AW Ports Traffic Analyzer - Port monitor /sniffer / trojan connection monitor -
this has a short trial but is a very cool program.
the port info is great and you can use it to build your own port database, your limited to 3mb of recorded info but you can store this into a zip archive to go through later, and then purge your info to start recording all over again.
QUOTE
While personal firewalls provide a degree of protection against outside attempts they are not effective against malware in your PC trying to connect the Internet!
Atelier Web Ports Traffic Analyzer is the only software in the World that can capture the data that flows in and out of your PC since boot time.
A "sniffer" can track every byte that flows in and out of the network interface card, but can not correlate them with any running software. And it can not report listening ports (AWPTA does it and also reports any software the moment they open any socket).
* Real-time mapping of ports to processes (applications and...services)!
* History since boot-time of all TCP, UDP and RAW ports open through Winsock and respective mapping to processes!
* Log since boot-time of data sent and received (up to 500 MB, but restricted to 3 MB in the evaluation version) by the above ports!
* Sophisticated archiving feature allowing to review previous sessions with the same detail as the current session.
* The Packets viewer grid is literally tens of times faster than in previous 1.xx releases. Even large multimegabyte data captures are displayed almost instantly - so fast is it that the Abort button, which was used in previous releases to cancel tedious data manipulation, was simply discarded.
* Captured data can be saved in raw format. This is very useful for reconstructing whatever came or was sent across the line, such as html pages, exe files or video and sound files. This works both in the Traffic and in the Archives page.
* The Ports Database has been dramatically improved and augmented.
Now, it contains about 6000 records, covering more than 12000 port references, more than twice the quantity of releases 1.xx - making it, hands down, the most comprehensive Ports database in the market.
The user interface is simply great! Another important aspect is that the
user can edit, insert and delete database records. WYSIWYG printing is available as well.
and of course theres more
Atelier Web Ports Traffic Analyzer is the only software in the World that can capture the data that flows in and out of your PC since boot time.
A "sniffer" can track every byte that flows in and out of the network interface card, but can not correlate them with any running software. And it can not report listening ports (AWPTA does it and also reports any software the moment they open any socket).
* Real-time mapping of ports to processes (applications and...services)!
* History since boot-time of all TCP, UDP and RAW ports open through Winsock and respective mapping to processes!
* Log since boot-time of data sent and received (up to 500 MB, but restricted to 3 MB in the evaluation version) by the above ports!
* Sophisticated archiving feature allowing to review previous sessions with the same detail as the current session.
* The Packets viewer grid is literally tens of times faster than in previous 1.xx releases. Even large multimegabyte data captures are displayed almost instantly - so fast is it that the Abort button, which was used in previous releases to cancel tedious data manipulation, was simply discarded.
* Captured data can be saved in raw format. This is very useful for reconstructing whatever came or was sent across the line, such as html pages, exe files or video and sound files. This works both in the Traffic and in the Archives page.
* The Ports Database has been dramatically improved and augmented.
Now, it contains about 6000 records, covering more than 12000 port references, more than twice the quantity of releases 1.xx - making it, hands down, the most comprehensive Ports database in the market.
The user interface is simply great! Another important aspect is that the
user can edit, insert and delete database records. WYSIWYG printing is available as well.
and of course theres more
http://www.atelierweb.com/pta/index.htm
http://www.atelierweb.com/pta/faq.htm
QUOTE
A: AWPTA uses Microsoft Layer Service Provider (LSP) technology. Some products on the market are incompatible or make incorrect use of this technology. A Web search retrieved the following list of products which is being reported by various people as incompatible with the LSP technology. This list may not be complete and some of the listed products may have already issued releases which fixed the problems.
TSPMail
Wingate
Winroute
Webhancer
Maildefense
New.net
E-safe
Amp (http://www.deterministicnetworks.com/amp.html)
AdsOff
Mcafee Personal Firewall and some release of Mcafee Antivirus which install a LSP.
Freedom 3.0.
Cyber Sitter
E-safe - desktop
Sygate Personal Firewall
TSPMail
Wingate
Winroute
Webhancer
Maildefense
New.net
E-safe
Amp (http://www.deterministicnetworks.com/amp.html)
AdsOff
Mcafee Personal Firewall and some release of Mcafee Antivirus which install a LSP.
Freedom 3.0.
Cyber Sitter
E-safe - desktop
Sygate Personal Firewall
