я б еще на всякий случай прикрыл 1900 udp
UPNP Remote Windows XP/ME/98 Vulnerability.
An attacker could send a NOTIFY directive to a UPnP-capable computer,
specifying that the device description should be downloaded from
a particular port on a particular server. If the server was configured
to simply echo the download requests back to the UPnP service (e.g.,
by having the echo service running on the port that the computer was
directed to), the computer could be made to enter an endless download
cycle that could consume some or all of the system▓s availability.
An attacker could craft and send this directive to a victim's machine
directly, by using the machine's IP address. Or, he could send this
same directive to a broadcast and multicast domain and attack all
affected machines within earshot, consuming some or all of those
systems' availability.
An attacker could specify a third-party server as the host for the device
description in the NOTIFY directive. If enough machines responded to
the directive, it could have the effect of flooding the third-party
server with bogus requests, in a distributed denial of service attack.
As with the first scenario, an attacker could either send the directives
to the victim directly, or to a broadcast or multicast domain.
Ну это конечно в том случае, если он у тебя открыт в правилах, что скорее всего не так
http://www33.ex6.de