Today i encounter strange things in my home machine:
my network bandwidth is limited,and i see, network is very, very slow.
going to see "iptraf", and see there is about 600 kbit/s network activity from my workstation. close muy primary browser - seamonkey - and no changes.
netstat -la gives me:

ctive Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 *:time *:* LISTEN
tcp 0 0 *:auth *:* LISTEN
tcp 0 0 *:ssh *:* LISTEN
tcp 0 0 localhost:ipp *:* LISTEN
tcp 0 0 localhost:31416 *:* LISTEN
tcp 0 0 192.168.0.5:40661 chat-p01b-rdr1.bl:https ESTABLISHED
tcp 0 1 192.168.0.5:45034 hosted-by.leasewe:43075 SYN_SENT
tcp 0 121 192.168.0.5:36695 92.46.193.225:24692 ESTABLISHED
tcp 0 0 192.168.0.5:33982 5e0c553e.bb.sky.c:35823 ESTABLISHED
tcp 0 122 192.168.0.5:37494 85.64.37.170.dyna:56424 LAST_ACK
tcp 1 1 192.168.0.5:51439 ti-227-126-130.te:27400 LAST_ACK
tcp 0 1 192.168.0.5:34416 59.92.147.201:54056 SYN_SENT
tcp 0 3516 192.168.0.5:48908 02ddd3a5.bb.sky.c:33391 ESTABLISHED
tcp 1 1 192.168.0.5:50844 ti-227-126-130.te:27400 LAST_ACK
tcp 0 0 192.168.0.5:40928 bos-p005c-rdr1.bl:https ESTABLISHED
tcp 0 1 192.168.0.5:34557 178.126.107.175:59263 SYN_SENT
tcp 0 0 192.168.0.5:43747 dial-95-105-154-2:58362 ESTABLISHED
tcp 0 0 192.168.0.5:45283 bl8-197-27.dsl.te:15175 ESTABLISHED
tcp 0 1 192.168.0.5:40755 web.statseb.fr:http LAST_ACK
tcp 0 121 192.168.0.5:50784 37.151.87.80.mega:44541 ESTABLISHED
tcp 0 0 192.168.0.5:58083 52.76.206.49-ras.:10536 ESTABLISHED
tcp 0 0 192.168.0.5:33876 host-72-174-26-17:32022 TIME_WAIT
tcp 1 0 192.168.0.5:32914 web.statseb.fr:http CLOSE_WAIT
tcp 0 0 192.168.0.5:56262 cpe-67-49-77-114.:11092 ESTABLISHED
tcp 0 0 192.168.0.5:35963 node-n0i.pool-101:26617 ESTABLISHED
tcp 0 1 192.168.0.5:33052 en-nat-4.dv-com.n:48592 SYN_SENT
tcp 0 1099 192.168.0.5:60453 ppp005054007035.a:26760 LAST_ACK
tcp 0 1 192.168.0.5:53385 94-25-94-178.pool:55959 SYN_SENT
tcp 0 1 192.168.0.5:48663 bb-185-17-89-140.:39095 SYN_SENT
tcp 0 1 192.168.0.5:45748 triband-del-59.18:19459 SYN_SENT
tcp 0 0 192.168.0.5:49074 2.147.133.32:6881 ESTABLISHED
tcp 0 0 localhost:54943 localhost:31416 TIME_WAIT
tcp 0 0 192.168.0.5:53907 179-168.203-62.cu:43611 ESTABLISHED
tcp 0 329 192.168.0.5:34479 host-72-174-26-17:32022 ESTABLISHED
tcp 0 1 192.168.0.5:56113 67-60-72-164.cpe.:51413 SYN_SENT
tcp 0 1 192.168.0.5:41239 host-123.pool4.po:47097 SYN_SENT
tcp 0 1 192.168.0.5:34169 178.130.7.43:48661 SYN_SENT
tcp 0 2180 192.168.0.5:60572 ti0090a400-1038.b:55998 ESTABLISHED
tcp 0 1 192.168.0.5:45634 78.101.164.213:52508 SYN_SENT
tcp 572 126 192.168.0.5:46540 185.16.104.138:63693 ESTABLISHED
tcp 0 0 192.168.0.5:38749 115.252.193.233:43611 ESTABLISHED
tcp 0 34 192.168.0.5:56043 dsl.49.144.28.55.:30449 ESTABLISHED
tcp 0 150 192.168.0.5:36475 4.32.96.58.static:41312 ESTABLISHED
tcp 0 980 192.168.0.5:41744 49.29-128-109.ads:44822 ESTABLISHED
tcp 0 1 192.168.0.5:43738 176x213x126x212.d:19119 SYN_SENT
tcp 0 1 192.168.0.5:43851 dynamicip-176-215:51127 SYN_SENT
tcp 0 0 192.168.0.5:57145 192.168.0.1:ssh ESTABLISHED
tcp 0 0 192.168.0.5:45979 ABTS-KK-Dynamic-1:51413 ESTABLISHED
tcp 0 0 192.168.0.5:41596 1.186.10.82.dvois:51413 ESTABLISHED
tcp 0 1 192.168.0.5:33324 40.141.188.56:15111 SYN_SENT
tcp 0 3579 192.168.0.5:60096 46.159.65.206:49249 ESTABLISHED
tcp 0 0 192.168.0.5:39963 cpc3-bolt13-2-0-c:17807 ESTABLISHED
tcp 0 0 192.168.0.5:44700 CPE-124-190-20-24:40374 ESTABLISHED
tcp 0 0 192.168.0.5:43541 ppp046177046000.a:11328 ESTABLISHED
tcp 0 1 192.168.0.5:41931 ip210-95.telenet.:47374 SYN_SENT
tcp 0 8522 192.168.0.5:34838 93-77-67-238.dyna:18813 ESTABLISHED
tcp 0 122 192.168.0.5:58567 ip-188-0-192-23.p:45195 LAST_ACK
tcp 0 0 192.168.0.5:38369 CPE-120-145-88-15:41111 ESTABLISHED
tcp 0 1 192.168.0.5:39589 host.mrdv-6.mtsne:17771 SYN_SENT
tcp 0 0 192.168.0.5:49038 c-98-254-88-188.h:45213 ESTABLISHED
tcp 0 1 192.168.0.5:37251 ip-176-195-37-109:55763 SYN_SENT
tcp 0 1 192.168.0.5:43618 static.cmcti.vn:16825 SYN_SENT
tcp 0 1 192.168.0.5:40782 75-9-118-79.light:50728 SYN_SENT
tcp 0 1 192.168.0.5:36476 pppoe.178-65-186-:49676 SYN_SENT
tcp 0 1 192.168.0.5:46393 188-115-181-205.b:25241 SYN_SENT
tcp 0 121 192.168.0.5:59896 ip.178-70-82-5.av:45477 ESTABLISHED
tcp 0 0 192.168.0.5:38065 106-68-56-21.dyn.:59564 ESTABLISHED
tcp 0 0 192.168.0.5:47186 S0106602ad08f95b5:30054 ESTABLISHED
tcp 0 1 192.168.0.5:45592 nat-6.barn.sibset:25969 SYN_SENT
tcp 0 1 192.168.0.5:51248 dynamic-213-57-61:48503 SYN_SENT
tcp 0 11155 192.168.0.5:42451 194.150.255.147:40366 ESTABLISHED
tcp 0 1 192.168.0.5:45131 62.42.163.236.dyn:12905 SYN_SENT
tcp 0 0 192.168.0.5:37767 113.193.161.145:42043 ESTABLISHED
tcp 0 1 192.168.0.5:56973 188.123.231.29:26323 SYN_SENT
tcp 0 0 192.168.0.5:60687 105-184-10-25.nor:37828 ESTABLISHED
tcp 0 0 192.168.0.5:53763 d175-38-141-82.pe:60249 ESTABLISHED
tcp 0 0 192.168.0.5:45949 76-10-147-89.dsl.:36411 ESTABLISHED
tcp 0 0 192.168.0.5:32818 101.103.172.142:19337 ESTABLISHED
tcp 0 0 192.168.0.5:52663 95.72.77.196:6881 ESTABLISHED
tcp 1 0 192.168.0.5:40955 boincstats.com:http CLOSE_WAIT
tcp 0 121 192.168.0.5:49114 94.50.102.219:23751 ESTABLISHED
tcp 0 0 192.168.0.5:47945 CPE185933996974-C:19910 ESTABLISHED
tcp 0 157 192.168.0.5:34355 02dbda4e.bb.sky.c:20155 ESTABLISHED
tcp 0 1 192.168.0.5:44605 v-2613-unlim.vpn.:14888 SYN_SENT
tcp 0 1 192.168.0.5:41240 X104.bbn07-076.li:59163 SYN_SENT
tcp 0 0 192.168.0.5:47755 a88-114-141-195.e:50759 ESTABLISHED
tcp 0 0 192.168.0.5:60330 77.125.82.163:54752 ESTABLISHED
tcp 1 0 192.168.0.5:46852 einstein.phys.uwm.:http CLOSE_WAIT
tcp 0 1 192.168.0.5:56809 152.net-58-pppoe-:55904 SYN_SENT
tcp 0 0 192.168.0.5:59525 94.59.90.113:19380 ESTABLISHED
tcp 0 1 192.168.0.5:60538 179.61.114.188.do:35691 SYN_SENT
tcp 0 1 192.168.0.5:52107 h154.4.29.71.dyna:12424 SYN_SENT
tcp 0 0 192.168.0.5:42619 127.66.65.188.pntl:6881 ESTABLISHED
tcp 0 1 192.168.0.5:46771 244.red-80-28-53.:30984 SYN_SENT
tcp 0 1 192.168.0.5:48888 mm-77-73-120-178.:45658 SYN_SENT
tcp 0 1 192.168.0.5:39308 178-137-74-156-sk:44278 SYN_SENT
tcp 1 1 192.168.0.5:41502 web.statseb.fr:http LAST_ACK
tcp 0 1 192.168.0.5:53709 178.169.87.21:54221 SYN_SENT
tcp 0 1 192.168.0.5:54330 nat-178-215-81-5.:64052 SYN_SENT
tcp 0 0 192.168.0.5:33556 122-62-182-40.jet:61967 ESTABLISHED
tcp 0 1 192.168.0.5:39025 146.164.150.178.t:26139 SYN_SENT
tcp 0 0 192.168.0.5:44505 turner107.lnk.tel:22499 ESTABLISHED
tcp 0 1 192.168.0.5:55672 188.233.218.102:29277 SYN_SENT
tcp 0 1 192.168.0.5:35980 c-50-170-211-164.:32681 SYN_SENT
tcp 0 1 192.168.0.5:46382 178.78.6.150:49095 SYN_SENT
tcp 0 0 192.168.0.5:41119 clients-192.203.4:51413 TIME_WAIT
tcp 0 2366 192.168.0.5:56666 59.92.37.38:12216 ESTABLISHED
tcp 0 0 192.168.0.5:49564 cpc21-mfld14-2-0-:52895 ESTABLISHED
tcp 0 1 192.168.0.5:49186 212.57.180.92:64618 SYN_SENT
tcp 0 1 192.168.0.5:41934 49.64.uzpak.uz:49039 SYN_SENT
tcp 0 0 192.168.0.5:44103 2.30.245.111:40071 ESTABLISHED
tcp 0 1 192.168.0.5:46224 X113.bbn07-197.li:50859 SYN_SENT
tcp 0 1 192.168.0.5:46830 nat-1.rs-link.ru:26401 SYN_SENT
tcp 0 1 192.168.0.5:46072 c-71-228-137-22.h:51413 SYN_SENT
tcp 0 0 192.168.0.5:32940 dsl.49.145.207.15:55345 ESTABLISHED
tcp 0 1 192.168.0.5:41828 client.yota.ru:54379 SYN_SENT
tcp 0 2686 192.168.0.5:34164 bl19-209-226.dsl.:55563 ESTABLISHED
tcp 0 0 192.168.0.5:56996 cpe-075-181-109-0:43340 ESTABLISHED
tcp 0 1 192.168.0.5:57148 hosted-by.kphserv:49200 SYN_SENT
tcp 0 1 192.168.0.5:35343 nat-178-215-105-5:35691 SYN_SENT
tcp 0 1 192.168.0.5:41828 client.yota.ru:54379 SYN_SENT
tcp 0 2686 192.168.0.5:34164 bl19-209-226.dsl.:55563 ESTABLISHED
tcp 0 0 192.168.0.5:56996 cpe-075-181-109-0:43340 ESTABLISHED
tcp 0 1 192.168.0.5:35343 nat-178-215-105-5:35691 SYN_SENT
tcp6 0 0 [::]:6881 [::]:* LISTEN
tcp6 0 0 [::]:ssh [::]:* LISTEN


what can i detect, which process opens that datastreams? ports too looks strange - in range of about 18 000 and up... possible i get something virus-like?
in a processes i not see anything strange...

Hi,

Just use more arguments for your command :

The command above will list all the opened TCP sockets and their respective applications that are using them.

3 members found this post helpful.

Thank you very much!
Looks like most of that sockets is for ktorrent, throught i set mah 50 kbps for torrent...

ok for that.
maybe anyone can tell me, possibility to see process along with traffic rate of that process via network - in utilities like a "iptraf" or so on, where is possible to see actual traffic rate?