Cold Fusion 1.0
(Backdoor.Win32.Coldfusion.10)

by Satan_addict, Flippmode, Read101, Trade Mark

Written in Delphi

Released in December 2002

more versions


COLD FUSION v1.00

Features:
========
-FWB (injects to explorer.exe)
-invisible in taskmanager
-Victim info
-Reboot/shutdown
-Webcam capture(plugin)
-Screen Capture(plugin)
-Mouse clicks (right and left)
-Process Manager
-FileManager
-Melt server
-AV/FW killer at at startup (plugin)
-ICQ and CGI notification

CODERS:
======
Satan_addict, Flippmode, Read101, Trade Mark


Files:
------
*Client.exe
*Editor.exe
*installer.exe        
*sysk.dll
*syscpt.dll
*readme1st.txt
(all files binded with upx)

PLUGINS INSTRUCTIONS:
---------------------
send all plugins to windows folder.
The syscpt.dll allows you yo capture both screen and webcam images.
The sysk.dll will be injected into explorer.exe and will kill all FWs and AVs. 
It will repeat the killing process every 2 minutes (It also kills windows services).

BINDING THE SYSK.DLL:
---------------------
You can bind the sysk.dll plugin but remember allways to unpack it to the windows folder!
The server sees if the dll is there and if it is, it runs it. 
                                                                             

Have fun,           
-Satan_addict


Server:
c:\WINDOWS\navapw16.exe 

size: 94.720 bytes 

port: 4000 TCP

startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "navapw16.exe" 

MegaSecurity