Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\BtoRsjKua] 'Start' = '00000002'
- <SYSTEM32>\QQUpdate.exe
- <SYSTEM32>\QQUpdate.exe
- <SYSTEM32>\QQUpdate.exe
- 'dd###.k2mu.com':8080
- 'any':2171
- 'zx###.xicp.net':2171
- 'dd##.k2mu.com':8080
- DNS ASK dd###.k2mu.com
- DNS ASK dd##.k2mu.com
- DNS ASK zx###.xicp.net