• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 396
  • Last Modified:

Help determining what application is making TCP connection

Hello,

I started getting a reditrect or two in my browser so I throw MalwareBytes on my workstation and it included the free trial of the pro version. My machine is clean, but that's really irrelevant in regards to my question.

The MB keeps popping up a box saying that it blocked access to: 1.1.1.1 (example). Well, I'm sitting here wondering what I can use to tell me what application (or whatever it is) that is initiating this connection? I thought about WireShark, WinDump, etc, but those will just show me the packets and their SRC and DST and won't really tell me where it's coming from. Is there an app like ProcMon that will do this in the networking world?

I'm not looking for the removal of a threat. I've researched the IP my machine is trying to connect to and even done some scans on it, but that's not the point. I'd like to find a way to tell what application/process that is initiating the connection from my PC.

I'm thinking that the more advanced features of WireShark will do this by looking at the actual data within each packet to perhaps give me some clues, but if there another application that will do that for me, all the better. What is my best bet?
0
bbroyles
Asked:
bbroyles
1 Solution
 
Aaron TomoskySD-WAN SimplifiedCommented:
Tcpview from sysinternals (Microsoft)
0
 
Dave BaldwinFixer of ProblemsCommented:
0
 
bbroylesAuthor Commented:
Perfect! Was exactly what I was looking for.......

Shows the process and the connection as it's initiated. That SysInternals has some great stuff, but don;t recall see that be before. If you want to see active connections and what application is making them on your machine, this is the ticket.

Now, I want to see what kind of data it's trying to send, but I think got that covered with WireShark

Good work!.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

The IT Degree for Career Advancement

Earn your B.S. in Network Operations and Security and become a network and IT security expert. This WGU degree program curriculum was designed with tech-savvy, self-motivated students in mind – allowing you to use your technical expertise, to address real-world business problems.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now