How can I determine which process is making broadcast traffic?
It's simple to use a tool like Wireshark to see broadcast traffic coming from my machine.
However, what tool is available to determine, on that machine, which actual process is generating the broadcast traffic?
I've used NETSTAT in the past to see what processes have certain ports opened. However, this doesn't help with broadcast traffic.
My machine is sending out some traffic to 255.255.255.255 UDP, and I want to know which process is doing so.
Thanks!
July 11th, 2012 4:09pm
I would recommend using Process Monitor from Sysinternals (Microsoft): http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx
It captures the activity of running processes on a machine, including network I/O. You can combine with Process Explorer for best results.
Free Windows Admin Tool Kit Click here and download it now
July 11th, 2012 4:13pm
I knew of Process Explorer, but not Process Monitor. I feel embarrassed. What an excellent recommendation! Thank you, Neil!
July 11th, 2012 4:19pm