i recived this reply from Kevin, i think he replied from his gmail. "You can use the Linux command line on the android device and use netstat, or check the devices network usage screen in ice cream sandwich to see which apps use the most data.
Unfortunately using "netstat -ntp" doesn't display PIDs, as non-root apps cannot poll from /proc. So unless the device is rooted, using netstat is kinda useless. There might an app on the app store to see realtime networking data, but will most likely need root. You can block the IPs/ports in the firewall and see which app on the device notices and complains about being unable to connect. You may be-able to use something like WireShark/Microsoft Network Monitor to view the raw packets to determine the type of data being relayed. Maybe other users on this list have other ideas. Best regards, Kevin Veroneau" On Thursday, July 19, 2012 11:42:36 AM UTC+3, Shoieb Arshad wrote: > > Hello > i am working as network admin in a company. yesterday when i was looking > in the firewall logs, i found out that some of the andorid phones on the > network are > trying to connect different IP's of a 210.X.X.X subnet on 3-4 different > ports. and they were produced huge number of requests it was around > 600000-700000 requests > for each android device. > i then invited one of the staff member, whose phone was producing this > huge traffic, he sure have a lot of applications running but i was not able > to identify the > application which was causing this problem. i there any way i can identify > the application which is producing this traffic ? > thanks > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To view this discussion on the web visit https://groups.google.com/d/msg/android-security-discuss/-/Nny7L11QAJAJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
