I ran netstat -ano and have an established connection to pid 4 ntos kernel... is this normal?

U

uziXwraith

Hello, To reiterate, I run windows ten, lately I have been noticing my email and other apps getting hacked, so i decided to run some diagnostics on my PC. I ran the antivirus, downloaded AVG ran that too, was all good. I then went advanced, and opened an admin CMD, and checked sfc /scannow, was fine, then i ran netstat.ano, and found that PID 4 was ESTABLISHED at some point and had a very strange IP address, TCP LOCAL [ : : 1] :10801 FOREIGN [ : : 1] :4976 Searched online and it says those are TCP UDP ports that are unassigned??? I looked up task manager details, pid 4 was labeled system, I searched online from the right click option, and NTOSKRNL came up... & thats when i panic'd... is this maybe someone remote viewing my system? Searching online gave no results, so here i am asking you! If there is a problem how do i block them reestablishing on pid 4? should i run DISM and reinstall everything? Am doing regardless, but insight is helpful.

thanks

Continue reading...
 
You must log in or register to reply here.

Similar threads

L
netstat -a reports many Established connections using the name of my computer and different ports; is this okay?
Replies
0
Views
51
Lou Arm
L
L
Ran Treesize Free (as administrator) as I was extremely low on space on my C drive and found a whopping 96GB of "System Recovery". Is it safe to delet
Replies
0
Views
273
Lelouch Vi Zoro
L
H
New PC is unable to use RDP to any server
Replies
0
Views
286
Have_I_Mentioned_I_Use_Arch
H
S
Trying to fix Windows 10 Boot Files; Previous methods have failed and I don't know what to do
Replies
0
Views
243
SuperKidoftheStars
S
Back
Top Bottom