Windows security: commands helpful for your Windows security - RISING - Antivirus,Firewall,Virus,Trojan,Worm Protection,Free Download

Home > Information Center > Security Articles

Windows security: commands helpful for your Windows security

Sep 11, 2007 - RISING

Some basic and simple commands can be greatly helpful for computer security protection.

Detect network connections

If you doubt your computer gets Trojans or viruses installed, you can use a Windows command to check who is connecting to your computer. The command is 'netstat –an'. This command can let you view all the IP addresses connecting to your computer. The result list contains four parts: 'Proto' (Connection protocol), 'local address', 'foreign address' (The IP address connecting to you) and 'state' (The port status). With this command, you can completely monitor all the connections to your computer and ensure your computer is in your control.

Disable unknown services

Sometimes after you reboot the system, you may find you computer slow down dramatically. No matter how hard you try to optimize the system and scan with your anti-virus software, you just cannot find the problem. The may be some one invaded your computer and enabled some resource-consuming services. Your anti-virus software has no answer to this situation. But you can use 'net start' command to check what services are running and 'net stop [service name]' to stop the services.

Check the user accounts

Hackers and malicious attackers would like to clone the user accounts to control your computer. The method is to activate a seldom-used system default user account and then upgrade the account with Administrator privilege. This account seems identical with what it used to be, but it has become the biggest threat to your system. Hackers or attackers can use this account to control your computer.

We can use a simple command to check the accounts. Type 'net user' to check what user accounts exists on the computer. 'net user+[user name]' can check the privilege of the user account. Normally, only Administrator belongs to administrators group. If you find a user account in the administrators group and the account is not created by yourself, it could be 100% sure that your system is invaded. Use 'net user [user name] / del' to delete this account from your computer!

*You can buy RISING Antivirus here or free download to try.

*If you have any questions about RISING products, please visit http://support.rising-global.com for help.

Releated Articles