Troj Startpag.NF - What to do?

It may be that I just missed something, but I have done all the "Read this First" stuff on the sticky. I have AdAware, Spybot, and have done an online scan with the help of the Trend guys and it said that I had this Troj Startpag.NF and that it couldn't reach it. So then I followed their instructions to get rid of it via the reg key, but it didn't list the file they told me to delete?

Any ideas?

Thanks, Melissa
I almost forgot, I have a 2003? Dell with Windows XP.

 

Did the virus scan remove any other startpage virus files? If so it might have removed the root problem and along with it the file you specified. I would try to run another virus scan, and see if it finds anything new.

 

Unfortunately, the troj is still there. Along with that #$%^ Dog that pops up in the task bar. But I'll try running it again.

Thanks, Melissa

 

Did I do this right? I tried to online scan in safe and it said I had no connection even though I choose safe w/networking. Thanks soo much for your help.

 

One more thing... I found files in HKEY_CLASSES_ROOT that said Buddy.Buddy Service could this be something? Also do I need to keep the BackWeb lite on my computer that Spybot finds or can I delete those?

Thanks Again!!! Melissa

 

Hi Melissa,

There are a number of items on your log that should be fixed, but I don't want to get in MA's way here - Plus, there are a couple I'm not sure about.

You should be running HJT from its own folder - C:\Program Files\HijackThis - instead of from a TEMP folder. One reason for this is because HJT creates backups of items it "fixes" so that, if you fix an item that you later realize you need, you can restore it. You don't want to save these backups in a temp folder

Also, HJT shows that you have not installed SP2. A lot of problems can be avoided if you first do this. Or, in your case, it'll help keep them from returning!

You can go ahead and dump backweb if you want - it is bundled w/ Kodak products as an automatic updater.

PP

 

Hi PP,

I right clicked on hijak this and sent to my documents, will this work to save it different? If not should I download again to the other? Sorry I'm new to this. I was so proud about 2 months ago, I was able to wipe the Sassar virus off my computer, but I'm thinking I better start preventing this stuff instead of cleaning it up after I get it.

And I'm guessing, but I can probably download SP2 from microsoft.com?

Thanks on the backweb advise. I've wondered about that for a while.

I'm really liking this forum and will recommend it.

Thanks, Melissa

 

Sorry, M.A.! I didn't mean to dance on your toes

PP

 

Hi MA, PP, cl,

Ok, last night I downloaded and ran (from Safe Mode) A2. I then ran Spybot and Adaware again. A2 showed 2 troj, 2 worms, and a virus. I deleted these. Not sure if adaware is working, ran it last night with 280 some bad files and again this morning with 280 some bad files again. The black & white dog in my task bar is what is giving me problems, I click on him and exit out and he pops up as soon as I go to a new page or click on a new link on Explorer. Shortly following the dog is mega popups.

I'll check my programs and do online scan with Symantec.

Don't worry MA, I won't do anything major before you say.

Thanks!! Melissa

 

Hey Everybody,

Just wanted to let you know, I finally got rid of the dog. An unistall file was hidden in my files. I went to run and browse. I found it and used it. I guess my daughter must have accidently downloaded it.

I really appreciate all your help and would ask one more thing. Could you guys recommend a good, possibly free, virus control? Also point me in the right direction for setting up a firewall?

Thank you again and again for all your help.

Melissa

 

Hi Melissa,

Hope you caught everything

Antivirus - AVG Free Edition 6.0 Build 754

Firewall - ZoneAlarm Free 5.1.011 Make sure are only running 1 anti-virus and 1 firewall at a time. If you install SP2, you'll have to disable the Windows Firewall which is on by default at install.

Cheers,

PP