Technical Information
- <SYSTEM32>\tasks\googleupdatemachinen
- C:\upx\profiles\lib\abc.py
- C:\upx\profiles\lib\ctypes\_endian.pyc
- C:\upx\profiles\lib\io.pyc
- C:\upx\profiles\lib\tempfile.pyc
- C:\upx\profiles\lib\mimetools.pyc
- C:\upx\profiles\lib\urlparse.pyc
- C:\upx\profiles\lib\httplib.pyc
- C:\upx\profiles\lib\stringio.pyc
- C:\upx\profiles\lib\site-packages\urllib3\packages\six.pyc
- C:\upx\profiles\lib\site-packages\urllib3\packages\ssl_match_hostname\_implementation.pyc
- C:\upx\profiles\lib\site-packages\urllib3\packages\ssl_match_hostname\__init__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\packages\__init__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\exceptions.pyc
- C:\upx\profiles\lib\atexit.pyc
- C:\upx\profiles\lib\weakref.pyc
- C:\upx\profiles\lib\logging\__init__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\connectionpool.pyc
- C:\upx\profiles\lib\__future__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\__init__.pyc
- C:\upx\profiles\lib\site-packages\requests\__init__.pyc
- C:\upx\profiles\lib\random.pyc
- C:\upx\profiles\lib\socket.pyc
- C:\upx\profiles\lib\rfc822.pyc
- C:\upx\profiles\lib\ssl.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\response.pyc
- C:\upx\profiles\lib\site-packages\urllib3\request.pyc
- C:\upx\profiles\lib\site-packages\urllib3\_collections.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\url.pyc
- C:\upx\profiles\lib\email\mime\__init__.pyc
- C:\upx\profiles\lib\email\__init__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\retry.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\timeout.pyc
- C:\upx\profiles\lib\hmac.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\ssl_.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\request.pyc
- C:\upx\profiles\lib\base64.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\wait.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\connection.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\__init__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\connection.pyc
- C:\upx\profiles\lib\queue.pyc
- C:\upx\profiles\lib\contextlib.pyc
- C:\upx\profiles\lib\textwrap.pyc
- C:\upx\profiles\lib\hashlib.pyc
- C:\upx\profiles\lib\ctypes\util.pyc
- C:\upx\profiles\lib\ctypes\__init__.pyc
- C:\upx\profiles\lib\uuid.pyc
- C:\upx\profiles\lib\copy_reg.pyc
- C:\upx\profiles\lib\_abcoll.pyc
- C:\upx\profiles\lib\userdict.pyc
- C:\upx\profiles\lib\types.pyc
- C:\upx\profiles\lib\linecache.pyc
- C:\upx\profiles\lib\warnings.pyc
- C:\upx\profiles\lib\genericpath.pyc
- C:\upx\profiles\lib\stat.pyc
- C:\upx\profiles\lib\ntpath.pyc
- C:\upx\profiles\lib\os.pyc
- C:\upx\profiles\lib\site.pyc
- C:\upx\profiles\pythonw.exe
- C:\upx\profiles\python27.dll
- C:\upx\profiles\msvcr90.dll
- C:\upx\profiles\msvcp90.dll
- C:\upx\profiles\msvcm90.dll
- C:\upx\profiles\date.dll
- C:\upx\profiles\_upx.pyw
- C:\upx\profiles\_ssl.pyd
- C:\upx\profiles\lib\abc.pyc
- C:\upx\profiles\lib\traceback.pyc
- C:\upx\profiles\lib\fnmatch.pyc
- C:\upx\profiles\lib\re.pyc
- C:\upx\profiles\lib\getpass.pyc
- C:\upx\profiles\lib\sysconfig.pyc
- C:\upx\profiles\lib\shutil.pyc
- C:\upx\profiles\lib\heapq.pyc
- C:\upx\profiles\lib\keyword.pyc
- C:\upx\profiles\lib\collections.pyc
- C:\upx\profiles\lib\threading.pyc
- C:\upx\profiles\lib\subprocess.pyc
- C:\upx\profiles\lib\platform.pyc
- C:\upx\profiles\_socket.pyd
- C:\upx\profiles\lib\string.pyc
- C:\upx\profiles\lib\struct.pyc
- C:\upx\profiles\lib\functools.pyc
- C:\upx\profiles\lib\encodings\aliases.pyc
- C:\upx\profiles\lib\codecs.pyc
- C:\upx\profiles\lib\encodings\__init__.pyc
- C:\upx\profiles\lib\locale.pyc
- C:\upx\profiles\lib\sre_constants.pyc
- C:\upx\profiles\lib\sre_parse.pyc
- C:\upx\profiles\lib\sre_compile.pyc
- C:\upx\profiles\lib\site-packages\urllib3\filepost.pyc
- C:\upx\profiles\lib\_weakrefset.pyc
- C:\upx\profiles\lib\site-packages\urllib3\fields.pyc
- C:\upx\profiles\lib\site-packages\chardet\escsm.pyc
- C:\upx\profiles\lib\cookielib.pyc
- C:\upx\profiles\lib\bisect.pyc
- C:\upx\profiles\lib\urllib2.pyc
- C:\upx\profiles\lib\json\encoder.pyc
- C:\upx\profiles\lib\json\scanner.pyc
- C:\upx\profiles\lib\json\decoder.pyc
- C:\upx\profiles\lib\json\__init__.pyc
- C:\upx\profiles\lib\site-packages\requests\compat.pyc
- C:\upx\profiles\lib\site-packages\requests\_internal_utils.pyc
- C:\upx\profiles\lib\site-packages\certifi\core.pyc
- C:\upx\profiles\lib\site-packages\certifi\__init__.pyc
- C:\upx\profiles\lib\site-packages\requests\certs.pyc
- C:\upx\profiles\lib\zipfile.pyc
- C:\upx\profiles\lib\site-packages\requests\utils.pyc
- C:\upx\profiles\lib\site-packages\requests\__version__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\contrib\pyopenssl.pyc
- C:\upx\profiles\lib\site-packages\urllib3\contrib\__init__.pyc
- C:\upx\profiles\lib\site-packages\requests\exceptions.pyc
- C:\upx\profiles\lib\site-packages\chardet\version.pyc
- C:\upx\profiles\lib\site-packages\chardet\hebrewprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\langturkishmodel.pyc
- C:\upx\profiles\lib\copy.pyc
- C:\upx\profiles\lib\_lwpcookiejar.pyc
- C:\upx\profiles\lib\site-packages\requests\adapters.pyc
- C:\upx\profiles\lib\site-packages\requests\sessions.pyc
- C:\upx\profiles\lib\site-packages\requests\api.pyc
- C:\upx\profiles\lib\site-packages\requests\status_codes.pyc
- C:\upx\profiles\lib\site-packages\requests\auth.pyc
- C:\upx\profiles\lib\site-packages\requests\hooks.pyc
- C:\upx\profiles\lib\stringprep.pyc
- C:\upx\profiles\lib\encodings\idna.pyc
- C:\upx\profiles\lib\site-packages\requests\models.pyc
- C:\upx\profiles\lib\site-packages\idna\idnadata.pyc
- C:\upx\profiles\lib\site-packages\chardet\langthaimodel.pyc
- C:\upx\profiles\lib\site-packages\idna\core.pyc
- C:\upx\profiles\lib\site-packages\idna\package_data.pyc
- C:\upx\profiles\lib\site-packages\idna\__init__.pyc
- C:\upx\profiles\lib\site-packages\requests\packages.pyc
- C:\upx\profiles\lib\encodings\ascii.pyc
- C:\upx\profiles\lib\site-packages\requests\structures.pyc
- C:\upx\profiles\lib\site-packages\requests\cookies.pyc
- C:\upx\profiles\lib\cookie.pyc
- C:\upx\profiles\lib\_mozillacookiejar.pyc
- C:\upx\profiles\lib\site-packages\chardet\langhebrewmodel.pyc
- C:\upx\profiles\lib\site-packages\chardet\langbulgarianmodel.pyc
- C:\upx\profiles\lib\site-packages\urllib3\contrib\pyopenssl.py
- C:\upx\profiles\lib\site-packages\chardet\latin1prober.pyc
- C:\upx\profiles\lib\site-packages\chardet\escprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\charsetprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\enums.pyc
- C:\upx\profiles\lib\site-packages\chardet\charsetgroupprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\universaldetector.pyc
- C:\upx\profiles\lib\site-packages\chardet\compat.pyc
- C:\upx\profiles\lib\site-packages\chardet\__init__.pyc
- C:\upx\profiles\lib\site-packages\urllib3\poolmanager.pyc
- C:\upx\profiles\lib\site-packages\urllib3\util\queue.pyc
- C:\upx\profiles\lib\site-packages\urllib3\response.pyc
- C:\upx\profiles\lib\encodings\utf_8.pyc
- C:\upx\profiles\lib\posixpath.pyc
- C:\upx\profiles\lib\mimetypes.pyc
- C:\upx\profiles\lib\email\encoders.pyc
- C:\upx\profiles\lib\quopri.pyc
- C:\upx\profiles\lib\calendar.pyc
- C:\upx\profiles\lib\email\_parseaddr.pyc
- C:\upx\profiles\lib\nturl2path.pyc
- C:\upx\profiles\lib\site-packages\chardet\mbcsgroupprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\utf8prober.pyc
- C:\upx\profiles\lib\site-packages\chardet\langgreekmodel.pyc
- C:\upx\profiles\lib\site-packages\chardet\jpcntx.pyc
- C:\upx\profiles\lib\site-packages\chardet\eucjpprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\langcyrillicmodel.pyc
- C:\upx\profiles\lib\site-packages\chardet\sbcharsetprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\sbcsgroupprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\euctwprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\big5prober.pyc
- C:\upx\profiles\lib\site-packages\chardet\cp949prober.pyc
- C:\upx\profiles\lib\site-packages\chardet\euckrprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\gb2312prober.pyc
- C:\upx\profiles\lib\urllib.pyc
- C:\upx\profiles\lib\email\utils.pyc
- C:\upx\profiles\lib\site-packages\chardet\codingstatemachine.pyc
- C:\upx\profiles\lib\site-packages\chardet\big5freq.pyc
- C:\upx\profiles\lib\site-packages\chardet\gb2312freq.pyc
- C:\upx\profiles\lib\site-packages\chardet\euckrfreq.pyc
- C:\upx\profiles\lib\site-packages\chardet\euctwfreq.pyc
- C:\upx\profiles\lib\site-packages\chardet\chardistribution.pyc
- C:\upx\profiles\lib\site-packages\chardet\mbcharsetprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\sjisprober.pyc
- C:\upx\profiles\lib\site-packages\chardet\mbcssm.pyc
- C:\upx\profiles\lib\site-packages\chardet\jisfreq.pyc
- C:\upx\profiles\_safe.pyw
- C:\upx\profiles\_ctypes.pyd
- C:\upx\profiles\unicodedata.pyd
- C:\upx\profiles\lib\os.py
- C:\upx\profiles\lib\site-packages\chardet\codingstatemachine.py
- C:\upx\profiles\lib\site-packages\chardet\charsetprober.py
- C:\upx\profiles\lib\site-packages\chardet\charsetgroupprober.py
- C:\upx\profiles\lib\site-packages\chardet\chardistribution.py
- C:\upx\profiles\lib\site-packages\chardet\big5prober.py
- C:\upx\profiles\lib\site-packages\chardet\big5freq.py
- C:\upx\profiles\lib\site-packages\certifi\__main__.py
- C:\upx\profiles\lib\site-packages\certifi\__init__.py
- C:\upx\profiles\lib\site-packages\certifi\core.py
- C:\upx\profiles\lib\site-packages\certifi\cacert.pem
- C:\upx\profiles\lib\shutil.py
- C:\upx\profiles\lib\rfc822.py
- C:\upx\profiles\lib\re.py
- C:\upx\profiles\lib\random.py
- C:\upx\profiles\lib\quopri.py
- C:\upx\profiles\lib\queue.py
- C:\upx\profiles\lib\posixpath.py
- C:\upx\profiles\lib\platform.py
- C:\upx\profiles\lib\site-packages\chardet\enums.py
- C:\upx\profiles\lib\site-packages\chardet\cp949prober.py
- C:\upx\profiles\lib\site-packages\chardet\escsm.py
- C:\upx\profiles\lib\nturl2path.py
- C:\upx\profiles\lib\site-packages\chardet\mbcharsetprober.py
- C:\upx\profiles\lib\site-packages\chardet\latin1prober.py
- C:\upx\profiles\lib\site-packages\chardet\langturkishmodel.py
- C:\upx\profiles\lib\site-packages\chardet\langthaimodel.py
- C:\upx\profiles\lib\site-packages\chardet\langhebrewmodel.py
- C:\upx\profiles\lib\site-packages\chardet\langgreekmodel.py
- C:\upx\profiles\lib\site-packages\chardet\langcyrillicmodel.py
- C:\upx\profiles\lib\site-packages\chardet\langbulgarianmodel.py
- C:\upx\profiles\lib\site-packages\chardet\jpcntx.py
- C:\upx\profiles\lib\site-packages\chardet\hebrewprober.py
- C:\upx\profiles\lib\site-packages\chardet\sbcharsetprober.py
- C:\upx\profiles\lib\site-packages\chardet\gb2312prober.py
- C:\upx\profiles\lib\site-packages\chardet\gb2312freq.py
- C:\upx\profiles\lib\site-packages\chardet\euctwprober.py
- C:\upx\profiles\lib\site-packages\chardet\euctwfreq.py
- C:\upx\profiles\lib\site-packages\chardet\euckrprober.py
- C:\upx\profiles\lib\site-packages\chardet\euckrfreq.py
- C:\upx\profiles\lib\site-packages\chardet\eucjpprober.py
- C:\upx\profiles\lib\site-packages\chardet\escprober.py
- C:\upx\profiles\lib\site-packages\chardet\mbcsgroupprober.py
- C:\upx\profiles\lib\ntpath.py
- C:\upx\profiles\lib\mimetypes.py
- C:\upx\profiles\lib\email\__init__.py
- C:\upx\profiles\lib\email\utils.py
- C:\upx\profiles\lib\email\encoders.py
- C:\upx\profiles\lib\ctypes\__init__.py
- C:\upx\profiles\lib\ctypes\_endian.py
- C:\upx\profiles\lib\ctypes\wintypes.py
- C:\upx\profiles\lib\ctypes\util.py
- C:\upx\profiles\lib\copy_reg.py
- C:\upx\profiles\lib\copy.py
- C:\upx\profiles\lib\cookielib.py
- C:\upx\profiles\lib\cookie.py
- C:\upx\profiles\lib\contextlib.py
- C:\upx\profiles\lib\collections.py
- C:\upx\profiles\lib\codecs.py
- C:\upx\profiles\lib\calendar.py
- C:\upx\profiles\lib\bisect.py
- C:\upx\profiles\lib\base64.py
- C:\upx\profiles\lib\atexit.py
- C:\upx\profiles\lib\encodings\aliases.py
- C:\upx\profiles\lib\encodings\ascii.py
- C:\upx\profiles\lib\encodings\idna.py
- C:\upx\profiles\lib\email\_parseaddr.py
- C:\upx\profiles\lib\encodings\utf_8.py
- C:\upx\profiles\lib\logging\__init__.py
- C:\upx\profiles\lib\mimetools.py
- C:\upx\profiles\lib\locale.py
- C:\upx\profiles\lib\linecache.py
- C:\upx\profiles\lib\keyword.py
- C:\upx\profiles\lib\json\__init__.py
- C:\upx\profiles\lib\json\scanner.py
- C:\upx\profiles\lib\json\encoder.py
- C:\upx\profiles\lib\json\decoder.py
- C:\upx\profiles\lib\site-packages\chardet\mbcssm.py
- C:\upx\profiles\lib\site-packages\chardet\jisfreq.py
- C:\upx\profiles\lib\io.py
- C:\upx\profiles\lib\hmac.py
- C:\upx\profiles\lib\heapq.py
- C:\upx\profiles\lib\hashlib.py
- C:\upx\profiles\lib\getpass.py
- C:\upx\profiles\lib\genericpath.py
- C:\upx\profiles\lib\functools.py
- C:\upx\profiles\lib\fnmatch.py
- C:\upx\profiles\lib\encodings\__init__.py
- C:\upx\profiles\lib\importlib\__init__.py
- C:\upx\profiles\lib\httplib.py
- C:\upx\profiles\lib\site-packages\chardet\compat.py
- C:\upx\profiles\lib\site-packages\chardet\sbcsgroupprober.py
- C:\upx\profiles\lib\stringprep.py
- C:\upx\profiles\lib\subprocess.py
- C:\upx\profiles\lib\stringio.py
- C:\upx\profiles\lib\string.py
- C:\upx\profiles\lib\stat.py
- C:\upx\profiles\lib\ssl.py
- C:\upx\profiles\lib\sre_parse.py
- C:\upx\profiles\lib\sre_constants.py
- C:\upx\profiles\lib\sre_compile.py
- C:\upx\profiles\lib\socket.py
- C:\upx\profiles\lib\site.py
- C:\upx\profiles\lib\site-packages\urllib3\__init__.py
- C:\upx\profiles\lib\site-packages\urllib3\_collections.py
- C:\upx\profiles\lib\site-packages\urllib3\util\__init__.py
- C:\upx\profiles\lib\site-packages\urllib3\util\wait.py
- C:\upx\profiles\lib\site-packages\urllib3\util\url.py
- C:\upx\profiles\lib\site-packages\urllib3\util\timeout.py
- C:\upx\profiles\lib\site-packages\urllib3\util\ssl_.py
- C:\upx\profiles\lib\site-packages\urllib3\util\retry.py
- C:\upx\profiles\lib\site-packages\urllib3\util\response.py
- C:\upx\profiles\lib\sysconfig.py
- C:\upx\profiles\lib\tempfile.py
- C:\upx\profiles\select.pyd
- C:\upx\profiles\lib\warnings.py
- C:\upx\profiles\lib\weakref.py
- C:\upx\profiles\microsoft_ctypes
- C:\upx\profiles\microsoft.vc90.crt.manifest
- C:\upx\profiles\lib\__future__.py
- C:\upx\profiles\lib\_weakrefset.py
- C:\upx\profiles\lib\_mozillacookiejar.py
- C:\upx\profiles\lib\_lwpcookiejar.py
- C:\upx\profiles\lib\_abcoll.py
- C:\upx\profiles\lib\zipfile.py
- C:\upx\profiles\lib\struct.py
- C:\upx\profiles\lib\site-packages\urllib3\util\request.py
- C:\upx\profiles\lib\site-packages\chardet\sjisprober.py
- C:\upx\profiles\lib\userdict.py
- C:\upx\profiles\lib\urlparse.py
- C:\upx\profiles\lib\urllib2.py
- C:\upx\profiles\lib\urllib.py
- C:\upx\profiles\lib\types.py
- C:\upx\profiles\lib\traceback.py
- C:\upx\profiles\lib\threading.py
- C:\upx\profiles\lib\textwrap.py
- C:\upx\profiles\lib\uuid.py
- C:\upx\profiles\lib\site-packages\idna\intranges.pyc
- C:\upx\profiles\lib\site-packages\urllib3\contrib\socks.pyc
- C:\upx\profiles\lib\site-packages\urllib3\response.py
- C:\upx\profiles\lib\site-packages\requests\compat.py
- C:\upx\profiles\lib\site-packages\requests\certs.py
- C:\upx\profiles\lib\site-packages\requests\auth.py
- C:\upx\profiles\lib\site-packages\requests\api.py
- C:\upx\profiles\lib\site-packages\requests\adapters.py
- C:\upx\profiles\lib\site-packages\pyping\__init__.pyc
- C:\upx\profiles\lib\site-packages\pyping\__init__.py
- C:\upx\profiles\lib\site-packages\pyping\core.pyc
- C:\upx\profiles\lib\site-packages\pyping\core.py
- C:\upx\profiles\lib\site-packages\idna\__init__.py
- C:\upx\profiles\lib\site-packages\idna\package_data.py
- C:\upx\profiles\lib\site-packages\idna\intranges.py
- C:\upx\profiles\lib\site-packages\idna\idnadata.py
- C:\upx\profiles\lib\site-packages\idna\core.py
- C:\upx\profiles\lib\site-packages\chardet\__init__.py
- C:\upx\profiles\lib\site-packages\chardet\version.py
- C:\upx\profiles\lib\site-packages\chardet\utf8prober.py
- C:\upx\profiles\lib\site-packages\chardet\universaldetector.py
- C:\upx\profiles\lib\site-packages\requests\exceptions.py
- C:\upx\profiles\lib\site-packages\requests\hooks.py
- C:\upx\profiles\lib\site-packages\requests\cookies.py
- C:\upx\profiles\lib\site-packages\requests\models.py
- C:\upx\profiles\lib\site-packages\urllib3\request.py
- C:\upx\profiles\lib\site-packages\requests\packages.py
- C:\upx\profiles\lib\site-packages\urllib3\poolmanager.py
- C:\upx\profiles\lib\site-packages\urllib3\packages\__init__.py
- C:\upx\profiles\lib\site-packages\urllib3\packages\ssl_match_hostname\__init__.py
- C:\upx\profiles\lib\site-packages\urllib3\packages\ssl_match_hostname\_implementation.py
- C:\upx\profiles\lib\site-packages\urllib3\packages\six.py
- C:\upx\profiles\lib\site-packages\urllib3\filepost.py
- C:\upx\profiles\lib\site-packages\urllib3\fields.py
- C:\upx\profiles\lib\site-packages\urllib3\exceptions.py
- C:\upx\profiles\lib\site-packages\urllib3\util\queue.py
- C:\upx\profiles\lib\site-packages\urllib3\util\connection.py
- C:\upx\profiles\lib\site-packages\urllib3\connectionpool.py
- C:\upx\profiles\lib\site-packages\urllib3\connection.py
- C:\upx\profiles\lib\site-packages\requests\__version__.py
- C:\upx\profiles\lib\site-packages\requests\__init__.py
- C:\upx\profiles\lib\site-packages\requests\_internal_utils.py
- C:\upx\profiles\lib\site-packages\requests\utils.py
- C:\upx\profiles\lib\site-packages\requests\structures.py
- C:\upx\profiles\lib\site-packages\requests\status_codes.py
- C:\upx\profiles\lib\site-packages\requests\sessions.py
- C:\upx\profiles\lib\site-packages\urllib3\contrib\socks.py
- %TEMP%\7zsfx000.cmd
- %TEMP%\7zsfx000.cmd
- 'C:\upx\profiles\pythonw.exe' C:\Upx\profiles\_Safe.pyw
- 'C:\upx\profiles\pythonw.exe' C:\Upx\profiles\_Upx.pyw
- '%WINDIR%\syswow64\cmd.exe' /c "ipconfig/release"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /END /TN Chrome' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /END /TN GoogleCrash' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /END /TN Googleupdate32' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /Delete /TN Chrome /F' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /Delete /TN GoogleCrash /F' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /Delete /TN Googleupdate32 /F' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c schtasks /create /sc hourly /tn GoogleUpdateMachinen /tr 'C:\Upx\profiles\pythonw.exe''C:\Upx\profiles\_Upx.pyw' /mo 1 /sd 01/01/2019' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c "attrib <LS_APPDATA>\Microsoft\MicrosoftGames +H +S"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c "attrib C:\Upx +H +S"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c "ipconfig/renew"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c "ipconfig/release"
- '%WINDIR%\syswow64\cmd.exe' /c "ipconfig/renew"
- '%WINDIR%\syswow64\attrib.exe' C:\Upx +H +S
- '%WINDIR%\syswow64\cmd.exe' /c "attrib C:\Upx +H +S"
- '%WINDIR%\syswow64\attrib.exe' <LS_APPDATA>\Microsoft\MicrosoftGames +H +S
- '%WINDIR%\syswow64\cmd.exe' /c "attrib <LS_APPDATA>\Microsoft\MicrosoftGames +H +S"
- '%WINDIR%\syswow64\schtasks.exe' /create /sc hourly /tn GoogleUpdateMachinen /tr 'C:\Upx\profiles\pythonw.exe''C:\Upx\profiles\_Upx.pyw' /mo 1 /sd 01/01/2019
- '%WINDIR%\syswow64\cmd.exe' /c schtasks /create /sc hourly /tn GoogleUpdateMachinen /tr 'C:\Upx\profiles\pythonw.exe''C:\Upx\profiles\_Upx.pyw' /mo 1 /sd 01/01/2019
- '%WINDIR%\syswow64\schtasks.exe' /Delete /TN Googleupdate32 /F
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /Delete /TN Googleupdate32 /F
- '%WINDIR%\syswow64\ipconfig.exe' /renew
- '%WINDIR%\syswow64\schtasks.exe' /Delete /TN GoogleCrash /F
- '%WINDIR%\syswow64\schtasks.exe' /Delete /TN Chrome /F
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /Delete /TN Chrome /F
- '%WINDIR%\syswow64\schtasks.exe' /END /TN Googleupdate32
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /END /TN Googleupdate32
- '%WINDIR%\syswow64\schtasks.exe' /END /TN GoogleCrash
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /END /TN GoogleCrash
- '%WINDIR%\syswow64\schtasks.exe' /END /TN Chrome
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /END /TN Chrome
- '%WINDIR%\syswow64\ipconfig.exe' /release
- '%WINDIR%\syswow64\cmd.exe' /c SCHTASKS /Delete /TN GoogleCrash /F
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "