John_A

Yes, we're on the right tack. Here's what happens. In Device Manager, under 'sound, video and game controllers' there's something called 'USB Audio Device'. There are 8 driver files listed in this, although uac4pdt.sys does not appear amongst them. However, if I rename uac4pdt.sys to xyz49dt.sys and restart, my Skype phone no longer works, and 'USB Audio Device' has disappeared from 'sound, video and game controllers'. When I correct the name and restart, all is well again. I am curious about what Spy Doctor's 'cure' would have been - remove the 'offending' file, perhaps? Thanks again.

I don't have a device of that type, but I do have a VoiPvoice model v652skMLR CyberPhone k, which I use with Skype. I can't see anything on its installation disk, though there is a cab file, so maybe its hidden in there. Did the check you referred me to, Mountaintree. All seems OK so I am going to assume a false positive from Spy Doctor on this. Don't mind over-zealousness, but I'm not pleased about being told I've got a serious risk and then that I need to expose my credit card details to that risk in order to get rid of it. Many thanks to all who helped me with this.

Hi there, and thanks for the fast and somewhat reassuring reply. Yes, It's the PC Tools Spy Doctor I'm talking about and I've just run it again and it still says I'm in the same state. It says I've got 1 threat and 4 infections ... details as follows: File: C:|WINDOWS|SYSTEM32|drivers\uac4pdt.sys Startup Program: HKEY_LOCALMACHINE\SYSTEM|CurrentControlSet\Services\uac4odt, ImagePath = system32\DRIVERS\uac4pdt.sys HKEY_LOCALMACHINE\SYSTEM|ControlSet003\Services\uac4odt, ImagePath = system32\DRIVERS\uac4pdt.sys HKEY_LOCALMACHINE\SYSTEM|ControlSet002\Services\uac4odt, ImagePath = system32\DRIVERS\uac4pdt.sys I then ran MBAM (full scan) and it said all is ok, no malware on my system. Spy Doctor would like me to do an online purchase of their product, presumably entering my credit card details, yet they tell me that Rootkit.TDSS has a high threat level and that it "can hide the presence of any process on the infected machine in order to perform malicious actions without users knowledge". Why should I want to expose my credit card details to such a risk? Previously Spybot came up with a couple of things to do with Adware, nothing about Rootkit.TDSS though. Spy Sweeper found nothing but left some annoying things on my toolbar that I didn't need, which remain there after I've uninstalled it. All in all, MBAM and Spybot are front runners for my custom for more permanent use. Incidentally, can you tell me what you have in mind when you say it would be a 'good idea to have my system checked'? Thanks again.

Can I trust Spyware Doctor? I have (I hope) recently recovered from an attack of the infestation which causes you to be inundated with phony network attack messages (mentioning Bankerfox.A) and false virus alerts that tried to get me to a website called 'Spyware Project 2009 and buy their anti-virus software. Having sorted the problem out, or, at least, got rid of the symptoms, I now want to install reliable anti-spyware. I have tried installing and running, one after the other, Malwarebytes, Avast, Spy Sweeper and Spy Bot, all of which congratulate me on being free of malware. However, I've run Spyware Doctor several times and it insists that I have the Rootkit.TDSS virus, and it wants me to buy the Spyware Doctor product to eliminate it. Is Spyware Doctor ahead of the game here, or is it just trying it on? Thanks for any suggestions.