Bine ati venit pe HackTeam Forum !
Aici veti gasi o gama larga de metode de hack atat pe Windows cat si pe platforme Linux/Unix , programe in consecinta ,tutoriale .
In acelasi timp aici veti gasi si asistenta help in materie corespunzatoare . Precizam ca tot ce se gaseste pe acest site este doar in scop de dezvoltare iar voi va asumati intreaga raspundere pt actiunile pe care le savarsiti . || SS-TEAM || Va Multumeste pt vizita !
|
Lista Forumurilor Pe Tematici
|
Bine ati venit pe HackTeam Forum ! | Reguli | Inregistrare | Login
POZE BINE ATI VENIT PE HACKTEAM FORUM !
Nu sunteti logat.
|
Nou pe simpatie:
MarenD
 | Femeie
19 ani
Giurgiu
cauta Barbat
28 - 48 ani |
|
DJAx3L
Membru
 Inregistrat: acum 19 ani
Postari: 145
|
|
Method:
1 * Firstly, get yourself a program like "Proclist" or "Netmon" [Process Managers] that tells you all the running *processes* on your system and lets you TERMINATE them! You can just view them via the "msinfo32" command [type that at the windows RUN prompt]. Verify this by typing the "netstat -an" command again. The server port should no longer be listening [waiting for connections].
2 * After killing the server procoess delete the server executable in the windows or windowssystem directory. It could also be random if the "random file name" option was checked while configuring the server. The size should be around 370* K.
3 * Now you should remove the server startup, this could vary cuz Sub7 has 5 startup methods:
For the first 2 startup methods: [registry *Run* and *RunServices* ]:
1) open Regedit.exe [via the windows RUN prompt ]
2) Remove the following 2 keys:
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunABC
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunServicesABC
NOTE: ABC = Reg Key Name ....this could be anything as set as in EDITSERVER and XYZ.exe = name of sub7 server executable. This is the key value/data. Delete the whole key by right clicking it and selecting the *delete* option.
For the "WIN.INI" method and "less known" method:
1) Type "sysedit" in the windows RUN menu or manually open win.ini and system.ini.
2) Delete the following lines:
* In System.ini delete the line "shell=exprorer.exe XYZ.exe"
* In Win.ini delete the line(s) " load = XYZ.exe" or "run = XYZ.exe"
NNOTE: DO NOT delete any other lines except the ones containing the Sub7 server [XYZ.exe], this could affect your system e.g some printer drivers load via the "run = whatever.exe" commandN
4 * Reboot the system and check "netstat -an" again. If the port is still listening repeat steps 1-3
_______________________________________
|
|
| pus acum 18 ani |
|