Ask Your Question
0

I capture unwanted traffic to ip 64.91.226.82 whois LIQUIDWEB. How do i trace source?

asked 2017-12-05 06:46:05 +0000

anonymous user

Anonymous

updated 2017-12-05 09:48:50 +0000

grahamb gravatar image

Summary:

1354    164.030569  192.168.0.2 64.91.226.82    TCP 54  0.000073000 41  53843 → 443 [ACK] Seq=1 Ack=1 Win=65700 Len=0

How can i stop this? How to find source on my PC?

Thanks!

edit retag flag offensive close merge delete

1 Answer

Sort by » oldest newest most voted
0

answered 2017-12-06 02:40:51 +0000

Rooster_50 gravatar image

Run cmd.exe as administrator and type "netstat -abn". Look for the socket you are inquiring about. The command will also list the executable that created the connection.

edit flag offensive delete link more

Comments

Were you capturing from a span or tap? Or was this traffic in an out of your own box?

masonke gravatar imagemasonke ( 2017-12-06 23:21:38 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2017-12-05 06:46:05 +0000

Seen: 51 times

Last updated: Dec 06