[Closed]Won’t open any files without being....!

By codone · 6 replies
May 17, 2011
  1. Any file, file folder, try to click properties, all the same, invalid win32, invalid file, "open with", it may actually try to load the program, say like a document file, once the program would load, will be severe errors closing the program down.

    behavior of this seems very much like a virus, malicious malware to me.

    With this problem, I am unable to run programs, open them, run them or install applications. I am using a UBCD to run all the AntiVirus/Spyware, using HBCD.

    I ran Avira AntiVir, "deep scan"
    "Avira.Scan.log" attached

    Running malwarebytes now, log will be up shortly

    I should also note, "not ALL the files are infected in the way I described, 90% are, system programs too, MyComputer will error with "rundll32.exe application not found" while recycle bin opens and shows the files inside to delete, and while Firefox brings up "Open With". I felt that was important to note, more of a correction since this is my real verified response to this issue whereas before I posted what the the owner/user of this computer said without verifying the complaint myself.

    Attached Files:

  2. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    If you would like us to check the system for malware, please follow the steps in the Preliminary Virus and Malware Removal thread HERE.

    NOTE: If you already have any of the scanning programs on the computer, please remove them and download the versions in these links.

    When you have finished, leave the logs for review in your next reply .
    NOTE: Logs must be pasted in the replies. Attached logs will not be reviewed.

    Please do not use any other cleaning programs or scans while I'm helping you, unless I direct you to. Do not use a Registry cleaner or make any changes in the Registry.

    I will wait until all the logs are up. It's possible that malware has corrupted the file extensions. Please not the line about logs being pasted.
  3. codone

    codone TS Rookie Topic Starter

    Sorry for not getting back to you, You may or may not want to help me. I was able to fix this machine, well the main problem at least where it made the system unable to function having all file extensions corrupt. I will list what I did so in case you can help me, and if so, of course I will not run other applications while working with you since it will just waste your time.

    I started doing the routine, the 7-step with logs.. I decided to run some more programs and try fixing this myself..
    I have all the logs from 5/17/11, I am rerunning the programs now to produce new logs. for the current state it is in.
    History what happened so far on 5/17/11.

    on 5/17, I had ran
    • Avira - AntiVir (off of a UBCD)
    • Malwarebytes
    • dds
    • GMER
    • ComboFix

    The rest of the programs I was able to run through safemode

  4. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    You have gone way past where you should have if you want me to help you! The only programs I wanted run first were DDS, Mbam, then GMER. You've posted Avira twice. I didn't request that. Combofix should only be run if instructed and with assistance. TDSSKiller should only be run if it is the appropriate program.

    Something corrupted the file extensions. I have not idea what it was. If you still need help, go back to my original instructions.

    Malware cleaning is a very organized process. It must be done in order with only the most appropriate cleaning scans run. Going to the internet and running programs you hope will fix the problem usually does more harm than good.
  5. codone

    codone TS Rookie Topic Starter

    Sorry for the communication mix-up, I just wanted to state that I did do some of my own doings on 5.17.11, as is the Avira Scan. I didn't rescan, I just pasted it on my original post instead of having it as a attached file. The programs I listed, I did not run again, I was just giving you a update on what recently has happened to the machine. For today, May 18th, I have launched the programs as requested and was going to paste them.

    Unfortunately, the client is coming in and picking the machine up very soon so I will not be able to do the whole process, I am out of time.

    I am currently running a whole computer scan with AVG for a final AV scan. The only problem I am having now would be I get an error when I attempt to do a Windows Update, I believe this is also malware. The problem I have which sucks is that my lead manager basically sees what the ticket says which is "won't open any files without being prompted for what program to access it." Now that this problem has been eliminated, it is done. I still have it on the bench until the customer comes, trying to solve the windows update problem.

    The error code is 0x80070424 with the source being windowsupdate

    I did some research searching, apparently it is associated with boot.ini for various malicious reasons.

    I didn't change much, changed settings in msconfig>boot.ini>restored it to the default setting instead of modified, cleaned up desktop, add/remove programs(heavy removal) and also tried regedit looking for "autoupdate" to delete under windowsupdate but nothing. I am still unable to get it to update windows.

    Anyway with the information here, that I can try at least a couple methods, 1 method just to try, I am just out of time and working on 3 other projects, this source of outside help has always been great. I have a different name today, but you have helped me many, many times in the past, thanks.


  6. codone

    codone TS Rookie Topic Starter

    More Logs

    These logs BTW are from 5/17/11, maybe they can help and only the logs you requested.



    Ok, thats it, my problem seems to be "unable to use windowsupdate, using ie8, ninite.com for all the runtime apps..
  7. Bobbye

    Bobbye Helper on the Fringe Posts: 16,334   +36

    I'm sorry, but I am withdrawing my support. You have a client who left a computer with you to fix. That implies that the client will pay you for this services when the computer is picked up. You come to a forum staffed only with volunteers who offer free help.

    Had you made this situation clear when you made the statement above, I would have withdrawn then.
Topic Status:
Not open for further replies.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...