Maqaal kale, waxaan ku sharaxnay dekedaha kumbuyuutarka iyo waxa loo isticmaalo^{(explained computer ports and what they’re used for)} . Marka laga reebo, maxaan ku samayn karnaa macluumaadka dekedda? Mar haddii dhammaan taraafikada ka soo baxa kombayutarka ay maraan dekedo, waan ka hubin karnaa iyaga si aan u aragno waxa ay sameynayaan. Waxaa laga yaabaa in dekeddu aysan dhageysan taraafikada? Waxaa laga yaabaa in shay isticmaalaya deked aan ahayn inay ahaato?

Waxaan isticmaali doonaa amarka Windows netstat si aan u aragno dekedaheena dhegeysiga iyo PID ( Aqoonsiga Habka^{(Process ID)} ). Waxaan sidoo kale dooneynaa inaan aragno waxa aan ku sameyn karno macluumaadkaas.

Waa maxay Netstat?^{(What Is Netstat?)}

Amarka netstat waa isku darka ereyada 'shabakadda' iyo 'statistics'. Amarka netstat wuxuu ka shaqeeyaa dhammaan noocyada Windows ka Windows XP ilaa Windows 10 . Waxa kale oo loo isticmaalaa nidaamyada kale ee hawlgalka (OS) sida Unix iyo Linux , laakiin waxaan ku dhegganaan doonaa Windows halkan.

Netstat waxay na siin kartaa:

Magaca borotokoolka ay dekeddu isticmaalayso ( TCP ama UDP ).
Ciwaanka IP-ga deegaanka iyo magaca kombiyuutarka iyo lambarka dekedda ee la isticmaalayo.
Ciwaanka IP-ga iyo lambarka dekedda ee aanu ku xidhnayno.
Xaalada xidhiidhka TCP Faahfaahinta waxa ay yihiin goboladan, akhri qaybta habaynta Dhacdada ee RFC 793^{(Event Processing section of RFC 793)} .

Isticmaalka Netstat si aad u aragto Dekadaha Dhageysiga & PID^{(Using Netstat To See Listening Ports & PID)}

Isticmaal furaha isku dhafka ah ee Win Key + X X. Menu ee furmay, dooro Command Prompt .

Gali^(Enter) amarka
```
netstat -a -n -o
```
. Halbeegyada netstat waxaa lagu hormariyaa xaraf-xidhaale, ma aha horudhac horudhac ah sida amarro kale oo badan. The -a waxay u sheegaysaa inay ina tuso dhammaan xidhiidhada firfircoon iyo dekedaha uu kumbiyuutarku ku dhegaysanayo.

The -n wuxuu u sheegaa netstat inuu tuso cinwaanada IP-ga iyo dekedaha inay yihiin lambaro kaliya. Waxaan u sheegaynaa in aan la isku dayin in la xalliyo magacyada. Tani waxay ka dhigaysaa muuqaal degdeg ah oo nadiif ah. The -o wuxuu u sheegaa netstat inuu ku daro PID . Waxaan isticmaali doonaa PID -da hadhow si aan u ogaano habka loo isticmaalayo deked gaar ah.

Arag^(View) natiijooyinka oo u fiirso ciwaanada, lambarada dekeda, gobolka, iyo PID . Aynu nidhaahno waxaan rabnaa inaan ogaano waxa isticmaalaya dekedda 63240. Ogow PID -kiisu waa 8552 wuxuuna ku xidhayaa cinwaanka IP 172.217.12.138 ee dekedda 443.

Maxaa Isticmaala Dekeddaas?^{(What’s Using That Port?)}

Fur Manager Hawsha^{(Task Manager)} . Taas waxaa si fudud loo sameeyaa iyadoo la adeegsanayo isku dhafka muhiimka ah ee Ctrl + Shift + Esc .

Guji tabka Faahfaahinta . ^{(Details )}Si tan loo fududeeyo, dhagsii madaxa tiirka PID si aad u kala soocdo PID- ^{(PID )}yada^(PIDs) tiro ahaan.

Hoos ugu dhaadhac PID 8552 oo arag habka uu yahay. Xaaladdan oo kale, waa googledrivesync.exe . Laakin ma dhab baa? Mararka qaarkood fayrasyadu waxay isu ekaysiin karaan habab sharci ah.

Barrawsarraha shabakadda, aad ipinfo.io . Geli ciwaanka IP-ga 172.217.12.138 . Sida aan arki karno, cinwaanka IP-ga wuxuu ka diiwaan gashan yahay Google . Markaa googledrivesync.exe-kan waa mid sharci ah.

Sida Loo Helo Dekadda, PID, & Magaca Habka ee PowerShell^{(How To Get Port, PID, & Process Name In PowerShell)}

PowerShell waa habka cusub ee Microsoft ee loo isticmaalo interface-line interface oo leh Windows . Waxaan nidhaahnaa wax ka cusub, laakiin waxa ay u jirtay dhawr nooc. Waa inaad barataa PowerShell xataa haddii aad tahay isticmaale guri^{(learn PowerShell even if you’re a home user)} .

Inta badan amarrada Windows sidoo kale waxay ku shaqeeyaan ^(Windows)PowerShell , oo lagu daray waxaan ku dari karnaa iyaga iyo PowerShell 's cmdlets - pronounced command-lets . Joe at Winteltools.com ayaa bixisa qoraalka habkan.

Fur Notepad oo geli koodka soo socda:

$netstat = netstat -aon | Select-String -pattern "(TCP|UDP)"
$processList = Get-Process

foreach ($result in $netstat) {
   $splitArray = $result -split " "
   $procID = $splitArray[$splitArray.length – 1]
   $processName = $processList | Where-Object {$_.id -eq $procID} |    select processname
   $splitArray[$splitArray.length – 1] = $procID + " " +      $processName.processname
   $splitArray -join " "
}

Kaydi faylka sidii get-NetstatProcessName.ps1 . Hubi inaad ogaato halka lagu kaydinayo. Waa muhiim in la beddelo Badbaadinta sida nooca:^{(Save as type: )} Dhammaan All Files (*.*) ama waxaa loo keydin doonaa sida get-NetstatProcessName.ps1 .txt oo naguma shaqeyn doonto.

Fur PowerShell oo u gudub meesha qoraalka lagu keydiyay. Xaaladdan oo kale, waa <pre>cd C: Scripts</pre>. Ku dhufo Gelida^(Enter) si aad u socodsiiso amarka

Ku socodsii qoraalka adiga oo isticmaalaya dhibco-soo-saarka si uu u shaqeeyo. Taas macnaheedu waa isticmaal ./ ka hor magaca faylka. Amarka ayaa noqon doona
```
./get-NetstatProcessName.ps1 < /pre > 
```

Hadda waxaan arki karnaa dhammaan macluumaadka netstat-dhaqameedka iyo magaca habka. Looma baahna in la furo Task Manager .

Tag iyaga soo qaado^{(Go Get Them)}

Waxaan daboolnay laba siyaabood oo loo isticmaalo amarka netstat si aan u aragno dekedaha dhegeysiga. Waxaa loo isticmaali karaa sidii hore ee Command Prompt^{(Command Prompt)} ama qoraalka PowerShell gudahooda. ^(PowerShell)Xogta ay na siin karto, waxaan eegnay sida ay nooga caawin karto in aan ogaano waxa uu kombuyuutarkeenu qabanayo.

Haddii aad u malaysay in netstat uu yahay utility weyn, u fiirso qaar ka mid ah adeegyada kale ee Windows TCP/IP sida tracert, ipconfig, iyo nslookup . Ama isticmaal Ilaha Kormeerka si aad si fiican ugu eegno shabakadaha qarsoon iyo isku xirka internetka^{(use Resource Monitor to get a better look into hidden website and Internet connections)} . Waxa jira wax badan oo aad samayn karto si aad u aragto sida saxda ah waxa kombayutarkaagu qabanayo.

Miyaad isticmaashay netstat si aad u xalliso dhibaatada? Fadlan^(Please) noo sheeg waxaad samaysay. Ma jiraan su'aalo ku saabsan sida loo isticmaalo netstat? Fadlan^(Please) na weydii faallooyinka hoose.

Use Netstat to See Listening Ports and PID in Windows

In another article, we explained computer ports and what they’re used for. Other than that, what can we do with port information? Since all traffic in and out of the computer goes through ports, we can check on them to see what they’re doing. Maybe the port isn’t listening for traffic? Maybe something is using a port that shouldn’t be?

We’re going to use the Windows command netstat to see our listening ports and PID (Process ID). We’re also going to see what we can do with that information.

What Is Netstat?

The netstat command is a combination of the words ‘network’ and ‘statistics’. The netstat command works in all versions of Windows from Windows XP right up to Windows 10. It’s also used in other operating systems (OS) like Unix and Linux, but we’ll stick to Windows here.

Netstat can provide us with:

The name of the protocol the port is using (TCP or UDP).
The local IP address and name of the computer and the port number being used.
The IP address and port number to which we’re connecting.
The state of a TCP connection. For details on what these states are, read the Event Processing section of RFC 793.

Using Netstat To See Listening Ports & PID

Use the key combination Win Key + X. In the menu that opens, select Command Prompt.

Enter the command <pre>netstat -a -n -o</pre>. The parameters for netstat are preceded with a hyphen, not a forward slash like many other commands. The -a tells it to show us all active connections and the ports on which the computer is listening.

The -n tells netstat to show the IP addresses and ports as numbers only. We’re telling it to not try to resolve the names. This makes for a quicker and neater display. The -o tells netstat to include the PID. We’ll use the PID later to find out what process is using a specific port.

View the results and take note of the addresses, port numbers, state, and PID. Let’s say we want to know what’s using port 63240. Note that its PID is 8552 and it’s connecting to the IP address 172.217.12.138 on port 443.

What’s Using That Port?

Open Task Manager. That’s most easily done by using the key combination Ctrl + Shift + Esc.

Click on the Details tab. To make this easier to find, click on the PID column header to sort the PIDs numerically.

Scroll down to PID 8552 and see what process it is. In this case, it’s googledrivesync.exe. But is it really? Sometimes viruses can make themselves look like legitimate processes.

In a web browser, go to ipinfo.io. Enter the IP address 172.217.12.138. As we can see, the IP address is registered to Google. So this googledrivesync.exe is a legitimate one.

How To Get Port, PID, & Process Name In PowerShell

PowerShell is Microsoft’s newer way to use a command-line interface with Windows. We say newer, but it’s been around for several versions. You should learn PowerShell even if you’re a home user.

Most Windows commands also work in PowerShell, plus we can combine them with PowerShell’s cmdlets – pronounced command-lets. Joe at Winteltools.com provides the script for this method.

Open Notepad and enter the following code:

$netstat = netstat -aon | Select-String -pattern "(TCP|UDP)"
$processList = Get-Process

foreach ($result in $netstat) {
   $splitArray = $result -split " "
   $procID = $splitArray[$splitArray.length – 1]
   $processName = $processList | Where-Object {$_.id -eq $procID} |    select processname
   $splitArray[$splitArray.length – 1] = $procID + " " +      $processName.processname
   $splitArray -join " "
}

Save the file as get-NetstatProcessName.ps1. Make sure to note where it’s being saved. It’s important to change the Save as type: to All Files (*.*) or it will get saved as get-NetstatProcessName.ps1.txt and it won’t work for us.

Open PowerShell and navigate to the location in which the script was saved. In this case, it’s <pre>cd C:\Scripts</pre>. Hit Enter to run the command.

Run the script using dot-sourcing to make it work. That means use ./ before the name of the file. The command will be <pre>./get-NetstatProcessName.ps1</pre>

Now we can see all the traditional netstat info plus the process name. No need to open Task Manager anymore.

Go Get Them

We’ve covered two ways to use the netstat command to see listening ports. It can be used either in the old Command Prompt or within a PowerShell script. With the information it can give us, we’ve looked at how it can help us figure out what our computer is doing.

If you thought netstat is a great utility, take a look at some other Windows TCP/IP utilities like tracert, ipconfig, and nslookup. Or use Resource Monitor to get a better look into hidden website and Internet connections. There is a lot you can do to see exactly what your computer is doing.

Have you used netstat to solve a problem? Please tell us what you did. Any questions about how to use netstat? Please ask us in the comments below.

Phoenix Schultz

About the author

Waxaan ahay injineer maqal ah oo xirfad leh oo leh khibrad 10 sano ka badan. Waxaan ka shaqeynayay warshadaha muusikada dhowrkii sano ee la soo dhaafay, waxaanan ku yeeshay sumcad xooggan gudaha goobtaas. Waxaan sidoo kale ahay koontada isticmaale ee khibrad sare leh iyo hawlwadeenka badbaadada qoyska. Mas'uuliyadahayga waxaa ka mid ah maaraynta xisaabaadka isticmaalaha, bixinta taageerada macaamiisha, iyo bixinta talooyinka badbaadada qoyska shaqaalaha.

Isticmaal Netstat si aad u aragto Dekadaha Dhageysiga iyo PID gudaha Windows

Waa maxay Netstat?^{(What Is Netstat?)}

Isticmaalka Netstat si aad u aragto Dekadaha Dhageysiga & PID^{(Using Netstat To See Listening Ports & PID)}

Maxaa Isticmaala Dekeddaas?^{(What’s Using That Port?)}

Sida Loo Helo Dekadda, PID, & Magaca Habka ee PowerShell^{(How To Get Port, PID, & Process Name In PowerShell)}

Tag iyaga soo qaado^{(Go Get Them)}

Use Netstat to See Listening Ports and PID in Windows

What Is Netstat?

Using Netstat To See Listening Ports & PID

What’s Using That Port?

How To Get Port, PID, & Process Name In PowerShell

Go Get Them

Phoenix Schultz

About the author

Related posts

Sida Loo Sameeyo & Isticmaalka Sanduuqa Sanduuqa Browser ee Daaqadaha

Isticmaal Kormeeraha Isku-kalsoonida si aad u hubiso Dejinta Windows

U isticmaal Adeegayaasha DNS kaduwan ee Daaqadaha Si aad u hesho Internet Dhakhso leh

Isticmaal Astaamo Yaryar Windows 7/8/10 Taskbar iyo Desktop

Sida loo abuuro oo loo isticmaalo Windows 10/11 Habka Hurdada Gaaban

Uninstall iyo reinstall IE gudaha Windows 7

Sida loo furo Faylka JAR ee Daaqadaha

Sida Loo Ilaaliyo PC-gaaga Daaqadaha Adigoon taaban Jiirka

Sida Loo Raad-raaco Kumbuyuutarka Windows iyo Hawlaha Isticmaalaha

Sida loo sheego nooca Windows ee aad rakibtay

Sida loo Pixelate sawirka Windows iyo Mac

Sida loo furo 7Z Files gudaha Windows, Mac, iyo Linux

Sida loo helo oo loo isticmaalo Emojis-ka Discord

Sida Loo Yareeyo Isticmaalka Sare ee Windows Explorer ee Isticmaalka CPU

U oggolow Habka Ciyaarta si uu u fududeeyo waxqabadka gudaha Windows 10

Isku dar labada qaybood ee Windows 7/8/10

Dami furayaasha kiiboodhka ee Windows oo wata AutoHotKey

Sida loo beddelo warqadda Drive-ka gudaha Windows

Sida loo qoro ama loogu sawiro PDF File gudaha Mac iyo Windows

Ku Keydi Liiska Habraacyada Socodka Faylka Qoraalka ee Daaqadaha

Isticmaal Netstat si aad u aragto Dekadaha Dhageysiga iyo PID gudaha Windows

Waa maxay Netstat?(What Is Netstat?)

Isticmaalka Netstat si aad u aragto Dekadaha Dhageysiga & PID(Using Netstat To See Listening Ports & PID)

Maxaa Isticmaala Dekeddaas?(What’s Using That Port?)

Sida Loo Helo Dekadda, PID, & Magaca Habka ee PowerShell(How To Get Port, PID, & Process Name In PowerShell)

Tag iyaga soo qaado(Go Get Them)

Use Netstat to See Listening Ports and PID in Windows

What Is Netstat?

Using Netstat To See Listening Ports & PID

What’s Using That Port?

How To Get Port, PID, & Process Name In PowerShell

Go Get Them

Phoenix Schultz

About the author

Related posts

Sida Loo Sameeyo & Isticmaalka Sanduuqa Sanduuqa Browser ee Daaqadaha

Isticmaal Kormeeraha Isku-kalsoonida si aad u hubiso Dejinta Windows

U isticmaal Adeegayaasha DNS kaduwan ee Daaqadaha Si aad u hesho Internet Dhakhso leh

Isticmaal Astaamo Yaryar Windows 7/8/10 Taskbar iyo Desktop

Sida loo abuuro oo loo isticmaalo Windows 10/11 Habka Hurdada Gaaban

Uninstall iyo reinstall IE gudaha Windows 7

Sida loo furo Faylka JAR ee Daaqadaha

Sida Loo Ilaaliyo PC-gaaga Daaqadaha Adigoon taaban Jiirka

Sida Loo Raad-raaco Kumbuyuutarka Windows iyo Hawlaha Isticmaalaha

Sida loo sheego nooca Windows ee aad rakibtay

Sida loo Pixelate sawirka Windows iyo Mac

Sida loo furo 7Z Files gudaha Windows, Mac, iyo Linux

Sida loo helo oo loo isticmaalo Emojis-ka Discord

Sida Loo Yareeyo Isticmaalka Sare ee Windows Explorer ee Isticmaalka CPU

U oggolow Habka Ciyaarta si uu u fududeeyo waxqabadka gudaha Windows 10

Isku dar labada qaybood ee Windows 7/8/10

Dami furayaasha kiiboodhka ee Windows oo wata AutoHotKey

Sida loo beddelo warqadda Drive-ka gudaha Windows

Sida loo qoro ama loogu sawiro PDF File gudaha Mac iyo Windows

Ku Keydi Liiska Habraacyada Socodka Faylka Qoraalka ee Daaqadaha

Waa maxay Netstat?^{(What Is Netstat?)}

Isticmaalka Netstat si aad u aragto Dekadaha Dhageysiga & PID^{(Using Netstat To See Listening Ports & PID)}

Maxaa Isticmaala Dekeddaas?^{(What’s Using That Port?)}

Sida Loo Helo Dekadda, PID, & Magaca Habka ee PowerShell^{(How To Get Port, PID, & Process Name In PowerShell)}

Tag iyaga soo qaado^{(Go Get Them)}