Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

How can I determine which port a program is running on?

Posted on 2007-04-06
6
Medium Priority
?
254 Views
Last Modified: 2010-04-18
How can I determine which port a program is running on?  I did a vulnerability scan on one of my servers and port 5250 is open.  This is a port used by various trojans.  I would like to see what program or service is using this port...........
0
Comment
Question by:gopher_49
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
6 Comments
 
LVL 30

Accepted Solution

by:
LauraEHunterMVP earned 500 total points
ID: 18863777
On a 2003 server, run the following command: netstat -ano.  This will give you the port# and the Process ID of the .exe or service that is using it.  You can then look in Task Manager to determine which process corresponds to that Process ID.
0
 
LVL 18

Assisted Solution

by:John Gates, CISSP
John Gates, CISSP earned 500 total points
ID: 18863778
You can use utilities here:

http://www.microsoft.com/technet/sysinternals/default.mspx

You will find all kinds of useful utilities here for troubleshooting.

-D-
0
 
LVL 18

Expert Comment

by:John Gates, CISSP
ID: 18863791
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 18

Expert Comment

by:John Gates, CISSP
ID: 18863808
netstat -ano will do that as well but the sysinternals utilities give you a graphical view if you are not a "Command Line" kind of person ;-)

-D-
0
 
LVL 18

Expert Comment

by:John Gates, CISSP
ID: 18863821
And i guess when you find a rouge process you could use:

TASKKILL /PID <program ID>
0
 

Author Comment

by:gopher_49
ID: 18863926
Thanks for both of your suggestions.  I used the 'netstat -ano' commmand some time ago, however, I forgot the syntax.  Also, I used the Sysinternals utilities in the past, however, it's been awhile.  This refreshed my memory and I'm now back on track.

Thanks!
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question