Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: located threats- system32\drivers\spuo.sys What is it & can i delete?


11 Feb 2014   #11

windows 7 ultimate x64
 
 

Judging by the previous results, am I to conclude that AVG gave me false positives and that i shouldn't erase them?

My System SpecsSystem Spec
.

11 Feb 2014   #12

Windows 7 Home Premium
 
 

Let's submit the file for analysis to VirusTotal
http://www.virustotal.com/

File:
C:\Windows\System32\drivers\spuo.sys

Use the 'Choose File' button to navigate to the location of the file.

In the Choose file to upload prompt, select the file, then, click the 'Open' button.
The file is now displayed in the blank box of VirusTotal
Click: Scan It, and wait for the results.
If you get a message saying: File has already been analyzed, click: Reanalyze file now

Once scanned, please provide the link to the results page in your reply.
My System SpecsSystem Spec
12 Feb 2014   #13

windows 7 ultimate x64
 
 

i tried searching for it but couldn't locate it... I tried "show hidden folders" AND un-checking "hide protected operating files" but i still couldn't see it in said location...
My System SpecsSystem Spec
.


12 Feb 2014   #14

Windows 7 Home Premium
 
 

Quick question. Do you have any CD Emulation software installed? (Alcohol or Daemon Tools) If so have a look here:

Why we request you disable CD Emulation when receiving Malware Removal Advice - Virus, Trojan, Spyware, and Malware Removal Logs
My System SpecsSystem Spec
12 Feb 2014   #15

windows 7 ultimate x64
 
 

I used to use Daemon Tools a lot. Even though i haven't turned it on in a long long time, it looks like it still had its virtual drive in my computer. I used Defogger as instructed and am re-running the Anti-Rootkit softwares again.
So far, Micro Trend hasn't found anything (as usual), and Malwarebytes is taking it's sweet time with the scan (again... as usual).
I also saw that it could be what was causing some of my windows updates to regularly not install. I'll also be installing all waiting windows updates now.
My System SpecsSystem Spec
12 Feb 2014   #16

Windows 7 Home Premium
 
 

If I recall correctly, Daemon tools has been known to cause some hang-ups with sptd.sys

However, what we have here is spuo.sys

Also, the fact that the file cannot be found anywhere seems to confirm that this is an AVG issue.
My System SpecsSystem Spec
13 Feb 2014   #17

windows 7 ultimate x64
 
 

In any case, both Anti-Rootkits found nothing and i've completed all pending windows updates. So r u saying that i should ignore AVG's findings?
Also, do you have any other suggestions on things i should do?
So far the issue has stopped but i'm not sure if it's permanently gone; and if it is, then i'm not really sure what exactly cured the problem...
My System SpecsSystem Spec
14 Feb 2014   #18

Windows 7 Home Premium
 
 
spuo.sys

Quote   Quote: Originally Posted by cottonball View Post
If I recall correctly, Daemon tools has been known to cause some hang-ups with sptd.sys

However, what we have here is spuo.sys

Also, the fact that the file cannot be found anywhere seems to confirm that this is an AVG issue.
Line of thought was - if Daemon Tools is installed it could possibly interfere with scanners that could detect spuo.sys. Not that deactivating the Damon Tools driver or removing it would eliminate spuo.sus as it's clearly nothing to do with Daemon Tools.
My System SpecsSystem Spec
14 Feb 2014   #19

Windows 7 Home Premium
 
 

Hmmmm...to my understanding, Daemon Tools use a hidden driver (sptd.sys) as part of its
CD Emulation, and may be seen as a Rootkit, or will interfere with the proper operation
of Rootkit scanners.

sptd.sys cannot be opened, shows as a hidden object, etc.

That is why a program called Defogger is run.
Download Defogger - MajorGeeks

It enables or disables CD emulation, a step often required in removing difficult malware.

However, as mentioned before, IMO spuo.sys is not a relative...
My System SpecsSystem Spec
14 Feb 2014   #20

Windows 7 Home Premium
 
 

Hmmmm...to my understanding, Daemon Tools use a hidden driver (sptd.sys) as part of its
CD Emulation, and may be seen as a Rootkit, or will interfere with the proper operation
of Rootkit scanners.

sptd.sys cannot be opened, shows as a hidden object, etc.

That is why a program called Defogger is sometimes run.
Download Defogger - MajorGeeks
It enables or disables CD emulation, a step often required in removing difficult malware.

However, as mentioned before, IMO spuo.sys is not a relative...I could be wrong, though.
My System SpecsSystem Spec
Reply

 located threats- system32\drivers\spuo.sys What is it & can i delete?




Thread Tools



Similar help and support threads for2: located threats- system32\drivers\spuo.sys What is it & can i delete?
Thread Forum
How to delete a file in system32 System Security
Need Help finding a system32 folder to delete all viruses found. System Security
cant delete windows.old (no longer located in C:\.) General Discussion
c:\windows\system32\drivers\pwzswb BSOD Help and Support
How to find system32 file and delete jucheck General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 04:16 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33