The most dangerous and common characteristic of virus, trojan and worm is they open a TCP/IP or UDP port connection to spread outside the infected local machine. This is why network monitoring software is a must have tool (aside from antivirus and firewall) for system administrators. A tool like TCPEye can help admin to troubleshoot PCs that are virus infected. TCPEye V1.0 displays the list of all currently opened TCP/IP and UDP ports on your local computer. For each port in the list, information about the process that opened the port is also displayed including the process name, local address, remote addres, full path of the process, specific country the process is connecting to, and a lot more.
Right-click any process to perform several task such as resolve address, display all endpoints, close the unwanted connection, and kill unwanted process. TCPEye also provide you tools like Whois IP, Geo IP, and VirusTotal (scan for virus).
For every new connection that is established, TCPEye will display a balloon tip to notify you about the new connection. Suspicious and unidentified applications will automatically be marked with pink color. You can also save the TCP/UDP ports information to HTML file , XML file, or to tab-delimited text file.
TCPEye works on Windows XP, Windows 2003 Server, Vista, Windows 2008 Server, and Windows 7.
Download TCPEye
To stay up-to-date on Cool Softwares, subscribe now.
1 comments:
Very Good Post!!
I tried it and it works great
just check for more technology
http://www.solarwinds.com
Post a Comment