Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Kardphisher


  • Please log in to reply
2 replies to this topic

#1 shayers87

shayers87

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:08 AM

Posted 15 May 2010 - 12:19 PM

So I have the trojan kardphisher virus. The only problem is there are several instructions on removing the virus from every operating system EXCEPT Vista. I've run several scans of my computer by several programs and none of them are picking this virus up. My computer is useless until I get rid of this virus...I need help.

Edited by Orange Blossom, 15 May 2010 - 01:54 PM.
Move to AII as no logs posted. ~ OB


BC AdBot (Login to Remove)

 


#2 NightWarlock

NightWarlock

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 16 May 2010 - 02:41 PM

Does this work? (its an anti-spyware/malware software)

I was going to suggest a manual method too, but then I read this: hxxp://jjb.yuku.com/topic/617279/t/kardphisher-virus-help.html , so never mind that. :thumbsup:

Link above removed due to some spam thing. download this instead, though I'd recommend following boopme's advice below first.

Edited by NightWarlock, 17 May 2010 - 02:14 AM.
Removed one link and deactivated another. ~ OB

On an extended break.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:08 AM

Posted 16 May 2010 - 04:10 PM

Hello this is possibly an M++ Rootkit. No offense but I think this may be a quicker diagnosis.

Please download Win32kDiag.exe by AD and save it to your desktop.
alternate download 1
alternate download 2
  • This tool will create a diagnostic report
  • Double-click on Win32kDiag.exe to run and let it finish.
  • When it states Finished! Press any key to exit..., press any key on your keyboard to close the program.
  • A file called Win32kDiag.txt should be created on your Desktop.
  • Open that file in Notepad and copy/paste the entire contents (from Starting up... to Finished! Press any key to exit...) in your next reply.
--------------------------------------


Now Go to Posted Image > Run..., then copy and paste this command into the open box: cmd
Click OK.
At the command prompt C:\>, copy and paste the following command and press Enter:
DIR /a/s %windir%\scecli.dll %windir%\netlogon.dll %windir%\eventlog.dll >Log.txt & START notepad Log.txt
A file called log.txt should be created on your Desktop.
Open that file and copy/paste the contents in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users