I have a program on my computer running in the background (for all intents and purposes, I can't pinpoint it using the standard windows tools) that is using the internet to do something. (My connection icon remains busy even when I have closed all of my internet-using applications.)
I wish simply to pinpoint this application (I think it's probably an updater, or something to that effect) so that I may kill it. Do y'all know of a program that will let me see which processes on my computer are using the most network traffic? I don't need a packet sniffer or anything, I just want to see what's using it at all. (If there is a command line instruction that can list programs with open sockets, that might work.)
Thanks in advance for any help.
-thegamefreak
Network Traffic?
Moderator: MaxCoderz Staff
-
thegamefreak0134
- Extreme Poster
- Posts: 455
- Joined: Mon 23 Jan, 2006 10:09 pm
- Location: In front of a Computer, coding
- Contact:
-
Delnar_Ersike
- Sir Posts-A-Lot
- Posts: 153
- Joined: Mon 22 Jan, 2007 3:05 am
- Location: UNATCO Headquarters
First of all: if it runs all the time, it's not an updater, as updaters only run for a short time once a week or so. I think your problem is an uploader. Do you have BitTorrent or XFire? Most like it's one of those, and you can easily fix the problem by moving the file uploaded to a different directory, or disable the upload speed (a bit harder in XFire, as you also disable the download speed). For example, I've recently downloaded the Bioshock Demo via XFire: however, even if I archived it after it was done, it kept on uploading (it's XFire's and BitTorrent's way of speeding up downloads by increasing the number of sources).
-
Andy_J
- Calc Master
- Posts: 1110
- Joined: Mon 20 Dec, 2004 10:01 pm
- Location: In the state of Roo Fearing
- Contact:
netstat. At least shows you what local ports are connected to what remote hosts and ports.
And even if there isn't anything actually doing anything, there will always be a bit of traffic going in and out, especially if you are connected directly to the modem (without a router or anything in between).
And even if there isn't anything actually doing anything, there will always be a bit of traffic going in and out, especially if you are connected directly to the modem (without a router or anything in between).
-
tr1p1ea
- Maxcoderz Staff
- Posts: 4141
- Joined: Thu 16 Dec, 2004 10:06 pm
- Location: I cant seem to get out of this cryogenic chamber!
- Contact:
How busy would you say your connection remains at when you arent doing anything yourself? Is it using a lot of bandwidth (have you noticed any increase in loading times?) or is it just a trickle?
You may have some spyware installed so perhaps you could look at some removal tools if you havent done so already.
You may have some spyware installed so perhaps you could look at some removal tools if you havent done so already.
"My world is Black & White. But if I blink fast enough, I see it in Grayscale."
-
King Harold
- Calc King
- Posts: 1513
- Joined: Sat 05 Aug, 2006 7:22 am
netstat -a -b
example:
example:
Code: Select all
C:\Documents and Settings\anon>netstat -a -b
Active Connections
Proto Local Address Foreign Address State PID
TCP anondesktop:epmap anondesktop:0 LISTENING 1116
c:\windows\system32\WS2_32.dll
C:\Windows\system32\RPCRT4.dll
c:\windows\system32\rpcss.dll
C:\Windows\system32\svchost.exe
C:\Windows\system32\ADVAPI32.dll
[svchost.exe]
TCP anondesktop:microsoft-ds anondesktop:0 LISTENING 4
[System]
TCP anondesktop:2869 anondesktop:0 LISTENING 1636
C:\Windows\System32\httpapi.dll
c:\windows\system32\ssdpsrv.dll
C:\Windows\system32\RPCRT4.dll
[svchost.exe]
TCP anondesktop:netbios-ssn anondesktop:0 LISTENING 4
[System]
TCP anondesktop:1030 anondesktop:0 LISTENING 2044
[alg.exe]
TCP anondesktop:netbios-ssn anondesktop:0 LISTENING 4
[System]
TCP anondesktop:1622 localhost:1623 ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1623 localhost:1622 ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1624 localhost:1625 ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1625 localhost:1624 ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1058 by1msg3145609.phx.gbl:1863 ESTABLISHED 656
[MsnMsgr.Exe]
TCP anondesktop:1626 66.102.9.99:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1627 lm-in-f147.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1629 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1630 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1631 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1632 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1633 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1634 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1635 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:1636 lm-in-f104.google.com:http ESTABLISHED 3588
[firefox.exe]
TCP anondesktop:2869 192.168.0.1:7552 CLOSE_WAIT 4
[System]
TCP anondesktop:2869 192.168.0.1:7549 CLOSE_WAIT 1636
C:\Windows\System32\httpapi.dll
c:\windows\system32\ssdpsrv.dll
C:\Windows\system32\RPCRT4.dll
[svchost.exe]
TCP anondesktop:1729 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1730 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1733 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1734 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1735 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1737 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1738 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1741 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
TCP anondesktop:1742 66.228.121.115-static.reverse.tengun.net:http T
IME_WAIT 0
UDP anondesktop:1029 *:* 1512
C:\Windows\system32\mswsock.dll
c:\windows\system32\WS2_32.dll
c:\windows\system32\DNSAPI.dll
c:\windows\system32\dnsrslvr.dll
C:\Windows\system32\RPCRT4.dll
[svchost.exe]
UDP anondesktop:4500 *:* 900
[lsass.exe]
UDP anondesktop:isakmp *:* 900
[lsass.exe]
UDP anondesktop:microsoft-ds *:* 4
[System]
UDP anondesktop:1265 *:* 1512
C:\Windows\system32\mswsock.dll
c:\windows\system32\WS2_32.dll
c:\windows\system32\DNSAPI.dll
c:\windows\system32\dnsrslvr.dll
C:\Windows\system32\RPCRT4.dll
[svchost.exe]
UDP anondesktop:1048 *:* 656
[MsnMsgr.Exe]
UDP anondesktop:netbios-ns *:* 4
[System]
UDP anondesktop:netbios-dgm *:* 4
[System]
UDP anondesktop:ntp *:* 1468
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\Windows\system32\kernel32.dll
[svchost.exe]
UDP anondesktop:10357 *:* 656
[MsnMsgr.Exe]
UDP anondesktop:1900 *:* 1636
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\kernel32.dll
[svchost.exe]
UDP anondesktop:50931 *:* 656
[MsnMsgr.Exe]
UDP anondesktop:1900 *:* 1636
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\kernel32.dll
[svchost.exe]
UDP anondesktop:ntp *:* 1468
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\Windows\system32\kernel32.dll
[svchost.exe]
UDP anondesktop:1055 *:* 656
[MsnMsgr.Exe]
UDP anondesktop:63939 *:* 656
[MsnMsgr.Exe]
UDP anondesktop:14410 *:* 656
[MsnMsgr.Exe]
UDP anondesktop:discard *:* 656
[MsnMsgr.Exe]
UDP anondesktop:netbios-ns *:* 4
[System]
UDP anondesktop:1900 *:* 1636
c:\windows\system32\WS2_32.dll
c:\windows\system32\ssdpsrv.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\kernel32.dll
[svchost.exe]
UDP anondesktop:netbios-dgm *:* 4
[System]
UDP anondesktop:ntp *:* 1468
c:\windows\system32\WS2_32.dll
c:\windows\system32\w32time.dll
ntdll.dll
C:\Windows\system32\kernel32.dll
[svchost.exe]