[RKinner]

Is it still giving you the same error when you try to run a program? Does Avast start up OK when you reboot?

I don't see anything in the logs that would be changing the .exe assignment.


Your Automatic Updates is not working for some reason. The file is there but it claims it can't find it. Let's look at the registry.

Copy the next line:

reg query HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wuauserv /s > \junk.txt

Start, Run, cmd, OK Then right click and Paste or Edit then Paste and the copied line should appear. Hit Enter.

notepad \junk.txt

Copy the text from notepad and paste it into a reply.

[Advertisements]

it is still giving me the same message when i run a program. Avast service seems to start when i reboot the pc but there is no Avast icon on the lower right hand corner.


! REG.EXE VERSION 3.0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wuauserv
Type REG_DWORD 0x20
Start REG_DWORD 0x2
ErrorControl REG_DWORD 0x1
ImagePath REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
DisplayName REG_SZ Automatic Updates
ObjectName REG_SZ LocalSystem

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wuauserv\Parameters
ServiceDll REG_EXPAND_SZ C:\WINDOWS\system32\wuauserv.dll

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wuauserv\Enum
0 REG_SZ Root\LEGACY_WUAUSERV\0000
Count REG_DWORD 0x1
NextInstance REG_DWORD 0x1

[drunkducki]

it is still giving me the same message when i run a program. Avast service seems to start when i reboot the pc but there is no Avast icon on the lower right hand corner.


! REG.EXE VERSION 3.0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wuauserv
Type REG_DWORD 0x20
Start REG_DWORD 0x2
ErrorControl REG_DWORD 0x1
ImagePath REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
DisplayName REG_SZ Automatic Updates
ObjectName REG_SZ LocalSystem

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wuauserv\Parameters
ServiceDll REG_EXPAND_SZ C:\WINDOWS\system32\wuauserv.dll

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wuauserv\Enum
0 REG_SZ Root\LEGACY_WUAUSERV\0000
Count REG_DWORD 0x1
NextInstance REG_DWORD 0x1

[RKinner]

Copy the text in the code box by highlighting and Ctrl + c

:files
reg query HKEY_CLASSES_ROOT\.exe /s /c
reg query HKEY_CLASSES_ROOT\exefile /s /c
reg query HKEY_CLASSES_ROOT\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command]
""=""%1" %*"

then run OTL and Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the Run Fix button at the top
Let the program run unhindered, OTL will not reboot the PC when it is done this time. Save the log and copy and paste it to a reply.


Download and Save Dial-A-Fix from

http://djlizard.net....-v0.60.0.24.zip

Right click on the file and Extract All then run Dial-a-fix.exe

Click the box where it says
WU/WUAU
Fix Windows Updates
Then hit GO.

Reboot if it doesn't do it for you and see if the Wuauserv service is running.

(Start, Run, cmd, OK then type:

net start wuauserv

IF it is running it should tell you so).

Ron

[drunkducki]

========== FILES ==========
< reg query HKEY_CLASSES_ROOT\.exe /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\.exe
<NO NAME> REG_SZ exefile
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\exefile /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\exefile
<NO NAME> REG_SZ Application
Content Type REG_SZ application/x-msdownload
EditFlags REG_BINARY 38070000
InfoTip REG_SZ prop:FileDescription;Company;FileVersion;Create;Size
TileInfo REG_SZ prop:FileDescription;Company;FileVersion
HKEY_CLASSES_ROOT\exefile\DefaultIcon
<NO NAME> REG_SZ %1
HKEY_CLASSES_ROOT\exefile\shell
HKEY_CLASSES_ROOT\exefile\shell\open
EditFlags REG_BINARY 00000000
HKEY_CLASSES_ROOT\exefile\shell\open\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\runas
HKEY_CLASSES_ROOT\exefile\shell\runas\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\start
HKEY_CLASSES_ROOT\exefile\shell\start\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shellex
HKEY_CLASSES_ROOT\exefile\shellex\DropHandler
<NO NAME> REG_SZ {86C86720-42A0-1069-A2E8-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PEAnalyser
<NO NAME> REG_SZ {09A63660-16F9-11d0-B1DF-004F56001CA7}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PifProps
<NO NAME> REG_SZ {86F19A00-42A0-1069-A2E9-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\ShimLayer Property Page
<NO NAME> REG_SZ {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c >
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command\\""|""%1" %*" /E : value set successfully!

OTL by OldTimer - Version 3.2.31.0 log created on 11212011_093843

[drunkducki]

windows update started after reboot.

[RKinner]

Copy the text from the codebox:

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\.exe\PersistentHandler]
@="{098f2470-bae0-11cd-b579-08002b30bfeb}"

[HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}]
@="Null persistent handler"

[HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}\PersistentAddinsRegistered]

[HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}\PersistentAddinsRegistered\{89BCB740-6119-101A-BCB7-00DD010655AF}]
@="{c3278e90-bea7-11cd-b579-08002b30bfeb}"

Open Notepad (Start, Run, notepad, OK)

Paste the text into notepad (Ctrl + v or Edit, Paste)

File, Save As, (to your desktop), "fix.reg" OK. (You must put the quotation marks around the file name or it will tack on .txt which won't work.)

Close notepad.

Right click on fix.reg and select Merge. (If it doesn't give Merge as the top option then you probably left off the quotation marks.)

Allow it to merge. Reboot and run the :files part of the last OTL script again:


:files
reg query HKEY_CLASSES_ROOT\.exe /s /c
reg query HKEY_CLASSES_ROOT\exefile /s /c
reg query HKEY_CLASSES_ROOT\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c

Are you still getting the error message when you try to run a .exe file?

Ron

[drunkducki]

========== FILES ==========
< reg query HKEY_CLASSES_ROOT\.exe /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\.exe
<NO NAME> REG_SZ exefile
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\exefile /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\exefile
<NO NAME> REG_SZ Application
Content Type REG_SZ application/x-msdownload
EditFlags REG_BINARY 38070000
InfoTip REG_SZ prop:FileDescription;Company;FileVersion;Create;Size
TileInfo REG_SZ prop:FileDescription;Company;FileVersion
HKEY_CLASSES_ROOT\exefile\DefaultIcon
<NO NAME> REG_SZ %1
HKEY_CLASSES_ROOT\exefile\shell
HKEY_CLASSES_ROOT\exefile\shell\open
EditFlags REG_BINARY 00000000
HKEY_CLASSES_ROOT\exefile\shell\open\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\runas
HKEY_CLASSES_ROOT\exefile\shell\runas\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\start
HKEY_CLASSES_ROOT\exefile\shell\start\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shellex
HKEY_CLASSES_ROOT\exefile\shellex\DropHandler
<NO NAME> REG_SZ {86C86720-42A0-1069-A2E8-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PEAnalyser
<NO NAME> REG_SZ {09A63660-16F9-11d0-B1DF-004F56001CA7}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PifProps
<NO NAME> REG_SZ {86F19A00-42A0-1069-A2E9-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\ShimLayer Property Page
<NO NAME> REG_SZ {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c >
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.

OTL by OldTimer - Version 3.2.31.0 log created on 11212011_115146

[drunkducki]

still getting the same message.

[RKinner]

It doesn't look like the merge worked. Did it complain when it tried to Merge?

Try it again and this time run the OTL script before you reboot.

[drunkducki]

it says it merged successfully.

========== FILES ==========
< reg query HKEY_CLASSES_ROOT\.exe /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\.exe
<NO NAME> REG_SZ exefile
HKEY_CLASSES_ROOT\.exe\PersistentHandler
<NO NAME> REG_SZ {098f2470-bae0-11cd-b579-08002b30bfeb}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\exefile /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\exefile
<NO NAME> REG_SZ Application
Content Type REG_SZ application/x-msdownload
EditFlags REG_BINARY 38070000
InfoTip REG_SZ prop:FileDescription;Company;FileVersion;Create;Size
TileInfo REG_SZ prop:FileDescription;Company;FileVersion
HKEY_CLASSES_ROOT\exefile\DefaultIcon
<NO NAME> REG_SZ %1
HKEY_CLASSES_ROOT\exefile\shell
HKEY_CLASSES_ROOT\exefile\shell\open
EditFlags REG_BINARY 00000000
HKEY_CLASSES_ROOT\exefile\shell\open\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\runas
HKEY_CLASSES_ROOT\exefile\shell\runas\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\start
HKEY_CLASSES_ROOT\exefile\shell\start\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shellex
HKEY_CLASSES_ROOT\exefile\shellex\DropHandler
<NO NAME> REG_SZ {86C86720-42A0-1069-A2E8-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PEAnalyser
<NO NAME> REG_SZ {09A63660-16F9-11d0-B1DF-004F56001CA7}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PifProps
<NO NAME> REG_SZ {86F19A00-42A0-1069-A2E9-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\ShimLayer Property Page
<NO NAME> REG_SZ {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c >
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.

OTL by OldTimer - Version 3.2.31.0 log created on 11212011_121653

[RKinner]

Let's try this OTL script:

:files
reg query HKEY_CLASSES_ROOT\.exe /s /c
reg query HKEY_CLASSES_ROOT\exefile /s /c
reg query HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c
reg query HKEY_CURRENT_USER\Software\Classes\.exe /s /c
reg query HKEY_CURRENT_USER\Software\Classes\exefile /s /c
reg query HKEY_CURRENT_USER\Software\Classes\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c
reg query HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.exe /s /c
reg query HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile /s /c
reg query HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c

[drunkducki]

========== FILES ==========
< reg query HKEY_CLASSES_ROOT\.exe /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\.exe
<NO NAME> REG_SZ exefile
HKEY_CLASSES_ROOT\.exe\PersistentHandler
<NO NAME> REG_SZ {098f2470-bae0-11cd-b579-08002b30bfeb}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\exefile /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\exefile
<NO NAME> REG_SZ Application
Content Type REG_SZ application/x-msdownload
EditFlags REG_BINARY 38070000
InfoTip REG_SZ prop:FileDescription;Company;FileVersion;Create;Size
TileInfo REG_SZ prop:FileDescription;Company;FileVersion
HKEY_CLASSES_ROOT\exefile\DefaultIcon
<NO NAME> REG_SZ %1
HKEY_CLASSES_ROOT\exefile\shell
HKEY_CLASSES_ROOT\exefile\shell\open
EditFlags REG_BINARY 00000000
HKEY_CLASSES_ROOT\exefile\shell\open\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\runas
HKEY_CLASSES_ROOT\exefile\shell\runas\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\start
HKEY_CLASSES_ROOT\exefile\shell\start\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CLASSES_ROOT\exefile\shellex
HKEY_CLASSES_ROOT\exefile\shellex\DropHandler
<NO NAME> REG_SZ {86C86720-42A0-1069-A2E8-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PEAnalyser
<NO NAME> REG_SZ {09A63660-16F9-11d0-B1DF-004F56001CA7}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\PifProps
<NO NAME> REG_SZ {86F19A00-42A0-1069-A2E9-08002B30309D}
HKEY_CLASSES_ROOT\exefile\shellex\PropertySheetHandlers\ShimLayer Property Page
<NO NAME> REG_SZ {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c >
! REG.EXE VERSION 3.0
HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}
<NO NAME> REG_SZ Null persistent handler
HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}\PersistentAddinsRegistered
HKEY_CLASSES_ROOT\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}\PersistentAddinsRegistered\{89BCB740-6119-101A-BCB7-00DD010655AF}
<NO NAME> REG_SZ {c3278e90-bea7-11cd-b579-08002b30bfeb}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CURRENT_USER\Software\Classes\.exe /s /c >
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CURRENT_USER\Software\Classes\exefile /s /c >
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Classes\exefile
<NO NAME> REG_SZ Application
Content Type REG_SZ application/x-msdownload
EditFlags REG_BINARY 38070000
TileInfo REG_SZ prop:FileDescription;Company;FileVersion
InfoTip REG_SZ prop:FileDescription;Company;FileVersion;Create;Size
HKEY_CURRENT_USER\Software\Classes\exefile\DefaultIcon
<NO NAME> REG_SZ %1
HKEY_CURRENT_USER\Software\Classes\exefile\shell
HKEY_CURRENT_USER\Software\Classes\exefile\shell\open
EditFlags REG_BINARY 00000000
HKEY_CURRENT_USER\Software\Classes\exefile\shell\open\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas
HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
HKEY_CURRENT_USER\Software\Classes\exefile\shell\start
HKEY_CURRENT_USER\Software\Classes\exefile\shell\start\command
<NO NAME> REG_SZ "%1" %*
IsolatedCommand REG_SZ "%1" %*
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_CURRENT_USER\Software\Classes\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c >
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.exe /s /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.exe
<NO NAME> REG_SZ exefile
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.exe\PersistentHandler
<NO NAME> REG_SZ {098f2470-bae0-11cd-b579-08002b30bfeb}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile /s /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile
<NO NAME> REG_SZ Application
EditFlags REG_BINARY 38070000
TileInfo REG_SZ prop:FileDescription;Company;FileVersion
InfoTip REG_SZ prop:FileDescription;Company;FileVersion;Create;Size
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\DefaultIcon
<NO NAME> REG_SZ %1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open
EditFlags REG_BINARY 00000000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command
<NO NAME> REG_SZ "%1" %*
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\runas
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\runas\command
<NO NAME> REG_SZ "%1" %*
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shellex
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shellex\DropHandler
<NO NAME> REG_SZ {86C86720-42A0-1069-A2E8-08002B30309D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shellex\PropertySheetHandlers
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shellex\PropertySheetHandlers\PEAnalyser
<NO NAME> REG_SZ {09A63660-16F9-11d0-B1DF-004F56001CA7}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shellex\PropertySheetHandlers\PifProps
<NO NAME> REG_SZ {86F19A00-42A0-1069-A2E9-08002B30309D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shellex\PropertySheetHandlers\ShimLayer Property Page
<NO NAME> REG_SZ {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.
< reg query HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb} /s /c >
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}
<NO NAME> REG_SZ Null persistent handler
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}\PersistentAddinsRegistered
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{098f2470-bae0-11cd-b579-08002b30bfeb}\PersistentAddinsRegistered\{89BCB740-6119-101A-BCB7-00DD010655AF}
<NO NAME> REG_SZ {c3278e90-bea7-11cd-b579-08002b30bfeb}
I:\Documents and Settings\Administrator\Desktop\cmd.bat deleted successfully.
I:\Documents and Settings\Administrator\Desktop\cmd.txt deleted successfully.

OTL by OldTimer - Version 3.2.31.0 log created on 11212011_141616

[RKinner]

Everything appears normal now. Have you rebooted since running the last merge?

[drunkducki]

rebooted the system. still getting the message opening programs. no avast icon on the lower right hand corner.

[RKinner]

IF you start Avast via Start, All Programs, do you get the control panel? Does the icon appear then?

Now that you have rebooted run the last OTL script again and let's see if anything changed.