I received some questions asking how I used TCPView to cross reference which processes are using which ports and or network addresses. This just makes it easier when cross referencing with Windows Task Manager which program is using which network port or ports. One of the options I always enable is to have network addresses resolved. You can set the update speeds for real time (every second anyways) or longer intervals. It has everything version 3 had but has a much cleaner interface with more push buttons for filtering of critical data. Windows Sysinternals – Windows Sysinternals | Microsoft Docs It’s a full point release with minor update over my current version and you can get it at:
While doing research I found out that there’s a version 4.1 available. I used version v3.x up until the day I wrote this article. I want to know with pinpoint accuracy everything network related going on with my primary desktop everyday computer and as mentioned above it gives me tremendous sense of security knowing I haven’t been hacked or programs are behaving oddly or suspiciously. The primary reason I use this utility/program is one of security. You can sort on all the various line detail fields and it makes for a powerful low level cross referencing tool when augmented with Windows process tools, and especially good when cross referencing with Windows Task Manager. TcpView also shows bytes incoming and outgoing with accumulated totals so you can see exactly how much data has moved in our out. Because it runs as privileged user it catches every connection incoming and outgoing and has a one for line oriented status with options to immediately kill process or get further details. It runs as a privilege user and comes from the very reliable Microsoft Sysinternals ‘labs’ so you won’t have to worry about ads or paying a subscription, it’s free. For me it gives me piece of mind so I know at all times and in real time exactly what and who is connected to my computer. TcpView is also a very simple program and does nothing but show the states of all your incoming and outgoing connections. Remote and local addresses and whether you want resolved addresses and what processes have the network ports open.
Shows connection states and status of TCP and UDP protocols including IPf4 and IPv6. Additionally it shows active and open network ports on the local machine and reports status on those as well as open ports in the LISTEN state. It shows the state one of, ESTABLISHED, CONNECTING, TIME_WAIT, CLOSE_WAIT.
TcpView is a very small program that displays the status of all network connected endpoints.
0 kommentar(er)
