Trojan.Win32.StarField
Trojan.Win32.Starfield is a Trojan parasite that displays deceitful warning messages via IEDefender virus. Trojan.Win32.Starfield may enter your system bundled with a corrupt video codec. The error messages are displayed within Google results and may read the following:
"Error! Your browser was hijacked! Some results was changed by porn advertising! You need to clean your system immediately to prevent it. Download the newest antispyware software!"
"Critical System Error!
Your computer was infected by Trojan.Win32.Starfield
It's dangerous for your system, some files can be lost and your browser can be slow!
Click OK to download the antispyware program to clean your computer! (Recommended)"
A link to a bogus porn video is displayed next to these notifications. Once you click on the link (http://youtube/watch?v=Hgdzqumapep), you will be redirected to malicious websites that promote IEDefender. It is strongly recommended to remove Trojan.Win32.Starfield upon detection.
File System Modifications
- The following files were created in the system:
# File Name 1 advpac.dll 2 advrepkon.dll 3 bkfgnqhm.dll 4 cabvie.dll 5 cpwvehup.dll 6 ddayv.dll 7 ddcbyvt.dll 8 ddccd.dll 9 ddcdedd.dll 10 ecxwp.dll 11 enhtb.dll 12 gebca.dll 13 hdbxuqje.dll 14 ibpmxtbv.dll 15 lcxmehhg.dll 16 ljjhedc.dll 17 mljge.dll 18 mlljh.dll 19 orkbobob.dll 20 pofwjina.dll 21 sgqddvym.dll 22 ssqpo.dll 23 stream32a.dll 24 tdlRMS.dll 25 trojan.win32.starfield.exe 26 tuvttrr.dll 27 vipextqtr.dll 28 vkcxxfvi.dll 29 windivx.dll
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{RegistryKeys}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
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.