[Webinar] Streamline your web hosting managementRegister Today


Finding Torrent Downloader

Posted on 2011-02-11
Medium Priority
Last Modified: 2012-05-11
Our company received a letter from legal firm representing a medial compnay which was forwaed to us by out ISP. It seems someone in out LAN has been downloading copyright protected materials and has exposed our business to copyright infringment liability. Management is very interested in finding the computer/user responsible. What is the best way to do this without having to inspecte more than 70 computers.We use a Netgear RVS318 Router/Firewall
Question by:biztekadmin
  • 3
  • 2
LVL 35

Expert Comment

by:Ernie Beek
ID: 34871145
You could use wireshark and see who is torrenting. You are sure they used torrents for that?

Author Comment

ID: 34871836
I'm assuming a torrent downloader was used becasue I've had previous expiereince in a smaller environment, where someone left a Vuze instance downloading/seeding all weekend, by Friday of the next week we recieved a warning letter from out ISP. What other services / applications should Ibe looking for? As far as Wireshark, any suggestions on how to configure which network traffic to capture to determine who is downloading. Also will wireshark impact network performance? Thank You.
LVL 35

Accepted Solution

Ernie Beek earned 2000 total points
ID: 34871908
This should help you with wireshark: http://wiki.wireshark.org/BitTorrent

Wireshark shouldn't have an impact on performance, it just listens (to everything on the network).

Though torrent are widely used, you might also want to look at (for example) usenet traffic. That uses port 119 by default or port 563 for SSL connections.

Author Closing Comment

ID: 34871979
Thank you really apreciate the help.
LVL 35

Expert Comment

by:Ernie Beek
ID: 34872082
No problem, always glad to help :)

Featured Post

[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are two basic ways to configure a static route for Cisco IOS devices. I've written this article to highlight a case study comparing the configuration of a static route using the next-hop IP and the configuration of a static route using an outg…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question