Trojan.Starman.6652

Техническая информация

Для обеспечения автозапуска и распространения:

Создает или изменяет следующие файлы:

%WINDIR%\Tasks\SA.DAT

Вредоносные функции:

Запускает на исполнение:

'<SYSTEM32>\svchost.exe' -k netsvcs

Изменения в файловой системе:

Создает следующие файлы:

%CommonProgramFiles%\System\ado\tsektjkj.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\jjjthqtn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\brvrjrke.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\njbsvtll.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\ehbebsrn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\res\lhbtcvlt.exe
%PROGRAM_FILES%\NetMeeting\rsewzjqn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\sjwzlskk.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\cpow\ketssrzn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\hltjtlne.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\nsqjttkv.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bcwvzwbh.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\czjevcet.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\xrljqjzn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\vkjljzrn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bhrhnkht.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\tlcwjrwt.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bnbtzwxt.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bzqlkhrh.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\qjllsjhl.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\elwtjnbj.exe

Сетевая активность:

Подключается к:

'60.##.248.10':445
'60.##.20.246':445
'60.##.104.240':445
'60.##.37.111':445
'60.##.172.249':445
'60.##.114.248':445
'60.##.89.138':445
'60.##.47.101':139
'60.##.127.104':139
'60.##.215.20':139
'60.#6.54.95':445
'60.#6.49.70':445
'60.##.231.144':445
'60.##.89.138':139
'60.#6.54.95':139
'60.#6.49.70':139
'60.##.248.10':139
'60.##.20.246':139
'60.##.104.240':139
'60.##.231.144':139
'60.##.148.227':445
'60.##.151.76':445
'60.##.234.20':445
'60.##.115.203':445
'60.#6.49.64':445
'60.#6.47.9':445
'60.##.137.106':139
'60.##.189.85':139
'60.##.250.119':139
'60.##.254.31':139
'60.#6.33.19':139
'60.#6.19.79':139
'60.#6.8.129':139
'60.##.32.203':139
'60.##.147.59':139
'60.#6.24.10':139
'60.##.66.183':139
'60.##.158.28':139
'60.##.16.234':139
'60.##.223.47':139
'60.#6.13.97':139
'60.##.104.121':139
'60.##.166.39':139
'60.##.66.116':139
'60.##.125.187':139
'60.##.245.176':139
'60.##.242.55':139
'60.##.194.96':139
'60.#6.56.91':139
'60.##.247.226':139
'60.#6.253.7':139
'60.##.108.172':139
'60.##.253.184':139
'60.##.92.241':445
'60.##.223.148':445
'60.##.228.253':445
'60.##.252.209':445
'60.##.104.55':445
'60.##.157.228':445
'60.##.144.30':445
'60.#6.42.3':445
'60.##.66.210':445
'60.#6.78.66':445
'60.##.183.77':445
'60.##.227.225':445
'60.#6.119.4':445
'60.##.119.135':139
'60.##.75.229':139
'60.##.221.75':139
'60.##.149.38':139
'60.##.111.95':139
'60.##.101.135':139
'60.##.255.220':139
'60.#6.15.88':445
'60.##.22.204':445
'60.##.209.241':445
'60.##.68.226':139
'60.##.160.235':139
'60.##.27.108':445
'60.##.79.134':445
'60.##.160.235':445
'60.##.115.203':139
'60.#6.49.64':139
'60.##.221.75':445
'60.##.255.220':445
'60.##.68.226':445
'60.#6.47.9':139
'60.##.37.111':139
'60.##.172.249':139
'60.##.114.248':139
'60.##.148.227':139
'60.##.151.76':139
'60.##.234.20':139
'60.#6.83.4':445
'60.#6.224.2':445
'60.#6.28.1':445
'60.##.160.76':445
'60.#6.4.124':445
'60.#6.4.147':445
'60.#6.8.205':445
'60.##.101.135':445
'60.##.119.135':445
'60.##.75.229':445
'60.#6.63.9':445
'60.##.149.38':445
'60.##.111.95':445
'60.##.141.221':139
'60.##.28.148':445
'60.##.225.211':445
'60.##.205.152':139
'60.##.217.59':445
'60.##.87.215':445
'60.##.96.149':445
'60.##.25.105':139
'60.#6.72.87':139
'60.##.73.123':139
'60.##.160.68':139
'60.##.172.17':139
'60.##.34.216':139
'60.##.159.151':139
'60.##.148.243':445
'60.##.144.232':445
'60.##.75.231':445
'60.##.28.148':139
'60.##.225.211':139
'60.##.249.221':445
'60.##.61.122':445
'60.#6.33.78':445
'60.#6.118.9':445
'60.##.60.118':445
'60.##.119.156':445
'60.##.32.102':445
'60.##.195.32':445
'60.##.61.127':139
'60.##.27.156':139
'60.#6.83.95':139
'60.##.91.171':139
'60.##.191.172':139
'60.##.232.141':139
'60.##.58.232':139
'60.##.248.161':139
'60.##.67.169':139
'60.#6.145.1':139
'60.#6.8.125':139
'60.##.148.160':139
'60.##.242.209':139
'60.##.21.127':139
'60.##.174.164':139
'60.##.166.200':139
'60.##.30.175':139
'60.#6.39.36':139
'60.##.177.101':139
'60.##.251.200':139
'60.##.20.155':139
'60.##.228.97':139
'60.##.86.131':139
'60.#6.27.82':139
'60.##.138.108':139
'60.##.247.116':139
'60.##.63.180':139
'60.##.108.172':445
'60.##.253.184':445
'60.##.194.96':445
'60.##.166.39':445
'60.##.242.55':445
'60.#6.253.7':445
'60.#6.56.91':445
'60.#6.8.129':445
'60.##.189.85':445
'60.##.250.119':445
'60.##.247.226':445
'60.#6.33.19':445
'60.#6.19.79':445
'60.##.62.145':139
'60.##.47.101':445
'60.##.127.104':445
'60.##.232.137':139
'60.#6.30.68':139
'60.##.57.118':139
'60.##.215.20':445
'60.##.245.176':445
'60.#6.13.97':445
'60.##.104.121':445
'60.##.137.106':445
'60.##.66.116':445
'60.##.125.187':445
'60.##.254.31':445
'60.##.61.122':139
'60.##.119.156':139
'60.##.32.102':139
'60.##.148.243':139
'60.##.144.232':139
'60.##.75.231':139
'60.##.195.32':139
'60.##.217.59':139
'60.##.87.215':139
'60.##.96.149':139
'60.#6.33.78':139
'60.#6.118.9':139
'60.##.60.118':139
'60.##.223.47':445
'60.##.147.59':445
'60.#6.24.10':445
'60.##.32.203':445
'60.##.158.28':445
'60.##.16.234':445
'60.##.66.183':445
'60.##.57.118':445
'60.##.62.145':445
'60.##.249.221':139
'60.##.141.221':445
'60.##.232.137':445
'60.#6.30.68':445
'60.#6.63.9':139
'60.#6.12.14':445
'60.##.243.157':445
'60.##.49.102':445
'60.##.111.126':445
'60.#6.69.99':445
'60.##.126.180':445
'60.##.170.231':445
'60.##.236.88':445
'60.##.160.20':445
'60.##.183.230':445
'60.#6.21.20':445
'60.##.119.173':445
'60.#6.40.13':445
'60.#6.43.97':445
'60.#6.95.10':445
'60.##.153.85':445
'60.##.75.199':445
'60.#6.10.37':445
'60.##.133.58':445
'60.##.166.148':445
'60.##.202.222':445
'60.#6.247.0':445
'60.##.206.227':445
'60.##.62.166':445
'60.##.232.62':445
'60.##.163.107':445
'60.#6.44.34':445
'60.##.137.170':445
'60.#6.43.73':445
'60.##.85.246':445
'60.##.160.117':445
'60.##.140.20':445
'60.##.175.139':445
'60.##.50.198':445
'60.##.153.85':9988
'60.##.166.148':9988
'60.##.62.166':9988
'60.##.165.221':445
'60.##.117.132':445
'60.##.59.247':9988
'60.##.204.194':445
'60.##.128.204':445
'60.##.68.128':445
'60.##.239.162':445
'60.#6.94.30':445
'60.##.194.62':445
'60.##.105.99':445
'60.#6.106.4':445
'60.##.123.106':445
'60.##.12.123':445
'60.#6.54.84':445
'60.##.14.116':445
'60.#6.3.223':445
'60.#6.69.99':139
'60.##.126.180':139
'60.#6.12.14':139
'60.#6.247.0':139
'60.##.206.227':139
'60.##.111.126':139
'60.##.243.157':139
'60.##.119.173':139
'60.#6.40.13':139
'60.##.236.88':139
'60.##.49.102':139
'60.##.170.231':139
'60.#6.21.20':139
'60.#6.10.37':139
'60.##.133.58':139
'60.#6.43.97':139
'60.##.186.194':139
'60.##.59.247':139
'60.##.75.199':139
'60.#6.95.10':139
'60.##.232.62':139
'60.##.163.107':139
'60.##.202.222':139
'60.##.153.85':139
'60.##.166.148':139
'60.##.62.166':139
'60.##.160.20':139
'60.##.140.20':139
'60.##.175.139':139
'60.##.137.170':139
'60.##.123.106':139
'60.##.12.123':139
'60.##.160.117':139
'60.#6.43.73':139
'60.##.117.132':139
'60.##.186.194':445
'60.##.59.247':445
'60.##.85.246':139
'60.##.50.198':139
'60.##.165.221':139
'60.#6.94.30':139
'60.##.194.62':139
'60.##.204.194':139
'60.##.183.230':139
'60.#6.44.34':139
'60.##.239.162':139
'60.##.128.204':139
'60.##.14.116':139
'60.#6.3.223':139
'60.#6.106.4':139
'60.##.68.128':139
'60.##.105.99':139
'60.#6.54.84':139
'60.##.232.62':9988
'60.##.132.77':445
'60.#6.83.86':445
'60.##.123.118':445
'60.#6.48.39':445
'60.#6.20.60':445
'60.#6.21.91':445
'60.##.232.36':445
'60.##.13.215':445
'60.##.42.234':445
'60.##.60.174':445
'60.##.57.232':445
'60.##.167.132':445
'60.##.147.204':445
'60.##.232.36':139
'60.##.57.232':139
'60.##.167.132':139
'60.##.132.77':139
'60.#6.83.86':139
'60.##.123.118':139
'60.##.147.204':139
'60.#6.13.49':139
'60.##.208.95':139
'60.##.235.201':445
'60.##.13.215':139
'60.##.42.234':139
'60.##.60.174':139
'60.#6.13.49':445
'60.##.66.210':139
'60.#6.78.66':139
'60.##.79.134':139
'60.##.227.225':139
'60.#6.119.4':139
'60.#6.42.3':139
'60.##.160.76':139
'60.#6.224.2':139
'60.#6.28.1':139
'60.#6.8.205':139
'60.#6.4.124':139
'60.#6.4.147':139
'60.#6.83.4':139
'60.##.22.204':139
'60.##.209.241':139
'60.##.252.209':139
'60.##.208.95':445
'60.##.27.108':139
'60.#6.15.88':139
'60.##.104.55':139
'60.##.228.253':139
'60.##.144.30':139
'60.##.183.77':139
'60.##.157.228':139
'60.##.92.241':139
'60.##.223.148':139
'60.##.219.145':139
'60.##.50.161':139
'60.#6.22.52':139
'60.##.21.198':139
'60.##.74.109':139
'60.##.194.164':139
'60.##.112.90':139
'60.##.112.137':139
'60.##.98.112':139
'60.#6.231.3':139
'60.##.114.193':139
'60.##.140.143':139
'60.##.137.119':139
'60.##.236.88':9988
'60.##.183.230':9988
'60.#6.44.34':9988
'60.##.111.126':9988
'60.#6.69.99':9988
'60.#6.12.14':9988
'60.##.239.162':9988
'60.##.85.246':9988
'60.##.210.226':139
'60.##.80.187':139
'60.##.194.62':9988
'60.##.123.106':9988
'60.##.160.117':9988
'60.##.86.185':139
'60.##.98.112':445
'60.#6.231.3':445
'60.##.86.185':445
'60.##.140.143':445
'60.##.137.119':445
'60.##.112.137':445
'60.##.101.86':445
'60.#6.48.39':139
'60.#6.20.60':139
'60.#6.21.91':139
'60.##.114.101':445
'60.##.164.133':445
'60.##.235.201':139
'60.##.210.226':445
'60.##.80.187':445
'60.##.21.198':445
'60.##.101.86':139
'60.##.114.101':139
'60.##.164.133':139
'60.##.74.109':445
'60.#6.22.52':445
'60.##.112.90':445
'60.##.114.193':445
'60.##.194.164':445
'60.##.219.145':445
'60.##.50.161':445

Технологии

Термины

Обучение и просвещение

Мифы

Техническая информация

Рекомендации по лечению

Демо бесплатно на 14 дней