Author Topic: Truminfi.com  (Read 40253 times)

0 Members and 1 Guest are viewing this topic.

confutse

  • Guest
Re: Truminfi.com
« Reply #15 on: March 20, 2011, 06:10:45 PM »
Thanks  for your help all ! :D

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Truminfi.com
« Reply #16 on: March 20, 2011, 06:12:11 PM »
Stick around and enjoy

hot_moka

  • Guest
Re: Truminfi.com
« Reply #17 on: March 21, 2011, 07:19:51 PM »
Hi!

I have the same problem with truminfi.com
I tried to do what suggested in the forum with OTS but after the reboot the allerts keep popping up.
Moreover, I use always firefox as browser, but the affected process is c:\windows\explorer.EXE
What can I do?
I attach the OTS natepad file that appears right after the scan, and also the one that appears after the fix.
Please help me!

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Truminfi.com
« Reply #18 on: March 21, 2011, 07:31:42 PM »
Hi the fix would not work for you as each one is specific to  that machine

Start OTS. Copy/Paste the information in the quotebox below into the panel where it says "Paste fix here" and then click the Run Fix button.

Code: [Select]
[Unregister Dlls]
[Registry - Safe List]
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
YN -> {EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7} [HKLM] -> Reg Error: Key error. [QuickNet BHO]
< Run [HKEY_USERS\S-1-5-21-1022177476-2724221402-4097892894-1000\] > -> HKEY_USERS\S-1-5-21-1022177476-2724221402-4097892894-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
YY -> "Hgetahogevo" -> C:\Users\monica\AppData\Local\KBDAgfs.dll [rundll32.exe  "C:\Users\monica\AppData\Local\KBDAgfs.dll",Startup]
[Files/Folders - Created Within 30 Days]
NY ->  temp(17) -> C:\Users\monica\AppData\Local\temp(17)
NY ->  Mendeley Ltd -> C:\Users\monica\AppData\Local\Mendeley Ltd
NY ->  KBDAgfs.dll -> C:\Users\monica\AppData\Local\KBDAgfs.dll
[Empty Temp Folders]
[EmptyFlash]
[CreateRestorePoint]
 

The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix.  Post that information back here

I will review the information when it comes back in.

hot_moka

  • Guest
Re: Truminfi.com
« Reply #19 on: March 21, 2011, 07:48:05 PM »
here is the file after the fix-all.

when the system rebooted, a error window appeared, with written :
ERROR LOEADING
C:\Users\monica\AppData\local\KBDAgfs.dll

I have no idea of what that means...

hot_moka

  • Guest
Re: Truminfi.com
« Reply #20 on: March 21, 2011, 08:18:38 PM »
by the way after the reboot i didn't get any alert from avast.
i hope the problem is solved!

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Truminfi.com
« Reply #21 on: March 21, 2011, 09:28:19 PM »
Could you re-run OTS please if you are still getting the dll warning at start

hot_moka

  • Guest
Re: Truminfi.com
« Reply #22 on: March 21, 2011, 09:45:11 PM »
I re-run the OTS.
here is the notepad

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Truminfi.com
« Reply #23 on: March 21, 2011, 10:11:58 PM »
OK I can see why it did not get removed - Spybot blocked the removal.  Could you turn off tea-timer please otherwise I will be unable to delete the registry key 

Start OTS. Copy/Paste the information in the quotebox below into the panel where it says "Paste fix here" and then click the Run Fix button.

Code: [Select]
[Unregister Dlls]
[Registry - Safe List]
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
YN -> "Hgetahogevo" -> [rundll32.exe  "C:\Users\monica\AppData\Local\KBDAgfs.dll",Startup]
 

The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix.  Post that information back here

I will review the information when it comes back in.

hot_moka

  • Guest
Re: Truminfi.com
« Reply #24 on: March 21, 2011, 10:27:33 PM »
It took really a minute!

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Truminfi.com
« Reply #25 on: March 21, 2011, 10:29:08 PM »
Dll error should be history now  ;D  If it is then run OTS and hit the cleanup button to remove it

zoulse

  • Guest
Re: Truminfi.com
« Reply #26 on: March 21, 2011, 10:32:10 PM »
I got this same prob, i have scanned my comp with ost, how do i go about now?

hot_moka

  • Guest
Re: Truminfi.com
« Reply #27 on: March 21, 2011, 10:36:08 PM »
thanks a lot!!
now it seems fine

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Truminfi.com
« Reply #28 on: March 21, 2011, 10:40:06 PM »
Did it come back on reboot ?

zoulse

  • Guest
Re: Truminfi.com
« Reply #29 on: March 21, 2011, 10:41:10 PM »
I mean I have scanned it with OTS, please i would appreciate some help as soon as possible.