File Submitter: DarkPhoeniX
File Submitted: 01 Jan 2012
File Updated: 19 Jun 2012
File Category: Security
InfoHack Captures as much information as possible from the system its run on
Click here to download this file
---------------------------------------------------------------------------------------------------------------------------------------------------------
InfoHack By DarkPhoeniX --- KGB Systems
Kinetic Genius Box - Systems
----------------------------------------------------------------------------------------------------------------------------------------------------------
Description:
InfoHack Captures as much information as possible from the system its run on
Usage:
Double click on “InfoHack.bat” and look in The Generated Folder for the "InfoHack.Html" Index file
Use in a CMD script:
InfoHack [-np] [-ts] [-nr] [-nusb] [-p:{Password}] [-h]
CMD Switches:
-na No Autoruns Mode(faster Hack Time)
-np no-pause-mode: the script will not pause
-ts Timestamp the generated File
-nr Skip registry Save(faster Hack Time)
-p:{Password} Creates a .7z Password Encrypted file [Eg.infohack -p:MyPassword]
-h shows Help
-nusb No USB Dump Enabled(faster Hack Time)
CMD Exit codes:
0 - No Critical Errors
1 - Bad Windows version
2 - Read only Media Error
3 - Bit Type Check Error
Known Issues:
-The Components in this tool is made for Windows XP/Vista/7/2008/2003 x86/x64
-Cannot run on any Read-only Media
-The Program or components may be seen as "potentially unwanted/ unsafe applications”, “Viruses” or “hack tools” on some Antivirus Programs
-Works with UAC turned on in Windows 7/Vista/2008, just allow access for the components to run (recommended to turn UAC off and restart, do not right click
And "Run as Administrator"!!)
-Registry copy for XP x64 is currently unsupported (if someone could test which hobocopy.exe works with this then i can update in the next version)
-The Autoruns.arn File opens with Autoruns.exe
-The Autoruns.exe opens in mid program to get info,this is normal
-------------------------------------------------------------------------------------------------------------
Change Log:
-v1.0 Alpha 10
*Added FastHack.bat with -na -nr -nusb Parameters to Run InfoHack Real fast(Hack Dump from 15 seconds,Full Hack 2 minuits approx)
*Added -nusb to desable USBDeview & USBDeview64 Dump
*Added cports, cports64, USBDeview, USBDeview64
*Updated Autoruns, MyEventViewer, MyEventViewer64 ,WirelessKeyView, WirelessKeyView64
WebBrowserPassView, MyLastSearch, mailpv, mspass, DriveLetterView, skypelogview
*Added Support for Windows 8 (Untested)
*Added StartCmdHere.bat to quickly add your own parameters(Opens a CMD Box in The Directory)
*Added Printer List Dump
*Added Bios Dump
*Added Windows Net User, Net Share, Net View, Net Accounts
*Added No Autoruns Mode Swith (-na)
*Improved Help switsh
*Added Error Counter
*Improved Index Page Genarator
*Added Windows Set Dump
*Added Windows UAC Handeling
*Added Service Pack Detection
*Added Antivirus Detection
*Removed Spy Mode
(Too Slow!! and makes problems down the road)*Lots of bug Fixes
*Changed From Sysinternals autorunsc to autoruns(Faster hack Time)
*Added Sysinternals:Coreinfo,Listdlls,logonsessions,PsInfo
*Added File verification checks
*Changed the way the Tools gets run(Big stuff)
*Fixed MyEventViewer64.exe not dumping corectly
*Fixed WirelessKeyView64.exe not dumping corectly
-v1.0 Alpha 9
*Added -ts Switsh to timestamp the generated File
*Added -np switsh for No-Pause-Mode
*Added -S switsh for Spy-Mode
*Added -Sx switsh for Spy-Exit-Mode
*Fixed log file not saving
*Fixed Ntuser.dat not saving
*Added -nr Switsh For not saving the regestry
*Added -p: that Creates a .7z Password Encrypted file
*Added -h to show Help
*Added UAC detection
*updated netpass,netpass64,produkey,WebBrowserPassView,WirelessKeyView,WirelessKeyView64
mspass,MonitorInfoView,mailpv,iehv,faview,DriveLetterView,7za,myeventviewer,myeventviewer64
*Added BlueScreenView,DiskSmartView
*Replaced cprosess with tasklist(tasklist from XP Pro Will Be run On Xp Home)
*Replaced InstalledCodec,WhatInStartup,DriverView,DriverView64 with Autorunsc
-v1.0 Alpha 8
*Few tweaks (thanx Marten.be2)
*Added Stopwatch (thanx BergerKiller)
*Added Info Hack LOG (thanx Marten.be2 & Wonko)
*Added Registry Backup using "Volume Shadow Service" on a "Live" Windows (Thanks to Wangdera corp.)
*Added Exit Codes when Run from CMD
*Added msvcr100.dll & msvcp100.dll libraries for Registry copy
-v1.0 Alpha 7
*Fixed error on HTML index creation with Operating systems with "" in the name
*Changed the way that the password dump folder gets named, now adds PC name
*Upgraded to MailPassView v1.73
*Upgraded to MessenPass v1.42
*Upgraded to WebBrowserPassView v1.11
*Added MyEventViewer v1.60 & MyEventViewer v1.60 x64 (shows events of last 3 days only)
*Password Encrypted Components.7z (anti-virus can’t read the “components.7z” contents now but can still stop the .exe from running)
*Added Restore Point List (Thanks marten.be2)
*Changed Html index to exclude 64Bit hack lists from index when InfoHack is run on a 32Bit System
-v1.0 Alpha 6
*Fixed Components not extracting to directory with spaces in path (Thanks muggeles)
*Added a few small tweaks (Thanks Wonko)
*Added Windows version detection
*Added Read-only Media check
*Added Support for Windows XP Home Systeminfo
-V1.0 Alpha 5
*Added 7z achiever to compress components
-V1.0 Alpha 4
*Added Detection for 64x Systems
-V1.0 Alpha 3
*Improved Html layout
*Added More Info Hack Components
*Detects old Info Hacks of a UserName and overrides with a new Info Hack
-v1.0 Alpha 2
*Added an Html Index page
*Added a few small tweaks...
-v1.0 Alpha 1
*First Build
Special Thanks to NirSoft, Systernals, & Wangdera corp For Program Components!!
-------------------------------------------------------------------------------------------------------------