How to find rat in computer

PART 1 - Preparing Task Manager

Open Task Manager (ctrl+alt+del). Go to the processes column and click View > Select Columns.

step-2  Check the top one (PID (Process Identifier))

step-2 Now, organize Task Manager by PID. This will make things easier to read for the next step.

PART 2 - Using Netstat to see Established Connections  Now you want to go into Start > Run > cmd > "netstat -ano". It should look similar to the picture below: 

 Only look for ESTABLISHED connections (it would be established if its a RAT or malicious), read the PID and crosscheck into Task Manager. Notice in my example that the only established connections use the PID 424. Lets take a look at what that is: