Trojan

Trojan:Win32/Startpage.IM removal tips

Malware Removal

The Trojan:Win32/Startpage.IM is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Startpage.IM virus can do?

  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Authenticode signature is invalid

How to determine Trojan:Win32/Startpage.IM?



File Info:

name: 460428B0F4C0AB45A006.mlw
path: /opt/CAPEv2/storage/binaries/d1a3c41d552556f168bb26f125e888d16ae9dd564682440de2995cfbdcf39cec
crc32: B5ACB21B
md5: 460428b0f4c0ab45a006a6e096ca1fcc
sha1: e4ad33c11ca63557ae716f0739aeb6f9d76c4cc0
sha256: d1a3c41d552556f168bb26f125e888d16ae9dd564682440de2995cfbdcf39cec
sha512: 6bef5f7c2f1c0382f7de12a64244a3aed2365fef66d804592f28d740b8785b5a9aa62438affb246c4658755b06a51a3cd057c825930b1cf39fedf4ad15a9a74a
ssdeep: 24576:Sm/0RVRBp+d3iiuV/EfI3gPg42RuPvz2g5C:S20RVRBO3iz/VgzQuPr2g4
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13E1523B53AB3D9B3E31DC4B907130E1EB172AB5040C985478B9AE71EAD186E5721F1EC
sha3_384: fe09884a1ac59129762d1974df331ba15ff58b392e116eb07c22d4e95944ab2a7f2d55b0f0366a88bb9a14e08e1ed2a8
ep_bytes: 81ec8001000053555633db57895c2418
timestamp: 2007-05-05 12:23:31


Version Info:

0: [No Data]

Trojan:Win32/Startpage.IM also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Agent.4!c
MicroWorld-eScanTrojan.GenericKD.38114243
FireEyeGeneric.mg.460428b0f4c0ab45
ALYacTrojan.GenericKD.38114243
CylanceUnsafe
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/Startpage.f23444f5
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.11ca63
TrendMicro-HouseCallTROJ_GEN.R002C0DKO21
KasperskyTrojan.Win32.Agent.xakvta
BitDefenderTrojan.GenericKD.38114243
SUPERAntiSpywareTrojan.Agent/Gen-StartPage[XL]
AvastWin32:Malware-gen
Ad-AwareTrojan.GenericKD.38114243
SophosMal/Generic-S
TrendMicroTROJ_GEN.R002C0DKO21
McAfee-GW-EditionBehavesLike.Win32.Dropper.cc
EmsisoftTrojan.GenericKD.38114243 (B)
SentinelOneStatic AI – Suspicious PE
AviraTR/StartPage.jccdp
MAXmalware (ai score=87)
Antiy-AVLTrojan/Generic.ASMalwNS.6
MicrosoftTrojan:Win32/Startpage.IM
GDataTrojan.GenericKD.38114243
CynetMalicious (score: 99)
McAfeeArtemis!460428B0F4C0
VBA32Trojan.Agent
MalwarebytesMalware.AI.3766714107
APEXMalicious
TencentTrojan.Win32.BitCoinMiner.la
AVGWin32:Malware-gen

How to remove Trojan:Win32/Startpage.IM?

Trojan:Win32/Startpage.IM removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment