[Orhun Aşıkoğlu <orhun@xxxxxxxxxxx>]

Apologies for taking your valuable time but I am a novice in these issues (just
started to learn about security matters!) and I need your expert opinion on the
following:

If we assume that there is a 'sniffer' or 'key logger' somehow placed into my PC
reporting continuously to an IP address, would Ethereal be the correct software
to detect the traffic? How can I find out where the reports are going or where
the bug is in my computer? Can I read or block these reports as they are leaving
my PC?

Orhun


Graham Bloice wrote:

> > Try this info from the Ethereal download page for Windows users...
> >
> > http://www.ethereal.com/distribution/win32/
>
> See also http://www.ethereal.com/distribution/win32/win32-README.txt
>
> >
> > Basically, you need the GTK library DLL's copied into C:\windows (assuming
> > that is where Windows is installed) and you need to install the WinPcap
> > driver if you wish to capture packets.
> >
>
> It's probably best not to put the DLL's into the windows directory.  If you
> have another program that also uses GTK, e.g. Gimp, there could be problems.
> As the README.txt says the DLL's just have to be on your path, what it
> doesn't say is that the DLL's can just be in the same directory as the
> Ethereal executables without modifying your path and this is my personal
> preference to avoid 'DLL Hell'
>
> Graham