located threats- system32\drivers\spuo.sys What is it & can i delete?

Page 2 of 3 FirstFirst 123 LastLast

  1. Posts : 17
    windows 7 ultimate x64
    Thread Starter
       #11

    Judging by the previous results, am I to conclude that AVG gave me false positives and that i shouldn't erase them?
      My Computer


  2. Posts : 2,470
    Windows 7 Home Premium
       #12

    Let's submit the file for analysis to VirusTotal
    http://www.virustotal.com/

    File:
    C:\Windows\System32\drivers\spuo.sys

    Use the 'Choose File' button to navigate to the location of the file.

    In the Choose file to upload prompt, select the file, then, click the 'Open' button.
    The file is now displayed in the blank box of VirusTotal
    Click: Scan It, and wait for the results.
    If you get a message saying: File has already been analyzed, click: Reanalyze file now

    Once scanned, please provide the link to the results page in your reply.
      My Computer


  3. Posts : 17
    windows 7 ultimate x64
    Thread Starter
       #13

    i tried searching for it but couldn't locate it... I tried "show hidden folders" AND un-checking "hide protected operating files" but i still couldn't see it in said location...
      My Computer


  4. Posts : 4,776
    Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
       #14

    Quick question. Do you have any CD Emulation software installed? (Alcohol or Daemon Tools) If so have a look here:

    Why we request you disable CD Emulation when receiving Malware Removal Advice - Virus, Trojan, Spyware, and Malware Removal Logs
      My Computer


  5. Posts : 17
    windows 7 ultimate x64
    Thread Starter
       #15

    I used to use Daemon Tools a lot. Even though i haven't turned it on in a long long time, it looks like it still had its virtual drive in my computer. I used Defogger as instructed and am re-running the Anti-Rootkit softwares again.
    So far, Micro Trend hasn't found anything (as usual), and Malwarebytes is taking it's sweet time with the scan (again... as usual).
    I also saw that it could be what was causing some of my windows updates to regularly not install. I'll also be installing all waiting windows updates now.
      My Computer


  6. Posts : 2,470
    Windows 7 Home Premium
       #16

    If I recall correctly, Daemon tools has been known to cause some hang-ups with sptd.sys

    However, what we have here is spuo.sys

    Also, the fact that the file cannot be found anywhere seems to confirm that this is an AVG issue.
      My Computer


  7. Posts : 17
    windows 7 ultimate x64
    Thread Starter
       #17

    In any case, both Anti-Rootkits found nothing and i've completed all pending windows updates. So r u saying that i should ignore AVG's findings?
    Also, do you have any other suggestions on things i should do?
    So far the issue has stopped but i'm not sure if it's permanently gone; and if it is, then i'm not really sure what exactly cured the problem...
      My Computer


  8. Posts : 4,776
    Microsoft Windows 7 Home Premium 64-bit 7601 Multiprocessor Free Service Pack 1
       #18

    spuo.sys


    cottonball said:
    If I recall correctly, Daemon tools has been known to cause some hang-ups with sptd.sys

    However, what we have here is spuo.sys

    Also, the fact that the file cannot be found anywhere seems to confirm that this is an AVG issue.
    Line of thought was - if Daemon Tools is installed it could possibly interfere with scanners that could detect spuo.sys. Not that deactivating the Damon Tools driver or removing it would eliminate spuo.sus as it's clearly nothing to do with Daemon Tools.
      My Computer


  9. Posts : 2,470
    Windows 7 Home Premium
       #19

    Hmmmm...to my understanding, Daemon Tools use a hidden driver (sptd.sys) as part of its
    CD Emulation, and may be seen as a Rootkit, or will interfere with the proper operation
    of Rootkit scanners.

    sptd.sys cannot be opened, shows as a hidden object, etc.

    That is why a program called Defogger is run.
    Download Defogger - MajorGeeks

    It enables or disables CD emulation, a step often required in removing difficult malware.

    However, as mentioned before, IMO spuo.sys is not a relative...
      My Computer


  10. Posts : 2,470
    Windows 7 Home Premium
       #20

    Hmmmm...to my understanding, Daemon Tools use a hidden driver (sptd.sys) as part of its
    CD Emulation, and may be seen as a Rootkit, or will interfere with the proper operation
    of Rootkit scanners.

    sptd.sys cannot be opened, shows as a hidden object, etc.

    That is why a program called Defogger is sometimes run.
    Download Defogger - MajorGeeks
    It enables or disables CD emulation, a step often required in removing difficult malware.

    However, as mentioned before, IMO spuo.sys is not a relative...I could be wrong, though.
      My Computer


 
Page 2 of 3 FirstFirst 123 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 22:55.
Find Us