Google keyword (not too useful):
discover|determine|check program|application|software
using svchost connect|download internet
Own experience:
Run TCPView to discover PID of svchost instance connecting to Internet.
Use Process Explorer to see properties of svchost in question.
Check TCP/IP tab for established connection and the destination.
Check Services tab for service(s) with suspicious path.
Related
--------
10 Tools to Easily Determine If a Specific Process is Secretly Accessing the Internet
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment