Link to home
Start Free TrialLog in
Avatar of eBoNix71
eBoNix71Flag for United States of America

asked on

Executables won't run after a malware attack

I have had two computers on our network that have been victims of malware attacks. I have run malware bytes and it removes any found threats but executables will not work properly. When clicking on any icon that is not a document, you are prompted with the "Open with" dialog box. I have also used combofix. On the first computer that I encountered the issue with I ended up renaming the user's profile to "user.domain.old". When she logged on next time her profile was recreated and worked fine. Before I do the same to this computer I was hoping for some suggestions.
ASKER CERTIFIED SOLUTION
Avatar of Sudeep Sharma
Sudeep Sharma
Flag of India image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of eBoNix71
eBoNix71
Flag of United States of America image

ASKER

The first link seemed to work, but when I logged on as the user having the issue to run it I got the message on the attached print screen. Any way of finding out what key are open? Or is it due to the user not having admin rights?
fixmsg.docx
Avatar of Member_2_921743
Member_2_921743
Flag of United States of America image
Try some of the other steps mentioned here. Use the reg script provided by SSharma since it's more complete but follow some of the steps on importing there. You can also check the file association type (one of the first steps mentioned there) to see if it's of any help.
Avatar of eBoNix71
eBoNix71
Flag of United States of America image

ASKER

I temporarily granted the user admin rights and the script ran fine and the executables seem to be working. Points will be granted tomorrow once user verification can be done.

Thanks SSharma