There are numerous methods to see if you have been hacked.
Using the Command Prompt, you can run a command which will
check for incoming and outgoing connections to your computer.
By checking all the established connections, you can identify a
malicious connection from a hacker
1. Click “Start,” then type “cmd” into the quick search. Right-
click the app link and click “Run as administrator.”
2. Type “netstat -an” and press “Enter.
3. Look through the results in the command-line tool
“netstat” (network statistics). The first column tells you the
type of connection, the second shows you the local address,
the third the foreign address, and the final column shows the
status of the connection.
4. Check the port numbers for any intrusion. The port numbers
follow the IP or server address in the following format:
“:XXXX.” Ports between 0 and 1023 are generally safe; you
should be suspicious of ports between 1024 and 65535 as it is
most likely an attacker will run malicious software on there.
Certain peer-to-peer software applications use the final port range, so close any P2P software and scan again.
5. Check suspicious IP addresses by looking in the third
column. The foreign address refers to the location of the
connection destination. Use a search engine to search
through these IPs to see if they match up with programs,
such as Windows Live Messenger.
No comments:
Post a Comment