Sniffer for Windows That Shows Process ID?

Sniffer for Windows That Shows Process ID?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Networking Firewalls    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Sniffer for Windows That Shows Process ID? Will 10-10-2007
Posted by on October 26, 2007, 3:54 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Can someone recommend a sniffer for Windows that will show the process ID
> and name of the process sending or receiving each packet shown in the
> sniffer?
>
> I normally use ethereal or wireshark and didn't see a straightforward way to
> include this information.
>
> --
> Will

In WindowsXP you can use "netstat -ao" to see connections and the
associated process ID (which you can then patch to process IDs/
processes in task manager).

"netstat -p TCP -ao" if you only wanna see TCP and not UDP.

Pipe it to find if you want something specific, ie:
C:\>netstat -p TCP -ao|find "slashdot"
TCP machinename:2939 slashdot.org:http ESTABLISHED
3444
TCP machinename:2940 images.slashdot.org:http
ESTABLISHED 3444
TCP machinename:2942 images.slashdot.org:http
ESTABLISHED 3444


Posted by on October 29, 2007, 9:37 am
If you were  Registered and logged in, you could reply and use other advanced thread options
On Oct 26, 3:54 pm, kingtho...@gmail.com wrote:
>
> > Can someone recommend a sniffer for Windows that will show the process ID
> > and name of the process sending or receiving each packet shown in the
> > sniffer?
>
> > I normally use ethereal or wireshark and didn't see a straightforward way to
> > include this information.
>
> > --
> > Will
>
> In WindowsXP you can use "netstat -ao" to see connections and the
> associated process ID (which you can then patch to process IDs/
> processes in task manager).
>
> "netstat -p TCP -ao" if you only wanna see TCP and not UDP.
>
> Pipe it to find if you want something specific, ie:
> C:\>netstat -p TCP -ao|find "slashdot"
> TCP machinename:2939 slashdot.org:http ESTABLISHED
> 3444
> TCP machinename:2940 images.slashdot.org:http
> ESTABLISHED 3444
> TCP machinename:2942 images.slashdot.org:http
> ESTABLISHED 3444

DOH that shoulda said "match" not "patch"..."(which you can then match
to process IDs) processes in task manager)"


Posted by Steven L Umbach on October 27, 2007, 12:04 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Though tdimon is not actually a packet sniffer it may help in conjunction
with running a packet sniffer. It will show name but not process ID and
show time. Port reporter may be something else that can be used along with a
packet sniffer.

Steve


> Can someone recommend a sniffer for Windows that will show the process ID
> and name of the process sending or receiving each packet shown in the
> sniffer?
>
> I normally use ethereal or wireshark and didn't see a straightforward way
> to include this information.
>
> --
> Will
>



Similar ThreadsPosted
What is Generic Host Process for Win32 Services with the file name/path C:\WINDOWS\system32\svchost.exe and does it need server permission to work properly? October 23, 2006, 6:07 pm
IE shows ".url" extension!. January 17, 2006, 1:32 pm
Firewall shows ports being used in sqeuence December 5, 2005, 9:28 am
Re: Firewall shows ports being used in sqeuence December 5, 2005, 9:57 am
Re: Firewall shows ports being used in sqeuence December 5, 2005, 3:25 pm
Router log shows port 1026 activity? May 8, 2006, 12:46 pm
HeadphoneTV.com - Best in StreamingTV! 27000+ episodes of your favorite shows without Downloading! December 2, 2006, 11:49 pm
Zonealarm and sniffer tools December 16, 2006, 5:59 am
Anyone knows the Blueye layer 7 sniffer? February 15, 2008, 5:01 am
Re: Likelihood of IT using a Packet Sniffer August 11, 2008, 5:24 pm

The site map in XML format XML site map

Contact Us | Privacy Policy