windows 7 - Whenever I open a program, Internet Explorer opens and tries to download it

07
2014-07
  • user3718445

    My Asus laptop had some viruses. I scanned it and deleted 12 viruses but I am still getting problems when starting programs.

    I tried to open Paint, Task Manager, Regedit, Chrome, etc. but none of them are working.

    When I want to open them, Internet Explorer will try to download them instead of letting me open them.

    What should I do?

    • Answers
  • abhishekkannojia

    I think this is the problem with file associations. Your executable files are not behaving normal and they are opened with some other program like Internet Explorer due to some misconfigruations. The Icons of Executable may also not appear as expected. To fix this problem you can follow these steps:

    1. Open Notepad and Paste following lines and save it fix.reg or whatever name you like

      Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\OpenWithList]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\OpenWithProgids]
"exefile"=hex(0):

    2. Merge these registry changes to System Registry and restart your computer. After restart your programs should behave normally.

    For more details you can refer here

    Hope this fixes your problem. Let me know if this helps. :)

    EDIT 1 As OP was unable to open any executable including registry editor and command prompt following method can be used to edit registry without booting into windows

    1. Download Hiren's Boot CD and Burn the Image on CD or USB Media
    2. Boot from the Disc, choose Mini Window XP from Menu. When mini XP is loaded Click Icon in tray and select Registry > Registry Editor PE
    3. Set the remote windows directory and make required changes.

    Other methods are also available. One is mentioned here Editing a windows XP installation's registry without being able to log in

  • André

    You should never trust a compromised machine nor attempt to "recover" it using antivirus software.

    Read How do I deal with a compromised server? on ServerFault - it talks about servers but pretty much all of it is also true for desktop computers.

    Basically, it all boils down to one thing : reinstall the system.

    Some people will tell you how to remove that particular virus and bring back your system to life but you'll never be sure if the system is truly "clean" or if there's still some piece of malware (rootkit ?) that's left and that can still do damage in the future or silently spy on you without you ever noticing (and once you'll notice it'll already be too late and your bank account will be empty).

    The only way to be certain that you've got control of the system is to rebuild the system. While there's a lot of value in finding and fixing the exploit used to break into the system, you can't be sure about what else has been done to the system once the intruders gained control (indeed, its not unheard of for hackers that recruit systems into a botnet to patch the exploits they used themselves, to safeguard "their" new computer from other hackers, as well as installing their rootkit).


    • Related Question

    windows 7 - Oops! Downloaded a virus (win32-DOS)!
  • Martti Laine

    I'm on Windows 7 and accidentally downloaded a virus. It's not that bad, but it gives alerts that Windows has crashed. Nothing still happens.

    APPCRASH - Application: win32-DOS.exe.exe

    That's the report, so I suggest that that file causes the problem. When I right-click it in Task Manager and click "File location", it takes me to folder (C:\Windows\System32\Win32-DOS) with two files: logs.dat and plugin.dat.

    How can I delete this? I googled but didn't success in the only instructions I could found.

    Any suggestions?


    • Related Answers
  • Nathaniel

    Well, try using an antimalware program might get rid of it. Try the free version of Malwarebytes, for instance.

    You also might be able to delete the Win32-DOS folder from within Windows or from a Linux LiveCD (Puppy Linux is small), but if it was me I'd want to scan around with an antimalware program and make pretty sure that it was all gone even if I tried to get rid of it that way.

  • techie007

    I've been using Hitman Pro to clean infected machines lately, it's really good for already-infected machines.

    It scans in like 3-5 minutes, and uses 5 or 6 different AV engines to do it.

    It's kind of a scan-for-free, pay-to-clean utility, but they currently give you a free 30 day cleaning trial. Which is plenty fair and useful when you're already infected. :)

  • Phoshi

    Try booting into safe mode (Make sure to select the "Administrator" account, not your own - I believe it should be visible in safe mode), navigate there, and hit the delete key ;) You may also want to run some sort of antivirus while you're there.