02-11-2009 06:31 AM
Vista Home Premium- NAV2008
I notice the following in my connection logs
"inbound/outbound" connection to 127.0.0.1
local service port 2869 (icslap) and remote service port 2869 (icslap)
Now I know that 127.0.0.1 is my computer talking to itself, but what is port 2869 icslap?
also I use mwindows media player. I notice that even if I listen to a song that I downloaded onto my computer from a CD, I still get out bound connections to several websites such as
is that due to the windows media player having some sort of built in "hey if you use this we are going to connect to these sites" function?
Solved! Go to Solution.
02-11-2009 06:53 AM
TCP port 2869 is commonly used by the ICSLAP service or program. This port is an internal proxy built into Microsoft Internet Connection Firewall (ICF) or Internet Connection Sharing (ICS),which connects to microsoft for sending the error logs.
Do you have Itunes installed in your computer? I don't think that it is the issue with media player. It can be due to the updates released for the itunes to get cataloges from different Web sites.
02-11-2009 07:00 AM
I had I tunes at one time but deleted that program. I notice these connections to these music sites when I use the windows media player even if it is to play songs from a downloaded hard copy CD to my computer. Same for the 127.0.0.1 and icslap logging, appears every time I use the windows media player. I tested to see and just played some songs from one of my CDs that was downloaded to my computer and I get the same icslap issue and the connection to those music sites.
Any of this sound like a security issue?
02-11-2009 09:59 AM
Not a security issue at all, and do not worry about this. I think, the answer for your query is in this link:
The built-in Digital Media Mall in Windows Media Player connects to some of the music and video stores that are in the Player (by default) whenever you use the Windows Media Player.
02-11-2009 10:07 AM - edited 02-11-2009 10:09 AM
Depending upon your privacy settings in Windows Media Player, the icslap service may be running for two reasons:
1) If your WMP settings look like these settings, then whenever you play media, even a CD, there will be interactive communication between WMP and the internet.
2) Based upon your mention of these sites: emusic.com / audible.com / xmradio.com, you may have included them in your WMP online store which would also invoke a connection.
I am open to correction on this, but I think this is what you are seeing.
[edit: didn't see Yogesh posting before me]
Norton Internet Security • Comcast NSS • Norton Zone | XP SP3 • Windows 7 Professional SP1 x64
• PLEASE, BACKUP or EXPORT your Identity Safe Data on a regular basis •
"Anyone who isn't confused really doesn't understand the situation." Edward R. Murrow
02-11-2009 06:04 PM
I think Phils right as when I use WMP It always connects to the net unless I choose to work offline then it can not.It also bugs me why it does this but I accept it as normal.I know when you put a CD that you have bought onto your pc,if you have not unchecked it.WMP will search the net for the details of that CD(its Not always the correct information either!!)And fill in those missing details.Hope this eases your mind.
02-12-2009 02:20 PM
Yogesh- so that would account for the automatic connection showing in my connection log to emusic.com, xmradio.com, etc etc that it is automatically set to do so?
I looked at the link but I can see where it shows how I can delete this from happening
02-13-2009 08:06 AM
Sorry for late reply!
I think that it is a default setting in Windows Media Player where a pre-defined connection is established with certain stores. This is to provide quick help to users so that they can access the links to music, video, and radio retailers that provide online stores for the Player. Since all those sites are recommended by Microsoft, the firewall may allow the connection(only outbound) initially. Whenever you request for the access, then only the Inbound connection will be allowed through the Media Player. So, there is no security risk associated with that.