Trojan.Starman.5346

Техническая информация

Для обеспечения автозапуска и распространения:

Создает или изменяет следующие файлы:

%WINDIR%\Tasks\SA.DAT

Вредоносные функции:

Запускает на исполнение:

'<SYSTEM32>\svchost.exe' -k netsvcs
'<SYSTEM32>\dumprep.exe' 1148 -dm 7 7 %TEMP%\WERa59f.dir00\svchost.exe.mdmp 16325836412032408

Изменения в файловой системе:

Создает следующие файлы:

%CommonProgramFiles%\Microsoft Shared\Stationery\brvrjrke.exe
%CommonProgramFiles%\System\ado\tsektjkj.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\ehbebsrn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\nsqjttkv.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\njbsvtll.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\jjjthqtn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\res\lhbtcvlt.exe
%PROGRAM_FILES%\NetMeeting\rsewzjqn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\sjwzlskk.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\cpow\ketssrzn.exe
%PROGRAM_FILES%\FireFox\chrome\toolkit\content\global\hltjtlne.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\xrljqjzn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bcwvzwbh.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bhrhnkht.exe
%TEMP%\WERa59f.dir00\svchost.exe.mdmp
%CommonProgramFiles%\Microsoft Shared\Stationery\vkjljzrn.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\czjevcet.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\tlcwjrwt.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bnbtzwxt.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\bzqlkhrh.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\qjllsjhl.exe
%CommonProgramFiles%\Microsoft Shared\Stationery\elwtjnbj.exe

Сетевая активность:

Подключается к:

'21#.#33.121.42':445
'21#.#33.74.234':445
'21#.#33.57.203':445
'21#.#33.155.239':445
'21#.#33.92.9':445
'21#.#33.74.138':445
'21#.#33.49.33':445
'21#.#33.122.161':445
'21#.#33.10.122':445
'21#.#33.148.42':445
'21#.233.1.4':445
'21#.#33.46.239':445
'21#.#33.203.47':445
'21#.#33.43.48':445
'21#.#33.20.145':445
'21#.#33.198.134':445
'21#.#33.65.223':445
'21#.#33.25.60':445
'21#.#33.92.206':445
'21#.#33.55.160':445
'21#.#33.87.66':445
'21#.#33.47.211':445
'21#.#33.48.38':445
'21#.#33.50.55':445
'21#.#33.131.129':445
'21#.#33.211.98':139
'21#.#33.224.34':139
'21#.#33.246.248':139
'21#.#33.43.192':139
'21#.#33.122.44':139
'21#.#33.130.122':139
'21#.#33.80.147':139
'21#.#33.90.200':445
'21#.#33.13.91':445
'21#.#33.73.0':139
'21#.#33.176.119':139
'21#.#33.146.176':139
'21#.#33.182.119':139
'21#.#33.186.183':445
'21#.#33.11.20':445
'21#.#33.65.92':445
'21#.#33.182.19':445
'21#.#33.172.63':445
'21#.#33.150.50':445
'21#.#33.224.12':139
'21#.#33.111.223':139
'21#.#33.155.182':139
'21#.#33.84.44':445
'21#.#33.90.200':139
'21#.#33.13.91':139
'21#.#33.25.60':139
'21#.#33.92.206':139
'21#.#33.43.48':139
'21#.#33.34.94':139
'21#.#33.185.156':139
'21#.#33.65.223':139
'21#.#33.50.55':139
'21#.#33.131.129':139
'21#.#33.55.160':139
'21#.#33.20.145':139
'21#.#33.198.134':139
'21#.#33.48.38':139
'21#.#33.93.166':139
'21#.#33.164.177':445
'21#.#33.96.5':445
'21#.#33.53.158':445
'21#.#33.65.116':445
'21#.#33.5.29':445
'21#.#33.66.222':445
'21#.#33.52.125':445
'21#.#33.141.162':445
'21#.#33.166.141':445
'21#.#33.38.125':445
'21#.#33.78.1':445
'21#.#33.70.47':445
'21#.#33.172.63':139
'21#.#33.150.50':139
'21#.#33.186.183':139
'21#.#33.122.161':139
'21#.#33.10.122':139
'21#.#33.182.19':139
'21#.#33.93.166':445
'21#.#33.34.94':445
'21#.#33.185.156':445
'21#.#33.11.20':139
'21#.#33.65.92':139
'21#.#33.84.44':139
'21#.#33.49.33':139
'21#.#33.155.239':139
'21#.#33.92.9':139
'21#.#33.74.138':139
'21#.#33.87.66':139
'21#.#33.47.211':139
'21#.#33.203.47':139
'21#.#33.148.42':139
'21#.233.1.4':139
'21#.#33.46.239':139
'21#.#33.121.42':139
'21#.#33.74.234':139
'21#.#33.57.203':139
'21#.#33.192.182':445
'21#.#33.232.208':445
'21#.#33.193.232':445
'21#.#33.9.222':445
'21#.#33.193.27':445
'21#.#33.67.109':445
'21#.#33.27.103':445
'21#.#33.99.88':445
'21#.#33.228.38':445
'21#.#33.135.243':445
'21#.#33.100.161':445
'21#.#33.169.100':445
'21#.#33.42.77':445
'21#.#33.162.233':445
'21#.#33.109.163':445
'21#.#33.47.11':445
'21#.#33.48.72':445
'21#.#33.82.48':445
'21#.#33.24.55':445
'21#.#33.158.69':445
'21#.#33.189.214':445
'21#.#33.106.238':445
'21#.#33.251.9':445
'21#.#33.22.183':445
'21#.#33.122.243':445
'21#.#33.116.195':139
'21#.#33.20.98':139
'21#.#33.231.65':139
'21#.#33.69.225':139
'21#.#33.117.152':139
'21#.#33.242.20':139
'21#.#33.103.232':139
'21#.#33.22.57':139
'21#.#33.91.78':139
'21#.#33.124.231':139
'21#.#33.125.125':139
'21#.#33.115.150':139
'21#.#33.232.9':139
'21#.#33.108.25':445
'21#.#33.152.1':445
'21#.#33.7.110':445
'21#.#33.102.120':445
'21#.#33.66.172':445
'21#.#33.24.244':445
'21#.#33.27.116':139
'21#.#33.241.46':139
'21#.#33.9.223':139
'21#.#33.66.65':445
'21#.#33.245.30':445
'21#.#33.222.86':445
'21#.#33.82.48':139
'21#.#33.24.55':139
'21#.#33.162.233':139
'21#.#33.80.147':445
'21#.#33.72.80':139
'21#.#33.48.72':139
'21#.#33.22.183':139
'21#.#33.122.243':139
'21#.#33.158.69':139
'21#.#33.109.163':139
'21#.#33.47.11':139
'21#.#33.251.9':139
'21#.#33.146.176':445
'21#.#33.182.119':445
'21#.#33.43.192':445
'21#.#33.122.44':445
'21#.#33.224.12':445
'21#.#33.111.223':445
'21#.#33.155.182':445
'21#.#33.246.248':445
'21#.#33.73.0':445
'21#.#33.176.119':445
'21#.#33.130.122':445
'21#.#33.211.98':445
'21#.#33.224.34':445
'21#.#33.66.172':139
'21#.#33.24.244':139
'21#.#33.108.25':139
'21#.#33.99.88':139
'21#.#33.228.38':139
'21#.#33.102.120':139
'21#.#33.245.30':139
'21#.#33.222.86':139
'21#.#33.72.80':445
'21#.#33.152.1':139
'21#.#33.7.110':139
'21#.#33.66.65':139
'21#.#33.27.103':139
'21#.#33.9.222':139
'21#.#33.193.27':139
'21#.#33.67.109':139
'21#.#33.189.214':139
'21#.#33.106.238':139
'21#.#33.42.77':139
'21#.#33.135.243':139
'21#.#33.100.161':139
'21#.#33.169.100':139
'21#.#33.192.182':139
'21#.#33.232.208':139
'21#.#33.193.232':139
'21#.#33.172.51':445
'21#.#33.175.74':445
'21#.#33.178.161':445
'21#.#33.201.202':445
'21#.#33.13.84':445
'21#.#33.145.167':445
'21#.#33.99.118':445
'21#.#33.88.99':445
'21#.#33.236.87':445
'21#.#33.181.162':445
'21#.#33.49.93':445
'21#.#33.248.45':445
'21#.#33.202.153':445
'21#.#33.26.194':445
'21#.#33.5.66':445
'21#.#33.16.22':445
'21#.#33.39.62':139
'21#.#33.216.118':445
'21#.#33.166.120':445
'21#.#33.10.137':445
'21#.#33.85.26':445
'21#.#33.159.159':445
'21#.#33.168.199':445
'21#.#33.30.46':445
'21#.#33.189.29':445
'21#.#33.231.207':445
'21#.#33.232.237':445
'21#.#33.190.139':445
'21#.#33.137.190':445
'21#.#33.172.251':445
'21#.#33.17.48':445
'21#.#33.187.126':445
'21#.#33.45.153':445
'21#.#33.107.49':445
'21#.#33.210.190':445
'21#.#33.219.42':445
'21#.#33.132.204':445
'21#.#33.35.63':445
'21#.#33.58.118':445
'21#.#33.194.195':445
'21#.#33.55.111':445
'21#.#33.164.236':445
'21#.#33.86.123':445
'21#.#33.223.164':445
'21#.#33.26.84':445
'21#.#33.110.251':445
'21#.#33.3.243':445
'21#.#33.92.45':445
'21#.#33.43.6':445
'21#.#33.1.186':445
'21#.#33.175.74':139
'21#.#33.181.162':139
'21#.#33.178.161':139
'21#.#33.13.84':139
'21#.#33.145.167':139
'21#.#33.172.51':139
'21#.#33.88.99':139
'21#.#33.236.87':139
'21#.#33.164.236':139
'21#.#33.49.93':139
'21#.#33.248.45':139
'21#.#33.99.118':139
'21#.#33.201.202':139
'21#.#33.16.22':139
'21#.#33.26.194':139
'21#.#33.168.199':139
'21#.#33.166.120':139
'21#.#33.5.66':139
'21#.#33.216.118':139
'21#.#33.85.26':139
'21#.#33.159.159':139
'21#.#33.202.153':139
'21#.#33.30.46':139
'21#.#33.189.29':139
'21#.#33.10.137':139
'21#.#33.232.237':139
'21#.#33.190.139':139
'21#.#33.210.190':139
'21#.#33.172.251':139
'21#.#33.17.48':139
'21#.#33.231.207':139
'21#.#33.45.153':139
'21#.#33.107.49':139
'21#.#33.69.110':139
'21#.#33.219.42':139
'21#.#33.132.204':139
'21#.#33.187.126':139
'21#.#33.137.190':139
'21#.#33.194.195':139
'21#.#33.55.111':139
'21#.#33.92.45':139
'21#.#33.223.164':139
'21#.#33.86.123':139
'21#.#33.58.118':139
'21#.#33.110.251':139
'21#.#33.3.243':139
'21#.#33.35.63':139
'21#.#33.43.6':139
'21#.#33.1.186':139
'21#.#33.26.84':139
'21#.#33.117.97':445
'21#.#33.177.178':445
'21#.#33.243.95':445
'21#.#33.100.139':445
'21#.#33.216.59':445
'21#.#33.76.41':445
'21#.#33.11.118':445
'21#.#33.45.11':445
'21#.#33.197.44':445
'21#.#33.135.121':445
'21#.#33.139.147':445
'21#.#33.81.28':445
'21#.#33.138.194':445
'21#.#33.61.60':445
'21#.#33.224.213':445
'21#.#33.202.55':445
'21#.#33.94.17':445
'21#.#33.235.38':445
'21#.#33.129.74':445
'21#.#33.189.46':445
'21#.#33.126.31':445
'21#.#33.194.20':445
'21#.#33.25.100':445
'21#.#33.0.146':445
'21#.233.2.0':445
'21#.#33.78.1':139
'21#.#33.70.47':139
'21#.#33.52.125':139
'21#.#33.96.5':139
'21#.#33.53.158':139
'21#.#33.38.125':139
'21#.#33.138.199':445
'21#.#33.251.92':445
'21#.#33.59.84':445
'21#.#33.141.162':139
'21#.#33.166.141':139
'21#.#33.200.8':445
'21#.#33.164.177':139
'21#.#33.147.254':445
'21#.#33.5.126':445
'21#.#33.200.8':139
'21#.#33.165.156':445
'21#.#33.225.168':445
'21#.#33.57.93':445
'21#.#33.65.116':139
'21#.#33.5.29':139
'21#.#33.66.222':139
'21#.#33.138.199':139
'21#.#33.251.92':139
'21#.#33.59.84':139
'21#.#33.235.38':139
'21#.#33.129.74':139
'21#.#33.61.60':139
'21#.#33.25.210':139
'21#.#33.76.247':139
'21#.#33.94.17':139
'21#.#33.0.146':139
'21#.233.2.0':139
'21#.#33.189.46':139
'21#.#33.224.213':139
'21#.#33.202.55':139
'21#.#33.25.100':139
'21#.#33.129.208':139
'21#.#33.26.194':9988
'21#.#33.13.84':9988
'21#.#33.16.22':9988
'21#.#33.69.110':445
'21#.#33.39.62':445
'21#.#33.159.159':9988
'21#.#33.219.42':9988
'21#.#33.71.39':139
'21#.#33.5.71':139
'21#.#33.58.118':9988
'21#.#33.110.251':9988
'21#.#33.232.237':9988
'21#.#33.225.168':139
'21#.#33.57.93':139
'21#.#33.147.254':139
'21#.#33.45.11':139
'21#.#33.197.44':139
'21#.#33.165.156':139
'21#.#33.129.208':445
'21#.#33.25.210':445
'21#.#33.76.247':445
'21#.#33.5.126':139
'21#.#33.71.39':445
'21#.#33.5.71':445
'21#.#33.11.118':139
'21#.#33.100.139':139
'21#.#33.216.59':139
'21#.#33.76.41':139
'21#.#33.126.31':139
'21#.#33.194.20':139
'21#.#33.138.194':139
'21#.#33.135.121':139
'21#.#33.139.147':139
'21#.#33.81.28':139
'21#.#33.117.97':139
'21#.#33.177.178':139
'21#.#33.243.95':139

Технології

Терміни

Навчання

Міфи

Техническая информация

Рекомендации по лечению

Демо бесплатно на 14 дней