Windows 8 and 8.1 Forums


Autoruns: c:\windows\system32\drivers\truesight.sys

  1. #1


    Posts : 176
    Windows 8.1 update 1

    Autoruns: c:\windows\system32\drivers\truesight.sys


    My laptop is running fine as far I can tell, but I was looking at the results that 'autoruns' was showing and came across:

    c:\windows\system32\drivers\truesight.sys

    Looking on Google there seems to be a lot of talk about a trojan.

    One reply said that it was part of 'Roguekiller', which I use.

    Any ideas?

      My System SpecsSystem Spec

  2. #2


    You could submit the file to Virus Total to see what comes up.

    https://www.virustotal.com/

    Have you scanned with any other scanners such as AdwCleaner or MBAM?

    I've seen Roguekiller flagged several times by a couple AV's, if this is a false positive or not, I can't say. I have used Roguekiller in the past also.
      My System SpecsSystem Spec

  3. #3


    Posts : 176
    Windows 8.1 update 1


    Quote Originally Posted by Borg 386 View Post
    You could submit the file to Virus Total to see what comes up.

    https://www.virustotal.com/

    Have you scanned with any other scanners such as AdwCleaner or MBAM?


    I've seen Roguekiller flagged several times by a couple AV's, if this is a false positive or not, I can't say. I have used Roguekiller in the past also.
    Yes, I have run both of those aswell and the results are clean
      My System SpecsSystem Spec

  4. #4


    Submit the file to Virus Total. Other people have had the file scanned recently. I found several results that indicate it's probably clean.

    https://www.virustotal.com/en/analis...defe/analysis/

    You can do a scan with Norton Power Eraser to see what it thinks of the file.

    When you run this program, click on the settings text & disable the rootkit scan. This has caused problems with some Win 8 versions in the past.

    Because Norton Power Eraser uses aggressive methods to detect threats, there is a risk that it can select some legitimate programs for removal. If you accidently remove a legitimate program, you can run Norton Power Eraser to review past repair sessions and undo them.
    Wouldn't hurt to run a scan with TDSSKiller to rule out a rootkit.

    When running TDSSKiller, launch the program, click on the blue text "Change Parameters" & check the box marked "Detect TDLFS File system." Click OK & then run the scan.
      My System SpecsSystem Spec

Autoruns: c:\windows\system32\drivers\truesight.sys
Related Threads
I am in desperate need of help, I have an acer ao-725 which was stuck in a repair loop so I purchased the e-recovery thumb/usb. It went through most of the recovery then froze and shutdown. Now it goes through part of the recovery and ends up at X:\windows\system32\cmd.exe, is there a command that...
Hi, today I uninstalled Toshiba bluetooth stack because it was causing issues and restarted the PC. Then I have checked in System32 folder and the drivers corresponding to the Toshiba bluetooth stack were still there, so I have deleted them from System32 /Drivers folder and System32 /DriverStore /...
Ok so first off I am a stupid 15 year old so please dont get mad if this question is stupid. My problem is that when I hit the windows key and R the Run app pops up and I type cmd however what happens is it runs from C:\Users\Evan instead of C:\windows\system32 can some one please help me fix...
I got 3 'file not found' entries in my Autoruns report (see below). Having removed filters from the report, it looks like the files are there, but not where they are expected to be (am I correct with this interpretation?). So should I be doing something like moving them to where they should...
hi i have a problem , using myeventviewer , i found many errors related to C:\Windows\system32\SRU\SRUDB.dat ESENT Id 474 translated with google windows 7 64bit sp1 doesn't give any problems
HI, is there a directory alias that can be used for 32 bit apps to see contents of true C:\Windows\System32 on 64 bit OS? I see they always shortcut to C:\Windows\SysWow64, but in some cases I need them to open file located in 64 bit sys dir. And second problem is that I had to reinstall my OS...
Dear All, I am using Win 8 Pro 64-bit. I am unable to copy some sys files inside C:\Windows\System32\Drivers folder. Getting message Error-Access is Denied. I have taken the ownership of the entire 'Windows' folder via the Add_Take_Ownership.reg file (which I got from this forum). Even that did...
Eight Forums Android App Eight Forums IOS App Follow us on Facebook