| Author | Topic functions : thumbs up, news-worthy | 
Geek Goddess
gracie
Premium,MVM
2003-07-15
Loc:confusion
 ·Verizon Online DSL
| new tcpview less effective?
tcpview
from sysinternals is a frontline part of my security arsenal; the tool,
a kind of netstat for nerds, shows listening tcp and udp ports, etc. in
a friendly gui.
i'd been running 2.34 and if i'm not getting email or browsing, usually all that shows listening is:
SAV (ccapp for its realtime protection): as it should be
svhost listening on epmap port: fine, know this
ZAP's vsmon: good work.
so all's well. (yes this is lean, but i've got 135, 139, 445, etc. all closed...told you i'm battened down  ).
then
i found out that there was a new version 2.4, so naturally downloaded
and installed, and ran it. and suddenly it only shows vsmon
listening...no more sav, no more epmap.
so i ran a 2.34 version
off cd, and there was the usual sav and epmap. so they are listening,
but 2.4 for some reason is not showing them!
and yes, i have
'show unconnected endpoints' (these are ALL unconnected endpoints). i'm
floored that for some reason the latest version of tcpview is not
reporting accurately all the listening ports.
i've gone back to
2.34, but does anyone have any insight into what happened? why they
stopped showing such critical info as an AV program's realtime
protection listening?
--
graciella! "not tonight dear, I have DSL."
Creating SuperOrganizations Worldwide
Creating & Hosting SuperSites Worldwide | | |
|
Organized Chaos
BlitzenZeus
Premium,MVM
2000-01-13
Loc:Oregon, USA
 ·Comcast (Formerly..
·Home
| Look at this change on the download page, looks like they are removing abilities of the free version.
"If
you like TCPView, you'll love TCPView Pro. TCPView Pro, a Winternals
Software product, has a number of features that make it much more
powerful and useful than TCPView: See what process has each endpoint
opened (on Win9x as well)
* Watch the TCP and UDP activity processes perform in realtime
* Used advanced filtering to narrow in on what you want to see
* And much more...
TCPView Pro is available as part of Winternals Administrator's Pak. "
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed.
The biggest error is sitting in front of your keyboard. | |
|
