Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Computer Slow, Adobe Reader 11 virus?

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 1st, 2012, 4:43 pm

It's a SimpleTech 256MB jump drive.

By Pininfarina.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm
Advertisement
Register to Remove

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby vict0r » January 2nd, 2012, 8:31 pm

Regarding wireless network: It is possible that you need to delete the wireless profile to make it work again.

Right click the tray icon for Intel PROSet and select Open Intel PROSet for wireless connections (a window will open).
Click Profiles..., click once on the profile name of your wireless network to highlight it, click Remove -> Yes -> Close -> Refresh and then try to connect to your wireless network again. You must use the exact wireless key as you used when you configured wireless networking on the router (including capitalization of letters).


GMER Rootkit Scanner

Please download GMER Rootkit Scanner from the following link:
http://www2.gmer.net/download.php

Plug in your usb drive and identify which drive letter it has got (E:\ or F:\?).

  • Double click the .exe file. If asked to allow the gmer .sys driver to load, please consent
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Drives/Partition other than Systemdrive (typically C:\) and the usb drive. The usb-drive must be checked.
    • Show All << (don't miss this one)
    See image below, Click the image to enlarge it
    Image

  • Then click the Scan button & wait for it to finish
  • Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file
  • Save it where you can easily find it, such as your desktop, and post it in your next reply
**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Note: Do not run any programs while Gmer is running.
vict0r
Regular Member
 
Posts: 1043
Joined: December 3rd, 2008, 3:00 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 2nd, 2012, 11:07 pm

When I down load GMER the E: drive doesn't show up.

I still couldn't log on. It asks for device ownership password. Supposedly on the router, but I cannot find it.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby vict0r » January 3rd, 2012, 12:22 am

Let's forget about the jump drive for now and just run a GMER scan.

GMER Rootkit Scanner

  • Double click the downloaded .exe file. If asked to allow the gmer .sys driver to load, please consent
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Drives/Partition other than Systemdrive (typically C:\).
    • Show All << (don't miss this one)
    See image below, Click the image to enlarge it
    Image
  • Then click the Scan button & wait for it to finish
  • Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file
  • Save it where you can easily find it, such as your desktop, and post it in your next reply
**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Note: Do not run any programs while Gmer is running.


Wireless

Please disable wireless encryption on the router. Connect your computer wirelessly to the router (disconnect the wire) and test browsing performance. Does the browsers load the pages in a normal time frame now?
vict0r
Regular Member
 
Posts: 1043
Joined: December 3rd, 2008, 3:00 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 3rd, 2012, 9:23 am

GMER:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-03 08:11:06
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 HTS548040M9AT00 rev.MG2OA5EA
Running: 7jogbh9v.exe; Driver: C:\DOCUME~1\TADPAL~1\LOCALS~1\Temp\kfliruow.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----

Wireless works fine when security is turned off.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 3rd, 2012, 9:23 am

GMER:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-03 08:11:06
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 HTS548040M9AT00 rev.MG2OA5EA
Running: 7jogbh9v.exe; Driver: C:\DOCUME~1\TADPAL~1\LOCALS~1\Temp\kfliruow.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----

Wireless works fine when security is turned off.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 3rd, 2012, 9:23 am

GMER:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-03 08:11:06
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 HTS548040M9AT00 rev.MG2OA5EA
Running: 7jogbh9v.exe; Driver: C:\DOCUME~1\TADPAL~1\LOCALS~1\Temp\kfliruow.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----

Wireless works fine when security is turned off.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby vict0r » January 3rd, 2012, 9:51 am

t-risk7 wrote:Wireless works fine when security is turned off.
Ok, good. Do you remember which encryption was set up on the router before the reset (wep/wpa/wpa2)?

It may be a good idea to try to enable wep encryption on the router to test if it works: Login to the router and navigate to Wireless -> Security, change authentication type to WEP. Leave all other settings as default, make a note of the default 10 digit key. Remove the wireless profile on your computer and then reconnect to the router wirelessly.

Here's how to delete the profile again:

Right click the tray icon for Intel PROSet and select Open Intel PROSet for wireless connections (a window will open).
Click Profiles..., click once on the profile name of your wireless network to highlight it, click Remove -> Yes -> Close -> Refresh and then try to connect to your wireless network again. You must use the exact wireless key as you previously noted when you configured wep encryption on the router.
vict0r
Regular Member
 
Posts: 1043
Joined: December 3rd, 2008, 3:00 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 3rd, 2012, 4:26 pm

Got wireless working. Thanks. It runs fine. 54mbps
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby vict0r » January 3rd, 2012, 6:26 pm

t-risk7 wrote:Got wireless working. Thanks. It runs fine. 54mbps
Is it now working with wep encryption? (or wpa/wpa2?)


Regarding GMER and your jumpdrive, I'd like you to test the following:

  • Plug in your jump drive and verify that it's showing up with a drive letter (in "Windows Explorer", "My Computer" or similar).
  • Start GMER by double clicking the .exe file. A window similar to this one will open (click the image to enlarge it):
    Image
  • In the section to the right and under files, there should be a list of drives. Look for the jump drive's drive letter.
  • If your jump drive does not show up, then please post back carefully explaining that you could access the jump drive in other programs as i.e. drive E:\ before running GMER.
  • If your jump drive show's up then
    • untick everything except:
      • Files
      • The drive letter for your jump drive.
    • Then click the Scan button & wait for it to finish.
    • Once done click on the [Save..] button, and in the File name area, type in "jdrive.txt" or it will save as a .log file
    • Save it where you can easily find it, such as your desktop, and post it in your next reply
vict0r
Regular Member
 
Posts: 1043
Joined: December 3rd, 2008, 3:00 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 3rd, 2012, 7:35 pm

Yeah. Wireless works with WEP encryption.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 3rd, 2012, 7:39 pm

I can access the drive from My Computer, but it doesn't show up in GMER.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby vict0r » January 3rd, 2012, 10:28 pm

t-risk7 wrote:Yeah. Wireless works with WEP encryption.

Ok, good. Do you remember which encryption was set up on the router before the reset (wep/wpa/wpa2)? (Please don't forget to answer this.)

The security provided with wep encryption is ridiculous and wpa2 is the only one providing any decent security. Now that you know that wep encryption works, move up to wpa2:
Login to the router and navigate to Wireless -> Security, change authentication type to WPA2. Leave all other settings as default. For testing purposes use the 10 digit key you already used for wep as your passphrase. Remove the wireless profile on your computer (or it will not work) and then reconnect to the router wirelessly again. If WPA2 does not work, then try WPA, remember to delete the wireless profile before attempting to reconnect.


t-risk7 wrote:I can access the drive from My Computer, but it doesn't show up in GMER.

While having the jump drive connected and visible with a drive letter:
  • Could you please list the drive letter's for the drives that show up in My Computer/Computer in your next reply.
  • Also start GMER and include a list of the drive letters visible there.
vict0r
Regular Member
 
Posts: 1043
Joined: December 3rd, 2008, 3:00 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby t-risk7 » January 4th, 2012, 5:49 am

Got wireless switched to WPA2. Works great thanks.

Mycomputer:
C:
D:
E:

Gmer:

C: only.
t-risk7
Regular Member
 
Posts: 118
Joined: July 7th, 2010, 12:27 pm

Re: Computer Slow, Adobe Reader 11 virus?

Unread postby vict0r » January 4th, 2012, 1:29 pm

Let's try another rootkit detector, the jump drive must be plugged in and you must check that it is visible and remember the drive letter:


RootRepeal - Rootkit Detector

  • Download RootRepeal from the following location and save it to your desktop.
  • Unzip it to your Desktop.
  • Double click RootRepeal.exe to start the program.
  • Click on the Files tab at the bottom of the program window.
  • Click the Scan button.
  • In the Select Drives dialog, place a checkmark beside the drive letter for your jump drive.
  • Click the OK button
  • When the scan is complete, the Save Report button will become available.
  • Click the Save Report button and save the report to your Desktop as RootRepeal.txt
  • Close RootRepeal and post the log.



Run command.

Click Start -> Run..., type cmd into the run box and click OK.
Copy/paste the following line into the command window. You have to replace X: with your jump drive's drive letter, i.e. E: or F:, then hit enter on your keyboard:
attrib -H X:\autorun.inf
Do you now have a visible autorun.inf file on the root of your jump drive? What happens if you right click that file and select Edit? Please post the contents if it works. If it does not work, then post the error message, the exact wording will be useful.
vict0r
Regular Member
 
Posts: 1043
Joined: December 3rd, 2008, 3:00 pm
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 296 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware