Netstat: Check if ET is calling home
During the last of our Malware trilogy over on our webcast BASH we told you about a program that monitored what processes were running on your PC, it was called WinPatrol.
Well did you know that you have another program already installed on your Windows system to allow you to find out if those processes are trying to communicate on the internet?
It's called netstat and it has been around for a long time. In Windows XP, to use netstat, you click on:
START > RUN > type "command" > click OK > type netstat > hit Enter
All the network connections you have made will be shown. If there's something there that you don't recognize, it might give you pause to think that there's a virus on your system trying to communicate with its home base.
netstat is a little difficult to understand if you are not a real computer whiz, but there's a very informative webcast that will explain it a bit better at Leo Laporte's Security Now site.
Download the webcast here: The NETSTAT Command Episode 49
Even better than netstat is a program that is mentioned on Leo's site called: TCPView
TCPView is a visual GUI'ied up version of netstat and much more user friendly. The program now belongs to Microsoft AND it's free.
If you think you have processes running that are slowing your system down - run TCPView, it might be illuminating!
You can also learn more about what to do with netstat, TCPView to enable you to kill any viruses/trojans you may have here: Nohack Project
Related articles:
Malware
Well did you know that you have another program already installed on your Windows system to allow you to find out if those processes are trying to communicate on the internet?
It's called netstat and it has been around for a long time. In Windows XP, to use netstat, you click on:
START > RUN > type "command" > click OK > type netstat > hit Enter
All the network connections you have made will be shown. If there's something there that you don't recognize, it might give you pause to think that there's a virus on your system trying to communicate with its home base.
netstat is a little difficult to understand if you are not a real computer whiz, but there's a very informative webcast that will explain it a bit better at Leo Laporte's Security Now site.
Download the webcast here: The NETSTAT Command Episode 49
Even better than netstat is a program that is mentioned on Leo's site called: TCPView
TCPView is a visual GUI'ied up version of netstat and much more user friendly. The program now belongs to Microsoft AND it's free.
If you think you have processes running that are slowing your system down - run TCPView, it might be illuminating!
You can also learn more about what to do with netstat, TCPView to enable you to kill any viruses/trojans you may have here: Nohack Project
Related articles:
Malware
