Trojan.Starman.5768

Техническая информация

Для обеспечения автозапуска и распространения:

Создает или изменяет следующие файлы:

%WINDIR%\Tasks\SA.DAT

Вредоносные функции:

Запускает на исполнение:

'<SYSTEM32>\svchost.exe' -k netsvcs

Изменения в файловой системе:

Создает следующие файлы:

%CommonProgramFiles%\System\ado\tsektjkj.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\jjjthqtn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\brvrjrke.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\njbsvtll.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\ehbebsrn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\res\lhbtcvlt.exe
%PROGRAM_FILES%\NetMeeting\rsewzjqn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\sjwzlskk.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\cpow\ketssrzn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\hltjtlne.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\nsqjttkv.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bcwvzwbh.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\czjevcet.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\xrljqjzn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\vkjljzrn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bhrhnkht.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\tlcwjrwt.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bnbtzwxt.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bzqlkhrh.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\qjllsjhl.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\elwtjnbj.exe

Сетевая активность:

Подключается к:

'21#.#11.170.228':445
'21#.#11.113.222':445
'21#.#11.69.246':139
'21#.#11.230.103':139
'21#.#11.201.151':445
'21#.#11.63.142':445
'21#.#11.56.79':445
'21#.#11.57.146':445
'21#.#11.62.189':445
'21#.#11.10.18':139
'21#.#11.102.11':139
'21#.#11.224.69':139
'21#.#11.5.243':139
'21#.#11.75.84':139
'21#.#11.10.123':139
'21#.#11.37.194':139
'21#.#11.126.242':139
'21#.#11.85.203':139
'21#.#11.106.56':445
'21#.#11.105.129':445
'21#.#11.111.66':445
'21#.#11.125.16':445
'21#.#11.243.23':445
'21#.#11.55.229':445
'21#.#11.125.108':445
'21#.#11.51.112':445
'21#.#11.56.75':445
'21#.#11.21.200':445
'21#.#11.30.216':445
'21#.#11.177.147':445
'21#.#11.185.53':445
'21#.#11.61.157':445
'21#.#11.15.236':445
'21#.#11.120.214':445
'21#.#11.16.121':445
'21#.#11.98.17':445
'21#.#11.108.182':445
'21#.#11.214.172':139
'21#.#11.98.17':139
'21#.#11.108.182':139
'21#.#11.177.147':139
'21#.#11.15.236':139
'21#.#11.120.214':139
'21#.#11.243.23':139
'21#.#11.105.129':139
'21#.#11.16.121':139
'21#.#11.125.16':139
'21#.#11.62.189':139
'21#.#11.63.142':139
'21#.#11.201.151':139
'21#.#11.57.146':139
'21#.#11.56.79':139
'21#.#11.61.157':139
'21#.#11.30.216':139
'21#.#11.106.56':139
'21#.#11.185.53':139
'21#.#11.111.66':139
'21#.#11.76.143':139
'21#.#11.93.26':139
'21#.#11.27.166':139
'21#.#11.34.116':139
'21#.#11.103.136':139
'21#.#11.14.225':139
'21#.#11.140.0':139
'21#.#11.112.103':139
'21#.#11.48.113':139
'21#.#11.21.200':139
'21#.#11.125.108':139
'21#.#11.55.229':139
'21#.#11.56.75':139
'21#.#11.51.112':139
'21#.#11.200.186':139
'21#.#11.136.38':139
'21#.#11.95.52':139
'21#.#11.74.38':139
'21#.#11.95.52':445
'21#.#11.194.100':139
'21#.#11.151.240':139
'21#.#11.219.254':139
'21#.#11.101.4':139
'21#.#11.62.83':139
'21#.#11.101.27':139
'21#.#11.187.171':139
'21#.#11.209.62':139
'21#.#11.62.87':139
'21#.#11.61.247':139
'21#.#11.35.14':139
'21#.#11.0.234':139
'21#.#11.55.20':139
'21#.#11.207.237':139
'21#.#11.174.193':139
'21#.#11.65.239':139
'21#.#11.71.37':139
'21#.#11.142.80':139
'21#.#11.5.188':139
'21#.#11.244.232':139
'21#.#11.162.53':139
'21#.#11.72.39':139
'21#.#11.127.215':139
'21#.#11.181.163':139
'21#.#11.99.104':139
'21#.#11.109.99':139
'21#.#11.72.109':139
'21#.#11.104.72':139
'21#.111.2.3':139
'21#.#11.112.114':139
'21#.111.5.5':139
'21#.#11.229.5':139
'21#.#11.44.1':139
'21#.#11.23.175':139
'21#.#11.254.178':139
'21#.#11.112.3':139
'21#.#11.243.119':139
'21#.#11.181.161':139
'21#.#11.140.0':445
'21#.#11.214.172':445
'21#.#11.48.113':445
'21#.#11.14.225':445
'21#.#11.224.69':445
'21#.#11.102.11':445
'21#.#11.75.84':445
'21#.#11.5.243':445
'21#.#11.10.18':445
'21#.#11.136.38':445
'21#.#11.27.166':445
'21#.#11.74.38':445
'21#.#11.200.186':445
'21#.#11.34.116':445
'21#.#11.103.136':445
'21#.#11.112.103':445
'21#.#11.76.143':445
'21#.#11.93.26':445
'21#.#11.126.242':445
'21#.#11.252.155':139
'21#.#11.82.254':139
'21#.#11.136.204':139
'21#.#11.213.219':139
'21#.#11.220.82':139
'21#.#11.102.10':139
'21#.#11.86.4':139
'21#.#11.243.220':139
'21#.#11.209.169':139
'21#.#11.37.194':445
'21#.#11.69.246':445
'21#.#11.85.203':445
'21#.#11.10.123':445
'21#.#11.230.103':445
'21#.#11.63.178':139
'21#.#11.202.13':139
'21#.#11.104.95':139
'21#.#11.61.84':139
'21#.#11.113.222':139
'21#.#11.177.29':139
'21#.#11.192.158':139
'21#.#11.78.217':139
'21#.#11.207.68':139
'21#.#11.29.205':445
'21#.#11.69.66':445
'21#.#11.73.62':445
'21#.#11.94.223':445
'21#.#11.146.68':445
'21#.#11.79.174':139
'21#.#11.8.67':139
'21#.#11.40.216':139
'21#.#11.17.33':139
'21#.#11.64.137':139
'21#.#11.166.29':139
'21#.#11.100.233':139
'21#.#11.75.64':139
'21#.#11.29.75':139
'21#.#11.193.108':445
'21#.#11.144.87':445
'21#.#11.251.175':445
'21#.#11.169.15':445
'21#.#11.125.168':445
'21#.#11.56.81':445
'21#.#11.161.209':445
'21#.#11.134.30':445
'21#.#11.168.124':445
'21#.#11.250.75':445
'21#.#11.191.117':445
'21#.#11.112.214':445
'21#.#11.171.193':445
'21#.#11.25.172':445
'21#.#11.85.113':445
'21#.#11.250.180':445
'21#.#11.211.89':445
'21#.#11.7.85':445
'21#.#11.166.7':445
'21#.#11.216.101':139
'21#.#11.7.85':139
'21#.#11.166.7':139
'21#.#11.112.214':139
'21#.#11.85.113':139
'21#.#11.250.180':139
'21#.#11.125.168':139
'21#.#11.144.87':139
'21#.#11.211.89':139
'21#.#11.169.15':139
'21#.#11.146.68':139
'21#.#11.73.62':139
'21#.#11.69.66':139
'21#.#11.29.205':139
'21#.#11.94.223':139
'21#.#11.25.172':139
'21#.#11.191.117':139
'21#.#11.193.108':139
'21#.#11.171.193':139
'21#.#11.251.175':139
'21#.#11.164.153':139
'21#.#11.194.34':139
'21#.#11.117.31':139
'21#.#11.108.21':139
'21#.#11.219.91':139
'21#.#11.184.101':139
'21#.#11.254.197':139
'21#.#11.127.196':139
'21#.#11.157.156':139
'21#.#11.250.75':139
'21#.#11.161.209':139
'21#.#11.56.81':139
'21#.#11.168.124':139
'21#.#11.134.30':139
'21#.#11.66.236':139
'21#.#11.35.225':139
'21#.#11.222.76':139
'21#.#11.78.160':139
'21#.#11.222.76':445
'21#.#11.166.82':139
'21#.#11.122.4':139
'21#.#11.161.88':139
'21#.#11.36.4':139
'21#.#11.63.160':139
'21#.#11.35.237':139
'21#.#11.181.11':139
'21#.#11.234.39':139
'21#.#11.233.36':139
'21#.#11.184.101':9988
'21#.#11.117.31':9988
'21#.#11.108.21':9988
'21#.#11.164.153':9988
'21#.#11.194.34':9988
'21#.#11.242.254':139
'21#.#11.35.250':139
'21#.#11.219.91':9988
'21#.#11.240.228':139
'21#.#11.237.134':139
'21#.#11.233.36':445
'21#.#11.35.237':445
'21#.#11.63.160':445
'21#.#11.234.39':445
'21#.#11.181.11':445
'21#.#11.61.24':445
'21#.#11.170.228':139
'21#.#11.237.134':445
'21#.#11.67.218':445
'21#.#11.240.228':445
'21#.#11.242.254':445
'21#.#11.67.218':139
'21#.#11.61.24':139
'21#.#11.35.250':445
'21#.#11.166.82':445
'21#.#11.122.4':445
'21#.#11.161.88':445
'21#.#11.36.4':445
'21#.#11.78.160':9988
'21#.#11.254.197':445
'21#.#11.216.101':445
'21#.#11.157.156':445
'21#.#11.184.101':445
'21#.#11.40.216':445
'21#.#11.8.67':445
'21#.#11.64.137':445
'21#.#11.17.33':445
'21#.#11.79.174':445
'21#.#11.35.225':445
'21#.#11.117.31':445
'21#.#11.78.160':445
'21#.#11.66.236':445
'21#.#11.108.21':445
'21#.#11.219.91':445
'21#.#11.127.196':445
'21#.#11.164.153':445
'21#.#11.194.34':445
'21#.#11.75.64':445
'21#.#11.166.7':9988
'21#.#11.56.81':9988
'21#.#11.171.193':9988
'21#.#11.25.172':9988
'21#.#11.168.124':9988
'21#.#11.134.30':9988
'21#.#11.222.76':9988
'21#.#11.250.75':9988
'21#.#11.161.209':9988
'21#.#11.100.233':445
'21#.#11.78.217':445
'21#.#11.29.75':445
'21#.#11.166.29':445
'21#.#11.207.68':445
'21#.#11.29.205':9988
'21#.#11.193.108':9988
'21#.#11.177.29':445
'21#.#11.192.158':445

Технологии

Термины

Обучение и просвещение

Мифы

Техническая информация

Рекомендации по лечению

Демо бесплатно на 14 дней