Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\lsqgpb] 'Start' = '00000002'
- '<SYSTEM32>\sc.exe' create lsqgpb type= kernel binpath= <DRIVERS>\lsqgpb.sys start= auto
- <DRIVERS>\lsqgpb.sys
- %WINDIR%\Temp\1.tmp
- <SYSTEM32>\INTRUST.dll
- <SYSTEM32>\INTRUST.dll
- <DRIVERS>\lsqgpb.sys