Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Malware, Spyware [Closed]

bluelines malware

  • This topic is locked This topic is locked

#1
mariaguimaraes

mariaguimaraes

    New Member

  • Member
  • Pip
  • 1 posts

Prezados,
Até que tenho um ingles razoável, mas não sei se conseguiria me fazer compreender neste tópico, espero que o tradutor do google ajude que me compreendam mesmo em portugues.
 
Meu computador está muito lento, desde que um programa de nome regcleanpro foi instalado, nao fui em quem instalou, ele simplesmente começou a aparecer quando eu inicializava o computador.
então ele sempre me mandava fazer limpezas,detectando mais de 500 erros no meu computador, todo tempo estava buscando arquivos prejudiciais. Mesmo assim eu o desinstalei. Começaram a aparecer linhas azuis duplas em varias palavras e sempre me levam a propagandas. 
Junto com as linhas azuis duplas sublinhando as palavras, e ainda esta muito lento, esses são os maiores problemas.
 
Thank you!
I hope you understand me

 

Attached Files


Edited by mariaguimaraes, 07 July 2014 - 08:24 AM.

  • 0

Advertisements


#2
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hallo, após esse prazo poderia você me avise se o seu sistema está se comportando em si

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Correr OTL

Sob a caixa Custom Scans/correções no fundo, Cole a seguir

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    OTL_Fix.GIF
:Commands
[CREATERESTOREPOINT]

:OTL
SRV - [2014/07/07 08:59:22 | 000,318,752 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Greener Web\updateGreenerWeb.exe -- (Update Greener Web)
SRV - [2014/07/07 08:58:16 | 000,318,752 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Greener Web\bin\utilGreenerWeb.exe -- (Util Greener Web)
SRV - [2014/06/26 12:11:24 | 000,303,616 | ---- | M] (Wajam Internet Technologies Inc.) [Auto | Running] -- C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe -- (Wajam Internet Enhancer Service)
DRV:64bit: - [2014/06/20 15:28:08 | 000,061,120 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys -- ({a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64)
DRV - [2014/06/22 18:42:12 | 000,110,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Baidu-Security-2014-4.4.4.73687\Baidu Antivirus\Spring64.sys -- (Spring)
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://br.hao123.com...hp_01_hao123_br
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://br.hao123.com...hp_01_hao123_br
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://br.hao123.com...hp_05_hao123_br
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:52595;https=127.0.0.1:52595;
FF - prefs.js..extensions.enabledAddons: %7Ba3f28269-ad17-41a8-b032-3e0313ef8979%7D:1.0.1
FF - prefs.js..browser.startup.homepage: "http://br.hao123.com...p_01_hao123_br"
O2 - BHO: (Greener Web) - {1973d53b-7311-45d7-8270-f44571c041a0} - C:\Program Files (x86)\Greener Web\GreenerWebbho.dll (Greener Web)
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
[2014/06/29 19:40:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wajam
[2014/06/22 18:42:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Baidu Security
[2014/06/22 18:41:57 | 000,000,000 | ---D | C] -- C:\ProgramData\baidu
[2014/06/22 18:41:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Baidu-Security-2014-4.4.4.73687
[2014/06/22 18:34:27 | 000,000,000 | ---D | C] -- C:\Users\Cliente\AppData\Roaming\Systweak
[2014/06/22 18:34:25 | 000,020,312 | ---- | C] (Systweak Inc., (www.systweak.com)) -- C:\Windows\SysNative\roboot64.exe
[2014/06/22 18:34:22 | 000,000,000 | ---D | C] -- C:\Users\Cliente\AppData\Local\Programs
[2014/06/22 18:34:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Greener Web
[2014/06/22 18:32:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil
[2014/06/22 18:32:42 | 000,000,000 | ---D | C] -- C:\Users\Cliente\AppData\Roaming\baidu
[2014/06/22 18:32:38 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Baidu

:Commands
[resethosts]
[emptytemp]
[Reboot]
  • Clique no botão Executar consertar no topo
    Deixe o programa corre sem entraves, reinicie o PC quando é feito
    Abrir OTL novamente e clique no botão Quick Scan. Postar o log na sua próxima resposta produz
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
THEN

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan.
  • After the scan is complete click on "Clean"
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

  • 0

#3
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics


Also tagged with one or more of these keywords: bluelines, malware

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP