How can I find out what's uploading traffic to the internet? [duplicate]

networking windows-7 traffic

Two suggestions:

  • Use TCPView to determine the process involved, remote host, etc.
  • Use Wireshark (formerly Ethereal) to see the traffic's content (in addition to the remote address, but not the local process).

If your goal is to determine which program is generating a large volume of traffic, it may make sense to use both in combination -- use Wireshark to determine what the traffic is, and what the local and remote ports are; then use TCPView to determine which local program is responsible.

As an aside, for folks on Linux: Also consider Sysdig. The curses interface, csysdig, specifically lets you look at which processes are sending network traffic. After installing the software, the process looks something like this:

  • Run csysdig
  • Select "Views"
  • Select the "Connections" view
  • Sort by "BPS Out"

The view will provide the command being run for each connection shown.

If you want to view the actual traffic being sent and received, select a connection and press F6 to dig into the syscalls sending and receiving traffic on that connection.

Related

Mount NFS on Windows XP
how to make ssh putty retain connection even after vista is coming back from hibernation?
Changing the BitLocker password
Has anyone successfully configured mutt for GMail on FreeBSD? If so, how?
When do static files get retrieved during SMTP?
rotate pdf by a certain degree in adobe acrobat
Controlling VirtualBox internet access?
How do I use putty (and/or plink) command line to forward through 2 intermediate hosts to a database?
How to map host PCI device to virtualbox?
How to change the skin on VS2010
Can't connect to Windows EC2 instance built by Packer via SSM Agent
Is it safe to use DHCP Discovery to get DNS servers in my program?