Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyEnable' = '00000001'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyServer' = '10.83.250.66:8080'
- [<HKLM>\SYSTEM\ControlSet001\Hardware Profiles\0001\Software\Microsoft\windows\CurrentVersion\Internet Settings] 'ProxyEnable' = '00000001'
- %TEMP%\1.tmp\Activated.bat
- %TEMP%\activation.log
- 'localhost':1037
- '10.##.250.66':8080
- ClassName: '' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\Activated.bat" <Полный путь к файлу>"
- '<SYSTEM32>\netsh.exe' advfirewall set CurrentProfil state off
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyEnable /t REG_DWORD /d 1 /f
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyServer /t REG_SZ /d 10.83.250.66:8080 /f
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' www.ms#.com
- '<SYSTEM32>\cscript.exe' "<SYSTEM32>\slmgr.vbs" /ipk MVXG2-2GP4C-KJX4C-6PBMW-T3DF4
- '<SYSTEM32>\cscript.exe' "<SYSTEM32>\slmgr.vbs" /ato
- '<SYSTEM32>\cscript.exe' "<SYSTEM32>\slmgr.vbs" /dli