Welcome give this a try
Try to reset the exe and lnk (LNK) associations.
Default File Type Associations - Restore

Just follow these instructions as given in the tutorial

Click on the file extension type link listed below for the one that you wish to restore to default to download it's .zip file.

2. Save the .zip file to your desktop.

3. Open the downloaded .zip file, then extract the .reg file to the desktop.

4. Right click on the extracted .reg file and click on Merge.

Do it for .exe and .lnk

As well as following the excellent advice that Rich is giving you, can you do the following for me please? Let's make sure the virus is gone

OTL

Download OTL to your desktop.
Double click on the icon to run it. Make sure all other windows are closed to let it run uninterrupted.
When the window appears, underneath Output at the top change it to Minimal Output.
Under the Standard Registry box change it to All.
Check the boxes beside LOP Check and Purity Check.
Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.


Once OTL has completed its first scan it will save notepad copies of the scans in the folder that OTL was started from. Unless set to produce an Extras log it will only produce OTL.txt in subsequent scans.

A copy of an OTL fix log is saved in a text file at

:\_OTL\MovedFiles
in most cases this will be C:\_OTL\MovedFiles

Please attach both OTL.txt and Extras.txt with your next post for me to analyse

Tom

Okay, I'm fairly sure there's no malware left. Here's your problem:

Code:

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.

If Rich is happy with this, I'll leave the rest to him - he is far more experienced than me and you'll be in better hands

Tom

Hello Mitchell,

Oh my, you got a nasty one.

According to that log, you will need to do the TIP under step 4 in the tutorial below first to fix .reg files. Afterwards, you need to download and merge the .bat, .cmd, .com, .exe, .hlp, .pif, .scr, and .txt options in the tutorial below to restore the default associations for these file extensions.

Default File Type Associations - Restore

Hope this helps,
Shawn