PC Clean up gac_32

Ok so i ran these programs my friend sent me a link to this site and told me to run these and post the logs for help. Im not very good with tech stuff but i will try to do my best to get rid of these virus gac_32/64

 

opps should have gave a description on what is happening. I recently had the rediret pop up every time i was on the internet so i did a virus scan with trend micro house call and it showed this gac32/64 virus . it said it would be deleted after a restart how ever it is still there. So I asked my friend for help and he sent me a link here.


(sorry for the bump didnt know how to edit the post)

 

Welcome to MajorGeeks, Jreal

http://img196.imageshack.us/img196/3557/tdsskiller.gif I want you to read and follow these instructions: TDSSKiller - How to run

/!\ You forgot to attach MGlogs.zip (from running MGtools).

 

alright i will give it a shot and sorry about the missing log i thought i got them all i will follow these steps in the morning.


Thank you

 

ok so i ran that program it found 3 threats did the recommended action rebooted and scanned again only 2 threats this time.

I decided to see if there were any other issues going on and i cant change my fire wall or open links on websites with out having to right click them and open in a new tab.

 

Just a reminder, I need the MGlogs.zip to further help you.

 

oh sorry here it is

 

http://img406.imageshack.us/img406/3189/windowsrepair.gif Download Windows Repair by Tweaking.com and unzip the contents into a newly created folder on your desktop.

• Now open Repair_Windows.exe
• Go to the Start Repairs tab.
• Press the Start button
• Create a System Restore point if prompted.
• In the Repair Options window, choose the following repairs:
  • Reset Registry Permissions
  • Repair Windows Firewall
  • Repair Internet Explorer
  • Remove Policies Set By Infections
  • Remove Temp Files
  • Repair Windows Updates
• Place a checkmark in Restart/Shutdown System When Finished
• Fill in the Restart System bubble
• Now click the Start button.
• Be patient while the tool repairs the selected items. Your computer should automatically restart when finished.

__


http://img17.imageshack.us/img17/3214/baticonvista7.gif Now run C:\MGtools\GetLogs.bat by right-mouse clicking it and then selecting Run as Administrator
This updates all of the logs inside MGlogs.zip.
When it is finished, attach C:\MGlogs.zip to your next message. (How to attach)

 

Ok i did all the steps you asked here is the new MG Log

 

http://img850.imageshack.us/img850/4746/programsandfeatureswin7.gif From Programs and Features (via Control Panel), please uninstall the below:

• BitTorrentBar Toolbar
• Coupon Printer for Windows
• Download Updater (AOL LLC)
• Driver Detective
• Feedback Tool
• Java(TM) 6 Update 15 (64-bit)
• Java(TM) 6 Update 33
• Java(TM) SE Development Kit 6 Update 15 (64-bit)
• Winamp Toolbar

__

http://img825.imageshack.us/img825/2648/hjt.gif Run C:\MGtools\analyse.exe by double-clicking it (Vista/7 right-click and select Run as Administrator)
Shut down your protection software now (antivirus, antispyware...etc) to avoid possible conflicts.
Choose "Do a system scan only" and select the following lines but do not click fix until you exit all explorer windows and all browser sessions including the one you are reading in right now:

• R3 - URLSearchHook: (no name) - - (no file)
• O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

After clicking Fix, exit out of Trend Micro HiJackThis - v2.0.4

__

http://img205.imageshack.us/img205/4783/regeditb.gif Now download fixme.zip to your desktop.

• Extract fixme.reg from fixme.zip onto your desktop.
• Now double-click fixme.reg and allow it to merge into the Windows Registry
• Let me know if the merge was successful or not.
  • If successful, reboot your PC and complete the step below too:
  • If unsuccessful, don't reboot yet and just let me know that the registry file didn't successful merge. But give me the exact error message you received.

http://img17.imageshack.us/img17/3214/baticonvista7.gif Now run C:\MGtools\GetLogs.bat by right-mouse clicking it and then selecting Run as Administrator
This updates all of the logs inside MGlogs.zip.
When it is finished, attach C:\MGlogs.zip to your next message. (How to attach)

 

ok merge was successful and i restarted and ran the getlog.bat here is the log

 

These latest logs are clean. Are you experiencing any malware related issues now?

 

not as of yet i still cant attach anythign using internet explore only with fire fox so iono if i just need to uninstall IE and reinstall

 

Go into more detail about why you can't attach anything in IE. Uninstalling and reinstalling IE9 might be the easiest solution. Or simply downgrading to IE8.

 

how would i be able to uninstall it? i dont see an option for it on the add/remove program list.

 

ok so i found out how to uninstall IE9 from the windows site how ever after i did they i couldt reinstall it. it kept failing to install. not only that but a lot of my programs (games) do not open anymore. I didn't think it would be such a problem.

any clue on what i should do?

 

So you should be on IE8 now. First see if you are having any problems with IE8.

 

thats what i thought too it would down grade but i dont have IE at all. No previous versions.

 

You must, open command prompt window and type in:

iexplore

then press enter

 

says its not registered as an internal or external command, operable program or batch file

 

Which set of Microsoft instructions did you follow? Can you link me?

 

http://windows.microsoft.com/en-US/windows7/how-do-i-install-or-uninstall-internet-explorer-9


thats the link i followed

 

C:\Program Files (x86)\Internet Explorer

Does this folder exist? If so, open the folder and find iexplore.exe in it. Then try opening iexplore.exe by double-clicking it.

If you you weren't able to locate any of these folders / files, then do this:

http://img707.imageshack.us/img707/6703/generalxpicon.gif Download SystemLook from one of the links below and save it to your desktop.
Download Mirror #1
Download Mirror #2

If you have a 64-bit system, please download the 64 bit version from here:
SystemLook (64-bit)

• Double-click SystemLook.exe to run it.
• Copy and Paste the content of the following code box into the main text-field:

Code:

[COLOR="DarkRed"]:dir[/COLOR]
C:\Program Files (x86)\Internet Explorer

• Click the Look button to start the scan.
• When finished, a notepad window will open with the results of the scan and a file entitled SystemLook.txt will be created on your desktop.
• Attach that file to your next message. (How to attach)

 

ok done

 

ok iono i tried to install internet explorer 9 again as admin usally i get the failed sign howe ever it installed =\ im not sure why i still cant attach files using it or open up some pop up links

 

Hi,

Something is wrong with Internet Explorer apparently. It's weird that it doesn't revert to IE8 for you. You may want to try the following through command prompt: sfc /scannow

It may be able to repair the kinks in IE9.

 

did it didnt find anything wrong everything was fine

 

Another program you may want to try: http://majorgeeks.com/Complete_Internet_Repair_d7183.html

 

cool man thanks i will give it a try and see how it goes. Thank you for all your help so far. I would have never been able to fix anything with out you.

 

No problem.

Just so you know, since this sounds more like an issue with Internet Explorer and Windows rather than malware related, feel free to post in Software regarding your remaining issues. This way, more people will be able to help you.

If you are not having any other malware related problems, it is time to do our final steps:

• Any programs we had you download and/or install can be removed at this time.
• If we had you download and run ComboFix, here is how to uninstall it:
  • Press and hold the Windows key http://i1106.photobucket.com/albums/h363/debojyotidas/Windows_Logo_key.gif and then press the letter R on your keyboard.
  • This opens the Run dialog box.
  • Copy and paste the below text inside the text-field:
    • "%userprofile%\desktop\ComboFix" /uninstall
  • Now press ENTER
  • ComboFix will extract its files one last time and you should receive a notification that ComboFix has been uninstalled shortly after.
• You can re-enable your Disk Emulation software at this time via DeFogger.
• If we had you create or download a registry patch or "fix" script, these can be deleted at this time.
• Go into the C:\MGtools folder and run the MGclean.bat file to remove additional traces of our tools.
• Now we will toggle System Restore to remove any infected system restore points.
  • Read this: How to Disable And Enable System Restore
• Lastly, here is a guide to protect you from future infections: How to Protect yourself from malware!
• Be safe