I have recently had a huge trojan and adware and spyware problem. 12 hours of constant work later and I have it just about under control. I was reading online that a lot of malware hides in a file called wdmaud in system32. I read that if the owner doesn't say Microsoft Corporation in the details section that it is probably a fake. I have 5 different wdmaud files:
When I click into details on these files it says the owner name is TrustedInstaller and not Microsoft Corporation
This automatically makes it seem like a tampered with file. Especially the name TrustedInstaller makes it seem even more tampered with.
Everyone single one of my wdmaud files claims that the owner is TrustedInstaller.
Any advice would be really appreciated!
Edited by comhall, 14 May 2011 - 03:12 PM.