In Windows 7, the rational use of some basic commands, often in the protection of network security play a big role, the following command in the role of a few very prominent on the following, we teach you proper use of the netstat command, for the embodiment of Windows 7 safety expert.
Detect network connection :
If you suspect that your computer Trojan installed by others, or is the virus, but there is no perfect tool for hand detection is not really such a thing happens, that you can use Windows built-in network command see who Connect your computer. Specific command format is: netstat-an This command can see all the local computer, connect the IP, which consists of four parts - proto (connectivity), local address (local connection address), foreign address (and the local establishment connection address), state (current port status). For more information through this order, we can completely control the computer connection, so as to achieve the purpose of controlling the computer.
We are at the command prompt, type the following: netstat-a show currently open on your computer all the ports, netstat-s-e a more detailed display of your network information, including TCP, UDP, ICMP and IP statistics and other people may have seen . Have you ever thought that surpassed the level of understanding of Vista, Windows7 display protocol statistics and current TCP / IP network connections and knowledge.
netstat command usage is as follows:
NETSTAT: Vista / Windows7 agreement under the display of statistics and current TCP / IP network connection. Can run the netstat without any parameters, as shown:
NETSTAT [-a] [-b] [-e] [-f] [-n] [-o] [-p proto] [-r] [-s] [-t] [interval]
-a displays all connections and listening ports.
-b show created for each connection or listening port involved in the executable. In some cases, known executables host multiple independent components, these circumstances create the connection or listening port for display when the component involved in sequence.TCP/IP This case, the name of the executable program is located in the bottom of the [] in, it calls the component at the top, until it reaches the TCP / IP. Note that this option may be very time-consuming, and when you do not have sufficient permissions may fail.
-e Display Ethernet s
-f show the external address fully qualified domain name (FQDN).
-n in digital form address and port number.
-o display-owned process associated with each connection ID.
-p proto proto specified protocol shows the connection; proto can be any of the following: TCP, UDP, TCPv6 or UDPv6: If, together with the-s option is used to display statistics for each protocol, proto may be any of the following: IP, IPv6, ICMP, ICMPv6, TCP, TCPv6, UDP or UDPv6 statistics.
-r display routing table.
-sDisplay the statistics for each protocol. By default, show IP, IPv6, ICMP, ICMPv6, TCP, TCPv6, UDP and UDPv6 statistics;-p option can be used to specify the default subnet.
-t displays the current connection unloaded state
interval to re-display the selected statistics, each show the number of seconds between the suspension of the interval. Press CTRL + C to stop the show statistics.
No comments:
Post a Comment