RE: Looking for a tool

[Tremaine Lea <tremaine.lea () sjrb ca>]

> -----Original Message-----
> From: Schmehl, Paul L [mailto:pauls () utdallas edu] 
> Sent: Monday, March 01, 2004 3:38 PM
> To: full-disclosure () lists netsys com
> Subject: [Full-disclosure] Looking for a tool
>
> I ran into a situation today where neither Foundstone's 
> Process Explorer nor Sysinternals' "pslist" would list the 
> master process that was controlling some processes that I was 
> trying to kill.  Does anyone on the list know of a better 
> utility that will list *all* running processes on a Windows 
> box?  (This was WinXP Pro if that matters.)
>
> Paul Schmehl (pauls () utdallas edu)
> Adjunct Information Security Officer
> The University of Texas at Dallas
> AVIEN Founding Member
> http://www.utdallas.edu/~pauls/ 
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html




Hello Paul,

        I've found a number of the utilities from DimaondCS to be valuable
in this regard.

http://www.diamondcs.com.au/index.php?page=products

PortExplorer is particularly useful in mapping processes to used ports -
http://www.diamondcs.com.au/portexplorer/index.php?page=download

Another handy utility (from the same company) is TDS-3
(http://tds.diamondcs.com.au/) which I've found unparallelled in finding and
removing all kinds of trojan type malware. It's also available (with decent
instructions) from http://www.ddiction.com/tds-help.php (North American
site, likely faster for you.)


Cheers,

Tremaine
Team Lead
Acceptable Use Policy Management Team
Shaw High-Speed Internet Service
Shaw Cablesystems G.P.
2400 - 32nd Avenue N.E.
Calgary, Alberta, T2E 9A7
<mailto:internet.abuse () sjrb ca>(TL)
 
https://secure.shaw.ca/policy/Use-Policy.asp

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html