Re: Hidden windows ports, files and services.

[Mario Pascucci <ilpettegolo () yahoo it>]

Il lun, 2005-02-14 alle 20:38, Alex Yan ha scritto:
> Hi all,
>
> Thanks a lot for your help.
> On weekend I tried some suggested options, but still
> didn't get much yet.
>
> Scanned the system using the latest Norton AV and
> Stinger in the safe mode. Nothing came out.
>
> Run "netstat -baon". It gives process IDs and program
> names for other processes. For the processes related
> to port 21, it says "No ownership information can be
> found".
>
> Tried fport, cport, process explorer, etc, but no
> luck.
>
> "telnet 127.0.0.1 21" gives prompt "220 ." and then
> times out in 15 seconds. No telnet service was found
> in Windows service list.
Try to use Hijackthis and post the log. Some of the malware in the wild
uses things such browser helper object, run as service or similar
behavior, to hide itself.
-- 
Mario "Reliant" Pascucci
http://ilpettegolo.altervista.org/