Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Wssuoy ceqomaag] 'Start' = '00000002'
- '%PROGRAM_FILES%\Sougou.exe'
- '<SYSTEM32>\wscript.exe' "C:\9510.vbs"
- C:\9510.vbs
- %PROGRAM_FILES%\Sougou.exe
- C:\9510.vbs
- 'jx###1.8800.org':2014
- DNS ASK jx###1.8800.org