Technical Information
- Handler for all processes: <Current directory>\cfgdll.dll
- %TEMP%\1.tmp
- %TEMP%\2.tmp
- %TEMP%\3.tmp
- %TEMP%\plugin.zip
- <Current directory>\plugin\SYS.DLL
- %TEMP%\mymacro.zip
- %TEMP%\background.bmp
- %TEMP%\ad-mymacro9.xml
- %TEMP%\adcon\mm\tmpad.xml
- <Current directory>\cfgdll.dll
- <Current directory>\ShieldModule.dat
- %APPDATA%\mymacro\qdisp.dll
- <PATH_SAMPLE>.ini
- %TEMP%\ad-mymacro9.xml.tmp
- %TEMP%\plugin.zip
- %TEMP%\mymacro.zip
- %TEMP%\adcon\mm\tmpad.xml
- from %TEMP%\background.bmp to %TEMP%\b0cbackground.bmp
- from %TEMP%\ad-mymacro9.xml.tmp to %TEMP%\ad-mymacro9.xml
- 'localhost':1036
- 'ad.###rothers.com':80
- 'hi.###rothers.com':80
- http://ad.###rothers.com/qmacro/v9/ad-mymacro.xml
- http://hi.###rothers.com/xjl/mmcount.aspx?mm#####################################################################################################################################################...
- DNS ASK ad.###rothers.com
- DNS ASK hi.###rothers.com