Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AKM Antivirus 2010 & Copyright Alert Virus


  • This topic is locked This topic is locked
3 replies to this topic

#1 Hexx68

Hexx68

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:24 PM

Posted 17 May 2010 - 01:33 PM

Hello...hoping someone can help me here.

I am running Windows XP

I have acquired the Copyright violation alert virus...as well as the akm antivirus 2010.

I have gone through the removal instructions and have run into a brick wall. There is no way to get to my desktop as the copyright violation virus is locked on the screen and the akm antivirus will not allow me to access windows task manager to shut off the copyright violation screen. When I hit ctrl+alt+del an error message comes up saying that task manager has been turned off by the administrator.

I tried accessing through safe mode. When I go in through the administrator log in I can see the desktop. It doesn't appear that the copyright virus is running on that log in? When I log in in safe mode under my user name the copyright screen appears and I have no recourse but to reboot.

So I tried to run malware bytes anti-malware in safe mode under the administrator account. It does not run.

Any ideas?

TIA,

John

Edited by Pandy, 19 May 2010 - 02:22 PM.
Moved from AII to a more appropriate forum ~Pandy


BC AdBot (Login to Remove)

 


#2 Hexx68

Hexx68
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:24 PM

Posted 17 May 2010 - 05:31 PM

Now when I go into safe mode the computer just shuts down after about 15 seconds....yay. help?

#3 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,173 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:01:24 PM

Posted 17 May 2010 - 10:48 PM

Hi, Hexx68 smile.gif

welcome.gif

Lets give this a try. The only way I see we can help you is throughout an External Environment, which simply means you will need to burn a boot CD with especial tools. You will also need a flash drive to move information from the troubled computer to a working computer. It is the only way we can see the progress of our actions. Save these instructions in your flash drive as a text file (use notepad) so you can have access to these while in an external environment (PE).

Here is what you need to do.
  • Download OTLPEStd.exe to your desktop. NOTE: This file is 93.1MB in size so it may take some time to download.
  • Once downloaded, insert a blank CD in your burner and click on OTLPEStd.exe.The executable includes the OTLPE_New_Std.iso and a copy of imgburn, a program to burn .iso files. When executed, the application will extract both and start the burning process automatically.
  • Once the CD is burned, boot the Non working computer using the boot CD you just created.
  • In order to do so, the computer must be set to boot from the CD first
    Note : For information click here
  • Your system should now display a REATOGO-X-PE desktop.
  • Double-click on the OTLPE icon.
  • When asked "Do you wish to load the remote registry", select Yes
  • When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  • Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  • OTL should now start. Change the following settings
    • Change Drivers to All
    • Change Standart Registry to All
    • Under the Custom Scan box paste this in

      /md5start
      eventlog.dll
      scecli.dll
      netlogon.dll
      cngaudit.dll
      sceclt.dll
      ntelogon.dll
      logevent.dll
      iaStor.sys
      nvstor.sys
      atapi.sys
      IdeChnDr.sys
      viasraid.sys
      AGP440.sys
      vaxscsi.sys
      nvatabus.sys
      viamraid.sys
      nvata.sys
      nvgts.sys
      iastorv.sys
      ViPrt.sys
      eNetHook.dll
      ahcix86.sys
      KR10N.sys
      nvstor32.sys
      ahcix86s.sys
      nvrd32.sys
      userinit.exe
      explorer.exe
      ntoskrnl.exe
      /md5stop
      %SYSTEMDRIVE%\*.*
      %systemroot%\*. /mp /s
      %systemroot%\System32\config\*.sav
  • Press Run Scan to start the scan.
  • When finished, the file will be saved in drive C:\OTL.txt
  • Copy this file to your USB drive.
  • Please post the contents of the C:\OTL.txt file in your reply.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#4 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,173 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:01:24 PM

Posted 01 June 2010 - 10:29 PM

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member with address of this thread. This applies only to the original topic starter. Everyone else please begin a New Topic.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users