Re: OT : Windows machine sending ICMP echo request (ping)

Hi Shogo,

Thanks, le me do in that way to see if I can catch which program is sending
this icmp traffic.,

Thanks

----- Original Message -----
From: "Shogo Kobayashi" <k.shogo_at_gmail.com>
To: "Edouard Zorrilla" <ezorrilla_at_tsf.com.pe>
Cc: <ccielab_at_groupstudy.com>; <security_at_groupstudy.com>
Sent: Thursday, July 08, 2010 9:00 AM
Subject: Re: OT : Windows machine sending ICMP echo request (ping)

> Hi Edouard,
>
> Some of PCs have pre-installed vendor specific utility and sometimes they
> omit lots of traffic...
>
> Traffic other than TCP/UDP is hard to track, but maybe you can guess which
> process is omitting lots of traffic.
> Use Extended Task Manager (I'm using Process Hacker personally) and watch
> which protocol is consuming I/O.
>
> regards,
>
> On 2010/07/08 22:59, Edouard Zorrilla wrote:
>> Hi Guys,
>>
>> I have a windows machine which keeps sending pings to others. The
>> destination
>> are random, but valid IP Address (seems it query dns or wins). Do you
>> know how
>> can I track the .exe which sends that kind of ping packets to the network
>> ?. I
>> have tried with tcpview but this shows me tcp/udp connections, not icmp
>> traffic. I had scan with antivirus/antimalware and all is clean.,
>>
>> Thanks in advance for your time,
>>
>> Regads
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Thu Jul 08 2010 - 09:37:27 ART