The potential virus can be found here:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Now in this folder are these 3 folders:
equi and ekrn are both NOD32 Execution files, and I am assuming the virus is trying to block NOD32.
Now when I try to delete these, Error while deleting key.
So then, I try to give myself permissions because I am on a ADMIN account. and it says access denied.
Note: I have tried to give other users permission, and it gives the same error.
I can't do anything at all, and I believe the virus was meant to keep it this way.
Now what I need help on is to remove these registry keys, or have access to them. I have tried many methods on regaining control with no luck.
I am running on Windows 7, and these are my only 2 infected registry keys, and I don't want this virus to spread on my beautiful machine.
I am willing to pay money to who ever can fix my problem, thanks.
Note: I have provided colored text and Pictures to help you guys understand it more clearly.
Edited by AlienwareAurora, 09 May 2010 - 06:28 PM.