Re: evidence of Trojan infection?

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: Dave Patrick (mail_at_NoSpam.DSPatrick.com)
Date: 03/01/04 

Date: Sun, 29 Feb 2004 18:05:53 -0700

This may help you.

http://www.sysinternals.com/ntw2k/freeware/portmon.shtml 

-- 
Regards,
Dave Patrick ....Please no email replies - reply in newsgroup.
Microsoft MVP [Windows]
Microsoft Certified Professional [Windows 2000]
http://www.microsoft.com/protect
"Dave" wrote:
| Thank you, Dave.
|
| I wish I could say that task manager showed me some "suspicious"
processes!
| Upon boot, I'm running something like 50 individual processes, and
| unfortunately, I'm not familiar enough with the good guys vs the bad.  I
| suppose I could disable them one at a time and try to exhaustively
determine
| what no longer works, but there must be a better way.
|
| Spybot has a view that looks at processes, and I don't recall anything
being
| flagged.  No ftp.exe process; that much I can say.
|
| Sorry to perseverant, but if there is a way to find out what process or
| application is "currently" (I left that out of my inquiry) using the modem
| com port, then I might be able to make some headway.  The icon in my
system
| tray tells me when I'm sending out packets (at least I think it does), so
| when I see it lit up continuously, and I'm not running anything that
should
| be dumping lots of data, then I could presumably find out what's going on.
| Would you happen to know how I could do a "OK, who's using that COM port?"
| kind of thing?
|
| Thanks much for your help so far.
|
| Dave
Quantcast