those pesky windows processes

[ceagle]

Ever wonder what those SVCHOST processes are?

Paste or type this after a command prompt ...

tasklist /svc /fi "imagename eq svchost.exe"

Pretty Cool! (and helpful debugging)... ^v^

Comments

[canid-anubis.livejournal.com]

Now we'll just have to find out what all those other services are that get listed ;)
But yeah, thanks for pointing that out. Good trick.

[loveyouenola.livejournal.com]

Cool! Thanks for the tip.

[furahi.livejournal.com]

You can also use process explorer, a really nifty utility for Windows

[karpour.livejournal.com]

oops ok you were faster ;)

[telbert.livejournal.com]

Can Process Explorer suppress unwanted processes as well?

[karpour.livejournal.com]

I recommend Process Explorer :)
It's a great tool, I used it for getting rid of a nasty trojan after 3 antivirus programs failed.
Also Technet has alot of other very handy tools, worth to take a look at!

[makovette.livejournal.com]

C:\>tasklist /svc /fi "imagename eq svchost.exe"

Image Name PID Services
========================= ====== =============================================
svchost.exe 1196 DcomLaunch, TermService
svchost.exe 1244 RpcSs
svchost.exe 1324 AudioSrv, BITS, Browser, CryptSvc, Dhcp,
dmserver, ERSvc, EventSystem,
FastUserSwitchingCompatibility, helpsvc,
lanmanserver, lanmanworkstation, Netman,
Nla, RasAuto, RasMan, Schedule, seclogon,
SENS, SharedAccess, ShellHWDetection,
srservice, TapiSrv, Themes, TrkWks, W32Time,
winmgmt, wscsvc, wuauserv, WZCSVC
svchost.exe 1488 Dnscache
svchost.exe 1556 LmHosts, RemoteRegistry, SSDPSRV, upnphost,
WebClient
svchost.exe 1364 stisvc
svchost.exe 2056 HTTPFilter

Slick! :)

Mako