Over 1 million tech questions and answers.

Network traffic monitor/analyzer stickie?

Q: Network traffic monitor/analyzer stickie?

My network seems to be slowing way down. I have basic networking knowledge and moderate Server knowledge. I, however, do not have very good analyzer skills.

Just like how we have an awsome sticky on RAID, I was wondering if we could have one on analyzing tools.

Personally I am looking for something either built into Server 2003, downloadable form Microsoft, or even free or expensive software that lets me monitor my network for traffic problems.

I am getting lots of users who are connected to a database on our server, and about every 5 minutes it looses the connection. I am trying to track the problem and don't know where to start.

Read other answers
RELEVANCY SCORE 200
Preferred Solution: Network traffic monitor/analyzer stickie?

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 83.2

I'm looking for a good network analyzer software that allows me to monitor the network. maybe have some features on discovering devices, ports, bandwidth in a certain amount of time, etc. Thanks.
 

A:network traffic analyzer

That would depend on the network topology. Any global network monitoring will have to be done with access to a common point where all the traffic converges. Addressed traffic between workstations will go directly between them via any switches and gateways in the path, so you can't do this with just a workstation.
 

Read other 1 answers
RELEVANCY SCORE 82.4

Hi,
Is is possible to monitor the DHCP server logs and traffic on a Windows 2012 R2 DHCP load balanced server using Message Analyzer?
Mike

Read other answers
RELEVANCY SCORE 81.2

I want to capture both local and network traffic for connections and disconnections unrelated to http
Capture filter "(tcp.RST || tcp.SYN) && tcp.Port != 80 && tcp.Port != 443"

I found that I can do one or the other, but when I add both below, I capture neither ???
>> What is the trick to capturing both ?
Thanks

Read other answers
RELEVANCY SCORE 79.6

Is there a good network traffic/broadband monitor that actually keeps track of ALL (really ALL) traffic in a network?
I have used quite a few (eg, Ethereal, ntop, network probe) but all of them kinda keep track of only traffic that is coming in and out of the PC they are run from.

I need one that really tracks every single transaction that goes on in the network, including PCs talking to PCs, PCs talking to servers, servers talking to PCs, PCs talking to printers, etc.

Would help a great deal if they are FREE too!

Anyone know of any good ones?
 

A:Network traffic/bandwidth monitor that tracks GLOBAL network traffic

Hi.

You may find something here...

http://www.freewarehome.com/Internet/Networking/Network_Monitoring_t.html
 

Read other 2 answers
RELEVANCY SCORE 67.2

My application does not have any network-like implementation except FlexNet Publisher for licensing. I expect it should connect only to license server.

When I use Microsoft Network Monitor then it shows only connections from/to my application and license server.

When I use Microsoft Message Analyzer then it shows enormous additional traffic for my application which I cannot explain. For example many events' source and destination do not match my local machine (BRWS/DNS/UDP modules), so it seems that my application
is kind of proxy (?) for them. Can anyone give some hints how to interpret Message Analyzer data, please?

Read other answers
RELEVANCY SCORE 66.8

hey guys -

I've just built a new w2k server, sp4, and the machine never exactly idles - i have DU meter running and there's a constant upload/download (approximately 15kb/120kb) but I'm unable to figure out what's causing it.

So, I'm looking for a freeware/shareware tool that will be able to tell me what applications, services or processes are causing the traffic.

Thanks in advance!
 

A:Tool to monitor network traffic?

www.ethereal.com is an excellent network monitor, and it's free.
 

Read other 1 answers
RELEVANCY SCORE 66.8

Do you need a certain program?
 

A:How do you monitor network traffic at home?

Read other 6 answers
RELEVANCY SCORE 66.8

Hello, This is my first post and to be a bit of an ignorant so and so I am stragith away jumping into asking a bone question. My apologies for taking advantage of your good nature like this.

My question is; I wish to monitor the traffic on a network card on a Vista computer as I am trying to figure out why an anti virus software is not running. I need to be able to see the messages that the AV update is giving out, i.e. requesting update from ... listening on port .... nothing heard ....

I don't even know if there is anything like this out there. If I am talking nonsense, my apologies.

Many thanks in advance

A:monitor network traffic on an interface

Hello mockingbirdfan

Welcome to TSF

We have a staff of techs who have a wide variety of skills and will be able to help you with your problem, This is not my area of expertise, and that one of the Team members who can help them will be along shortly.

regards


Craig

Read other 5 answers
RELEVANCY SCORE 66

Hi guys,

I hope you guys could provide me with a few sites on

Traffic Generator Functions or Performance Analyzer

these are for networking, layer 1 and layer 2 switches
I cant seem to find any, so i hope you guys could help me out
thanks
 

Read other answers
RELEVANCY SCORE 66

Hi everyone!!!

I've been tasked with running message analyzer to determine if data is encrypted from an endpoint. We are using MBAM and want to ensure that any data sent to MBAM application server is encrypted. Now, we know it is via https, but, we still need to verify this
(for audit purposes).

Can anyone provide some insight as to how I could use microsoft message anaylzer (or perhaps something better) ?

We are planning to run a capture for 24 hours. We also want to ensure data is encrypted from app server to sql server. 



Thanks all! 

Read other answers
RELEVANCY SCORE 66

I'm resurrecting an old thread regarding monitoring traffic.It's from 2006. I suspect there is some more recent.

http://forums.techguy.org/networking/496409-need-simple-way-monitor-network.html

Looking for any "Newer" recommendations on monitoring networks. (Free would be good)

My set-up is a (Small network for home use and small computer repair biz)
2Wire(Bell) - 4 port modem/router with wireless -> Switch -> Hub(s) workshop -> to computers (wired and Wireless)

Any direction apprecaited.
 

A:Need a simple way to monitor network traffic and computers

Nagios
 

Read other 2 answers
RELEVANCY SCORE 66

Does anyone know of a program that can monitor the network traffic on my home network. I have LAN parties at my house every so often and people like to torrent and stuff when others are playing games, causing horrible lag. I need a way to monitor this. It would be great if I could just get a program to show packets going through and have them labeled by the computername of the destination for the packet.

Iv'e tried a couple programs from download.com but their just not really what i'm looking for.
 

A:Need a simple way to monitor network traffic and computers

Read other 7 answers
RELEVANCY SCORE 66

I keep getting this alert despite the amount of resources that I add to my Gateway.  
Our DC and Gateway are running virtually in VMware.  Distributed Virtual Switches are not an option so I have to resort to configuring Promiscuous Port Group.  
I configured a Promiscuous Port Group on the same Virtual Switch that the DC (and the rest of our servers) is connected , and assigned it the same VLAN ID as the DC. 
ATA is capturing and reporting traffic but I continually receive an alert for some network traffic is not being analyzed.  I have thrown double the resources at our Gateway's
than what the sizing tool identified, and still receive this alert.  At this point I have 24GB of RAM and 10 Cores allocated to my Gateway which is only capturing reporting on 1 DC.  At this point I am about ready to scrap ATA because of how resource
intense it is.  
Any ideas or suggestions?  Does it sound like I have the Promiscuous Port Group configured correctly, or is it possible that I am capturing ALL traffic for the VLAN assigned?  

Read other answers
RELEVANCY SCORE 65.2

Hello,
I've used Message Analyzer in the past to decrypt HTTPS traffic after importing the certificate used by the web server and it was a tremendous improvement over Netmon & NMDecrypt.    I'm looking at a trace I took of LDAPS traffic (TCP.port==636)
and the traffic after the SSL handshake Message Analyzer is not decrypting the traffic.   

Is the decryption sub-routines in Message Analyzer only supposed to work with HTTPS traffic, or should we be expecting to see success on LDAPS traffic as well?
Thank you,
John

Read other answers
RELEVANCY SCORE 64.4

Message Analyzer has not had any significant updates (apart from minor parser updates) for some time. The mechanism that out-of-the-box Message Analyzer uses to decrypt
TLS is based on access to the server certificate private key (and therefore does not work with ephemeral session keys). Since Message Analyzer is very flexible and configurable, I wanted to check whether it could be adapted to use SSLKEYLOGFILE information
and indeed the answer is yes.
 
The OPN programming language is Turing complete, but it would not be an ideal choice for implementing all of the necessary cryptographic routines that are needed for
this task ? it would be better to use existing cryptographic libraries. Fortunately OPN does include a mechanism for calling external routines ? the ?Handcoded? declaration:
 
binary DecryptData(string suite, byte ct, array<byte> ver, binary data, array<byte> key, array<byte> salt, ref array<byte>
iv, long ctr, out bool ok) with DeclarationInfo { Handcoded = true };
 
One simple way of using this is to place the ?Handcoded? definitions in a small OPN ?module?. The OPN has to be included as a resource in the DLL built from the ?Handcoded?
implementation. The resource is located by means of a .NET assembly level attribute:
 
[assembly: ExtensionOpnModel("TLSex.opn", false)]
 
The exposed hand-coded routine also needs to be decorated with attributes (for the containing ... Read more

Read other answers
RELEVANCY SCORE 64

Upgraded to Windows 10 today, and Message Analyzer no longer seems to be capturing traffic (build 4.0.7540.0).

Get-NetEventSession shows that there's a session running, but nothing shows up in the Message Analyzer window.
 

Read other answers
RELEVANCY SCORE 64

While I open my the ETL file captured in Windows 10, the PID/VID seems to be incorrect (compared to what I read in Network Monitor 3.4 and I plugged the devices myself, I know what's the right VID/PID).
I did discover there are some error messages in the log, and I only put two examples below,
10/28/2015 3:29:17 PM Error C:\Users\IBM_ADMIN\AppData\Local\Microsoft\MessageAnalyzer\OPNAndConfiguration\OpnForEtw\OpnForEtwProcess\TCPIPComponentExt.opn(173,45-173,62):  undeclared 'EventTemplate_130'
10/28/2015 3:29:17 PM Error C:\Users\IBM_ADMIN\AppData\Local\Microsoft\MessageAnalyzer\OPNAndConfiguration\OpnForEtw\OpnForEtwProcess\TCPIPComponentExt.opn(197,50-197,67):  undeclared 'EventTemplate_130'

Could you help me to understand what I should do to overcome it?

Read other answers
RELEVANCY SCORE 63.2

Hi!
Is there a way to look inside GRE tunnel traffic captured with Wireshark in Message Analyzer? I'm troubleshooting a scenario where I need to correlate event log entries from a server with network trace captured on by another person using ERSPAN protocol.
Thanks,
Ivan

Ivan Seriavin

Read other answers
RELEVANCY SCORE 60.4

Dear all,
it should be possible to
"Capture firewall discard Events - This feature allows you to discover how the firewall is affecting network traffic.  New messages tell you when traffic is blocked and associated IDs point to the specific firewall rule responsible
for dropping the message."
Source
Does anybody of you know a little bit more about how Message Analyzer has to be configured to show which rule blocks (in my case Outbound) traffic?
This would be a great improvement to the pfirewall.log, where this important information is missing...
Best regards

Peter

Read other answers
RELEVANCY SCORE 52

I come to you as a PC ignoramus in need of some expert advice with regards to a serious issue I am facing,
 
I have had hackers completely takeover my network and have not only taken control of all webtraffic from the network on all devices but also have installed some form of software which stops me from changing AV etc,
 
Only reason I noticed is I went TCPview (Will attach pictures) and noticed these connections, i have tried reinstalling and it only comes on as soon as I connect to the network.
 
Also, I have run Spyhunter and it is consistently coming up with large amounts of cookies threats
 
Namely 207, Sex -??,
 
Name: Media
Path: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Cookies::ipinfo_13054458043766831
^
1stat.com
 
Severdyby and numerous others
 
 
I have no idea what to do and need your assistance, Its much appreciated BC members
 
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17239  BrowserJavaVersion: 10.67.2
Run by Owner at 17:43:06 on 2014-09-06
Microsoft Windows 7 Professional   6.1.7601.1.1252.61.1033.18.6098.3272 [GMT 10:00]
.
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG update module *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
.... Read more

A:Complete Network takeover - Whole network traffic hijacked + PCs Infected HELP!!

Anyone able to help me?
 
Would be much appreciated

Read other 3 answers
RELEVANCY SCORE 52

On my old Android tablet, I had a couple apps that I used almost every day.

One was WiFi Analyzer: https://play.google.com/store/apps/d....wifi.analyzer
The other was Juice Plotter: https://play.google.com/store/apps/d...d.juiceplotter

I've searched the Microsoft store over and over again and can't find anything like them. Does anybody here know of any apps like those for Windows 8?

A:Looking for apps: WiFi Analyzer and Battery Monitor

Vistumbler

Read other 1 answers
RELEVANCY SCORE 51.6

I'm not sure if I'm trying to do the impossible but I'll explain the situation.

I have this roommate that is excessively consuming the majority of the networks bandwidth. I've blocked all service ports except for 443, 80, and a few other ones used for every day task. The problem is that he is still consuming a ton of bandwidth, I'm guessing by streaming or downloading through HTTP.

I have *two* WGR614v10 router, and a Realtek PCIe LAN card controller at my disposal. I attempted to set QoS settings on what we will call Base Router. That did not seem to do the trick because router QoS only blocks ports and slows upload speed. Since that did not work I hid the SSID/MAC filtered connections to the Base Router and then connected my computer to the Base Router and rebroadcasted the signal using a Secondary Router using a shared connection, which I gave him access to. The point of this was an attempt to control bandwidth through the Realtek LAN card; I am not having any luck with this though. I've set the adapter to 10Mbps at half duplex already.

Does anyone have any suggestions on what I can look into for limiting bandwidth? I want him to have Internet but not abuse it like he's doing because that is not what we agreed upon.

A:How to limit network traffic speeds with a network card?

If you want to solve the issue using your existing equipment, you can try dd-wrt on one WGR614v10. See this thread (DD-WRT Forum :: View topic - WGR614v10 Support - Jump to post 9) which claims that there is a dd-wrt flash for WNR1000v3 which works on WGR614v10. Then look a thread like this (DD-WRT Forum :: View topic - Steps for Permanently limit Bandwidth of a PC using DD-WRT ?) to setup the limits. You can start a new thread in those forums if you want someone to walk you thru the steps.

Or you can just buy a router/access point that has a bandwidth limiting feature for each SSID that it broadcasts.

Read other 2 answers
RELEVANCY SCORE 51.6

I am wondering how I can use the above app on my i phone, but also in my home to make sure my wifi is operating correctly? I also would like to know if there might be a user-friendly version of how-to with this so-called app? Last night I ran a LAN scan on the app and found a couple IP addresses I didn't recognize. I appreciate everyone's help!
 

Read other answers
RELEVANCY SCORE 51.6

Ethereal: A Network Protocol Analyzer

Above is a link to ethereal. It is an excellent tool to analyze the packets sent and received by your machine. It is very interesting to look at and extremely helpful to diagnosis of problems in general.

There is a slight learning curve for how to use it well. But if you are of the type that would be interested in this kind of thing, I trust you are also of the type that can use it well.

For instance, you can see all the traffic on your local lan and what your computers are saying to each other. You can see how your router calls out to your machines to ensure they are still on the network. Lots of other cool things.

You can see when you start up certain software that they are trying to "call home" which many people find they do not like at all.

Play around with it some and you may be glad you have a new tool at your disposal. You could use it to capture all packets sent and received, for many different purposes, from any specific adapter. Perhaps you want to see what your computers are doing while you away or while another is using? Alright, that's a little shady though, heh heh.

Enjoy!

A:Network analyzer and why you may want

The Product Formerly Known As Ethereal is now called "Wireshark".

Wireshark :: Go deep.

Read other 5 answers
RELEVANCY SCORE 51.6

My ISP sent me an email saying someone using my IP address has been involved in copyright infringing activity. I know who it is - I need to be able to monitor their Internet usage in order to lock down access to the sites they're getting to in these activities, and possibly even limiting the amount of bandwidth available to them or the PC they use. I've not seen a product that will allow for capturing and logging IP addresses access on individual PCs, an app that loads automatically and monitor/log in the background. The account in question is not an admin account. I don't have a gateway PC so this monitoring/logging app/software would have to reside on the PC.

Read other answers
RELEVANCY SCORE 51.6

Hi,

I have a 2008 R2 Server Running 2 Websites, 1 Lan card with 2 Different IP. I need to Monitor each IP to find out if one is creating a bottle neck for the other.

E.g.
Web1: mywebsite.com
IP1: 192.168.1.100

Web2: yourwebsite.com
IP2: 192.168.1.101
I need to monitor 192.168.1.101 & 192.168.1.100 so i can find out if one is using more bandwidth than the other.
 

A:Need a Traffic Monitor

Read other 6 answers
RELEVANCY SCORE 51.6

Hi,
I have a D-link 614+ router and am using Windows XP

Is there a way to monitor internet traffic for individual computers on the LAN either with the router or third party software? I can get a total for the whole LAN but I want to know who's using what!
 

A:Traffic Monitor

If this router won't do it, is there one that does?
 

Read other 1 answers
RELEVANCY SCORE 51.6

plz anybdy tell me that i want inspect my network that who is chatting ,who is downloading movies,what are the site users are visitng, p2p file share etc etc

i want keep watching all these activities and monitor some time i want to block particular application like p2p, chating etcetc

is there any s/w that can help me

plz reply asap
 

A:traffic monitor

what kind of router do you have?

how big is your network?
 

Read other 1 answers
RELEVANCY SCORE 50.8

How can I Monitor Router Traffic? Not just one computer, but all connected to the router.

A:Monitor Router Traffic?

This thread has some tips about it: monitoring network trafic.

Additionally, I think the easiest way to do it as was said in there would be if you have a router that has this capability built-in or at least is extensible to allow it. What is the model and brand of the router with the traffic you want to monitor?

Read other 3 answers
RELEVANCY SCORE 50.8

On my PC I have a program whose purpose is to send a command/instructions over the network to another computer on the lan. Software on that computer receives that command and executes accordingly. I would like to know the exact syntax of that command. I can't seem to understand what program I would use that could show me this command. Please advise.

If more feasible, I could monitor/sniff the receiving computer to see what commands/syntax is being received.

Thanks

A:How do I sniff/monitor lan traffic?

You could use a linux distro like Knoppix or backtrack.

Read other 3 answers
RELEVANCY SCORE 50.8

I am having trouble with extreme lagging in an online game.

Normally my internet connection is rock steady, i happily download files at 350kbs. However playing this game i get very bad lag - no other player do. How can i try and identify what the problem is?
 

Read other answers
RELEVANCY SCORE 50.8

Hi there,

I am looking for a way to monitor BITS Traffic. Is there any way or I can write any c# application to achieve my goal ?

Technology

Read other answers
RELEVANCY SCORE 50.8

I'm looking for a cheap way to monitor web traffic for users. The "boss" saw the DNS cashed lookups, and noticed all the porn sites being cashed. I need to link that a record to the computer that requesed it.

Any ideas?

[email protected]
 

A:Monitor user web traffic

TcpView is a nice (free) program from http://www.sysinternals.com/. However it doesn't keep a log. You can manually save the current output window.
 

Read other 1 answers
RELEVANCY SCORE 50.8

Hi guys,

Does someone know of a program or application that allows you to monitor what traffic is going in/out the lan connection to adsl modem. I would like to be able to see what files are being transmitted or received, where they are going or where they are being read from on the HD. I know there are programs that allow you to see how many bytes are being moved but I would like to know the names and locations of the files.

Thanks....
Louie....
 

A:Monitor traffic going in/out lan connection.

Traffic on the wire and the (possibly) related files on the hard drive have absolutely nothing to do with each other. If that is what you wanted to do, you would have to monitor which processes on a target machine are opening sockets, and of those that are, what files they are opening. I don't know of anything offhand that does that.

The traffic is easy enough to monitor with Wireshark or tcpdump for those who like the nitty gritty.
 

Read other 1 answers
RELEVANCY SCORE 50.8

plz anybdy tell me that i want inspect my network that who is chatting ,who is downloading movies,what are the site users are visitng, p2p file share etc etc

i want keep watching all these activities and monitor some time i want to block particular application like p2p, chating etcetc

is there any s/w that can help me

plz reply asap
 

A:real traffic monitor

Duplicate:
http://forums.techguy.org/networking/539563-traffic-monitor.html
 

Read other 1 answers
RELEVANCY SCORE 50.8

Not sure where I would post this. I go with this section and hope it's fine with you guys.

I am suspecting there is activity in my PC that hogs too much bandwidth resource from me. While playing games online my ping is extremely unstable. It didn't use to be.

Is there a way for me to see what files is using internet and how much they waste?

A:How can I monitor my internet traffic?

Well you can always download a network monitor...I suggest Nework Monitor v3.1 because it is straight from Microsoft, though there are many other free network monitors available over the internet.

Alternatively, you can use the netstat command to see all open connections. The downside to netstat is it will not tell you which connection is using the majority of the bandwidth.

One other question, are you using a wireless router? or could there be another PC on your network?

Read other 15 answers
RELEVANCY SCORE 50.4

Any recommendation for a Network Bandwidth analyzer? I would like to find out who's using up all of the bandwidth in our network, from internet radio to gaming.
 

A:Network Bandwidth Analyzer or Logging

You can download wireshark. It is probably the best freeware network traffic analyzer.I

t will analyze all network traffic and the captured data can be filtered. It is fairly straightforward. Once you have got the hang, take a look around the options and you can graph captured traffic by endpoint IP, mac or by protocol, as well as top talkers. There are loads of tutorials freely available.

Wireshark has an impact on the network performance so it is best to choose a time when everyone is online and grab short captures - <5 minutes at intervals over a peak traffic hour. Don't leave it running indefinitely as the capture files get huge.
 

Read other 2 answers
RELEVANCY SCORE 50.4

Hello everyone, on behalf of my company I am looking for a small-medium business level upgraded solution for security and management. This is both to increase our service response time and verify we are fully regulation compliant, especially through HIPAA as we have a lot of medical clients. I am on a reasonably tight budget, and have surpassed some of the larger enterprise solutions that are highly rated such as SolarWinds and WhatsUp Gold. No matter how we swing it, $4000-$5000 dollars each for a Log Manager and a Network Monitor is just too much to justify charging for each of our small business clients separately.

Some of the aspects that we need to have covered are:
1... Immediate alert on power failures or shutdown devices
2... Alert when there have been a set number of unsuccessful logon attempts to a server in a set time period.
3... When a system is running low on disk space
4... When there is a CPU spike in processing power.
5... When there is a bandwidth spike, and what user/machine is sucking all the bandwidth up.
6... Firewall monitoring for what ports and ips run through it and say if someone tries to access a port and it gets blocked, instant notification.
7... When a machine has not been logged off the server after a set period of inactivity

Through my own research it seems as though the only options are to get a log management solution (HIPAA compliance and documentation...) and then a separate tool for network monitoring and usage stats. For example, I hav... Read more

A:What HIPAA compliant security suite? (Log manager, firewall analyzer and/or monitor)?

HIPAA compliance is a serious matter and although some vendors claim their products to be, we have no way of knowing if they actually do meet the government requirements so it would be impossible for us to advise on this issue. Therefore, I think it's best that you continue to do your own research on this and then check with the governing body that oversees HIPAA to make sure that you are meeting their requirements for compliance in order to avoid any confusion.
 

Read other 1 answers
RELEVANCY SCORE 50.4

Hi
I searched for long time about a software that monitors your internet connectivity and display in the taskbar as two arrows, one up and one down... whenever your connection downloads the down (Download) arrow highlights and when you upload something the up arrow (Upload) highlights...
im using windows 7 thats why it doesn't show any connection activity like in windows xp...
im not asking for a software that requires to buy, im simply asking for highlighting function only!
Please help me as I forgot the name of the software.
 

Read other answers
RELEVANCY SCORE 50

Hi,

I followed instructions in the 'Before posting HJT logfile' and am ready to go. Tried unsuccessfully by myself, now I'm asking for help. I was close to just reformatting since I figured I was due anyway....but would rather rid myself of this nasty little trojan who keeps coming back.

Thanks in advance....


P.S. This logfile is from HJT Analyzer


Log was analyzed using KRC HijackThis Analyzer - Updated on 8/4/05
Get updates at http://www.greyknight17.com/download.htm#programs

***Security Programs Detected***

c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\mcafee.com\vso\mcvsescn.exe
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe"
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

... Read more

A:HJT Analyzer log, have ABI Network/Nail.exe MALWARE. any help appreciated

Hi and Welcome to TSF

Before attacking an adware/spyware problem with hijackthis make sure you have already run the following tools. Download and update the databases on each program before running. Ad-Aware? SE Personal Edition
Spybot Search & Destroy
CWShredder

Also make sure you are using the the latest version (1.99.1) of HijackThis and it's installed in it's own folder on the root drive. (C:\HJT)

Go to My Computer->Tools->Folder Options->View tab and make sure that Show hidden files and folders is enabled. Also make sure that the System Files and Folders are showing/visible.
Please make sure system restore is enabled by right clicking on My Computer and go to Properties->System Restore and check the box for Turn OFF System Restore and make sure it?s NOT checked. We want system restore ON and monitoring your current hard drive. Once your clean we will turn this off and then back on to remove the infection from the restore folder and create a clean restore point.

Download and install CleanUp! but do not run it yet.

*NOTE* Cleanup deletes EVERYTHING out of temp/temporary folders and does not make backups.

Download, install, and update Ewido Security SuiteInstall ewido security suite
Launch ewido, there should be a big E icon on your desktop, double-click it.
The program will prompt you to update click the OK button
The program will now go to the main screen
You will need to update ewido to the latest definition files.On the left hand s... Read more

Read other 11 answers
RELEVANCY SCORE 50

Message Analyzer seems to have no print/export as CSV/TSV. 
Log parser 2.2 doesn't seem to understand .matp formats. 2.2 seems to be the latest version.
logparser -i:netmon "SELECT * INTO test.csv from test.matp
says "not recognized as a valid NetMon capture file"

Are there other tools? I'm surprised this is not a common request. 

Message Analyzer can export as .cap files, but these particular traces either export badly or the traffic is something that wireshark doesn't handle. MessageAnalyzer shows it as fairly standard TCP traffic, albeit to/from IPV4-loopback, which is the correct
"NIC".

Read other answers
RELEVANCY SCORE 49.6

What's better for that purpose? ...http://www.netlimiter.com/http://www.seriousbit.com/netbalancer/Anything better?Thanks in advance,rhinoP.S. I just need to place download/upload speed limits for two computers; plus, traffic usage in MBs/GBs would be useful too.Edit: Moved topic from XP to the more appropriate forum. ~ Animal

A:Controlling internet usage / traffic monitor

Bump.

Read other 1 answers
RELEVANCY SCORE 49.2

Our network keeps experiencing intermittent outages throughout the office. When we go to particular websites, it times out when it used pull up the browser successfully. Other times, Office365 downloads are restricted to the point where I have to switch to our public network to download the Office365 software suite. It's not restricted to our internal LAN. However, this issue also pops up with the internal WLAN as well. From what I can tell, this issue started around the time our MSP installed their antivirus and anti-malware on all the machines including the servers. They also turned on the content filtering to restrict malware. Another thing is our office has maxed out on the voltage, I'm not sure if that's related to this issue. I thought I'd mention it.

Does anyone know of any network analyzing tools that are simple to use and will help me pinpoint the cause of the slow performance without an extended learning curve?

So far I'm looking at:

wireshark
total network monitor
prtg network monitor
caspa free
LAN sweeper
manage engine netflow analyze
the dude
solarwinds netflow traffic analyzer

Thanks in advance
 

A:Network Analyzer to spot Bottlenecks and Internet Outages

I've used Wireshark before and possibly Solarwinds. I haven't used any of the others, so I can't comment on them.

Based on what I've seen from the programs I've used, even with the simplest network analyzer, you are still going to need to have a good understanding of networking. Otherwise, the tool won't be able to help you. This will require you to have the knowledge to analyze these packets yourself. The software will capture them, but it's still just a tool to aid you.

It can't hurt to try a free program (such as Wireshark), create a capture of when the network is running slow, and then analyze the capture yourself. If you can't find anything that would suggest an issue, you can always upload the capture to this site or any other site and have other people help you analyze it.
 

Read other 2 answers
RELEVANCY SCORE 49.2

Can anyone walk me through trying to fix my networking issue? Is that allowed in this section?

If so, I've got a computer connected to our network, and it's able to access all the other computers on the network, but trying to access it from the server and I get nothing. Even trying to ping it from the command prompt it times out. However, pinging the server from the computer it kicks back immediately. It's not a firewall issue because I've turned it off and still cannot connect to it from the server. I recently had to remove some scareware from this computer, and that's when the networking issue started.

Any ideas?
 

A:One-way traffic on a network

*ping*

Anyone?

ICMP enabled, DHCP enabled, firewall off. Nothing doing. Workstation sees everything on the network and can access shared folders and ping all other workstations. But the rest of the workstations and the server "see" the troubled workstation, but cannot contact it.
 

Read other 18 answers
RELEVANCY SCORE 49.2

I use NetMeter to monitor in and outbound traffic to my computer, and starting a coupple of months ago, every once and a while, a series of a thousand or so 2.25 to 3Mb/s upload spikes start, amounting for almost 1Gb per day!!!!!

the spikes occur every 20 seconds, like clockwork.

i'll post a screenshot from netmeter next time it happens.

the odd thing is, no antivirus i've tried has found anything! same goes for antispyware!

whenever i start deleteing processes from the process list, it stops, then comes back after a coupple of minutes! also, if i am running on wifi, plug in my network cable, wait for it to connect, and disable wifi, the pulses subside for a bit, then come back!

i'm concerned because of the incredible ammount of data involved, and, it seems to have been increasing iver the past month.

Luckily, all the important data on my machine is encrypted, but, if the spikes are a data transfer, encryption won't mean $#!7.

any ideas?
screenshot comming soon.
 

A:Odd network traffic

Read other 8 answers