just sayin.. doesn't work for vista. unless you are running it as admin. but note. with vista they block it. so you have to enable it.. you can find tuts on here on how to do that :) . p.s nice vid

When i type netstat -b it says "The requested operation requires elevation"

@behnoudbehrad run CMD as admin

@behnoudbehrad If you have windows 7 then you need type search cmd, right mouse button click, click administration then click okay. :)

Good video... you sound like robert downey jr. lol!

seth rogan

Thanks.

Can i have thumbs?

i heard it's easy to get thumbs now..

@pizza9290 SHUT UP!

hello,i want to know something about this...if i put in the window.netstat -b...it says i am not authorised....?

@Sumozinho open as admin

that was very helpful. thank you very much.

is this only for windows xp?

@KeepItFresh02 go away...

@KeepItFresh02 works on all xp and onward systems



@TheYoshiPC

Stupid? me?

BTW you cant remove a keylogger cause it does not use a port (eccept for mail)

you can remove a remote admin tool but not keylogger...

thanks i hope works im going to try to remove a keyloger stupid hackers trying to get password etc

its netstat space -b



is dash mean space bar?

i looked up dash in dictionary it says to smash or destroy

is dash mean space bar?

@archie977 means a hyphen,dude

The requested operation requires elevation

@koyi991 run as admin



The requested operation requires elevation PLEASE HELP!

Thank u very much! This really helped.

hey umm on my laptop... when i open command promt.. it says

the command prompt has been disabled by your adimistrator.. and i am the admin. on my computer

what do i do???

@noe1239 right click command prompt and click on 'run as administrator' and allow

@noe1239 nope it didnt work...

it tells me the same thing

the connections will not stop my anti virus keeps popping up with a new connection every 30 seconds or so any clues as to why and is that a problem.

i tried typing netstat -b, but it says the required operations require elevation.

What it means?

@Josephlive88 I think you need to run the command prompt as administrator. Go to start/all programs/accessories and right click on command prompt -> run as administrator

@VqwertyV cool, thanks it works. =)

whats CAT ?

hey i got windows 7 just wondering why when i type netstat /? it shows me commands like it should but, when i type netstat -b saids needs evaluation

@TrustfulUser Ok i figured it out in windows 7 u have to open cmd.exe as administrator.... wow i noticed alot of stuff and programs have to be runned with that now interesting

whats netstat -ano stand for?

Remember that in Vista/7 you have to run the shell via rclick run as admin via the start menu and even then it's still possible for sophisticated programs to hide the connection. Personal firewalls cannot block this traffic. Unfortunately I can only find German links why Personal Firewalls are inherently unsafe. Google things like ICMP Block.

A firewall is meant to be _between_ your pc and your internet connection (a hw firewall). Basically a router running linux will du the trick with effort.

I check netstat through MyLanViewer, it is very convenient to view incoming and outgoing connections for each process separately.

Very informative, I will keep this in mind when monitoring my network.

informative and useful. thumbs up

Need help removing a virus pay for a AV or get a firewall. Very easy to remove a virus just to long to say.

@gvrdt1 yeah< I need help

How can I terminate connections

I Only want my connection to be one thing I dont want people leeching bullshit on my stuff can you help?

@gvrdt1 Actually no. Even simple current gen malware will manage to run persistent backup processes by hijacking root priorities. It is possible for connection to be scrambled and undetectable via netstat. Local running proxies would be one possibility

i found 50.17.230.132:443  ESTABLISHED, what can i do to stop him from hacking me

@Akralaa That's a google IP address. Just do a quick whois lookup to see who its registered to before you get all worried.

There are plenty of genuine active connections on any computer at any time and some may run on after you've closed the application using it.

It is very rare to actually catch a non-genuine active connection with netstat, so I wouldnt' worry.

how did you run internet explorer? what program did you use just to write it's name?

Thanks

@yuvi135 it's launchy

How-to Use NETSTAT.EXE

Click start, type CMD. Right click the entry in the start menu, choose 'run

as administrator'. Run netstat from the command line.

Note that some parameters, like -b, require elevation to complete

successfully, thus the reason for running it in this manner.

my txt file would not save

If you have a weird command and you don't know what it is, just google it.

when i do a "netstat -b" it says the requested operation requires evaluation any suggestions why it says that? im using windows vista

@djwattz06 run as admin

whats jqs.exe please let me know send me a messege please

HELP! What doesl CLOSE_WAIT and TIME_WAIT mean?

thanks for this, its very useful. ive never heard of this command before

I have a connection called "jqs.exe"

how do i find out what it is?

thank so much finally a grown up that doesn't just copy other videos.

hi where can i get all cmd s from? i mean i would like to have the cmds where can i download them. is ther any book for cmds?

but im so confused i don't have that computer or program

i found my problem now how do i delete it !

@X9Justin9X kill *file name* deletes it permanently so it doesn't go in your recycle bin... don't want to take any chances then get your anti-virus to do a full system scan and get it to quarantine any malicious programs.

lol lets do a netstat-b Also MAN (windows key+R Key)

Great video. thank you

mine wont go into netstat -b requires elevation?

@88KRUZE Start (Windows Logo), All Programs, Accessories, right-click Command Prompt, choose to Run as Administrator. This will give you the “elevated” permission to run NETSTAT -B

im curious .... They all say firefox.. but some of them say extablished and dont show the pid # should i be concerned about this ?

what do i do if i cant type backslash on cmd? it just comes out as "W" with a line across..

thanks for a very clear tutorial

i got somemore to add

by typing netstat -ba will get more result

btw...i found wininit.exe trojan currently running without my notice....

thanks again

@Ellixandria

how do i delete this i got like 5 of these OMFG

@X9Justin9X Download Malwarebytes’ Anti-Malware and Super Anti-Spyware

Both are very good program and can be found in a well known website called such as filehippo or cnet

After download, update it and restart your PC. During the first flash screen press F8 to enter into Safe Mode(this can stop the trojan being running), scan your PC with both programs, It should done the work.

Plus: this is a very good program also but not famous enough compare to the other two, Spybot Search and Destroy,

10x

or maybe i can have a history of all spywares that had been on computer?

or maybe i can have a history of all spywares?

ok, I have done all my clean up and spyware search IMMEDIATELY after my steam got hacked, but is there any way i can still know if i was hacked before the clean up?

@Iamatheist1234 the reason im asking this is that i have never told anyone about my pw on steam, so i have no idea how they got my pw except for key logger , and if they have had a key logger on my computer before clean up they would have access to my bank account, and even steal my personal identity (my address, phone num, and DOB, SSI) so i want to know if i WAS actually hacked, however i have already did the clean up so maybe they no longer have access to my computer

@Iamatheist1234 so is there any way to find out if your computer WAS hacked before spyware clean ups?

Very useful! Thank you.

Yaaaaay so Im not hacked thx for the vid.

i'm 12 and what's this

Thanks for the great vid!

when I type /netstat -b, I find like 40 ip's connected , I already downloaded spyware doctor, counter spy, and the problem stills, can you help me»

@Eminemtuga um.....those prgrams can be infected them selves ....best thing to use is malwarebytes

@TheDarkcloud2020 No it isn't a virus. It's just a generic host process. In some cases it might be a disguised virus, but i doubt it. Even i have svchosts in my computer and they are harmless.

am i hacked i have netbios-ssn



TCP 192.168.1.104:14254 war-pool1-55:1441  TIME_WAIT TCP 192.168.1.104:14254 75-120-52-246:50078 TIME_WAIT TCP 192.168.1.104:14254 c-98-212-190-186:54927 TIME_WAIT

i dont think these look right? should i be worried?

@CedricTheDuck2 I think its your own ip check it.

@CedricTheDuck2

your good, those are network sockets on idle machines..

Some malware can hide their sockets from netstat

@TheDarkcloud2020 yes it is and you should definitely remove it

pip pip cheerio, I'm a green little lizard

Another way you can copy it is to right click your mouse, then click on select all, then click on mark. Then open up a text file on your desktop and paste it in there.

One thing I would like to know though, is why Windows always wants permission to install something before you can run Netstat. Are they pulling off their own spying material before it runs?

So what do you do if you have a bunch of foreign addresses connected to your computer? What does that tell you and what do you do to find out who they are?

if u are using windows vista or windows 7.

go to start >accessories and right click on run and press 'use as administrator''

it should work from there

also, after I pull up active connections on the CMD, could you be more speciffic of what to look for as far as spyware or malware. and what does (svchost.exe) mean? is this good or bad? thanks

@TheMrJurns it is a generic host process name for services that run from dynamic-link libraries

its just to transfre a .dll file to a .exe it was made by microsoft its nothing bad

@TheMrJurns and it is not killable

what does it mean when you do this and another window pops up & says NO DISK?

Excellent video! Expert advice! You should upload your video to Ewisdomtv

@

b11bc

Stop running Rs servers haha i bet you fail at it anyway lmao

tks lol

kool! i got 1 question. i run a private game server on my computer so i have port: 43594 open. there seems to be some nullers now and then trying to flood my server. soo my question is once i find out there ip address how would i ban them form sending any packets to my server as well as connecting to my server. these hackers that try to flood my server send a new connection every second! so how do i make it so some ipaddress can not connect to my server but others can?

@b11bc Configure your firewall to block those IPs

Thank you so much, what a great video!

Learned a new tool today!

what does it mean when it says "the requested operation requires elevation"

You're either using Vista or Windows 7 and you need to run the command prompt as the Administrator even if you are logged in as an Admin.

Go to: Start > All Programs > Accessories > (scroll down to Command Prompt) right click and select "Run as Administrator"

Now try it.

lol yeah I figured it out awhile ago. I should have posted it but I am sure my comment and your answear will help others.

@stef808 Thanks that helped me also.

HOW DO YOU DO THIS FOR MAC?

@Lightiel1 hahahaahha I AM A PC!!!! buy a pc ;)

@Lightiel1 lol mac dont have command its Virus proffet noob

Excellent! Thank you!

great!!!!!!!!!nice video

Nice tutorial, simply but usefull

thx

What does he mean at 4:10 when he says run "utility"? I have tons of stuff when I run netstat and would like to stop all this traffic that runs while my browser sits idle. Thanks.

Pretty cool, more ways to find; and perhaps a faster way to see once u close out your apps what's still remaining.

great tutorial, thank you!!

I've been running Linux for the past few years. Funny how I don't have to worry about spyware and endless reinstalls anymore.

This process requires an escalation?

@SovietWrath run CMD in admin mode and it will work. right click CMD and click on run as admin.

u didnt show how to delete these items or ips

u have 19 names or items on netsta -b is this normal or should i be worried a lot of ip addresses

my laptop says

The requested operation requires elevation.

when I type in netstat -b

what does this mean.

@slinkyboi321 run CMD in admin mode and it will work. right click CMD and click on run as admin. This is a feature from vista and probably windows 7 also.

thank you very much

if is windows vista you go on all programs acessessories ,command prompt right-click an run as admistrator!!

top vid nice work ;@)

Good vid, but why does it only work if I have to run as administrator when Im useing a administrator accout?

I suppose its so that people on a guest account cant change the password to your Admin account.

Thanks for the tip :)

more fast: start,run,cmd,netstat -b

what does it mean if it says the requested operation requires elevation PLEASE HELP ME IVE HAD THIS PROBLEM BEFORE

Start (Windows Logo), All Programs, Accessories, right-click Command Prompt, choose to Run as Administrator. This will give you the "elevated" permission to run NETSTAT -B

@pcmedianet It says: can't find the document, the wordpad document that I've sent to my C:\ root. Sorry to bother, but I can't understand what I'm doing wrong whatsoever, I followed your directions step for step..

@rainingblood92 I HAD THE SAME THING HAHA funnyxD

it dident work for me x'D -.-

That was a great vid, could you produce one that encounters connections that you may not want to be connected too?

Using netstat?

Great video thanks

Epic! :D

i'm assuming you're running VISTA. so you've to right-click cmd and click 'run as administrator'..

Thanks a lot man!

very useful

this guys a noob i pwn i 1337

1010010100001

hey i have one that says SYSTEM... can some one explain

I also get the operation requires elevation, what's this?

Maybe you're not playing U2 in loud enough!

Mine saids needs elevation...what is that??

when you launch cmd, right click and press run as administrator.

mine also says it needs elevation

wtf?

pls somdebody help me..!!

when i type netstat -b..it only appears like this

"The Requested operation requires elevation"

i nid reply..as soon as possbile.thanks to all^_^

hell, i am in the same!!

very helpful

Cool

mine says msnmgr.exe or something

This helpful. Additionally you might also use a boot able cd

WinPE or a Linux boot able CD to generate a checksum of netstat (md5sum | SHA sum ) as a virus may have made netstat untrustworthy. It is also helpful to use a firewall that understands checksums and signed binaries. so that you can be alerted to file size changes that don't correspond to an update. Browse safely create a list of trusted sites for "active" content in IE/Firefox.

Disabling Flash, Java, Java scripting for everything is no fun right?

thanks man, you save me a lot of headache.

Is it safe to manualy delate the spyware or malware etc????

no its best not but get some software to remove it for you safely to be best but u can do it if u want

great vid but you may want to tell the vista members to right click on cmd and run as admin or you get "the requested operation requires evaluation"