Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\clogon] 'DLLName' = 'clogon.dll'
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\mn\svchost.bak" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\br\svchost.bak" /E /G Everyone:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\br\svchost.exe" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\clogon.dll" /E /G Everyone:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\mn\svchost.bak" /E /G Everyone:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\mn\svchost.exe" /E /G Everyone:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\mn\svchost.exe" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\br\svchost.exe" /E /G Everyone:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\clogon.bak" /E /G Everyone:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\br" /E /G Everyone:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\mn" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\br" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\clogon.dll" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\br\svchost.bak" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\clogon.bak" /E /G все:F
- <SYSTEM32>\cacls.exe "<SYSTEM32>\cym\mn" /E /G Everyone:F
- ClassName: '' WindowName: '476SD7U-F39R-GJ46-N01Adobe'