Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\send to.lnk
- hidden files
- C:\users\public\send to.lnk.js
- 'ap###cords.com':80
- http://www.ap###cords.com/
- DNS ASK ap###cords.com
- '<SYSTEM32>\wscript.exe' "C:\Users\Public\Send to.lnk.js"