HAVE I BEEN HACKED?
Use following tools to check out which processes are using what ports to send or receive info from your pc
Fport
This is a console utility that is run from the command line. When you run it, it will list all listening TCP/UDP ports on your system and the software that is using those ports.
TCPView
This is a similar program to Fport, but shows it in a graphical interface. This program not only shows listening ports, but also established and pending connect and closing connections.
Process Explorer
This program will list all open processes and delineate between the parent processes and the processes that are spawned by the parent.
PSTools
This is a collection of console command line tools that can list open processes, kill processes, as well as many other useful functions.
DOS/Windows Boot Disk ?
http://www.startdisk.com/ or http://www.bootdisk.com/bootdisk.htm
These sites enable you to create boot disks in which you will boot the computer.
Filealyzer
This tool adds a windows explorer shell extension to your right click on a file. When you use Filealyzer on that file you will be able to see a lot of information about the file. Information such as whether it?s a packed exe (save that for another tutorial) or the version information. What I use it for is the hex dump and then the ability to list the strings found in the binary file. From the strings you can gain a lot of useful information as to what the program does or is.
Dameware NT Utilities
This program allows you to remotely administer a computer/group of computers. I was hesitant to put this on as it is not freeware, but it is such a great utility.
Thanks for visiting hope this info helps !!!
Fport
This is a console utility that is run from the command line. When you run it, it will list all listening TCP/UDP ports on your system and the software that is using those ports.
TCPView
This is a similar program to Fport, but shows it in a graphical interface. This program not only shows listening ports, but also established and pending connect and closing connections.
Process Explorer
This program will list all open processes and delineate between the parent processes and the processes that are spawned by the parent.
PSTools
This is a collection of console command line tools that can list open processes, kill processes, as well as many other useful functions.
DOS/Windows Boot Disk ?
http://www.startdisk.com/ or http://www.bootdisk.com/bootdisk.htm
These sites enable you to create boot disks in which you will boot the computer.
Filealyzer
This tool adds a windows explorer shell extension to your right click on a file. When you use Filealyzer on that file you will be able to see a lot of information about the file. Information such as whether it?s a packed exe (save that for another tutorial) or the version information. What I use it for is the hex dump and then the ability to list the strings found in the binary file. From the strings you can gain a lot of useful information as to what the program does or is.
Dameware NT Utilities
This program allows you to remotely administer a computer/group of computers. I was hesitant to put this on as it is not freeware, but it is such a great utility.
Thanks for visiting hope this info helps !!!
posted by pax vobiscum at 2:44 AM
0 Comments:
Post a Comment
<< Home