Potentially we will wound the computer connected to the Internet for the hacker attacks. Every day all new and new virus and Trojan programs are created therefore even the antivirus with hourly updated anti-virus bases does not guarantee full safety. The situation when the user like to look at the complete list of the connections existing at the moment is frequent.
Instruction
1. To look at the list of Internet connections, open the command line: "Start-up" – "All programs" – "Standard" – "Command line". Enter the netstat command – aon and click Enter.
2. In the graph "Local Address" you will see the list of connections with the indication of the used ports. The column "Foreign address" shows the IP addresses of remote computers with which connection is carried out. The column "Status" describes current status of connections: ESTABLISHED – connection is established, CLOSE_WAIT – connection is closed, LISTENING – wait state of connection.
3. The column PID shows identifiers of the processes using these connections. To learn names of processes, gather the tasklist command in the command line. In the graph "Name of an Image" you will see the process list, in the graph PID - identifiers of these processes.
4. If you see any suspicious process which is carrying out connection with the Internet or being in standby mode, you can always identify it by the identifier. If the process name is unfamiliar to you, use the Everest program. Start it, open the Operating system tab – "Processes". Having found process necessary to you, you will be able to find out to what program it belongs.
5. For the same purpose you can use the AnVir Task Manager program. It shows the list of all processes in a system and defines degree of their danger. You will be able to define where there are files of the program and as its start is carried out. If necessary you will be able to close any process.
6. You can "kill" any process of the command line with the taskkill command. It is the most convenient to close processes, using their identifiers. For example, the started program has identifier 1460. To close it, gather in the command line: taskkill/pid 1460/f also click Enter. Parameter f at the end of a command defines forced completion of process.