After explaining various netstat -commands ports are explained which might help you identify suspicious connections to your computer. It is a good idea to know the standard basic ports like 80 for a http connection and 21 for a ftp connection. This does not mean that every connection on port 80 for instance is harmless but it is a good indicator to leave those ports alone for the beginning and concentrate on more “suspicious ports first. Ok, so we know about netstat and ports, next in the line is tracert which lets you trace a connection to its beginning. If the hacker is not using a proxy to mask his real ip you find out about his internet service provider this way.

After that reverse dns querries and dns are explained. The last chapter lists common ports that are often used by trojans and the like. All in all a very good article for everyone who wants to know more about his computer. This is of course aimed at beginners and a good starting point for them. Its easy to use google for further information.

It explains the netstat command which shows all connections to your computer and how to interpretate them. After that the tracert command is explained which traces a connection. Finally it gives information on dns, how to lookup a ip and get the host of the connection.

It´s a useful tutorial that everyone who does not understand this concepts should read. It does not explain proxies which most hackers nowadays use. A tracert would lead to the proxy but not to the hacker himself.