Technical Information
- '<Current directory>\MXeP9T0gL9.exe'
- '<SYSTEM32>\dumprep.exe' 2848 -dm 7 7 %TEMP%\WERa2f2.dir00\MXeP9T0gL9.exe.hdmp 16325836412027616
- '<SYSTEM32>\dumprep.exe' 2848 -dm 7 7 %TEMP%\WERa2f2.dir00\MXeP9T0gL9.exe.mdmp 16325836412027596
- %TEMP%\WERa2f2.dir00\MXeP9T0gL9.exe.hdmp
- %TEMP%\WERa2f2.dir00\appcompat.txt
- %TEMP%\WERa2f2.dir00\manifest.txt
- <Current directory>\Login.ini
- <Current directory>\MXeP9T0gL9.exe
- %TEMP%\WERa2f2.dir00\MXeP9T0gL9.exe.mdmp
- from %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Icons[1].bmp to <Current directory>\IconList.bmp
- 'www.ge##ys.net':80
- 'localhost':1037
- www.ge##ys.net/LoaderVersion.txt
- www.ge##ys.net/Icons.bmp
- DNS ASK www.ge##ys.net
- ClassName: 'Shell_TrayWnd' WindowName: ''