Security
•  Greatis •  AppDatabase •  Utilities •  Delphi/CB •  Visual Basic • .NET •  just4fun
RegRun Security Suite
Not an antivirus. Detects and removes rootkits/malware/adware that your antivirus could not.
One-click purchase
RegRun NIVA Platinum - Rootkit Killer

NIVA+CD-ROM

More info:
Know more?
Screenshots

FAQ

On-line manual

Print PDF

Download trial
RegRun NIVA Platinum
Forums
Greatis Forum

NI Forum

Mickey Forum

Thank you!

International
Download Russian

Download Ukrainian

Join our localization team

Home Download Order Support   Newsletter Your shopping cart ?
Virus or not?

SPTD####.sys


I installed Daemon Tools 4.0 on my computer and immediately got the warning from RegRun.

VVSN.EXE process was started and added to the Windows startup registry keys.

VVSN.EXE is identified as Adware and it was removed without problems.

But what is the strange driver SPTD9885.SYS? It contains no version information.

But I guess that it is related to Daemon Tools software.

Recently I see a lot of user requests for similar driver names.

Looks like Daemon Tools makes the random name for driver with "SPTD" + random 4 digits.

Decision:

SPTD####.sys is not a virus and it is not dangerous.

But it is not a finish of the story.


I uninstalled Daemon Tools software using Add/Remove Programs in Control Panel.

I checked the Drivers list and I found that SPTD.SYS and SPT9885.SYS still work in memory.

I opened regedit.exe and looked for SPTD subkey in the HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services.

I could not delete this subkey. And I could not read the contents of the SPTD\CFG subkey!

I made right click on the SPTD subkey and selected "Permissions" in the popup menu. I see that the Administrators group have no rights for deleting or changing.

I deleted the SPTD.SYS file from the C:\Windows\System32\Drivers folder and rebooted my computer.

After that I checked the Drivers list to be sure that SPTD.SYS has gone.

Good news! SPT9885.SYS has gone too!

Now I can see the contents of SPTD\CFG subkey.


Consluion:

  1. SPTD.SYS executes SPTD9885.SYS;
  2. SPTD.SYS hides the contents of SPTD\CFG subkey;
  3. SPTD.SYS protects the HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SPTD from chaging by using registry permissions.
If you don't use Daemon Tools - remove SPTD drivers.

They are useless for you!

Removal Procedure:

  1. Delete SPTD.SYS from the C:\Windows\System32\Drivers folder.
  2. Reboot.
  3. Delete SPTD9885.SYS or the driver with similar name from the C:\Windows\System32\Drivers folder.
  4. You may use RegRun Registry Assistant to delete protected keys without problems.
    Or use regedit.
    Go to the HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SPTD.
    Right click and choose "Permissions" in the popup menu.
    Change the rights for Adminitrator group to Full access.
    Delete SPTD subkey.
    Do the same for HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPTD.


Use RegRun!

Best regards,

Dmitry Sokolov


What's new?
July 4 2014

Released RegRun Security Suite 7.20.0.140
Full version is available for download.
Update is free for registered users

Released RegRun Reanimator 7.20.0.140 - free software for detecting and removing rootkits & malware.

February 18 2014

Released RegRun Security Suite 7.1.0.134
Full version is available for download.
Update is free for registered users

Released RegRun Reanimator 7.1.0.134 - free software for detecting and removing rootkits & malware.

February 3 2014

Released RegRun Security Suite 7.1.0.132
Full version is available for download.
Update is free for registered users

Released RegRun Reanimator 7.1.0.132 - free software for detecting and removing rootkits & malware.

September 6 2013

Released RegRun Security Suite 6.9.7.124
Full version is available for download.
Update is free for registered users

Released RegRun Reanimator 6.9.7.124 - free software for detecting and removing rootkits & malware.

June 5 2013

Released RegRun Security Suite 6.9.7.122
Full version is available for download.
Update is free for registered users

Released RegRun Reanimator 6.9.7.120 - free software for detecting and removing rootkits & malware.

September 10 2012

BootRescue - free software for Master BootRecord (MBR)/Volume Boot Record (VBR) backup/recovery.


All News


RegRun is able to remove TDL 4 rootkit (MBR infector) on the Windows 32 and 64 bit!


Released Shortcut Antivirus is a free of charge software for protecting against Microsoft LNK vulnerability.


Released Stuxnet Remover is a free of charge tool for Stuxnet/Tmphider rootkit removal


Added detection and removal of Stuxnet Rootkit(mrxnet.sys, mrxcls.sys).


Resolve "Google search redirect problem". Remove TDL3+ rootkit now!


How to resolve the "msls52.dll not found" problem.
New attack against UXTHEME.DLL...

How to resolve the "themed32.dll not found" problem...


Use RegRun Warrior for rootkit removal
Rootkit detection and removal takes 10 minutes with one computer reboot!


Be careful! The QVOD player installer may be a Trojan...


New! Examiner reveals hidden rootkits and infected system drivers!


New Porno banner Troan Oficla removal instructions


TDSS/Alureon removal instructions


Resolving problem with Google redirect MAX++/TDSS rootkit (win32k.sys:1, win3k.sys:2).


Video Lesson how to remove WinLocker Trojan

Malware Removal Lesson


Windows Explorer Redirection DLLS is a new dangerous Windows startup hole...


RegRun has been reviewed by 3d2f.com Software Directory: RegRun Security Suite is an excellent tool that will reliably protect your computer from a plethora of existing and emerging threats and will keep malware at bay.



Removing Medichi Rootkit


Removal of Noskrnl.exe and Noskrnl.sys Rootkit (Spooldr clone)


Removal Baidu rootkit (cnprov.sys)


Removal Spooldr(ecard.exe) rootkit


Fixing BSOD
in Winlogon Process


Removal Areses Trojan


Virus Feebs rootkit removal story


What's this? Rthdcpl.exe - Illegal System DLL Relocation...


Warning! Rootkit Unhooker


Read our article about Unreal rootkit...


Released free Rustock Rootkit(lzx32.sys) removal tool


A#######.sys is a rootkit?


Rootkit Removal instructions: ntsystem.exe


What is BDGuard.sys?


Virus or not? SPTD####.sys


What is mc21.tmp, mc22.tmp, mc23.tmp?


ICQCHK.exe, MSX.DLL free remover...


Services
Ask Computer Guys

Windows startup programs

Articles
Using Registry Tracer...

RegRun against Trojans and Viruses

Specify an order for startup programs

RunGuard prevents a launch...

Using Bootlog Analyser...

They say
"RegRun Security Suite is one of those very rare tool kits that no one who is serious about protecting their PC should ever be without. This toolkit covers all the bases when it comes to eradicating the attempted security threats from malware that we all face - daily. The near real time tech support, direct from Greatis, is nothing sort of superb, something that can be rarely said these days! I have no hesitation in recommending this suite to anyone."

Miles Pearson

Wilders.ORG. Security advisors recommend...

Testimonials
You guys are awesome!!!!
Traci www.pentagonattack911.com

Bob Schmulian:
Absolutely love it and have recommended to many people!

Ian Robinson:
It is FANTASTIC! It has saved my life on more than one occasion since I purchased it less than 6 months ago. I now would not run my system without it... it's worth many times the cost! The service and support are terrific. Helpful - friendly - and accommodating; and generally a reply is received within 12 hours. Just great.

Theodore Soucie:
Since RegRun was installed my system is more stable. I use to experience freezeup daily. I have not had a crash.

Awards
Paul's Picks
Shareware Winner  

More...


Greatis Software Greatis | Security | AppDatabase | Utilities | Delphi/CB | Visual Basic | .NET | just4fun

Contacts | Add to Favorites | Recommend to a Friend | Privacy Policy | Copyright © 1998-2014 Greatis Software

hit counter for tumblr