Network Monitor 3.4 is the archive versioned tool for network traffic capture and protocol analysis. Download Microsoft Message Analyzer for updated parser support.
比Wireshark的优势就是可以区分不同进程发的包
win10似乎说不能用,但实际还是能跑
http://www.microsoft.com/en-us/download/details.aspx?id=4865