Yahoo Messenger Worm/Virus Attack
October 31, 2006 at 10:28 am | In Technology, Tutorial, hack & crack | 13 CommentsOriginal posting from: http://forums.sureshkumar.net/showthread.php?t=7790
Here the posting:
It is one of the most powerful Trojan /virus I have ever seen.. If your computer is infected with this virus ” It will sends the nsl-school.org url to all of your friend list in yahoo messenger using your ID . So with in few hours many of your friends will get infected with it.
I don’t know the actual target of the idiot who created it. May be to advertise his site or to steal very imp data from your computer. I resolved the problem manually from 2 infected PC’s. Just go through the below steps carefully.
What are those links ?:
Nsl-school.org or other (Do not open this url in your browser).
If you are infected with it what is going to happen ?
1: It sets your default IE page to nsl-school.org, you can’t even change it back to other page. If you open IE from your comp some malicious code will automatically executed into your computer.
2: It will disables the Task manager / reg edit. So you can’t kill the Trojan process anymore.
3: Files that are gonaa installed by this virus are svhost.exe , svhost32.exe , internat.exe.
you can find these files in windows/ & temp/ directories.
4: It will sends the secured & protected information to attacker
How to remove this manually from your computer ?
1: Close the IE browser. Log out messenger / Remove Internet Cable.
2: To enable Regedit
Click Start, Run and type this command exactly as given below: (better – Copy and paste)
REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 0 /f
3: To enable task manager : (To kill the process we need to enable task manager)
Click Start, Run and type this command exactly as given below: (better – Copy and paste)
REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 0 /f
4: Now we need to change the default page of IE though regedit.
Start>Run>Regedit
From the below locations in Regedit chage your default home page to google.com or other.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main
HKEY_ LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main
HKEY_USERS\Default\Software\Microsoft\Internet Explorer\Main
Just replace the attacker site with google.com or set it to blank page.
5: Now we need to kill the process from back end. Press Ctrl + Alt + Del
Kill the process svhost32.exe . ( may be more than one process is running.. check properly)
6: Delete svhost32.exe , svhost.exe files from Windows/ & temp/ directories. Or just search for svhost in your comp.. delete those files.
7: Go to regedit search for svhost and delete all the results you get.
Start menu > Run > Regedit >
8: Restart the computer. That’s it now you are virus free.
I don’t know whether any removal patch that works for this Trojan/virus. But we can easily delete it manually.
** Send this URL to all of your friends through messenger so that they can get rid off this virus. **
Conclution : Better not to open any unknown url from your Computer.. There are lot of black hat hackers who are waiting to steal your credit card numbers, passwords or what not…. Use a better firewall & updated anti virus. However an Antivirus can do nothing if the virus is very latest…
Let me know if you need any more help…
To know more about protecting your passwords.. read my other article here..
http://forums.sureshkumar.net/showthread.php?t=94
Cheers,
Sureshkumar CH,
Information Security Specialist.
www.sureshkumar.net.
Kaspersky 6 Emergency CD
October 16, 2006 at 5:11 pm | In Technology, hack & crack | 1 CommentKaspersky 6 Emergency CD
Have you ever :
- Infected With A Virus Or A Trojan ?
- Tried to use “Safe Mode” Option To Repair Your System And You Failed !
this is the answer…
Use This ” Bootable CD ” & Repair Your System !
THIS IS IMPORTANT
How It Works :
- After You Download …. Fire It On A Blank Cd
- Adjust Your BIOS To Let THE BOOT FROM THE CD-ROM
- The CD Will Run …. AS AN OS … THEN REAPIR YOUR SYSTEM
More Information :
http://www.kaspersky.com
Download Appz + Fix ( 71.43 ) :
http://rapidshare.de/files/34602588/KasperSky.6.Emergency.CD-iso.rar
MD5: A31E58EFEC5D995196D57F6A2DE35BC6 71.43 MB
File Password:www.devilived.com
Original poster is onoy**@yahoo.com
Windows XP USB Stick Edition
October 16, 2006 at 5:05 pm | In Technology, hack & crack | 7 CommentsWindows XP USB Stick Edition
App | RapidShare | 61 Mb
Ever want to boot up into Windows XP via a USB memory key? Well, now
you can. This is a miniature version of Win XP Just enough to get
your up and running so you can restore from backup, access your
files, or do whatever you have to do. Also go to your BIOS setting
and change the BOOT sequence. Removable drive or something should be
at the top then try to reboot your PC.
http://rapidshare.de/files/34400971/Windows.XP.USB.Stick.Edition.rar
MD5: 5AA89685512FFBD9C95C6B19EB4A6007 60.09 MB
original poster is Onoy**@yahoo.com
Archiving yahoogroups
October 11, 2006 at 8:10 am | In Technology, Tutorial, hack & crack | Leave a Commentdo you want to archive your yahoogroups? Try this script:
http://www.tt-solutions.com/en/products/yahoo2mbox/
What is it?
yahoo2mbox is a small Perl script which retrieves all messages from a mailing list archive at Yahoo! Groups (there is a missing copyright sign somewhere here probably) and stores them into a local file in MBOX which is recognized by all Unix mail readers and good many of other ones.
Mobile phone tools
October 3, 2006 at 9:01 am | In Technology, Tutorial, hack & crack | 1 CommentAgain, i got this links from Onoy*** (much thank to him).
manage ponsel anda dg program berikut
fitur send/recieve/edit ringtone, logo,sms, game ponsel dari PC. syncronin
phonebook ponsel dg outlook (PC)
Manage your handset using this application.
Features:
- Send/Recieve/Edit Ringtone, Logo, SMS, Game
- Syncronize With outlook.
http://rapidshare.de/files/34947491/Nokia.PC.Suite.6.81.13.0._EnG_.ra
MD5: 6FAA429D42D65CB523E5FD9A4CEB4942 15.99 MB
http://rapidshare.de/files/34947481/NokiaSoftwareUpdaterSetup_en.exe
MD5: B29D7054DFA29DB730C3F1295B471BBF 14.82 MB
http://rapidshare.de/files/34947475/MOBILedit.1.99.0.5.rar
MD5: B43A30C3145F5269F3336C03AD88702E 15.06 MB
http://rapidshare.de/files/34947459/Oxygen.Phone.Manager.II.2.8.5.2.rar
MD5: 6275CFDF1CB20AC1313A653449EC4EB6 13.11 MB
http://rapidshare.de/files/34947427/MobTime.Cell.Phone.Manager.5.3.1.rar
MD5: C55DAEF92BF9F31FE66C5A0144985377 8.72 MB
enjoy it…
If you got some difficulty to download that links, try download using this application:
http://rapidshare.de/files/34469411/RapGET111_SSLono.zip
MD5: 91287C15055B8E26C2A6F3634B15D899 1.34 MB
You must read the tutorial.
UNLOCK YOUR SIM-LOCK
September 22, 2006 at 10:11 am | In Technology, hack & crack | 2 CommentsYou will be able to use any sim-card anywhere around the world you can unlock your device for use on any network of your choice this software has been 100% tested. It works on all windows operating systems ( win xp, 98, me or 2000). With this item you can easily unlock & remove sim-lock from your mobile. Software comes with complete easy step-by-step instructions.
SUPPORTED MODELS
O2 XDA EXEC (tested)
O2 XDA (tested)
O2 XDA II (tested)
O2 XDA 2s TESTED
O2 XDA 3 (tested)
O2 XDA 2i (tested)
O2 XDA-II mini (tested)
QTEK S100 (tested)
QTEK-2020 (tested)
QTEK-2020i (tested)
QTEK-9090 (tested)
MDA Compact (tested)
MDA-II (tested)
MDA III (tested)
I-Mate-Jasjar (tested)
I-Mate-Phone-Edition (tested)
I-Mate PDA2K (tested)
I-Mate Jam (tested)
I-Mate-PDA2 (tested)
SPV-M500 (tested)
SPV-M1000 (tested)
SPV-M2000 (tested)
SPV-M3000 (tested)
Dopod-696 (tested)
Dopod-699 (tested)
Dopod-700 (tested)
Dopod-818 (tested)
Vodafone VPA-II (tested)
Vodafone VPA-III (tested)
Siemense SX66 (tested)
telefonica TSM500 (tested)
Himalaya (tested)
Download
#http://rapidshare.de/files/33974481/unlock_htc_wizrar.rar
MD5: D62A1F15B4935F65E504D72B932E1C07 1.69 MB
RAR PASS: Team_INDIA
posted by onoy** on gadtorade mailing list.
Password Cracker
August 14, 2006 at 3:52 am | In hack & crack | Leave a CommentI’ve asked by my friend about Windows XP password cracker. He lost the password administrator account. Here some link about that and some link about some password cracker in another application:
Encrypt Site…
August 2, 2006 at 10:15 am | In hack & crack | Leave a CommentWant to avoid site content grabber, encrypt first.
rapidshare free premium account notifier
July 24, 2006 at 8:04 am | In hack & crack | 6 CommentsTadi pagi, subuh hari aku dapat notifier lagi euuuiii
Sekarang punya free account lagi….
Kayaknya nih software harus dipake online terus, asik
juga sih….
Gak perlu ngecek2 terus ke rapidshare….
Tadi subuh sih ada 40 ribuan-account, tapi habis dalam
15 menitan saja…
iixiixixi…aku aja cuma kebagian satu….tanya aja
sama pa_k_de,
kalo dia mao kasih sih….
Saran aku, pake aja nih software…biar ada
notifier….
Download di
http://rapidshare.de/files/26238751/RapidCheck_v0.1.1.exe
Mudah2an berguna buat kita…:D
from: xxxxh_weleh@yahoo.com
Blog at WordPress.com. | Theme: Pool by Borja Fernandez.
Entries and comments feeds.
