jolin wong Posted September 7, 2018 Share Posted September 7, 2018 I have ten svchost.exe process running in the computer, process explorer shows all of them coming from c:\windows\system32 directory, so looks like no malware, but is there any chance that rootkit can do process injection to svchost, any tool can detect it? thanks Link to comment Share on other sites More sharing options...
Maria Yukie Posted September 30, 2018 Share Posted September 30, 2018 I you can make a clean install of your operating system. you can see how many svchost.exe are running. Also what kind of rootkit are you talking about? is it Userland or Ring-0 Rootkit? 😁 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now