Main > Everything Else

Query about monitoring internet traffic

<< < (2/2)

vornar:
What about a free anti-virus program?

Download AVG free and scan your hard drive to see if there is a virus present.

RayB:
No anti-virus?! no firewall?!? That's just nuts.
Get ZoneAlarm. You can BLOCK all outgoing that isn't permitted, AND it will tell you what app is trying to connect.

abrannan:

--- Quote from: EwJ on March 25, 2007, 01:47:56 pm ---open command prompt - type 'netstat -ano'.
you will see all connections and ip addy's (as well as process id's).

to see which process has the connections open, type 'tasklist'.
you will see which process has the connection open under 'image name'.
if it is not a recognized process, investigate it further.


--- End quote ---


Netstat -b will do this without the extra legwork.  It'll map the processes to the ports that are open.

And I'm going to agree with RayB, No firewall and no AV?  You're insane. 

Regardless of whether or not AVG turns anything up, you should download Zonealarm and AVG (or even avast) to a USB drive, reinstall XP (With your system disconnected from the network), install Zonealarm and AV, connect to the internet, patch, reboot, patch, reboot, patch, reboot.  Then go and change every password on every sensitive site you ever may have logged into (it's likely that a keylogger was also installed as a part of the rootkit).


In short, dust off, and nuke the site from space.  It's the only way to be sure.

Texasmame:

--- Quote from: RayB on March 26, 2007, 09:51:49 am ---No anti-virus?! no firewall?!? That's just nuts.
Get ZoneAlarm. You can BLOCK all outgoing that isn't permitted, AND it will tell you what app is trying to connect.


--- End quote ---

Strongly seconded on ZoneAlarm.

Navigation

[0] Message Index

[*] Previous page

Go to full version