How can I determine which port a program is running on?

How can I determine which port a program is running on?  I did a vulnerability scan on one of my servers and port 5250 is open.  This is a port used by various trojans.  I would like to see what program or service is using this port...........
gopher_49Asked:
Who is Participating?
 
LauraEHunterMVPConnect With a Mentor Commented:
On a 2003 server, run the following command: netstat -ano.  This will give you the port# and the Process ID of the .exe or service that is using it.  You can then look in Task Manager to determine which process corresponds to that Process ID.
0
 
John Gates, CISSPConnect With a Mentor Security ProfessionalCommented:
You can use utilities here:

http://www.microsoft.com/technet/sysinternals/default.mspx

You will find all kinds of useful utilities here for troubleshooting.

-D-
0
 
John Gates, CISSPSecurity ProfessionalCommented:
0
[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

 
John Gates, CISSPSecurity ProfessionalCommented:
netstat -ano will do that as well but the sysinternals utilities give you a graphical view if you are not a "Command Line" kind of person ;-)

-D-
0
 
John Gates, CISSPSecurity ProfessionalCommented:
And i guess when you find a rouge process you could use:

TASKKILL /PID <program ID>
0
 
gopher_49Author Commented:
Thanks for both of your suggestions.  I used the 'netstat -ano' commmand some time ago, however, I forgot the syntax.  Also, I used the Sysinternals utilities in the past, however, it's been awhile.  This refreshed my memory and I'm now back on track.

Thanks!
0
All Courses

From novice to tech pro — start learning today.