Technical Information
- 'C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\shl.exe'
- 'C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\shl.exe' (downloaded from the Internet)
- '<SYSTEM32>\rundll32.exe' dfdts.dll,DfdGetDefaultPolicyAndSMART
- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\shl.exe
- 'le###rspoker.in':80
- le###rspoker.in/index/getsoft/?id########################################
- le###rspoker.in/index/install/?id########################################
- DNS ASK le###rspoker.in