how to follow process on Windows

asked 2020-01-29 12:41:26 +0000

zen.xen3 gravatar image

Hello, I try to find how to follow proces on Windows ex. chrome.exe? I was looking for in the Internet but I didn't find any solution. Could someone help me with this?

What do you mean by "follow a process"? Do you meant that you want to see network traffic only from that process?

grahamb gravatar imagegrahamb ( 2020-01-29 16:04:45 +0000 )edit

Yes, I want to see network traffic from that process, destination IPs, open ports. I found this but in newest version it doesn't work

zen.xen3 gravatar imagezen.xen3 ( 2020-01-29 17:20:19 +0000 )edit

The video seems to show an unreleased test version from back in 2012. I'm not sure where that came from.

grahamb gravatar imagegrahamb ( 2020-01-29 17:44:38 +0000 )edit

answered 2020-02-04 18:25:11 +0000

Chuckc gravatar image

You might want to add a vote here:

answered 2020-02-02 22:27:13 +0000

kaos gravatar image

Wireshark can't do that, but Microsoft's Network Monitor or (newer) Microsoft Message Analyzer can match packets to process. So you can first capture with one of the above tools, save a capture to file and open it with wireshark.


answered 2020-01-29 17:42:35 +0000

grahamb gravatar image

Unfortunately Wireshark can't do that.

Other tools may help, e.g. ProcMon and TCPView from SysInternals and the now deprecated Message Analyzer from MS (if you have an older copy, they have removed the downloads).

I didn't expect such answer and I thought that I do something wrong but anyway, thank you.

zen.xen3 gravatar imagezen.xen3 ( 2020-01-29 17:57:48 +0000 )edit

