 | 1 | initial version |
Hi MOS,
As Chuckc indicated the IP address belongs to dropbox. In my job it is common to need historic data on IP address use and historic DNS use (also known as passive DNS). One of the tools I use is called virustotal, you can find the results for that IP at https://www.virustotal.com/gui/ip-address/162.125.35.134/detection. Have a look at the relations section if you want to see the historic overview.
Since you do not indicate if you are using a Windows, Linux or Mac I can't really help you with the exact syntax but I would recommend you to have at the netstat command on your operating system. It is able to tell you which binary is making the connection. You will then be able to tell what the process ID is (PID) which allows you then to look at the processes and identify that process.
I hope the answer makes a bit of sense, give a shout if you get stuck.
