alexcargo Posted December 6, 2006 Report Posted December 6, 2006 Step 1:Your first step will be to download BartPE from nu2.nuIf you have any questions on creating a BartPE cd read this. BartPE Tutorial Step 2:Now you will need to find out if the deep freeze computer that you are trying to run your software on has a "thawed" partition.Open up my computer and check if there is more then one partition. If there are two, partitions, then one of them is most likely a "thawed" partition.It is going to be the smaller of the two and it will not be the one that windows is installed on. If the computer does not have a designated "thawed" partition, then you will have to use the internet to save any files you need.Step 3:Now you need to view all the services and programs that will start when the computer turns on.We are going to first dump the list of running processes open up a command prompt and type:tasklist /svcIf you recognize any of these as non-vital services, go ahead and kill them via the taskmgr or command lineStep 4:Now you need to find where the executable exists for the process and either write it down or make a note of it.Put in the BartPE cd and restart the computer. When the computer finishes booting and then opens up the PE guic,open up the file manager and delete the executable that you are going to replace. Now copy yours in their and rename it with the exact file name of the program you deleted.Step 5:Now you will need to reboot the computer to make sure that your rogue process is running correctly.Now some of you might be wondering what the point of this is. With this tutorial, you can install keyloggers,(only ones made by yourself), and capture passwords or other things that you need on the host computer.If you have any questions go ahead and email me.I will add picture when I get a chance. Quote
