Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] 'Lineage' = 'C:\W'
- %WINDIR%\Lineage.exe
- Библиотека-обработчик для всех процессов: %WINDIR%\StdCall.dll
- %WINDIR%\Lineage.exe
- %WINDIR%\StdCall.dll
- ClassName: '' WindowName: 'Server List'
- ClassName: 'ZAFrameWnd' WindowName: 'ZoneAlarm'
- ClassName: 'LUnicodeEdit' WindowName: ''
- ClassName: 'Lineage' WindowName: 'Lineage Windows Client'
- ClassName: 'TfLockDownMain' WindowName: ''
- ClassName: 'RavMonClass' WindowName: 'RavMon.exe'
- ClassName: 'TFinalPassword' WindowName: 'Lineage'
- ClassName: 'TForm1' WindowName: ''
- ClassName: 'Tapplication' WindowName: '????????????????'