If you are browsing on the internet and open 3-4 website, and you are assuming you are connected on those sites only. May be you are wrong. Your PC makes lot’s of internet connection in background without your knowledge. While some of the connection are harmless, there are always a chance that you have some malware, spyware, or adware using your Internet connection in the background without your knowledge. It could be the reason to slowdown your computer.
How to see what’s going on in background without using any third party tool
You can view your PC’s active connections with ‘netstat’ command from PowerShell or the Command Prompt.
Using ‘netstat’ command, you can generate a list of everything that has made an your network and internet connection for specified amount of time.
If you are using Window 10 or 8, Press Win+X, scroll up and select ‘Windows PowerShell (Admin)’. If you would like to use Command Prompt, Type Command Prompt in search windows, select ‘command prompt‘, right-click, then choose ‘Run as Administrator’
Now At the prompt, type the following command, and then press Enter.
netstat -abf 5 > d:\activitystatus.txt
We have used the netstat command with four command switches
- -a Option – Show all the connections and listening ports
- -b Option – What application making the connections
- -f Option – Display the full DNS name of each connections.
- 5 Option – Pull connection in every five seconds.
- > Symbol – to save the result in activitystatus.txt file.
Once you execute the command wait for few minutes to record the result and then press Ctrl+C to stop the recording.
The text file is stored in your specified location or if you do not specified any location, you file will be stored at \Windows\System32 folder. Next, navigate your file location and open the activitystatus.txt file.
The activitystatus.txt file lists all processes on your computer (browsers, websites, windows updates, antivirus updates, any malware, spyware, Email clients etc.) that have made an Internet connection in the time during which you left the command running. This will show the established connections, time_wait and open ports on which apps or services are listening for traffic. This file also lists which processes connected to which websites.
If you see some process name or websites addresses, which you are not aware, you can Google it and also search for how to get rid of it. Other wise you can take technical advise form experts.