You can download the free utility TCPVIEW.EXE from -
http://www.sysinternals.com/
It will show the program that opens a port (listening) and what connects to it.
You can also perform a scan using the following if it is malware.
1) Download the following three items...
Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp
Latest Trend signature files.
http://www.trendmicro.com/download/pattern.asp
Adaware SE (personal free version)
http://www.lavasoftusa.com/
Create a directory.
On drive "C:\"
(e.g., "c:\New Folder")
or the desktop
(e.g., "C:\Documents and Settings\lipman\Desktop\New Folder")
Download sysclean.com and place it in that directory.
Dowload the signature files (pattern files) by obtaining the ZIP file.
For example; lpt202.zip
Extract the contents of the ZIP file and place the contents in the same directory as
sysclean.com.
2) Update Adware with the latest definitions.
3) If you are using WinME or WinXP, disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
4) Reboot your PC into Safe Mode
5) Using both the Trend Sysclean utility and Adaware, perform a Full Scan of your
platform and clean/delete any infectors/parasites found.
(a few cycles may be needed)
6) Restart your PC and perform a "final" Full Scan of your platform using both the
Trend Sysclean utility and Adaware
7) If you are using WinME or WinXP,Re-enable System Restore and re-apply any
System Restore preferences, (e.g. HD space to use suggested 400 ~ 600MB),
8) Reboot your PC.
9) If you are using WinME or WinXP, create a new Restore point
10) Please report back your results
Dave
| There is apparently a program listening on port 8080 on my machine. How
| do I find out the name and location of that program.
|
| I believe the program is there for 2 reasons. First, IE responds to
|
http://localhost:8080 with unauthorized. Second, if I start up a
| program that wants to use port 8080, it says port 8080 is already in use.
|
| TIA, dave
