Infected with karna.dat - any help much appreciated

nick s · 11-12-2008, 10:14 AM

Hi guys,

I was wondering if anyone could assist me with this most frustrating and
nasty rootkit/virus that installed itself on my system through an active x
photoshop tutorial !
It restarted my PC and when it re-booted, I had a little white "X" on a
circular red background in my system tray in the lower right of my screen,
and this launched a little bubble saying "Your computer is infected! Windows
has detected a spyware infection! It's recommended to use special
antispyware tools to pervent (sic) data loss. Windows will now download and
install the most up-to-date antispyware for you. Click here to protect your
computer from spyware!" Notice that the message spelled "prevent"
incorrectly...an obvious indicator that there was something malicious going
on. Also, whenever I clicked the "close" icon for this message, it would
simply pop right back up after a few seconds from the system tray.
I have since found this to be a variant of the brastk.exe virus and have
managed to remove this pop up from my desktop by finding instances of it in
Windows , and Sys 32 and also the registry and deleting them.

However, what ever came bundled with this virus is re-directing all of my
Google searches using sites such as web-analytics, go-google.com among many
others. Pages therefore won't load, and I've found that newly installed
programs will not even run, making malwarebytes and other known fixers of
such problems impossible.
I finally managed to get Hijack This to work, by re-installing it on another
drive. It created a log file that showed something called Karna.dat present.
Installing other programs onto this drive, do not work though.

This virus also disables my AVG anto virus from updating, aswell as Adaware.

A reformat is absolutely my last option, and I'm sure there is a way of
eradicating this from my system , I just don't have the knowledge do do it.
I've already spent 2 days on this thing , so any help would be hugely
appreciated.

I've been getting some help from a friend who has helped me out in the past,
but this is a time consuming thing , and I feel like I should throw this out
to some other tech savvy folks and give this poor person a rest .

Thanks

Nick

nick · 11-12-2008, 12:02 PM

I've spent the last 2 days on Google via another machine, hence me posting
here as a last resort.
Thanks for the links though. I seem to have erradicated most of the
problems..for now

"Emil Tiades" <emiltiades@marathon.org> wrote in message
news:gfeurl$bas$1@aioe.org...
>
> On Wed, 12 Nov 2008 09:14:15 -0600, "nick s" <n@home.net> wrote:
>
>>Hi guys,
>>
>>I was wondering if anyone could assist me with this most frustrating and
>>nasty rootkit/virus that installed itself on my system through an active x
>>photoshop tutorial !
>
> less than 1 second with google
> http://www.google.co.uk/search?hl=en...+removal&meta=
>
> 2 seconds with google
> http://forums.majorgeeks.com/showthread.php?t=173220
>

siljaline · 11-12-2008, 12:11 PM

nick · 11-12-2008, 04:56 PM

siljaline · 11-12-2008, 06:26 PM

nick wrote:
> Thanks, I ended up solving this using Avenger and Malwarebytes.
Good to hear - appreciate the post-back.

Silj

--
"Arguing with anonymous strangers on the Internet is a sucker's game
because they almost always turn out to be -- or to be indistinguishable from
-- self-righteous sixteen-year-olds possessing infinite amounts of free time."
- Neil Stephenson, _Cryptonomicon_

Thread: Infected with karna.dat - any help much appreciated

Thread Tools

Display

Infected with karna.dat - any help much appreciated

Re: Infected with karna.dat - any help much appreciated

Re: Infected with karna.dat - any help much appreciated

Re: Infected with karna.dat - any help much appreciated

Re: Infected with karna.dat - any help much appreciated

Thread Information

Users Browsing this Thread

Posting Permissions