Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = '<SYSTEM32>\explorer.exe'
- '<SYSTEM32>\explorer.exe' a
- <SYSTEM32>\explorer.exe
- '16#.#63.163.117':80
- '16#.#63.163.69':443
- 16#.#63.163.117http://163.163.163.117/
- DNS ASK ww##.#aborbbs.org