Technical Information
- %HOMEPATH%\Start Menu\Programs\Startup\winhost.lnk
- %ProgramFiles%\Windows shere\vlql.bat
- %ProgramFiles%\Windows shere\ppyipg.vbs
- %ProgramFiles%\Windows shere\winhost.exe
- %ProgramFiles%\Windows shere\config.json
- %ProgramFiles%\Windows shere\db.rar
- %ProgramFiles%\Windows shere\rar.exe
- %ProgramFiles%\Windows shere\trxhtm.vbs
- %ProgramFiles%\Windows shere\weep.bat
- %ProgramFiles%\Windows shere\rar.exe
- %ProgramFiles%\Windows shere\trxhtm.vbs
- ClassName: 'EDIT' WindowName: ''
- '%ProgramFiles%\Windows shere\rar.exe' e -p3553 db.rar
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\Windows shere\vlql.bat" "
- '<SYSTEM32>\powercfg.exe' -change -standby-timeout-ac 0
- '<SYSTEM32>\wscript.exe' "%ProgramFiles%\Windows shere\ppyipg.vbs"
- '<SYSTEM32>\wscript.exe' "%ProgramFiles%\Windows shere\trxhtm.vbs"
- '<SYSTEM32>\cmd.exe' /c ""%ProgramFiles%\Windows shere\weep.bat" "