Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Windows Audio' = '%APPDATA%\Windows Folder\Windows Service.exe'
- %APPDATA%\windows folder\windows service.exe
- %TEMP%\dw.log
- %TEMP%\14fb83.dmp
- %APPDATA%\windows folder\windows service.exe
- DNS ASK ga#####own.zzz.com.ua
- DNS ASK ip###ger.org
- '%CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE' -x -s 700