Technical Information
- Handler for all processes: <Current directory>\cfgdll.dll
- %TEMP%\ea07.tmp
- <Current directory>\<File name>.ini
- %TEMP%\9376.tmp
- %APPDATA%\mymacro\qdisp.dll
- %TEMP%\8155.tmp
- %APPDATA%\qmacro\shield\SD000.dat
- %APPDATA%\qmacro\shield\SD004.dat
- %APPDATA%\qmacro\shield\Shield.ini
- %APPDATA%\qmacro\shield\SD003.dat
- %APPDATA%\qmacro\shield\SD001.dat
- %APPDATA%\qmacro\shield\SD002.dat
- <Current directory>\ShieldModule.dat
- %TEMP%\mac3.tmp.Qtmp
- %TEMP%\mac4.tmp.Qtmp
- %TEMP%\mac2.tmp.Qtmp
- %TEMP%\mymacro_errinfo.exe
- %TEMP%\mac1.tmp
- %TEMP%\plugin.zip
- %TEMP%\mymacro.zip
- <Current directory>\cfgdll.dll
- <Current directory>\plugin\FILE.DLL
- <Current directory>\plugin\REGDLL.DLL
- <Current directory>\plugin\WINDOW.DLL
- <Current directory>\ShieldModule.dat
- %TEMP%\mymacro.zip
- %TEMP%\plugin.zip
- 'c.###huoa.com':80
- http://c.###huoa.com/banner/Q12256.htm
- http://c.###huoa.com/c2/MymacroidSalesUrl.aspx?my#######################
- DNS ASK c.###huoa.com