17 {{ upvoteCount | shortNum }}
17 {{ upvoteCount | shortNum }}

Is this the sign of a computer virus?

by FJB
15 replies
  • OFF TOPIC
    • |
When I do any searches on Goggle, Yahoo or any other search engines,
the first page produces only links to ad pages that have nothing to do
with the topic searched. I use SpySweeper daily (plus daily updates)
but wonder if this search problem could indicate a virus that SpySweeper
can't eradicate.

If I'm in the wrong forum for this type of question, please re-direct me.
  • Profile picture of the author Kay King
    Download the free copy of AVG and run it. It's very thorough and should find the problem if a virus or spy program is involved.
    Signature
    Saving one dog will not change the world - but the world changes forever for that one dog
    ***
    Dear April: I don't want any trouble from you.
    January was long, February was iffy, March was a freaking dumpster fire.
    So sit down, be quiet, and don't touch anything.
    {{ DiscussionBoard.errors[388301].message }}
  • Profile picture of the author FJB
    Thanks, Kay. I'll give that a try.
    I formerly used AVG and but was advised by a Geek Squad member at Best Buy that I should use Spy Sweeper instead. He said I should not have two anti-virus programs on my HD and that Spy Sweeper was the better of the two.
    I'll download AVG, turn SS off and see what happens. --FJB
    {{ DiscussionBoard.errors[388342].message }}
    • Profile picture of the author KimW
      Originally Posted by FJB View Post

      Thanks, Kay. I'll give that a try.
      I formerly used AVG and but was advised by a Geek Squad member at Best Buy that I should use Spy Sweeper instead. He said I should not have two anti-virus programs on my HD and that Spy Sweeper was the better of the two.
      I'll download AVG, turn SS off and see what happens. --FJB
      I tell people to use AVG when they don't want to spend the money on an anti virus program. Personally I recommend Panda.
      As fas as Spysweeper goes, I'm willing to bet the Geek Sqad member had a copy to sell you?
      One of my customers called them when he couldn't reach me ( I was in the hospital) and they told him so much crap he should have called a plumber.
      And his bill from them was about $400 when mine would have been about $100.
      With 3 FREE programs you should be able to keep your system pretty clean:
      Spybot Search and Destroy
      Lavasoft's Personal version of Adaware
      and
      Malwarebytes Anti Malware.
      Signature

      Read A Post.
      Subscribe to a Newsletter
      KimWinfrey.Com

      {{ DiscussionBoard.errors[388629].message }}
      • Profile picture of the author FJB
        KimW
        Thanks for your suggestions on free virus and malware protection software.
        And you're absolutely right. The Geek Squad dude just happened to have a copy of Spy Sweeper available for sale. Isn't that amazing.
        {{ DiscussionBoard.errors[388785].message }}
  • Profile picture of the author HeySal
    Yes - you have a virus. What to do is below
    I just posted this in another thread so I'll just copy and paste it here so you can find it.



    You might have the C:\WINDOWS\SYSTEM32\wdmaud.sys virus.

    It's a new one and extremely vile - a root kit variety of invasion. It redirects you from google - what you get are unrelated search results. Thank You to the Russians for this one.

    You can get rid of it but make sure you are not removing C:\WINDOWS\SYSTEM32\drivers\wdmaud.sys

    Just type the file in your windows search:
    C:\WINDOWS\SYSTEM32\wdmaud.sys

    And delete it. Just leave it in your trash if you don't feel comfortable about getting rid of it right away to make sure everything is working okay before you dump it off. If you removed the one with the word "drivers" in it, you will have problems.

    In another day or two anti-virus systems will pick it up. I believe Avast is already on top of it but not sure if they can stop it yet.
    Signature

    Sal
    When the Roads and Paths end, learn to guide yourself through the wilderness
    Beyond the Path

    {{ DiscussionBoard.errors[388515].message }}
    • Profile picture of the author FJB
      HeySal,

      Thanks for your help. I followed your direction and sent the problem file to my recycling bin. Sure hope this does the trick.

      Thanks also for the advice on no-cost anti-virus and anti-spyware programs. I wonder why Spy Sweeper didn't block the nefarious Russian virus in the first place. I check for upgrades and run sweeps on a daily basis.

      I haven't spent much time on the Warrior's Forum but it looks like a great site especially for Internet Marketing. I appreciate the tech help you and KimW provided. Are there any other sites, focusing in tech problems, that you would suggest?
      {{ DiscussionBoard.errors[388773].message }}
  • Profile picture of the author HeySal
    FJB --

    You don't want 2 anti-virus programs. But there is a difference between an anti-spyware and an anti-virus program. You want one of each of those and there are some great free ones. Just make sure you have some good recommendations for whatever you decide to use.

    AGV and AVAST are, I believe the best choices for anti-virus and they are both free.

    There are many for spyware, I just use Spybot search and destroy. It's free, too and along with my Crap Cleaner and I just don't have problems so never looked for better.
    Signature

    Sal
    When the Roads and Paths end, learn to guide yourself through the wilderness
    Beyond the Path

    {{ DiscussionBoard.errors[388674].message }}
  • Profile picture of the author HeySal
    Nothing stopped this virus for awhile, FJB. Avast finally got a handle on it - others will follow.

    People constructing these things are just getting smarter, I guess. It was a root kit variety and Sophos didn't get it either and that is especially made for root kits. Just a nasty one that was well scripted. That happens sometimes. This one was probably tested against everything out there before it was released.

    It helps if you turn your dcom off, too. There is not one function that dcom serves, but it leaves a nice security hole for things to come in the back door.
    Just get the dcombobalator (google "turn off dcom" and you'll find it). I also have XPanti-spy working on my computer so that microsoft can't use their own built in spy programs on me. It's all free. I'm cheap but don't like people invading or tracking me. LOL.
    Signature

    Sal
    When the Roads and Paths end, learn to guide yourself through the wilderness
    Beyond the Path

    {{ DiscussionBoard.errors[389098].message }}
  • Profile picture of the author Thomas Wilkinson
    Nice work Sal. Ever get your sound fixed?
    Signature
    When you hear someone telling you what YOU can't do, they are usually talking about what THEY can't do.
    {{ DiscussionBoard.errors[389245].message }}
    • Profile picture of the author Kay King
      If you are running XP Service Pack 2 the dcom should be disabled...but...

      Some good info on removing/fixing at

      Search Engine Redirect caused by virus, plz help me!
      Signature
      Saving one dog will not change the world - but the world changes forever for that one dog
      ***
      Dear April: I don't want any trouble from you.
      January was long, February was iffy, March was a freaking dumpster fire.
      So sit down, be quiet, and don't touch anything.
      {{ DiscussionBoard.errors[389338].message }}
      • Profile picture of the author Karen Blundell
        KimW posted about this software:
        Malwarebytes Anti Malware.

        it is fantastic...I had a virus similar to FJB's where all my browsers were hijacked. Finally I was able to use an old Version 8 of Netscape that wasn't hijacked in order to go and download the above software from Malwarebytes.org

        after almost a week of trying to get rid of the virus it did the trick along with ComboFix
        Signature
        ---------------
        {{ DiscussionBoard.errors[389568].message }}
    • Profile picture of the author HeySal
      Originally Posted by Thomas Wilkinson View Post

      Nice work Sal. Ever get your sound fixed?
      Yeah Thomas, I actually did - Just in time for everyone to quit posting all those juicy YouTubes. LOL. Someday someone will post a vid that will actually make me go get my speakers and plug them in. :rolleyes:

      Kay - Microsoft is the offender as far as dcom goes. But, just in case, the dcomabobalator allows you to run a check first to see if it's running or not. It also allows you to switch it off or back on with just a click - a lot easier than messing with codes.

      Okay -- this is just getting a little too close to IM for me. See ya.
      Signature

      Sal
      When the Roads and Paths end, learn to guide yourself through the wilderness
      Beyond the Path

      {{ DiscussionBoard.errors[389926].message }}
      • Profile picture of the author GB2008
        Knew there was a reason I liked Avast! I didn't even know this was out there - but I have Avast on all our Windows machines, with Spyware Search & Destroy and Spyware Blaster - all free and between them I have never had a spyware or virus problem in 6 years...
        Signature
        Gary Bailey
        {{ DiscussionBoard.errors[389959].message }}
  • Profile picture of the author KimW
    The dcomabobalator that Sal refers to is located here along with lots of othere freebies.
    Signature

    Read A Post.
    Subscribe to a Newsletter
    KimWinfrey.Com

    {{ DiscussionBoard.errors[390187].message }}
    • Profile picture of the author Mike Wright
      Avast Free version works fine for me and does much more than
      other more feature-limited free AVs. If Avast has any downsides
      they are that it is very thorough ... even requiring a reboot and
      scan to remove stubborn infections at bootup time. Also it often
      updates a couple of times a day and talks to you when it has
      updated .... so don't be surprised when it does

      Avast
      {{ DiscussionBoard.errors[390925].message }}

Trending Topics