inforamation gathering using cmd

:\Users\admin>netstat -a

Active Connections

  Proto  Local Address          Foreign Address        State

  TCP    0.0.0.0:53             www:0                  LISTENING

  TCP    0.0.0.0:80             www:0                  LISTENING

  TCP    0.0.0.0:135            www:0                  LISTENING

  TCP    0.0.0.0:445            www:0                  LISTENING

  TCP    0.0.0.0:1536           www:0                  LISTENING

  TCP    0.0.0.0:1537           www:0                  LISTENING

  TCP    0.0.0.0:1538           www:0                  LISTENING

  TCP    0.0.0.0:1539           www:0                  LISTENING

  TCP    0.0.0.0:1540           www:0                  LISTENING

  TCP    0.0.0.0:1541           www:0                  LISTENING

  TCP    0.0.0.0:1560           www:0                  LISTENING

  TCP    0.0.0.0:1590           www:0                  LISTENING

  TCP    0.0.0.0:1621           www:0                  LISTENING

  TCP    0.0.0.0:2383           www:0                  LISTENING

  TCP    0.0.0.0:3389           www:0                  LISTENING

  TCP    0.0.0.0:5580           www:0                  LISTENING

  TCP    127.0.0.1:1542         www:0                  LISTENING

  TCP    127.0.0.1:1542         www:1563               ESTABLISHED

  TCP    127.0.0.1:1542         www:1564               ESTABLISHED

  TCP    127.0.0.1:1542         www:1566               ESTABLISHED

  TCP    127.0.0.1:1542         www:28176              ESTABLISHED

  TCP    127.0.0.1:1542         www:28385              ESTABLISHED

  TCP    127.0.0.1:1542         www:54458              ESTABLISHED

  TCP    127.0.0.1:1561         www:1562               ESTABLISHED

  TCP    127.0.0.1:1562         www:1561               ESTABLISHED

  TCP    127.0.0.1:1563         www:1542               ESTABLISHED

  TCP    127.0.0.1:1564         www:1542               ESTABLISHED

  TCP    127.0.0.1:1566         www:1542               ESTABLISHED

  TCP    127.0.0.1:5939         www:0                  LISTENING

  TCP    127.0.0.1:6789         www:0                  LISTENING

  TCP    127.0.0.1:9990         www:0                  LISTENING

  TCP    127.0.0.1:23406        www:0                  LISTENING

  TCP    127.0.0.1:28176        www:1542               ESTABLISHED

  TCP    127.0.0.1:28385        www:1542               ESTABLISHED

  TCP    127.0.0.1:48485        www:48486              ESTABLISHED

  TCP    127.0.0.1:48486        www:48485              ESTABLISHED

  TCP    127.0.0.1:51041        www:7467               SYN_SENT

  TCP    127.0.0.1:54458        www:1542               ESTABLISHED

  TCP    127.0.0.1:65000        www:0                  LISTENING

  TCP    169.254.161.0:139      www:0                  LISTENING

  TCP    [::]:80                www:0                  LISTENING

  TCP    [::]:135               www:0                  LISTENING

  TCP    [::]:445               www:0                  LISTENING

  TCP    [::]:1536              www:0                  LISTENING

  TCP    [::]:1537              www:0                  LISTENING

  TCP    [::]:1538              www:0                  LISTENING

  TCP    [::]:1539              www:0                  LISTENING

  TCP    [::]:1540              www:0                  LISTENING

  TCP    [::]:1541              www:0                  LISTENING

  TCP    [::]:1560              www:0                  LISTENING

  TCP    [::]:1590              www:0                  LISTENING

  TCP    [::]:2383              www:0                  LISTENING

  TCP    [::]:3389              www:0                  LISTENING

  TCP    [::1]:1569             www:0                  LISTENING

  TCP    [::1]:1569             www:28171              ESTABLISHED

  TCP    [::1]:28171            www:1569               ESTABLISHED

  TCP    [::1]:51455            www:0                  LISTENING

  TCP    [fd1e:b8de:ef51:e332:a665:e8ea:9594:5322]:4487  www:0                  LISTENING

  UDP    0.0.0.0:53             *:*

  UDP    0.0.0.0:68             *:*

  UDP    0.0.0.0:500            *:*

  UDP    0.0.0.0:3389           *:*

  UDP    0.0.0.0:3702           *:*

  UDP    0.0.0.0:3702           *:*

  UDP    0.0.0.0:4500           *:*

  UDP    0.0.0.0:5355           *:*

  UDP    0.0.0.0:53078          *:*

  UDP    0.0.0.0:53080          *:*

  UDP    0.0.0.0:53619          *:*

  UDP    0.0.0.0:58645          *:*

  UDP    0.0.0.0:62882          *:*

  UDP    127.0.0.1:1900         *:*

  UDP    127.0.0.1:48700        *:*

  UDP    127.0.0.1:48701        *:*

  UDP    127.0.0.1:53079        *:*

  UDP    127.0.0.1:58650        *:*

  UDP    127.0.0.1:62227        *:*

  UDP    127.0.0.1:62228        *:*

  UDP    127.0.0.1:62229        *:*

  UDP    127.0.0.1:62230        *:*

  UDP    127.0.0.1:62231        *:*

  UDP    127.0.0.1:63455        *:*

  UDP    127.0.0.1:65000        *:*

  UDP    169.254.161.0:137      *:*

  UDP    169.254.161.0:138      *:*

  UDP    169.254.161.0:1900     *:*

  UDP    169.254.161.0:58649    *:*

  UDP    192.168.5.101:5353     *:*

  UDP    [::]:500               *:*

  UDP    [::]:3389              *:*

  UDP    [::]:3702              *:*

  UDP    [::]:3702              *:*

  UDP    [::]:4500              *:*

  UDP    [::]:5355              *:*

  UDP    [::]:53081             *:*

  UDP    [::]:58646             *:*

  UDP    [::]:62883             *:*

  UDP    [::1]:1900             *:*

  UDP    [::1]:5353             *:*

  UDP    [::1]:58648            *:*

  UDP    [fe80::1839:c5a9:13d3:4d40%28]:5353  *:*

  UDP    [fe80::d8ac:2c6c:9cb1:a100%10]:1900  *:*

  UDP    [fe80::d8ac:2c6c:9cb1:a100%10]:58647  *:*

C:\Users\admin>

C:\Users\admin>netstat -e

Interface Statistics

                           Received            Sent

Bytes                    1412285098        47608556

Unicast packets              484335          317049

Non-unicast packets         9410395           20415

Discards                          0               0

Errors                            0               0

Unknown protocols                 0

C:\Users\admin>

C:\Users\admin>netstat -f

Active Connections

  Proto  Local Address          Foreign Address        State

  TCP    127.0.0.1:1542         http://www.sanjay.com:1563    ESTABLISHED

  TCP    127.0.0.1:1542         http://www.sanjay.com:1564    ESTABLISHED

  TCP    127.0.0.1:1542         http://www.sanjay.com:1566    ESTABLISHED

  TCP    127.0.0.1:1542         http://www.sanjay.com:28176   ESTABLISHED

  TCP    127.0.0.1:1542         http://www.sanjay.com:28385   ESTABLISHED

  TCP    127.0.0.1:1542         http://www.sanjay.com:54458   ESTABLISHED

  TCP    127.0.0.1:1561         http://www.sanjay.com:1562    ESTABLISHED

  TCP    127.0.0.1:1562         http://www.sanjay.com:1561    ESTABLISHED

  TCP    127.0.0.1:1563         http://www.sanjay.com:1542    ESTABLISHED

  TCP    127.0.0.1:1564         http://www.sanjay.com:1542    ESTABLISHED

  TCP    127.0.0.1:1566         http://www.sanjay.com:1542    ESTABLISHED

  TCP    127.0.0.1:28176        http://www.sanjay.com:1542    ESTABLISHED

  TCP    127.0.0.1:28385        http://www.sanjay.com:1542    ESTABLISHED

  TCP    127.0.0.1:48485        http://www.sanjay.com:48486   ESTABLISHED

  TCP    127.0.0.1:48486        http://www.sanjay.com:48485   ESTABLISHED

  TCP    127.0.0.1:51300        http://www.sanjay.com:7467    SYN_SENT

  TCP    127.0.0.1:54458        http://www.sanjay.com:1542    ESTABLISHED

  TCP    [::1]:1569             http://www.sanjay.com:28171   ESTABLISHED

  TCP    [::1]:28171            http://www.sanjay.com:1569    ESTABLISHED

C:\Users\admin>

C:\Users\admin>netstat -n

Active Connections

  Proto  Local Address          Foreign Address        State

  TCP    127.0.0.1:1542         127.0.0.1:1563         ESTABLISHED

  TCP    127.0.0.1:1542         127.0.0.1:1564         ESTABLISHED

  TCP    127.0.0.1:1542         127.0.0.1:1566         ESTABLISHED

  TCP    127.0.0.1:1542         127.0.0.1:28176        ESTABLISHED

  TCP    127.0.0.1:1542         127.0.0.1:28385        ESTABLISHED

  TCP    127.0.0.1:1542         127.0.0.1:54458        ESTABLISHED

  TCP    127.0.0.1:1561         127.0.0.1:1562         ESTABLISHED

  TCP    127.0.0.1:1562         127.0.0.1:1561         ESTABLISHED

  TCP    127.0.0.1:1563         127.0.0.1:1542         ESTABLISHED

  TCP    127.0.0.1:1564         127.0.0.1:1542         ESTABLISHED

  TCP    127.0.0.1:1566         127.0.0.1:1542         ESTABLISHED

  TCP    127.0.0.1:28176        127.0.0.1:1542         ESTABLISHED

  TCP    127.0.0.1:28385        127.0.0.1:1542         ESTABLISHED

  TCP    127.0.0.1:48485        127.0.0.1:48486        ESTABLISHED

  TCP    127.0.0.1:48486        127.0.0.1:48485        ESTABLISHED

  TCP    127.0.0.1:51495        127.0.0.1:7467         SYN_SENT

  TCP    127.0.0.1:54458        127.0.0.1:1542         ESTABLISHED

  TCP    [::1]:1569             [::1]:28171            ESTABLISHED

  TCP    [::1]:28171            [::1]:1569             ESTABLISHED

  TCP    [fe80::d8ac:2c6c:9cb1:a100%10]:80  [fe80::d8ac:2c6c:9cb1:a100%10]:51364  ESTABLISHED

  TCP    [fe80::d8ac:2c6c:9cb1:a100%10]:51364  [fe80::d8ac:2c6c:9cb1:a100%10]:80  ESTABLISHED

C:\Users\admin>

C:\Users\admin>netstat -o

Active Connections

  Proto  Local Address          Foreign Address        State           PID

  TCP    127.0.0.1:1542         www:1563               ESTABLISHED     3312

  TCP    127.0.0.1:1542         www:1564               ESTABLISHED     3312

  TCP    127.0.0.1:1542         www:1566               ESTABLISHED     3312

  TCP    127.0.0.1:1542         www:28176              ESTABLISHED     3312

  TCP    127.0.0.1:1542         www:28385              ESTABLISHED     3312

  TCP    127.0.0.1:1542         www:54458              ESTABLISHED     3312

  TCP    127.0.0.1:1561         www:1562               ESTABLISHED     3604

  TCP    127.0.0.1:1562         www:1561               ESTABLISHED     3604

  TCP    127.0.0.1:1563         www:1542               ESTABLISHED     3604

  TCP    127.0.0.1:1564         www:1542               ESTABLISHED     3604

  TCP    127.0.0.1:1566         www:1542               ESTABLISHED     3604

  TCP    127.0.0.1:28176        www:1542               ESTABLISHED     3604

  TCP    127.0.0.1:28385        www:1542               ESTABLISHED     3604

  TCP    127.0.0.1:48485        www:48486              ESTABLISHED     4092

  TCP    127.0.0.1:48486        www:48485              ESTABLISHED     4092

  TCP    127.0.0.1:51531        www:7467               SYN_SENT        2956

  TCP    127.0.0.1:54458        www:1542               ESTABLISHED     3604

  TCP    [::1]:1569             www:28171              ESTABLISHED     3604

  TCP    [::1]:28171            www:1569               ESTABLISHED     6976

  TCP    [fe80::d8ac:2c6c:9cb1:a100%10]:80  www:51364              ESTABLISHED     4

  TCP    [fe80::d8ac:2c6c:9cb1:a100%10]:51364  www:http               ESTABLISHED     12932

C:\Users\admin>

C:\Users\admin>netstat -p tcp

Active Connections

  Proto  Local Address          Foreign Address        State

  TCP    127.0.0.1:1542         www:1563               ESTABLISHED

  TCP    127.0.0.1:1542         www:1564               ESTABLISHED

  TCP    127.0.0.1:1542         www:1566               ESTABLISHED

  TCP    127.0.0.1:1542         www:28176              ESTABLISHED

  TCP    127.0.0.1:1542         www:28385              ESTABLISHED

  TCP    127.0.0.1:1542         www:54458              ESTABLISHED

  TCP    127.0.0.1:1561         www:1562               ESTABLISHED

  TCP    127.0.0.1:1562         www:1561               ESTABLISHED

  TCP    127.0.0.1:1563         www:1542               ESTABLISHED

  TCP    127.0.0.1:1564         www:1542               ESTABLISHED

  TCP    127.0.0.1:1566         www:1542               ESTABLISHED

  TCP    127.0.0.1:28176        www:1542               ESTABLISHED

  TCP    127.0.0.1:28385        www:1542               ESTABLISHED

  TCP    127.0.0.1:48485        www:48486              ESTABLISHED

  TCP    127.0.0.1:48486        www:48485              ESTABLISHED

  TCP    127.0.0.1:51687        www:7467               SYN_SENT

  TCP    127.0.0.1:54458        www:1542               ESTABLISHED

C:\Users\admin>netstat -p udp

Active Connections

  Proto  Local Address          Foreign Address        State

C:\Users\admin>netstat -p ip

Active Connections

  Proto  Local Address          Foreign Address        State

C:\Users\admin>netstat -p tcpv6

Active Connections

  Proto  Local Address          Foreign Address        State

  TCP    [::1]:1569             www:28171              ESTABLISHED

  TCP    [::1]:28171            www:1569               ESTABLISHED

C:\Users\admin>netstat -p udpv6

Active Connections

  Proto  Local Address          Foreign Address        State

C:\Users\admin>

C:\Users\admin>netstat -r

===========================================================================

Interface List

 25…b8 88 e3 91 92 ee ……Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30)

 28…c0 14 3d cf 04 89 ……Broadcom 802.11n Network Adapter

  6…c2 14 3d cf 04 89 ……Microsoft Wi-Fi Direct Virtual Adapter

 31…c0 14 3d cf 04 89 ……Microsoft Hosted Network Virtual Adapter

 10…02 60 3e f7 9b 01 ……BlackBerry Virtual Private Network

 21…00 ff 90 04 a3 88 ……TeamViewer VPN Adapter

  1………………………Software Loopback Interface 1

 24…00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

 11…00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter

===========================================================================

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

      169.254.0.0      255.255.0.0         On-link     169.254.161.0    261

    169.254.161.0  255.255.255.255         On-link     169.254.161.0    261

  169.254.255.255  255.255.255.255         On-link     169.254.161.0    261

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link     169.254.161.0    261

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link     169.254.161.0    261

===========================================================================

Persistent Routes:

  None

IPv6 Route Table

===========================================================================

Active Routes:

 If Metric Network Destination      Gateway

  1    306 ::1/128                  On-link

 10    261 fd00::/8                 On-link

 10    261 fd1e:b8de:ef51:e332:a665:e8ea:9594:5322/128

                                    On-link

 10    261 fe80::/64                On-link

 10    261 fe80::d8ac:2c6c:9cb1:a100/128

                                    On-link

  1    306 ff00::/8                 On-link

 10    261 ff00::/8                 On-link

===========================================================================

Persistent Routes:

  None

C:\Users\admin>

C:\Users\admin>netstat -s

IPv4 Statistics

  Packets Received                   = 2832005

  Received Header Errors             = 0

  Received Address Errors            = 1237588

  Datagrams Forwarded                = 15967

  Unknown Protocols Received         = 1

  Received Packets Discarded         = 209408

  Received Packets Delivered         = 2069451

  Output Requests                    = 1377266

  Routing Discards                   = 0

  Discarded Output Packets           = 7125

  Output Packet No Route             = 293

  Reassembly Required                = 0

  Reassembly Successful              = 0

  Reassembly Failures                = 0

  Datagrams Successfully Fragmented  = 0

  Datagrams Failing Fragmentation    = 0

  Fragments Created                  = 0

IPv6 Statistics

  Packets Received                   = 214942

  Received Header Errors             = 0

  Received Address Errors            = 309

  Datagrams Forwarded                = 0

  Unknown Protocols Received         = 0

  Received Packets Discarded         = 11840

  Received Packets Delivered         = 222364

  Output Requests                    = 36097

  Routing Discards                   = 0

  Discarded Output Packets           = 108

  Output Packet No Route             = 111

  Reassembly Required                = 0

  Reassembly Successful              = 0

  Reassembly Failures                = 0

  Datagrams Successfully Fragmented  = 0

  Datagrams Failing Fragmentation    = 0

  Fragments Created                  = 0

ICMPv4 Statistics

                            Received    Sent

  Messages                  372         1110

  Errors                    0           0

  Destination Unreachable   347         785

  Time Exceeded             0           0

  Parameter Problems        0           0

  Source Quenches           0           0

  Redirects                 0           0

  Echo Replies              24          1

  Echos                     1           324

  Timestamps                0           0

  Timestamp Replies         0           0

  Address Masks             0           0

  Address Mask Replies      0           0

  Router Solicitations      0           0

  Router Advertisements     0           0

ICMPv6 Statistics

                            Received    Sent

  Messages                  442         671

  Errors                    0           0

  Destination Unreachable   39          47

  Packet Too Big            0           0

  Time Exceeded             0           0

  Parameter Problems        0           0

  Echos                     0           0

  Echo Replies              0           0

  MLD Queries               0           0

  MLD Reports               0           0

  MLD Dones                 0           0

  Router Solicitations      0           188

  Router Advertisements     68          0

  Neighbor Solicitations    142         259

  Neighbor Advertisements   193         177

  Redirects                 0           0

  Router Renumberings       0           0

TCP Statistics for IPv4

  Active Opens                        = 112835

  Passive Opens                       = 1570

  Failed Connection Attempts          = 572976

  Reset Connections                   = 2939

  Current Connections                 = 16

  Segments Received                   = 1453495

  Segments Sent                       = 1032659

  Segments Retransmitted              = 144675

TCP Statistics for IPv6

  Active Opens                        = 4308

  Passive Opens                       = 3104

  Failed Connection Attempts          = 1135

  Reset Connections                   = 5516

  Current Connections                 = 2

  Segments Received                   = 122788

  Segments Sent                       = 120622

  Segments Retransmitted              = 2274

UDP Statistics for IPv4

  Datagrams Received    = 391876

  No Ports              = 20916

  Receive Errors        = 193709

  Datagrams Sent        = 195148

UDP Statistics for IPv6

  Datagrams Received    = 221047

  No Ports              = 11355

  Receive Errors        = 486

  Datagrams Sent        = 19684

C:\Users\admin>

C:\Users\admin>netstat -t

Active Connections

  Proto  Local Address          Foreign Address        State           Offload State

  TCP    127.0.0.1:1542         www:1563               ESTABLISHED     InHost

  TCP    127.0.0.1:1542         www:1564               ESTABLISHED     InHost

  TCP    127.0.0.1:1542         www:1566               ESTABLISHED     InHost

  TCP    127.0.0.1:1542         www:28176              ESTABLISHED     InHost

  TCP    127.0.0.1:1542         www:28385              ESTABLISHED     InHost

  TCP    127.0.0.1:1542         www:54458              ESTABLISHED     InHost

  TCP    127.0.0.1:1561         www:1562               ESTABLISHED     InHost

  TCP    127.0.0.1:1562         www:1561               ESTABLISHED     InHost

  TCP    127.0.0.1:1563         www:1542               ESTABLISHED     InHost

  TCP    127.0.0.1:1564         www:1542               ESTABLISHED     InHost

  TCP    127.0.0.1:1566         www:1542               ESTABLISHED     InHost

  TCP    127.0.0.1:28176        www:1542               ESTABLISHED     InHost

  TCP    127.0.0.1:28385        www:1542               ESTABLISHED     InHost

  TCP    127.0.0.1:48485        www:48486              ESTABLISHED     InHost

  TCP    127.0.0.1:48486        www:48485              ESTABLISHED     InHost

  TCP    127.0.0.1:51928        www:7467               SYN_SENT        InHost

  TCP    127.0.0.1:54458        www:1542               ESTABLISHED     InHost

  TCP    [::1]:1569             www:28171              ESTABLISHED     InHost

  TCP    [::1]:28171            www:1569               ESTABLISHED     InHost

C:\Users\admin>

C:\Users\admin>netstat -y

Active Connections

  Proto  Local Address          Foreign Address        State           Template

TCP    127.0.0.1:1542         www:1563               ESTABLISHED        Internet

TCP    127.0.0.1:1542         www:1564               ESTABLISHED        Internet

TCP    127.0.0.1:1542         www:28176              ESTABLISHED        Internet

TCP    127.0.0.1:1542         www:28385              ESTABLISHED        Internet

TCP    127.0.0.1:1542         www:54458              ESTABLISHED        Internet

TCP    127.0.0.1:1542         www:1566               ESTABLISHED        Internet

TCP    127.0.0.1:1561         www:1562               ESTABLISHED        Internet

TCP    127.0.0.1:1562         www:1561               ESTABLISHED        Internet

TCP    127.0.0.1:1563         www:1542               ESTABLISHED        Internet

TCP    127.0.0.1:1564         www:1542               ESTABLISHED        Internet

TCP    127.0.0.1:1566         www:1542               ESTABLISHED        Internet

TCP    127.0.0.1:28176        www:1542               ESTABLISHED        Internet

TCP    127.0.0.1:28385        www:1542               ESTABLISHED        Internet

TCP    127.0.0.1:48485        www:48486              ESTABLISHED        Internet

TCP    127.0.0.1:48486        www:48485              ESTABLISHED        Internet

TCP    127.0.0.1:51959        www:7467               SYN_SENT           Internet

TCP    127.0.0.1:54458        www:1542               ESTABLISHED        Internet

C:\Users\admin>

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s