In the last article we see How Inject a backdoor into a Windows machine with a USB key
several GEEK asks if we can recognize a zombie pc which is part of a botnet hacker network? knowing that I am on windows.
To answer this question, I decided to share with you a very effective method to be aware of everything that happens on your computer.
In fact when a PC is infected with malware or spyware, it hosts a program that scans the internal disk; or to suck your contacts to send to spam databases; either to realize a relay with other infected machines to form a base of zombies.
In both cases, there are some signs that should not be overlooked :
* The fan starts at full speed when the computer is idle.
* The computer takes a long time to stop.
* Your Friends receive emails with your email address that you have not sent.
* Internet access is very slow.
* Opening pop-up ads even when your browser is closed.
How to detect a backdoor on pc
Note: This method I show you do not especially replaces the traditional methods of protection such as anti-virus.
To begin, we'll use a free software that will be very useful, it is TCPView.
TCPView monitors the activity of the TCP / IP site of your system. Unlike TCP / IP monitoring tools that ship with Windows, TCPView shows what process is associated with each TCP / IP address.
Download this tool and unzip it.
No installation is required, click the Tcpview.exe file and the program window opens. TCPView displayed every second exchange network between your PC and the outside world.
The advantage of TCPView from the netstat command is that it allows to close a connection without closing the corresponding process.
In the case of an infected PC, the remote address is "exotic".
example:
In the screenshot below, you can clearly see all the connections open on my pc:
You notice the image that there is a Telnet client connected to my computer and also a backdoor Netcat.
TCPView can block a click this backdoor and identify the location of the program that is used to get rid of.
Remember that the best support for this blog is to love and share our articles!
For more news, thank you for subscribe to the blog newsletter to its RSS feed. Please also have a look at Twitter, Google+ or Facebook for other news.
I founded the Blog DepoTech in January 2015. Self-taught in development, I have always pushed my curiosity about the topics,Web and Tech news.
ConversionConversion EmoticonEmoticon