Windows 10 Identifying which application is generating ICMP Traffic

A

amane

New Member
Hello All,

We are observing lots of ICMP traffic from a windows system. However, we are not able to identify which application is generating this traffic.

We tried to check by using "netstat -abn" however, it shows only TCP and UDP traffic, but not ICMP.

Is there any feature or utility in windows that can tell us which application is causing this?

Thanks in advance.
Ameer Mane

Sent from my Moto G (4) using Tapatalk
 
There's nothing I'm aware of that will give you this kind of information. I experimented with netsh trace and firewall audit logging. I think at best you will have to run procmon and look for calls to ping.exe and do a little research to ID dot net api calls to programmatically send out ICMP packets.
 
Neemobeer said:
There's nothing I'm aware of that will give you this kind of information. I experimented with netsh trace and firewall audit logging. I think at best you will have to run procmon and look for calls to ping.exe and do a little research to ID dot net api calls to programmatically send out ICMP packets.
Click to expand...
Hello Neemobeer,

Thanks for update. I will look for procmon as I have not explored it yet. I will try it and will let you know.

Regards,
Ameer Mane

Sent from my Moto G (4) using Tapatalk
 
You must log in or register to reply here.

Similar threads

Mike
  • Article
Windows 11 vs Windows 10: A Detailed Comparison for Beginner to Advanced Users
Replies
0
Views
4K
Mike
Mike
X
Windows 10 How to identify which process accesses the optical drive?
Replies
0
Views
739
xio
X
News
Announcing Windows 11 Insider Preview Build 22621.1037 and 22623.1037
Replies
0
Views
2K
News
News
News
Announcing Windows 11 Insider Preview Build 22621.1020 and 22623.1020
Replies
0
Views
2K
News
News
News
Announcing Windows 11 Insider Preview Build 22621.1028 and 22623.1028
Replies
0
Views
2K
News
News
Back
Top