ColdLife 4.0
Released 22 years, 7 months ago. April 2002
Copyright © MegaSecurity
By ColdLife
Informations
| Author | ColdLife |
| Family | ColdLife |
| Category | Remote Access |
| Version | ColdLife 4.0 |
| Released Date | Apr 2002, 22 years, 7 months ago. |
Additional Information
patch.exe:
c:\WINDOWS\litmus\winhelper.exe
size: 20.512 bytes
port: 113 TCP
keys added:
startup:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "LTM2"
Systray.exe:
size: 598.016 bytes
startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "ColdLife - icmp"
HKEY_CLASSES_ROOT\irc\Shell\open\command "(Default)"
added:
HKEY_CURRENT_USER\Software\mIRC
HKEY_CURRENT_USER\Software\mIRC\DateUsed
HKEY_CLASSES_ROOT\.cha
HKEY_CLASSES_ROOT\.chat
HKEY_CLASSES_ROOT\ChatFile
HKEY_CLASSES_ROOT\ChatFile\DefaultIcon
HKEY_CLASSES_ROOT\ChatFile\Shell
HKEY_CLASSES_ROOT\ChatFile\Shell\open
HKEY_CLASSES_ROOT\ChatFile\Shell\open\command
HKEY_CLASSES_ROOT\ChatFile\Shell\open\ddeexec
HKEY_CLASSES_ROOT\ChatFile\Shell\open\ddeexec\Application
HKEY_CLASSES_ROOT\ChatFile\Shell\open\ddeexec\ifexec
HKEY_CLASSES_ROOT\ChatFile\Shell\open\ddeexec\Topic
HKEY_CLASSES_ROOT\irc
HKEY_CLASSES_ROOT\irc\DefaultIcon
HKEY_CLASSES_ROOT\irc\Shell
HKEY_CLASSES_ROOT\irc\Shell\open
HKEY_CLASSES_ROOT\irc\Shell\open\command
HKEY_CLASSES_ROOT\irc\Shell\open\ddeexec
HKEY_CLASSES_ROOT\irc\Shell\open\ddeexec\Application
HKEY_CLASSES_ROOT\irc\Shell\open\ddeexec\ifexec
HKEY_CLASSES_ROOT\irc\Shell\open\ddeexec\TopicIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.