Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\InTro_hiding] 'Logon' = 'Logon'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\InTro_hiding] 'DllName' = 'intro_hiding.dll'
- <SYSTEM32>\rundll32.exe
- <SYSTEM32>\intro_hiding.dll