network traffic, how to ID what casued it Options

[Wonnov Menny]

In network monitor, is there any way to tell which program caused the network traffic?

Eg: after starting this PC certain inbound/outbound traffic is present, such as:-

8.12.199.126 - 46.7K Rcvd + 4.1K sent - don't know?
65.55.200.189 - 16K rcvd + 114.2 Sent - possibly Microsoft update check?
239.255.255.250 - 1.7K Sent - don't know?
IGMP.MCAST.NET 224.0.0.22 - 0 bytes Rcvd + 108 bytes sent - don't know?

I would like the ability to right click on an entry in network traffic, and have KIS tell me which program/application caused the traffic. I see this is not (yet) possible, but is there some other way I can tell exactly what caused the entries in the network traffic tab?

Also, why does KIS not tell me who some IP addresses belong to, like DNSstuff does?... to have this information/facility right from within KIS would be good.

8.12.199.126
------------
OrgName: Level 3 Communications, Inc.
OrgID: LVLT
Address: 1025 Eldorado Blvd.
City: Broomfield
StateProv: CO
PostalCode: 80021
Country: US

NetRange: 8.0.0.0 - 8.255.255.255
CIDR: 8.0.0.0/8
NetName: LVLT-ORG-8-8
NetHandle: NET-8-0-0-0-1
Parent:
NetType: Direct Allocation
NameServer: NS1.LEVEL3.NET
NameServer: NS2.LEVEL3.NET
Comment:
RegDate:
Updated: 2004-06-04

OrgAbuseHandle: APL8-ARIN
OrgAbuseName: Abuse POC LVLT
OrgAbusePhone: +1-877-453-8353
OrgAbuseEmail: *****@level3.com

OrgTechHandle: ARINC4-ARIN
OrgTechName: ARIN Contact
OrgTechPhone: +1-800-436-8489
OrgTechEmail: ************@genuity.com

OrgTechHandle: TPL1-ARIN
OrgTechName: Tech POC LVLT
OrgTechPhone: +1-877-453-8353
OrgTechEmail: ************@level3.com
--------------------------------------------------------------

65.55.200.189
-------------
OrgName: Microsoft Corp
OrgID: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US

NetRange: 65.52.0.0 - 65.55.255.255
CIDR: 65.52.0.0/14
NetName: MICROSOFT-1BLK
NetHandle: NET-65-52-0-0-1
Parent: NET-65-0-0-0-0
NetType: Direct Assignment
NameServer: NS1.MSFT.NET
NameServer: NS5.MSFT.NET
NameServer: NS2.MSFT.NET
NameServer: NS3.MSFT.NET
NameServer: NS4.MSFT.NET
Comment:
RegDate: 2001-02-14
Updated: 2004-12-09

RTechHandle: ZM23-ARIN
RTechName: Microsoft Corporation
RTechPhone: +1-425-882-8080
RTechEmail: ***@microsoft.com

OrgAbuseHandle: ABUSE231-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: *****@microsoft.com

OrgAbuseHandle: HOTMA-ARIN
OrgAbuseName: Hotmail Abuse
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: *****@hotmail.com

OrgAbuseHandle: MSNAB-ARIN
OrgAbuseName: MSN ABUSE
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: *****@msn.com

OrgNOCHandle: ZM23-ARIN
OrgNOCName: Microsoft Corporation
OrgNOCPhone: +1-425-882-8080
OrgNOCEmail: ***@microsoft.com

OrgTechHandle: MSFTP-ARIN
OrgTechName: MSFT-POC
OrgTechPhone: +1-425-882-8080
OrgTechEmail: ******@microsoft.com
--------------------------------------------------------------

239.255.255.250
---------------
OrgName: Internet Assigned Numbers Authority
OrgID: IANA
Address: 4676 Admiralty Way, Suite 330
City: Marina del Rey
StateProv: CA
PostalCode: 90292-6695
Country: US

NetRange: 224.0.0.0 - 239.255.255.255
CIDR: 224.0.0.0/4
NetName: MCAST-NET
NetHandle: NET-224-0-0-0-1
Parent:
NetType: IANA Special Use
NameServer: FLAG.EP.NET
NameServer: STRUL.STUPI.SE
NameServer: NS.ISI.EDU
NameServer: NIC.NEAR.NET
Comment: This block is reserved for special purposes.
Comment: Please see RFC 3171 for additional information.
Comment:
RegDate: 1991-05-22
Updated: 2002-09-16

OrgAbuseHandle: IANA-IP-ARIN
OrgAbuseName: Internet Corporation for Assigned Names and Number
OrgAbusePhone: +1-310-301-5820
OrgAbuseEmail: *****@iana.org

OrgTechHandle: IANA-IP-ARIN
OrgTechName: Internet Corporation for Assigned Names and Number
OrgTechPhone: +1-310-301-5820
OrgTechEmail: *****@iana.org
--------------------------------------------------------------

IGMP.MCAST.NET 224.0.0.22
--------------------------
OrgName: Internet Assigned Numbers Authority
OrgID: IANA
Address: 4676 Admiralty Way, Suite 330
City: Marina del Rey
StateProv: CA
PostalCode: 90292-6695
Country: US

NetRange: 224.0.0.0 - 239.255.255.255
CIDR: 224.0.0.0/4
NetName: MCAST-NET
NetHandle: NET-224-0-0-0-1
Parent:
NetType: IANA Special Use
NameServer: FLAG.EP.NET
NameServer: STRUL.STUPI.SE
NameServer: NS.ISI.EDU
NameServer: NIC.NEAR.NET
Comment: This block is reserved for special purposes.
Comment: Please see RFC 3171 for additional information.
Comment:
RegDate: 1991-05-22
Updated: 2002-09-16

OrgAbuseHandle: IANA-IP-ARIN
OrgAbuseName: Internet Corporation for Assigned Names and Number
OrgAbusePhone: +1-310-301-5820
OrgAbuseEmail: *****@iana.org

OrgTechHandle: IANA-IP-ARIN
OrgTechName: Internet Corporation for Assigned Names and Number
OrgTechPhone: +1-310-301-5820
OrgTechEmail: *****@iana.org
--------------------------------------------------------------

[darcorn]

Sometimes it's impossible for KIS to resolve a DNS and that's why it does not tell you who the IP belongs to

[Whizard]

224.0.0.0 is a multi-cast reserved for communication with a group of computers on a local network.

[Wonnov Menny]

Sometimes it's impossible for KIS to resolve a DNS and that's why it does not tell you who the IP belongs to
[right][snapback]420720[/snapback][/right]

Why is it impossible for KIS to resolve certain DNS? How come sites such as dnsstuff.com can give this information? Does KIS use a different method for looking up the details?

[Wonnov Menny]

224.0.0.0 is a multi-cast reserved for communication with a group of computers on a local network.
[right][snapback]420765[/snapback][/right]

Thanks, this must be connected to my wireless network.

After a while of use, the network traffic report starts to get filled-up (to be expected), but I still don't know what programs/applications causes the traffic. Anyone know how to identify which progs/apps actually cause this traffic? It would be interesting to know.

[Overlock]

Hello,
I have same problem, see what I have:

http://img357.imageshack.us/my.php?image=firewaluc4.jpg

http://img253.imageshack.us/my.php?image=firewal1vh0.jpg

http://img55.imageshack.us/my.php?image=firewal2tn7.jpg

1 conection and im on in site.... more informacion for IGMP.MCAST.NET :



-------------------------------------------------------------------------------------------------------------------------------------------
Address of Hop Name of Hop Location
10.11.255.254 (unnamed) (Private)
- (unnamed)
224.0.0.22 IGMP.MCAST.NET America



Network Owner Information Domain Owner Information

OrgName: Internet Assigned Numbers Authority
OrgID: IANA
Address: 4676 Admiralty Way, Suite 330
City: Marina del Rey
StateProv: CA
PostalCode: 90292-6695
Country: US

NetRange: 224.0.0.0 - 239.255.255.255
CIDR: 224.0.0.0/4
NetName: MCAST-NET
NetHandle: NET-224-0-0-0-1
Parent:
NetType: IANA Special Use
NameServer: FLAG.EP.NET
NameServer: STRUL.STUPI.SE
NameServer: NS.ISI.EDU
NameServer: NIC.NEAR.NET
Comment: This block is reserved for special purposes.
Comment: Please see RFC 3171 for additional information.
Comment:
RegDate: 1991-05-22
Updated: 2002-09-16

OrgAbuseHandle: IANA-IP-ARIN
OrgAbuseName: Internet Corporation for Assigned Names and Number
OrgAbusePhone: +1-310-301-5820
OrgAbuseEmail: abuse@iana.org

OrgTechHandle: IANA-IP-ARIN
OrgTechName: Internet Corporation for Assigned Names and Number
OrgTechPhone: +1-310-301-5820
OrgTechEmail: abuse@iana.org

# ARIN WHOIS database, last updated 2008-10-26 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.


There is no SMTP server running on this system (the port is closed).
There is no HTTP server running on this system (the port is closed).
There is no HTTPS server running on this system (the port is closed).
There is no FTP server running on this system (the port is closed).

Guys im have bad englesh and im iniciant in iternet sorry for incoveniences and erros!

You have onesugestion forme plx replay or pm msg me ok Tancks a lot!

[Whizard]

Thats normal