Author Topic: FP system32\drivers\splitter.sys and npptnt2.sys?  (Read 5433 times)

0 Members and 1 Guest are viewing this topic.

Offline -Genesis-

  • Sr. Member
  • ****
  • Posts: 285
« Last Edit: May 31, 2011, 03:42:01 AM by AlbelNox »
Windows 10 Pro 1909/ Windows Defender/
Ryzen 5 1600/ Aorus Gtx 1080Ti Xtreme/ Gskill Trident Z RGB 3000/ Samsung Evo 250GB/ Western Digital Black 1 TB

Offline DavidR

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 86125
  • No support PMs thanks
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #1 on: May 31, 2011, 03:48:43 AM »
This isn't saying you have a rootkit, but something that it considers suspect. Most probably a hidden driver of npptnt2.sys and splitter.sys, since these are considered suspect you should follow the advice to Ignore, as painful as this is in it being detected after every boot.
 
See this topic http://forum.avast.com/index.php?topic=78461.0, which also mentions npptnt2.sys (ignore the bit about the behavior shield, the poster got that wrong) and you should report both of these as possible false positives as mentioned in Reply #6 of this topic.

Sending either of them to virustotal, won't achieve anything as the anti-rootkit scanning doesn't use the conventional avast signatures but a heuristic method, which can't be replicated on VT.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 21.11.2500 (build 21.11.6809.528) UI 1.0.683/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline -Genesis-

  • Sr. Member
  • ****
  • Posts: 285
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #2 on: May 31, 2011, 05:26:02 AM »
Thanks David for replying my problem.

Actually i already try to send to virus@avast(dot)com but the page is blank?

I really dont know how to send to their virus lab.

Please guide me how to?


On my observation sometimes no pop up appears on system start.



But definitely its a FP because this is a new format system.

This only happens on the latest build.
Windows 10 Pro 1909/ Windows Defender/
Ryzen 5 1600/ Aorus Gtx 1080Ti Xtreme/ Gskill Trident Z RGB 3000/ Samsung Evo 250GB/ Western Digital Black 1 TB

Offline DavidR

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 86125
  • No support PMs thanks
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #3 on: May 31, 2011, 02:18:20 PM »
What do you mean by "Actually i already try to send to virus@avast(dot)com but the page is blank" ?

You can attach a copy of the file/s and you should but the information about the detection in the body of the email. If you place False Positive - Anti-Rootkit Scanner as the subject that virus@avast(dot)com is directed to the virus labs.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 21.11.2500 (build 21.11.6809.528) UI 1.0.683/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline -Genesis-

  • Sr. Member
  • ****
  • Posts: 285
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #4 on: May 31, 2011, 04:58:03 PM »
If i write virus@avast.com i get a pop up



If i click yes it will go to avast.com.

If i click no a blank page appear no option.
Windows 10 Pro 1909/ Windows Defender/
Ryzen 5 1600/ Aorus Gtx 1080Ti Xtreme/ Gskill Trident Z RGB 3000/ Samsung Evo 250GB/ Western Digital Black 1 TB

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37170
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #5 on: May 31, 2011, 05:01:42 PM »
virus@avast.com  is an Email address......as it clearly show by the @

this is the mail address used when sending samples to avast lab

avast website is www.avast.com

what is it you are trying to do  ???
« Last Edit: May 31, 2011, 05:07:18 PM by Pondus »

Offline -Genesis-

  • Sr. Member
  • ****
  • Posts: 285
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #6 on: May 31, 2011, 05:37:52 PM »
OK i got it.

Tnx! ;D
Windows 10 Pro 1909/ Windows Defender/
Ryzen 5 1600/ Aorus Gtx 1080Ti Xtreme/ Gskill Trident Z RGB 3000/ Samsung Evo 250GB/ Western Digital Black 1 TB

Offline -Genesis-

  • Sr. Member
  • ****
  • Posts: 285
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #7 on: June 01, 2011, 01:58:53 PM »
I already send to their email 10 hours ago with the .sys file and link to forum.

I still have no reply.
Windows 10 Pro 1909/ Windows Defender/
Ryzen 5 1600/ Aorus Gtx 1080Ti Xtreme/ Gskill Trident Z RGB 3000/ Samsung Evo 250GB/ Western Digital Black 1 TB

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37170
Re: FP system32\drivers\splitter.sys and npptnt2.sys?
« Reply #8 on: June 01, 2011, 02:19:08 PM »
I already send to their email 10 hours ago with the .sys file and link to forum.

I still have no reply.
you will not recive any reply......usually not

they may reply here.... but don`t expect them to do