Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


Dwmapi.dl, Myth Or Reality?

  • Please log in to reply
No replies to this topic

#1 Sir Joe

Sir Joe

  • Members
  • 1 posts
  • Local time:09:36 AM

Posted 26 June 2008 - 12:32 AM

Hi to everybody!
It seems that at least Comodo Personal Firewall's users are having a problem with Defense+ alerting that any kind of program is trying to install a hook, dwmapi.dl (NOT dll), on system32 directory. It may be IE, or WMP, or Firefox...
A guy have this problem whith WMP when he inserts his pendrive.
I just formatted all, and I should have (as I had not) "sheet" on my pc.
I not even had updated Vista.
Well, I had this message error. I said all the time "no", and nothing bad seemed to pass.
Finally, while I was installing SP1, and I had to put COmodo in Istalling mode, and I was no more able to block dwmapi.dl installing. It installed, but now it is dwmapi.dll, by Microsoft. So, very possibly it was a mistake (of COmodo? Of Vista?).
But a-squared found a low risk riskware in "program files\comodo\firewall\s1.tmp", called "Riskware.adtool.web32.mywebsearch.bn"
and avira found a trojan, "Spy.banker.vk.1", on 2 gif images in a offpage site I had downloaded. Anyway, the first can of course be involved, but the second was on another partition, and I had never opened it after the formatting...
Do you think that this dwmapi.dl (someone told that "dl" extensions can be Sub/ malware variant) was a malware, and it was related to this s1.tmp file on COmodo folder??? What would be, a temporary file? What is it for a temp file in a firewall???
AM I clean?
Uh, I do not wish to format all again!

BC AdBot (Login to Remove)


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users