| Legal Information |
|
The netstat command is used to generate a list of everything that has made an internet connection in a specified amount of time.
 |
To use the netstat command, you must run the command prompt window as administrator. Open the Start menu and enter "cmd.exe" in the Search box. When the results display, right-click on cmd.exe and select Run as administrator from the popup menu. |
Alternatively,...
 | Click Start, All programs, navigate down and click on Accessories. Right click Command Prompt and click Run as Administrator. |
If the User Account Control dialog box displays, click Yes to continue. Note: You may not see this dialog box, depending on your User Account Control settings.
At the command prompt, type the following command and press Enter.
netstat -abf 5 > activity.txtThe -a option shows all connections and listening ports, the -b option shows you what application is making the connection, and the -f option displays the full DNS name for each connection option for easier understanding of where the connections are being made to. You can also use the -n option if you wish to only display the IP address.
Wait about two minutes and then press Ctrl + C to stop the recording of data.
The resulting file will list all processes on your computer (browsers, IM clients, email programs, etc.) that have made an internet connection in the last two minutes, or however long you waited before pressing Ctrl + C. It also lists which processes connected to which websites.
If you see process names or website addresses with which you are not familiar, you can search for "what is (name of unknown process)" in Google and see what it is. It may be a system function you don't know about or a function of one of your running programs. However, if it seems like a bad site, you can use Google again to find out how to get rid of it.
| Search Knowledge Base | Feedback |
