything. Commonly in the firewall I have an attempt to output something called ALLOW and it connects only to TCP port 9009. I have no clue what it is. Win10 Pro (ori) system and zero installed goodies. I...

Hello. Run the command line as administrator and enter the command: netstat -n -a -b It should display all listening processes and connections established at the moment. See if you can identify a process that is listening on port 9009. Do a FRST scan: - don't change any parameters. Upload both generated logs (FRST and Addition text files) as attachments.

In cmd it doesn't show anything. Everything is ok there. There is no 9009 Allow listener and the rest is from Firefox and from the system.

I guess a bunch of (from my perspective) redundant LED control software might be using port 9009 for communication. RGB Fusion has a smartphone app that communicates over this port, so I wouldn't be surprised if the software took care to keep it open.

I put a clean system straight from M$. Te Allow is from Microsoft. I put a clean W10, depriving it only of telemetry, defender, antimalware and a few other reptiles. I put in a firewall and it still pops up connecting to port 9009. So I blocked this port in the firewall in UDP and TCP and we'll see what it does.

It turned out to be a service related to the so-called. GCloud is some garbage from Gigabyte packed in APP-Center. I got rid of it and nothing similar to Allow 9009 speaks anymore. It's ok.

[Solved] What is Allow 9009 on Firewall? Virus or Port Issue? Win10 Pro, TCP Port 9009, Pichat Service

moher40 25359 5

Treść została przetłumaczona

Zobacz oryginalną wersję tematu

| New topic

#1 17005187 01 Feb 2018 14:21

moher40 moher40

Level 3

» |

Post #1
17005187 01 Feb 2018 14:21

I have exactly the same problem:
https://www.bleepingcomputer.com/forums/t/642063/keep-seeing-something-hosted-on-port-9009/

and followed the instructions therein. It didn't do anything.

Commonly in the firewall I have an attempt to output something called ALLOW and it connects only to TCP port 9009. I have no clue what it is. Win10 Pro (ori) system and zero installed goodies.

I got in here:
http://www.ipfingerprints.com/portscan.php
and I have this result:

Note: Host seems down. If it is really up, but blocking our ping probes, try "Don't Ping" in advance mode.
Host is up!
PORT STATE SERVICE
9009/tcp filtered pichat
9009/udp open|filtered pichat

TCPview only shows this:
ADVERTISEMENT
#2 17005235 01 Feb 2018 14:37

dt1 dt1

Admin of Computers group

» | Helpful post? (0)

Post #2
17005235 01 Feb 2018 14:37

Hello. Run the command line as administrator and enter the command:
netstat -n -a -b

It should display all listening processes and connections established at the moment. See if you can identify a process that is listening on port 9009.

Do a FRST scan: https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/ - don't change any parameters. Upload both generated logs (FRST and Addition text files) as attachments.
ADVERTISEMENT
#3 17005386 01 Feb 2018 15:44

moher40 moher40

Level 3
» | Topic author Helpful post? (0)

Post #3
17005386 01 Feb 2018 15:44

In cmd it doesn't show anything. Everything is ok there. There is no 9009 Allow listener and the rest is from Firefox and from the system.

Attachments:

FRST.txt Download (151.75 KB)

Addition.txt Download (31.65 KB)
ADVERTISEMENT
#4 17006440 01 Feb 2018 22:18

dt1 dt1

Admin of Computers group

» | Helpful post? (0)

Post #4
17006440 01 Feb 2018 22:18

I guess a bunch of (from my perspective) redundant LED control software might be using port 9009 for communication. RGB Fusion has a smartphone app that communicates over this port, so I wouldn't be surprised if the software took care to keep it open.
ADVERTISEMENT
#5 17006976 02 Feb 2018 10:07

moher40 moher40

Level 3

» | Topic author Helpful post? (0)

Post #5
17006976 02 Feb 2018 10:07

I put a clean system straight from M$. Te Allow is from Microsoft. I put a clean W10, depriving it only of telemetry, defender, antimalware and a few other reptiles. I put in a firewall and it still pops up connecting to port 9009.
So I blocked this port in the firewall in UDP and TCP and we'll see what it does.
#6 17012699 04 Feb 2018 18:12

moher40 moher40

Level 3

» | Topic author Helpful post? (+2)

Post #6
17012699 04 Feb 2018 18:12

It turned out to be a service related to the so-called. GCloud is some garbage from Gigabyte packed in APP-Center. I got rid of it and nothing similar to Allow 9009 speaks anymore. It's ok.
Create an account, log in and become active in a forum and ads will not appear. You will receive points by participating in discussions.
Join this discussion.

Install the application

Didn't find an answer? Ask Artificial Intelligence

*I agree to send the question to OpenAI, Anthropic PBC, Perplexity AI, Inc., Kagi Inc., Google LLC - owners of language models in order to prepare the best response. The companies may monitor and log information entered into the form.

*I agree to publicly display my question and answer. The question and answer will be publicly available to everyone. The process may take a few minutes. Upon completion, you will be redirected to the page with the answer.

Wait...(2min)

| New topic

Report a violation of the law

[Solved] What is Allow 9009 on Firewall? Virus or Port Issue? Win10 Pro, TCP Port 9009, Pichat Service

Didn't find an answer? Ask Artificial Intelligence