If you don't know how to spot malicious connections, please don't post stuff like this without proper proof.
All you've to do is open up CMD as administrator >> netstat -bo and take a look at the info's it's giving you. With all of that info, alongside the PID of each program, you can identify whether there's something going on that shouldn't be running/sending packets to address XY. Other than that, if you don't know how to use a debugger to check for malicious code and what the program exactly does, run a AV scan with Kaspersky or a snapshot tool to see what kind of modifications program XY does to your system.
|