Technical Information
- Handler for all processes: <SYSTEM32>\niipjke.dll
- %TEMP%\macroinfo.dat
- %TEMP%\macro0.tmp
- %TEMP%\macro1.tmp
- <SYSTEM32>\niipjke.dll
- %WINDIR%\QMDispatch.dll
- <Current directory>\rename.ini
- <Current directory>\niipjke.dll
- <SYSTEM32>\tmpad.xml
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\ad-mymacro-eng[1].xml
- <Current directory>\ad-mymacro.xml.tmp
- %TEMP%\4
- %TEMP%\macro2.tmp
- %TEMP%\2
- %TEMP%\3
- <Current directory>\mymacro.gif
- <Current directory>\hknm.sys
- <Current directory>\ad-mymacro.xml
- <Current directory>\mymacro.htm
- <Current directory>\MSSCRIPT.OCX
- <Current directory>\WinIo.sys
- <Current directory>\stdlib.vbs
- <Current directory>\cooper.dll
- <Current directory>\cfgdll.dll
- <Current directory>\BException.dll
- <Current directory>\helper.dll
- <Current directory>\WINIO.VXD
- <Current directory>\WinIo.dll
- <Current directory>\QMDispatch.dll
- %TEMP%\macro1.tmp
- %TEMP%\macro2.tmp
- <SYSTEM32>\tmpad.xml
- %TEMP%\macro0.tmp
- %TEMP%\2
- %TEMP%\3
- %TEMP%\4
- 'ad.###rothers.com':80
- 'localhost':1037
- ad.###rothers.com/qmacro/ad-mymacro-eng.xml
- DNS ASK ad.###rothers.com
- ClassName: 'Shell_TrayWnd' WindowName: ''