Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logondll] 'Startup' = 'EventStartup'
- [<HKLM>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logondll] 'DllName' = 'logonmy.dll'
- '<SYSTEM32>\regsvr32.exe' /s <SYSTEM32>\rightplug.dll
- %WINDIR%\Explorer.EXE
- <SYSTEM32>\dllcache\logonmy.dll
- <SYSTEM32>\logonmain.dll
- <SYSTEM32>\dllcache\logonmain.dll
- <SYSTEM32>\rightmain.dll
- <SYSTEM32>\rightplug.dll
- <SYSTEM32>\logonmy.dll