alot snmp traffic snmp not enabled

Posted on 2009-12-23
Last Modified: 2013-11-16
  i have windows 2003 server installed it keeps trying to access other ips out of my lan (probably in my main office) i can see blocks every 5 secs on my firewall it tries to access the same 5 ip's over and over again on udp 161 (snmp) i am trying to get to souce of why it is doing this. The snmp service is not installed and there is no snmp service in services,msc

anyone with any ideas  
Question by:BarepAssets
    LVL 23

    Expert Comment

    If you look at the machine that's trying to set up this connection and you do a netstat -a -o, do you see any process that is using port 161?? If so, you can get the process id (that;s waht the -o is for) and check and see what process is trying to do this. You do need to make sure to add the process ID in your view of the task manager.
    LVL 21

    Accepted Solution


    Download WireShark and see from where it is originating:

    Faraz H. Khan
    LVL 2

    Expert Comment


    If you are just trying to stop this outbound access .. just enable windows firewall or 3rd party firewall like zone alarm.

    You can use NMAP to check the ports.
    There is a Windows and a Linux version available at:

     if you type in "netstat -o"
    you get not only the ports but also the owning process ID associated with each connection.

    To get the list of tags for nestat type in "netstat ?".

    Or you could use a program like portqry...I use nmap myself, but that's me.


    Author Closing Comment

    i used wireshark and found it snmp was enabled on properties of printers un enabled and traffic sorted

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Enabling OSINT in Activity Based Intelligence

    Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

    #Citrix #Citrix Netscaler #HTTP Compression #Load Balance
    Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
    Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now