Hi guys I have got a f@#$%&$#g startpage trojan that norton can find but canny fix,so if any of you guys could tell me how to kill it that would be just great.

Keep in mind I know F all about computers thought,TIA.

Cheers
Miner

Hi Miner

Go Here
http://www.safer-networking.org/index.php?page=download

Download Spybot S&D, instal the program, then run it, it's great.
It finds most trojans and you can imunize your pc from them, lock your internet start page and settings
Let me know if you need help with it

Cheers Slam

Edit: Everyone should have it as part of their system.
It's free so go for it.

Thanks slam good try but been there done that(unless me do it wrong which is quiet possible),if you know your stuff?,any chance of an email phone number swap so you could talk me through a fix? if not ok.

Cheers
Miner

Hi Miner

Try Netguide, they have some info on Trojans and removal tools.

http://www.netguide.co.nz/useful_stuff/virus_info/

Will have a look Arco ta.

Cheers
Miner

Miner, I can't help U but consider taking PC to reputable computer store and then purchase latest legal copy of Nortons anti-virus. Another suggestion, never disclose your real email address to anyone except for business. Use only hotmail address for everyone else.

Have a look at this link miner, at norton/symantec's website specifically regarding startpage trojan. The second link may help in removing those "cannot clean infected files" files.

http://securityresponse.symantec.com/avcenter/venc/data/trojan.startpage.html

For additional information, and an alternative to disabling Windows Me System Restore, see the Microsoft Knowledge Base article, "Antivirus Tools Cannot Clean Infected Files in the _Restore Folder," Article ID: Q263455

http://support.microsoft.com:80/support/kb/articles/Q263/4/55.ASP&NoWebContent=1

Rev

and I expect that you are now ready for a gin and tonic or perhaps a whiskey.... :(:([}:)]

Miner

Clean Re-installation: Although arduous, this will always be the only sure way to eradicate a trojan or virus. Back up your entire hard disk, reformat the disk, re-install the operating system and all your applications from original CDs, and finally, if you're certain they are not infected, restore your user files from the backup. If you are not up to the task, you can pay for a professional repair service to do it.

Miner
Mentioned this in my post on 28 Nov "MS Explorer 5 Problem" on NZ chat.
AVG pointed out where my trojan was, then I simply had to delete it.
Go to My Computer - C - Windows, then one by one open folders from the top left and work your way down. If a trojan is hiding in one the screen will display a horrible message about it as soon as you double click the folder, and you simply then have to delete that folder or file (the trojan may be hiding in a file in the folder so just delete that file and keep it in the recycle bin for a while until sure nothing good has also been deleted).
There may be more than one trojan so try all folders. That's what I did anyway - hope it helps. Startpage back to normal after that.
George.

Thanks guys,Bull PC guy on hol's,Greeny copy is legal,George just ran AVG found zip,If I did the "-C- windows bit right??then looks like have to delete half of whats in there,is that ok?,Rev got the gun loaded ready to shoot PC:(,have been there done that for your first link,second I run W XP home edition and "The information in this article applies to:
Microsoft Windows Millennium Edition",so will it work for XP?.

Norton finds it in the scan says fixed but then at end of scan says canny repair it,so all day a warning box pops up and I have to hit ok 50 times for it to close:(.

If it will work can a dummy like me do it?

Once again thanks guys,if I knew what I was doing it would help[B)],trading shares is easy compared to this stuff:D;).

Cheers
Miner

As you have xp, don't do the 2nd option.

were you able to do all the following, and especially restart your computer in safe mode?

Disable System Restore (Windows Me/XP).
Update the virus definitions.
Restart the computer in Safe mode or VGA mode

Run a full system scan and delete all the files detected as Trojan.StartPage.
Reset the Internet Explorer home page.

Hi Rev gave that a go but may? have done something wrong so will try again but when did it norton still said cannot repair this file?.

Cheers
Miner

I am not sure if I will be much help,but I picked up a similar Trojan Horse a month or so ago,can't remember the name,but neither Norton with latest definitions,nor latest Antivir could fix it,though both advised it was present. It seemed to do the same,changed the start page,and would not let me access it again any way.
I managed to successfully remove it,Antivir gave me the infected files,they were in a Window temp directory,so I deleted them.I can't remember though what I did after that,but I found what to do by making a google search in the trojan horse name and found enough info from there to carry out what was necessary.I remember at the end running Spybot and having it remove some more rubbish.
Forgot to add this was with Windows98,I don't know enough to say whether or not this may be applicable for you.Just hope it may help,with nothing lost if it doesn't

miner, how many infected files do you have?

Next time you run the antivirus programme make a note of the infected file names and their location.

With windows in safe mode, I would try and delete the files manually through DOS via a cmd window. Unfortunately, this does require some knowledge and is probably beyond your level of expertise.

There is a programme called cwshredder that is supposed to remove the startpage trojan. You could try it if you are desperate enough - I have no knowledge myself of this programme. But it does describe your problem to a tee and does claim to fix it.. Suggest you give it a go...

http://www.computercops.biz/postt12140.html

The site in my preceding post has a forum type format. You will notice that the file cwshredder can be downloaded if you click on that word in the second post. Download and use at your own risk though.

It's snowing outside here, in Seoul, but it's off to work I go - which ain't gonna be much fun today.

Rev

You da man Rev I luvz ya and want to have your baby's:D;),gave it a go and it got rid of the faka,so choice as has been pissing me off for weeks,did a scan and zip was found so take I didn't get something else from doing it?.

See you picked MEE in the comp,watched it for years and like.

Also thanks again to everyone that helped[8D].

Cheers
Miner

glad it worked!

as for MEE, it has a lot going for it in it's own right. However, it also has exposure to oilex (OEX) who I also was very keen on selecting.

But in the end I decided to go the safer way and hedge my bets. May not get the same return on MEE if oilex hit oil, but should still get a good kick if they do.

Rev

Yep MEE have good ground,prospected the area years ago,and they just poped up on one of my radars today so watching for a trade.

It's jumped to 11c regularly but never seemed to get above it. Needs an announcement to fire it.

Worth watching anyway.

(Hold MEE)

I also managed to get a trojan that hijacked my browser. Came across www.merijn.org which I found most useful. In addition to being able to download CWSshredder from there the HijackThis download is also very helpful but best to read its online tutorial as it a little more complex but solved my prob (fingers crossed) where CWSshredder didn't.

Hi Prophet got bl**dy start page trojan prob's again and the old links that worked last time dont work so would you be able to post some new ones??,thanks in advance.

Cheers
Miner