[Help] How to figure out a program that accessing certain IP addresses

[bugless]

hi there :hi:

I wonder how to monitor a program so we can get their IP addresses to exclude it on windows hosts file and what's software that we need too...? :think:

Thank you :thumbsup:

[Chancer]

I believe if you use Peerblock you can see what IP addresses are being accessed. I don't think it tells you what program - but if you only have one running!

[nanoman]

there are many softwares to do the job

here is the real deal for me try it you wont regret it ​I use it Becuse It gives ip and full related urls of every process on system in real tem communication

To Me The Best Easy One To deal with IS net peeker Group Edition but unfortunately ihavent found any medicine

I Hope Some One please Make Fix For It If It Possible Cause It's Awesome

but since i use deep freez when ever i want use this soft I get 30 day fully functional Software :tooth: Boom Bada Boom :tehe:

Ver3.50 Group Edition when yuo install choose both console and agent on your computer so you can control and manage you system

then choose local host every thing you need there "capturing outgoing and incoming connection for each proccess and service"

http://www.net-peeker.com/Download/Net-Peeker.Group.3.50.1177.zip

or you can use Ver3.50 Personal Edition

if you want to run it only and monitor on your pc and don't want control other lan computers

http://www.net-peeker.com/Download/Net-Peeker.Personal.3.50.1177.zip

System Supported (for both console and agents):

Windows 2000 with Service Pack 4 or later

Windows XP with Service Pack 1 or later

Windows 2003

Windows Vista

Windows 7

Windows 2008

Windows 8

Windows 2012

Enjoy!!!!! :tooth:

Edited November 5, 2013 by nanoman

[SlimRock]

You Can use TCPView that will show you detailed listings of all TCP and UDP endpoints on your system, including the local and remote addresses and state of TCP connections.

Download Link: http://download.sysinternals.com/files/TCPView.zip

[rach]

Process Hacker 2, Network tab :)

TCPLogView from NirSoft

Edited November 5, 2013 by rach

[bugless]

thank you all & I have tried TCPView & TCPLogView (I prefer TCPLogView because it more simple) then I monitor advance system care & go online, it always access the following IP address 98.129.229.200 to check for it's registration key but when I added this IP address in windows hosts file, why asc still could connect to this IP & I still could ping it from cmd...? :blink:

[unknownasphyxiated]

thank you all & I have tried TCPView & TCPLogView (I prefer TCPLogView because it more simple) then I monitor advance system care & go online, it always access the following IP address 98.129.229.200 to check for it's registration key but when I added this IP address in windows hosts file, why asc still could connect to this IP & I still could ping it from cmd...? :blink:

i don't think you can hosts-block ip address

[nanoman]

thank you all & I have tried TCPView & TCPLogView (I prefer TCPLogView because it more simple) then I monitor advance system care & go online, it always access the following IP address 98.129.229.200 to check for it's registration key but when I added this IP address in windows hosts file, why asc still could connect to this IP & I still could ping it from cmd...? :blink:

If you are Sure That's Only And The Right Ip "I think there are more "After Monitoring you can make Outbound Firewall Rule with this or any other remote ips

or simply block every exe file of the app

in host files always is sufficient with domain names not Ips

and don't forget to flush dns cash to wipe out any DNS records previously stored

Edited November 7, 2013 by nanoman

[bugless]

If you are Sure That's Only And The Right Ip "I think there are more "After Monitoring you can make Outbound Firewall Rule with this or any other remote ips

or simply block every exe file of the app

in host files always is sufficient with domain names not Ips

and don't forget to flush dns cash to wipe out any DNS records previously stored

but is it possible to block programs without a firewall, so we just use hosts file? and what's the difference between using 127.0.0.1 and 0.0.0.0 in hosts file btw? (I'll tried flush DNS later, thx)

Edited November 7, 2013 by bugless

[nanoman]

but is it possible to block programs without a firewall, so we just use hosts file? and what's the difference between using 127.0.0.1 and 0.0.0.0 in hosts file btw? (I'll tried flush DNS later, thx)

127.0.0.1=Localhost = your pc

Fire wall Have more advanced Features and More Control For Incoming And Out going Connection

in case of hostfile no difference between those ips they means nothing on the internet will redirect the ip you want to block to same machine here your machine so preventing it form connecting to his destination see here for More Details

Edited November 7, 2013 by nanoman

[bugless]

127.0.0.1=Localhost = your pc

Fire wall Have more advanced Features and More Control For Incoming And Out going Connection

in case of hostfile no difference between those ips they means nothing on the internet will redirect the ip you want to block to same machine here your machine so preventing it form connecting to his destination see here for More Details

I see... and I just realize -as you said before- "...with domain names not IPs..." -> the point is we CAN block program with its domain name, but we CAN'T if we use its IP addresses, is it right? (and talk back about firewall, maybe I'll start using comodo firewall again but I'll try windows firewall control because it seems so much simple, although it's just "firewall GUI")

thanks mate :)

Edited November 10, 2013 by bugless

[nanoman]

I see... and I just realize -as you said before- "...with domain names not IPs..." -> the point is we CAN block program with its domain name, but we CAN'T if we use its IP addresses, is it right? (and talk back about firewall, maybe I'll start using comodo firewall again but I'll try windows firewall control because it seems so much simple, although it's just "firewall GUI")

thanks mate :)

Just found detailed instruction to register a& keep advanced system care activation status

1) Install the app 2) Block host with 127.0.0.1 www.asc55.iobit.com 3) Block the ASC.exe with firewall block incoming connection >>>>>> leave outgoing connection alone or the app wont let you use the tools due to internet error 4) Block the PerformUpdate.exe incoming and outgoing connections 5) Disconnect from internet 6) Use keygen or serial and activate product 7) Re-enable internet 8) Reboot computer 9) Open and use the program