Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Shorcut virus.

16 Mar 2013   #1
remoticboy

Windows 7 Ultimate x64
 
 
Shorcut virus.

yesterday, my external hard disk was infected with the shortcut virus. i cleaned it after connecting to my desktop. everything went fine. and through web, i came to know that it only effected usb powered stuff and not hard drives.

but my c was infected. just documents and settings. and some important folders into that. like appdata, roaming, etc.
i went online and searched and ended up deleting something in regedit.exe also I go to task manager everytime and delete the scrip.exe, because i see hidden folders randomly named like 131b popping up from nowhere and creating java script files.

now the problem is i cant run a single exe file. no matter what i click, windows asks me "open with . . ". even if its snipping tool, brower or anything. what should I do?

i had created a thread in general discussion, please ignore it.


My System SpecsSystem Spec
.
16 Mar 2013   #2
marsmimar

Microsoft Community Contributor Award Recipient

 
 

I'd suggest running Windows Defender Offline to check for malware.

Windows Defender Offline

Create the disk on a machine that is not infected and is running the same "bit-ness" as the infected machine. In other words, if the infected machine is running a 64-bit Windows 7 then the machine used to make the disk must also be 64-bit. Make sure your computer BIOS is set to boot from the CD/DVD drive as first option and then follow the instructions for running the scan.

I'd also check for any damaged or corrupt system files by running a system file checker scan from an elevated command prompt (option two.) If problems are found, run the scan 3 times and reboot the coputer immediately after each scan.

SFC /SCANNOW Command - System File Checker
My System SpecsSystem Spec
16 Mar 2013   #3
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

In addition to marsmimar's excellent advice, it might be a good idea to also run the following tools, since not one AV gets everything. Rootkits generally alter Win files, some to the point that there is no option save for a repair install. If SFC is unable to correct the problem, you may wish to consider this option.

How to remove malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon)?

AdwCleaner Download

Repair Install
My System SpecsSystem Spec
.

16 Mar 2013   #4
cottonball

Windows 7 Home Premium
 
 

remoticboy,

Try the following:

Default File Type Associations - Restore

Let us know how it goes.


Just in case there are any malware remnants, also, download RogueKiller:
http://www.sur-la-toile.com/RogueKiller/

When you get to the website, go to where it says:
(Download link) Lien de téléchargement

Select the version that applies to your system: x64
Click the dark-blue button that applies.
Save to the Desktop

Close all windows and browsers

Right-click RogueKiller and select: Run as Administrator
Press: SCAN

When done, a report opens on the Desktop: RKreport.txt

Please provide the RKreport.txt (Mode: Scan) in your reply.
(Please do not delete anything!)
My System SpecsSystem Spec
17 Mar 2013   #5
remoticboy

Windows 7 Ultimate x64
 
 

the problem is guys,I CANT RUN ANY EXE FILE.

i tried what marsmimar said, but the bios didnt recognise the pendrive in which i had installed the windows defender.
and also, sfc scannow didnt work as well. everytime i run it, it says it needs to reboot because another a system repair pending.

what borg 386 said is great, but i cant use any exe file. it just wont open up.

and cottonball, I'll let you know.
My System SpecsSystem Spec
17 Mar 2013   #6
marsmimar

Microsoft Community Contributor Award Recipient

 
 

Quote   Quote: Originally Posted by remoticboy View Post
the problem is guys,I CANT RUN ANY EXE FILE.

i tried what marsmimar said, but the bios didnt recognise the pendrive in which i had installed the windows defender.
and also, sfc scannow didnt work as well. everytime i run it, it says it needs to reboot because another a system repair pending.

what borg 386 said is great, but i cant use any exe file. it just wont open up.

and cottonball, I'll let you know.
You'll probably need to create the Windows Defender Offline bootable media on a disk (my BIOS doesn't recognize pen drives either. ) And the SFC probably won't work until after the malware scan has done its thing.
My System SpecsSystem Spec
17 Mar 2013   #7
remoticboy

Windows 7 Ultimate x64
 
 

cottonball, that didnt work. the reg file, everytime i try to merge, windows asks me "open with . . "
and marsmimar, i dont have a cd drive.
My System SpecsSystem Spec
17 Mar 2013   #8
cottonball

Windows 7 Home Premium
 
 

remoticboy,

See if this works...

Can you get to a Command Prompt:

Start > All Programs > Accessories > Command Prompt

Right-click the Command Prompt and select: Run as Administrator

At the blinking cursor, type in the following inside the code box, and press Enter:

Code:
cd c:\
Now, at C:\>, type in the following inside the code box , and press Enter:

Code:
assoc .reg
This command should return the following:

.reg=regfile

If not, then, type in the following inside the code box, and press Enter:

Code:
assoc .reg=regfile

Now, try to right-click the .reg file referenced in Post #4 , and see if it works.
My System SpecsSystem Spec
17 Mar 2013   #9
cottonball

Windows 7 Home Premium
 
 

Also, on RogueKiller, can you rename its downloaded file to RK.com and try it?

Maybe the comfile association works...
My System SpecsSystem Spec
Reply

 Shorcut virus.




Thread Tools




Similar help and support threads
Thread Forum
Shorcut Icons Show as Black Squares
Hi all, I don't like the shortcut with arrow, hence I change the registry values: Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Icons Value: 29 Type: REG_SZ Data: C:\Windows\System32\shell32.dll,-50 When I start my computer, the shortcuts become black...
General Discussion
Shorcut arrows.
On tune up utilities, i have set it to remove shorcut arrows, when i uninstall it i the arrows and icon all turn white. How do i sort that??????????
General Discussion
Shorcut Icon Missing in Start Menu
One shortcut on my Start Menu is missing it's icon. I've opened up the All Programs folder to replace it, but as soon as it hits the folder, the icon disappears. Watch: http://screencast.com/t/Mzg4YmQz Any ideas why this is happening?
General Discussion
Pin a network mapped shorcut..
Hello ! I found many tutorials explaining how to pin custom things to the win7 "superbar" maybe i readed wrong but i didn't found anything about pinning a shorcut from a virtual mapped drive.. so, saying my virtual drive (mapped using net use ..) is R:\, what i want, is to have in my...
General Discussion
Shorcut link.... icon is messed up
http://i37.tinypic.com/5vn091.png as ya'll can see the when I create a shortcut link the icon is messed up. 1- what caused this? 2- how can I fix it? (d) -thanks
General Discussion
Shorcut removal tutorial not working, anything i can do
as stated teh shortcut removal tutorial here's not working for me. I remember awhile back i stumbled upon a site that had 2 .reg files for editing the shortcut files i can't remember the site right now but those always worked for me. Now i have lost them due to a horrible mishap, aka forgot to bak...
General Discussion


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 13:54.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App