The Silicon Underground
  Welcome to Dave Farquhar's Silicon Underground Sunday, October 12 2008 @ 02:06 PM CDT  
Theme Changer
Change the look of the site by selecting a theme below:

What's New
STORIES
1 story in last 24 hours

COMMENTS last 48 hrs
  • How to pay off th... [+2]

    • LINKS last 2 wks
    No recent new links

    Google Ads

    User Functions
    Username:

    Password:

    Don't have an account yet? Sign up as a New User

    Firefox


    Identifying what processes are talking on your Windows box   
    Friday, February 08 2008 @ 05:22 PM CST
    By David L. Farquhar

    If you're curious whether a particular piece of software might be spyware, or you have some other reason to believe your computer might have been compromised and might be talking to something it shouldn't be, there's a quick and easy way to find out besides using the standard netstat -an command.

    Windows XP and 2003 (and, presumably, Vista) have the netstat -o command, which tells you what IP addresses your computer is talking to and on what ports, plus it adds the process IDs that have those ports open. There's a hotfix to add that functionality to Windows 2000, but it appears you have to demonstrate a need for it in order for Microsoft to provide it.

    Regardless, I like the Sysinternals tool TCPview better. The most important thing it does is give you the names of the application, instead of the process ID, using each port. That saves you from having to run task manager and figure it out yourself. It puts everything in a GUI window, making it a little bit easier to scroll around, and it also tries to resolve the IP addresses, which can be nice. So if all you have open is a web browser pointing at Google and you see processes talking to web addresses you've never heard of, you have reason to be suspicious.

    The next time someone complains to me that a computer is running slow, once I think I've cleaned off the spyware I think I'll run this utility just to see if there might be anything left.
      [ Views: 629 ]  


    Identifying what processes are talking on your Windows box | 0 comments | Create New Account
    The following comments are owned by whomever posted them. This site is not responsible for what they say.
    No user comments.
    What's Related
  • hotfix
  • TCPview
  • More by DaveF
  • More from Windows
    		•

    Story Options
  • Mail Story to a Friend
  • Printable Story Format
    		•


    Calendar
    October 2008
    SuMoTuWeThFrSa
    28
    29
    30
    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    16
    17
    18
    19
    20
    21
    22
    23
    24
    25
    26
    27
    28
    29
    30
    31
    1
    		Click on any day to see postings and events for that date.

    Referrals

    Top 10 by Comments
    Story TitleComments
    Cheap laptops from Sotec 253
    An untrustworthy vendor 164
    Upgrading an eMachine 125
    eMachine upgrade advice 99
    Why I dislike Microsoft 51
    Upgrade diary: Gateway G6-400 35
    And we're live 30
    The day after the Columbia 22
    How to pray 22
    CD-ROM troubleshooting under Windows 9x 20

    Top 10 Read
    Story TitleViews
    eMachine upgrade advice 67579
    Upgrading an eMachine 57870
    How to view a blg file in Windows 2000 38690
    Cheap laptops from Sotec 29944
    Upgrade diary: Compaq Presario 7360 18027
    Upgrade diary: Gateway G6-400 16974
    CD-ROM troubleshooting under Windows 9x 13860
    Finding an open-source alternative to Ghost 11912
    Big trouble 11231
    Salary cap? Baseball needs something 10484

    Topics
    Home
    Apache (2)
    Baseball (60)
    Book reviews (2)
    Business (1)
    Christianity (57)
    Cooking (1)
    Copyright (15)
    Curmudgeonry (1)
    Design (7)
    DOS (6)
    Games (4)
    Genealogy (10)
    General (498)
    Hardware (147)
    Health (13)
    Human Interest (9)
    Humor/Satire (19)
    Journalism (1)
    Linux (93)
    Macintosh (22)
    Model Building (2)
    Music (32)
    net.culture (40)
    Personal (80)
    Photography (6)
    Retro Computing (26)
    Saving money (58)
    Servers and Networking (17)
    Society (47)
    Software (49)
    Spam (13)
    St. Louis (23)
    This weblog (14)
    Toy trains (72)
    Troubleshooting (7)
    Vendors (6)
    Video (20)
    Viruses (12)
    Windows (116)
    Writing (16)

    Older Stories
    Sunday 14-Sep
  • So is a Costco membership worth it? (1)

    • Wednesday 10-Sep
  • Your CFLs won't kill you (0)

    • Tuesday 09-Sep
  • SSDs come of age? (0)

    • Sunday 07-Sep
  • My hot water heater: 1984-2008 (2)

    • Thursday 04-Sep
  • DOS nostalgia? (2)

    • Sunday 31-Aug
  • What does religion have to do with the United States falling behind in math and science? (3)

    • Thursday 28-Aug
  • Psst... Wanna compete with Best Buy? (4)

    • Friday 22-Aug
  • Why you should always stop at railroad crossings (0)

    • Wednesday 20-Aug
  • How to become a millionaire in 10 years (safely) (0)

    • Sunday 17-Aug
  • Why I still like Debian (2)
    		•

    Who's Online
    Guest Users: 4

    Syndicate!
    Get your RSS/RDF fix here.

    List of all stories
    Click here for a list of all the entries on this site


    Created this page in 1.44 seconds


     Copyright © 2008 Dave Farquhar's Silicon Underground
     All trademarks and copyrights on this page are owned by their respective owners.

    Powered by GL 1.3.x