Sometimes a PC user may have suspicions that something is wrong with his computer. For example: sudden opening or closing of programs, foreign tabs, frequent hacking of accounts and so on. One of the causes of such phenomena can be a remote access virus.
To find the virus:
- Run the command line as administrator. Conveniently open it via PCM on the Start icon.
- Navigate to your user’s directory using the command “cd C:\Users\<YourUsername>”
- Enter the command “netstat -b“. This will start to display all your programs connections, as well as their IP addresses.
- If you find an unfamiliar suspicious process, enter the command “netstat -nbo” to find out the PID of this process.
- Then run the command “taskkill /PID /<pid_your_process>F” to kill the process.
If a virus is detected, you will also see the IP address of the proxy server through which it is accessing the computer. This can be useful.