x-kom hosting

analiza komendy netstat w cmd

razor878
utworzono
utworzono

Witam,

Uprzejmie proszę o analizę poniższych logów i jesli są to o wyszczególnienie obcych połączeń nie będących programem windows jak svhost, ponieważ niektore sprawdzałem po pid ale wyświetlało się własnie to. Nie znam się na tym, a mam pewne problemy kiedy podlacze sie do sieci. Dziekuje bardzo.

 

Microsoft Windows [Version 10.0.22631.3880]
(c) Microsoft Corporation. Wszelkie prawa zastrzeżone.

C:\Users\48574>netstat -a

Active Connections

  Proto  Local Address          Foreign Address        State
  TCP    0.0.0.0:135            notebook39405:0        LISTENING
  TCP    0.0.0.0:445            notebook39405:0        LISTENING
  TCP    0.0.0.0:5040           notebook39405:0        LISTENING
  TCP    0.0.0.0:49664          notebook39405:0        LISTENING
  TCP    0.0.0.0:49665          notebook39405:0        LISTENING
  TCP    0.0.0.0:49666          notebook39405:0        LISTENING
  TCP    0.0.0.0:49667          notebook39405:0        LISTENING
  TCP    0.0.0.0:49668          notebook39405:0        LISTENING
  TCP    0.0.0.0:49669          notebook39405:0        LISTENING
  TCP    127.0.0.1:55989        notebook39405:0        LISTENING
  TCP    127.0.0.1:56989        notebook39405:0        LISTENING
  TCP    192.168.1.106:139      notebook39405:0        LISTENING
  TCP    192.168.1.106:49830    40.115.3.253:https     ESTABLISHED
  TCP    192.168.1.106:49836    13.74.129.92:https     TIME_WAIT
  TCP    192.168.1.106:49837    13.74.129.92:https     TIME_WAIT
  TCP    192.168.1.106:49853    le-in-f188:5228        ESTABLISHED
  TCP    192.168.1.106:49857    waw07s05-in-f14:https  TIME_WAIT
  TCP    192.168.1.106:49858    waw07s06-in-f3:https   TIME_WAIT
  TCP    192.168.1.106:49859    mil02s06-in-f10:https  TIME_WAIT
  TCP    192.168.1.106:49861    waw07s05-in-f3:https   TIME_WAIT
  TCP    192.168.1.106:49862    waw02s17-in-f1:https   TIME_WAIT
  TCP    192.168.1.106:49863    ef-in-f138:https       TIME_WAIT

 

127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      192.168.1.0    255.255.255.0         On-link     192.168.1.106    306
    192.168.1.106  255.255.255.255         On-link     192.168.1.106    306
    192.168.1.255  255.255.255.255         On-link     192.168.1.106    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link     192.168.1.106    306
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link     192.168.1.106    306

C:\Users\48574>netstat -a

Active Connections

  Proto  Local Address          Foreign Address        State
  TCP    0.0.0.0:135            notebook39405:0        LISTENING
  TCP    0.0.0.0:445            notebook39405:0        LISTENING
  TCP    0.0.0.0:5040           notebook39405:0        LISTENING
  TCP    0.0.0.0:49664          notebook39405:0        LISTENING
  TCP    0.0.0.0:49665          notebook39405:0        LISTENING
  TCP    0.0.0.0:49666          notebook39405:0        LISTENING
  TCP    0.0.0.0:49667          notebook39405:0        LISTENING
  TCP    0.0.0.0:49668          notebook39405:0        LISTENING
  TCP    0.0.0.0:49669          notebook39405:0        LISTENING
  TCP    127.0.0.1:55989        notebook39405:0        LISTENING
  TCP    127.0.0.1:56989        notebook39405:0        LISTENING
  TCP    192.168.1.106:139      notebook39405:0        LISTENING
  TCP    192.168.1.106:49830    40.115.3.253:https     ESTABLISHED
  TCP    192.168.1.106:49836    13.74.129.92:https     TIME_WAIT
  TCP    192.168.1.106:49837    13.74.129.92:https     TIME_WAIT
  TCP    192.168.1.106:49853    le-in-f188:5228        ESTABLISHED
  TCP    192.168.1.106:49857    waw07s05-in-f14:https  TIME_WAIT
  TCP    192.168.1.106:49858    waw07s06-in-f3:https   TIME_WAIT
  TCP    192.168.1.106:49859    mil02s06-in-f10:https  TIME_WAIT
  TCP    192.168.1.106:49861    waw07s05-in-f3:https   TIME_WAIT
  TCP    192.168.1.106:49862    waw02s17-in-f1:https   TIME_WAIT
  TCP    192.168.1.106:49863    ef-in-f138:https       TIME_WAIT
  TCP    192.168.1.106:49873    13.85.23.206:https     TIME_WAIT
  TCP    192.168.1.106:49876    par10s21-in-f206:https  TIME_WAIT
  TCP    192.168.1.106:49893    40.83.136.168:https    ESTABLISHED
  TCP    192.168.1.106:49898    4.231.128.59:https     TIME_WAIT
  TCP    192.168.1.106:49900    4.231.128.59:https     TIME_WAIT
  TCP    192.168.1.106:49906    4.231.128.59:https     TIME_WAIT
  TCP    192.168.1.106:49907    4.231.128.59:https     TIME_WAIT
  TCP    192.168.1.106:49909    13.107.246.44:https    TIME_WAIT
  TCP    192.168.1.106:49913    a23-64-12-179:http     TIME_WAIT
  TCP    192.168.1.106:49914    a23-64-12-179:http     TIME_WAIT
  TCP    192.168.1.106:49915    waw07s03-in-f3:https   TIME_WAIT
  TCP    192.168.1.106:49916    123:http               ESTABLISHED
  TCP    192.168.1.106:49918    13.107.246.44:https    TIME_WAIT
  TCP    192.168.1.106:49924    104.17.210.85:https    TIME_WAIT
  TCP    192.168.1.106:49925    52.152.180.153:https   TIME_WAIT
  TCP    192.168.1.106:49926    a104-85-249-115:http   TIME_WAIT
  TCP    192.168.1.106:49927    13.74.138.254:https    TIME_WAIT
  TCP    192.168.1.106:49928    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49929    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49931    a23-64-12-168:http     TIME_WAIT
  TCP    192.168.1.106:49935    104.17.210.85:https    TIME_WAIT
  TCP    192.168.1.106:49936    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49937    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49938    a23-64-12-178:http     ESTABLISHED
  TCP    192.168.1.106:49939    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49940    a72-247-182-89:http    TIME_WAIT
  TCP    192.168.1.106:49941    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49942    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49944    13.107.246.44:https    TIME_WAIT
  TCP    192.168.1.106:49946    a72-247-182-74:http    TIME_WAIT
  TCP    192.168.1.106:49947    40.69.76.172:https     ESTABLISHED
  TCP    192.168.1.106:49948    40.69.76.189:https     ESTABLISHED
  TCP    192.168.1.106:49950    a72-247-182-74:http    TIME_WAIT
  TCP    192.168.1.106:49954    a72-247-182-74:http    TIME_WAIT
  TCP    192.168.1.106:49959    20.13.58.154:https     ESTABLISHED
  TCP    192.168.1.106:49960    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49961    a72-247-182-74:http    TIME_WAIT
  TCP    192.168.1.106:49962    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49963    40.69.76.172:https     ESTABLISHED
  TCP    192.168.1.106:49965    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49966    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49967    40.69.76.172:https     ESTABLISHED
  TCP    192.168.1.106:49968    20.44.10.122:https     TIME_WAIT
  TCP    192.168.1.106:49969    a2-20-33-185:https     ESTABLISHED
  TCP    192.168.1.106:49988    a72-247-182-74:http    TIME_WAIT
  TCP    192.168.1.106:49990    192.168.0.117:ms-do    SYN_SENT
  TCP    192.168.1.106:49991    192.168.0.3:ms-do      SYN_SENT
  TCP    192.168.1.106:49992    192.168.0.102:ms-do    SYN_SENT
  TCP    192.168.1.106:49993    192.168.1.160:ms-do    SYN_SENT
  TCP    192.168.1.106:49994    192.168.43.249:ms-do   SYN_SENT
  TCP    192.168.1.106:49995    192.168.1.186:ms-do    SYN_SENT
  TCP    192.168.1.106:49996    192.168.8.103:ms-do    SYN_SENT
  TCP    192.168.1.106:49997    192.168.10.174:ms-do   SYN_SENT
  TCP    192.168.1.106:49998    72.247.182.89:http     TIME_WAIT
  TCP    192.168.1.106:49999    72.247.182.74:http     TIME_WAIT
  TCP    192.168.1.106:50002    72.247.182.74:http     ESTABLISHED

 

C:\Users\48574>netstat -o

Active Connections

  Proto  Local Address          Foreign Address        State           PID
  TCP    192.168.1.106:49820    51.104.136.2:https     TIME_WAIT       0
  TCP    192.168.1.106:49825    52.255.192.45:https    TIME_WAIT       0
  TCP    192.168.1.106:49826    13.107.246.44:https    TIME_WAIT       0
  TCP    192.168.1.106:49830    40.115.3.253:https     ESTABLISHED     20624
  TCP    192.168.1.106:49833    20.82.154.241:https    TIME_WAIT       0
  TCP    192.168.1.106:49834    20.82.154.241:https    TIME_WAIT       0
  TCP    192.168.1.106:49835    20.82.154.241:https    TIME_WAIT       0
  TCP    192.168.1.106:49836    13.74.129.92:https     ESTABLISHED     19184
  TCP    192.168.1.106:49837    13.74.129.92:https     ESTABLISHED     19184
  TCP    192.168.1.106:49838    waw02s22-in-f3:https   TIME_WAIT       0
  TCP    192.168.1.106:49840    a23-200-161-37:https   ESTABLISHED     19184
  TCP    192.168.1.106:49841    a23-200-161-37:https   ESTABLISHED     19184
  TCP    192.168.1.106:49842    ef-in-f84:https        TIME_WAIT       0
  TCP    192.168.1.106:49844    waw02s17-in-f1:https   TIME_WAIT       0
  TCP    192.168.1.106:49845    waw07s05-in-f14:https  TIME_WAIT       0
  TCP    192.168.1.106:49848    waw02s17-in-f1:https   TIME_WAIT       0
  TCP    192.168.1.106:49850    51.104.136.2:https     TIME_WAIT       0
  TCP    192.168.1.106:49852    51.104.136.2:https     TIME_WAIT       0
  TCP    192.168.1.106:49853    le-in-f188:5228        ESTABLISHED     29012
  TCP    192.168.1.106:49857    waw07s05-in-f14:https  ESTABLISHED     29012
  TCP    192.168.1.106:49858    waw07s06-in-f3:https   ESTABLISHED     29012
  TCP    192.168.1.106:49859    mil02s06-in-f10:https  ESTABLISHED     29012
  TCP    192.168.1.106:49860    51.116.253.169:https   TIME_WAIT       0
  TCP    192.168.1.106:49861    waw07s05-in-f3:https   ESTABLISHED     29012
  TCP    192.168.1.106:49862    waw02s17-in-f1:https   ESTABLISHED     29012
  TCP    192.168.1.106:49863    ef-in-f138:https       ESTABLISHED     29012
  TCP    192.168.1.106:49864    216.239.34.157:https   TIME_WAIT       0
  TCP    192.168.1.106:49865    216.239.34.157:https   TIME_WAIT       0
  TCP    192.168.1.106:49868    216.239.34.157:https   TIME_WAIT       0
  TCP    192.168.1.106:49869    51.104.136.2:https     TIME_WAIT       0
  TCP    192.168.1.106:49871    146.75.121.91:https    ESTABLISHED     29012
  TCP    192.168.1.106:49873    13.85.23.206:https     TIME_WAIT       0
  TCP    192.168.1.106:49876    par10s21-in-f206:https  ESTABLISHED     29012
  TCP    192.168.1.106:49877    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49880    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49881    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49885    a23-200-161-157:http   TIME_WAIT       0
  TCP    192.168.1.106:49888    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49892    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49893    40.83.136.168:https    ESTABLISHED     20208
  TCP    192.168.1.106:49894    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49895    a95-100-111-59:https   ESTABLISHED     23704
  TCP    192.168.1.106:49898    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49900    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49906    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49907    4.231.128.59:https     TIME_WAIT       0
  TCP    192.168.1.106:49909    13.107.246.44:https    TIME_WAIT       0
  TCP    192.168.1.106:49913    a23-64-12-179:http     ESTABLISHED     20312
  TCP    192.168.1.106:49914    a23-64-12-179:http     ESTABLISHED     20312
  TCP    192.168.1.106:49915    waw07s03-in-f3:https   ESTABLISHED     29012
  TCP    192.168.1.106:49916    123:http               ESTABLISHED     19184

 

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.