Q

Classifying unknown system processes

Windows security threats expert Kevin Beaver provides some tools and suggestions on how to determine whether or not an unknown system process poses a security threat.

Which application has the SYS32C.EXE process? My client is convinced its a virus but Google has not turned anything up yet so far.
You're right…I'm not finding anything on it either. Have you tried loading Sysinternals' Process Explorer to see if it's loaded and what resources it's taking up? Do that, and also consider running Foundstone's Vision to see if it's bound to any TCP or UDP port. You should try RootkitRevealer as well. Other than that, if the system comes up clean when running anti-virus and anti-spyware (try a couple such as Spybot and Microsoft's AntiSpyware) software, you should be OK.

View questions and answers from all of our Windows security experts here.

This was first published in February 2006

Dig deeper on Windows legacy operating systems

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchVirtualDesktop

SearchWindowsServer

SearchExchange

Close