Solved Constant weird IP traffic


R

rzn6jw

Well-known member
Member
Local time
12:23 AM
Posts
253
OS
Win 11Pro v24H2 build 26100.3775
Since the last recent update I have had constant IP upload/download traffic to MAC addresses that I cannot determine where they are (see attached). This is constant traffic all day and I wish I knew what was being transmitted.

Has anyone had this on their PC?
 
Windows Build/Version
WIN 11 Pro, v22H2, build 22621.2428

Attachments

  • IP traffic.jpg
    IP traffic.jpg
    301.4 KB · Views: 1

My Computer

System One

  • OS
    Win 11Pro v24H2 build 26100.3775
    Computer type
    PC/Desktop
    Manufacturer/Model
    DIY
    CPU
    AMD Ryzen 7 9800X3D
    Motherboard
    Gigabyte X670 Aorus Elite AX
    Memory
    64G DDR5 6000
    Graphics Card(s)
    ASUS RTX 4070 Ti Super OC
    Sound Card
    Soundblaster Z SE
    Monitor(s) Displays
    LG 24"
    Screen Resolution
    3480 x 2160
    Hard Drives
    C: drive SOLIDIGM P44 PRO 2TB SSD
    D: drive SOLIDIGM P44 PRO 2TB SSD
    H: drive Samsung 970 EVO Plus 2TB SSD
    PSU
    Corsair RM850X
    Case
    GameMax
    Cooling
    NZXT Kraken Elite 360 RGB 2024
    Keyboard
    Corsair
    Mouse
    Razor
    Internet Speed
    Gigabyte
    Browser
    Firefox
    Antivirus
    Norton 360
IPv6 addresses that start with FE80 or really just FE are link local addresses. That means they are not internet routable and can only communicate with devices local to the lan segment.
Port 5357 is used by WSD About Web Services on Devices - Win32 apps

This traffic is likely benign
 

My Computer

System One

  • OS
    Windows 11
Those are IPv6 addresses, not MAC addresses.

According to this, it could be legitimate, but it could also be malicious:

Port 5357 (tcp/udp)

Port 5357 tcp/udp information, assignments, application use and known security risks.
www.speedguide.net www.speedguide.net
 

My Computers

System One System Two

  • OS
    Windows 11 23H2 Current build
    Computer type
    PC/Desktop
    Manufacturer/Model
    HomeBrew
    CPU
    AMD Ryzen 9 3950X
    Motherboard
    MSI MEG X570 GODLIKE
    Memory
    4 * 32 GB - Corsair Vengeance 3600 MHz
    Graphics Card(s)
    EVGA GeForce RTX 3080 Ti XC3 ULTRA GAMING (12G-P5-3955-KR)
    Sound Card
    Realtek® ALC1220 Codec
    Monitor(s) Displays
    2x Eve Spectrum ES07D03 4K Gaming Monitor (Matte) | Eve Spectrum ES07DC9 4K Gaming Monitor (Glossy)
    Screen Resolution
    3x 3840 x 2160
    Hard Drives
    3x Samsung 980 Pro NVMe PCIe 4 M.2 2 TB SSD (MZ-V8P2T0B/AM) } 3x Sabrent Rocket NVMe 4.0 1 TB SSD (USB)
    PSU
    PC Power & Cooling’s Silencer Series 1050 Watt, 80 Plus Platinum
    Case
    Fractal Design Define 7 XL Dark ATX Full Tower Case
    Cooling
    Arctic Liquid Freezer III 420 RGB + Air 3x 140mm case fans (pull front) + 1x 120 mm (push back) and 1 x 120 mm (pull bottom)
    Keyboard
    SteelSeries Apex Pro Wired Gaming Keyboard
    Mouse
    Logitech MX Master 3S | MX Master 3 for Business
    Internet Speed
    AT&T LightSpeed Gigabit Duplex Ftth
    Browser
    Nightly (default) + Firefox (stable), Chrome, Edge , Arc
    Antivirus
    Defender + MB 5 Beta
  • Operating System
    ChromeOS Flex Dev Channel (current)
    Computer type
    Laptop
    Manufacturer/Model
    Dell Latitude E5470
    CPU
    Intel(R) Core(TM) i5-6300U CPU @ 2.40GHz, 2501 Mhz, 2 Core(s), 4 Logical Processor(s)
    Motherboard
    Dell
    Memory
    16 GB
    Graphics card(s)
    Intel(R) HD Graphics 520
    Sound Card
    Intel(R) HD Graphics 520 + RealTek Audio
    Monitor(s) Displays
    Dell laptop display 15"
    Screen Resolution
    1920 * 1080
    Hard Drives
    Toshiba 128GB M.2 22300 drive
    INTEL Cherryville 520 Series SSDSC2CW180A 180 GB SATA III SSD
    PSU
    Dell
    Case
    Dell
    Cooling
    Dell
    Mouse
    Logitech MX Master 3S (shared w. Sys 1) | Dell TouchPad
    Keyboard
    Dell
    Internet Speed
    AT&T LightSpeed Gigabit Duplex Ftth
I have Network Discovery set to 'ON' for Private Networks and 'OFF' for Public Networks. My wife's Win 10 Pro PC is the only other PC on my network as I occasionally send files to her Public folder and she uses my printer for printing. For Public Networks, Discovery is set to 'OFF'.

I rummaged around the Ethernet settings and found that:

......:8d2f in the Local Address is my Ethernet connection.
.......fe70:62f is my HP Printer (see attached)

So I think my PC is communicating with my printer, although why and with such a constant communication stream I wouldn't know. At lease it's not going outside my network.

Thanks for putting me on the IPv6 track. Very much appreciated. I've also included a grab of my Network monitor showing the traffic.
 

Attachments

  • HP Printer MAC.jpg
    HP Printer MAC.jpg
    79.7 KB · Views: 1
  • Network traffic.jpg
    Network traffic.jpg
    26 KB · Views: 1

My Computer

System One

  • OS
    Win 11Pro v24H2 build 26100.3775
    Computer type
    PC/Desktop
    Manufacturer/Model
    DIY
    CPU
    AMD Ryzen 7 9800X3D
    Motherboard
    Gigabyte X670 Aorus Elite AX
    Memory
    64G DDR5 6000
    Graphics Card(s)
    ASUS RTX 4070 Ti Super OC
    Sound Card
    Soundblaster Z SE
    Monitor(s) Displays
    LG 24"
    Screen Resolution
    3480 x 2160
    Hard Drives
    C: drive SOLIDIGM P44 PRO 2TB SSD
    D: drive SOLIDIGM P44 PRO 2TB SSD
    H: drive Samsung 970 EVO Plus 2TB SSD
    PSU
    Corsair RM850X
    Case
    GameMax
    Cooling
    NZXT Kraken Elite 360 RGB 2024
    Keyboard
    Corsair
    Mouse
    Razor
    Internet Speed
    Gigabyte
    Browser
    Firefox
    Antivirus
    Norton 360
You must log in or register to reply here.

Similar threads

PSA - Duplicate IP address detected/ARP poisoning attack - resolved
Replies
2
Views
4K
Senecio
Senecio
Win11 constant crashing of explorer.exe after KB5025224 and KB5025239 installs in April
Replies
7
Views
2K
MrWhoopee
M
Constant Crashing in Games that use Anti-Cheat Software
Replies
6
Views
7K
Dru2
Dru2
My two month long Amazon Refund Saga got weird
Replies
6
Views
4K
iko22
iko22
Newly built PC. Getting constant WHEA_UNCORRECTABLE_ERROR BSODs, all within minutes of starting any game. Never occurs in idle/web. No Overclock/XMP.
Replies
10
Views
5K
PerpetualCycle
PerpetualCycle

Latest Support Threads

Latest Tutorials

Back
Top Bottom