Техническая информация
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'Media Access' = '%ProgramFiles%\Media Access\MediaAccK.exe'
- %ProgramFiles%\media access\mediaaccc.dll
- %ProgramFiles%\media access\mediaacck.exe
- %ProgramFiles%\media access\info.txt
- %ProgramFiles%\media access\mediaaccess.exe
- %WINDIR%\syswow64\ide21201.vxd
- DNS ASK pu####.windupdates.com
- '%ProgramFiles%\media access\mediaaccess.exe'
- '%ProgramFiles%\media access\mediaacck.exe'
- '%ProgramFiles%\media access\mediaaccess.exe' ' (со скрытым окном)