An analyst is troubleshooting a PC that is experiencing high processor and memory consumption. Investigation reveals the following processes are running on the system:
• lsass.exe
• csrss.exe
• wordpad.exe
• notepad.exe
Which of the following tools should the analyst utilize to determine the rogue process?
A. Ping 127.0.0.1.
B. Use grep to search
C. Use Netstat.
D. Use Nessus.
CS0-002: CompTIA CySA+ ExamFULL Printable PDF and Software. VALID exam to help you PASS. |
lsass is windows.
that rules out grep.
Nessus is a vulnerability scanning tool.
Ping 127.0.0.1 is your home address.
That leaves netstat which will show you open connections.