UNIX Vs LINUX
UNIX:
Unix is a popular operating system.There are two "main" flavors, BSD, and System V. System V is what AT&T developed in 1969, nurtured and sold to people. BSD is the unix that came from Berkeley University.We people have generally interaction with System V unix.
It is a multi-processing, multi-user, family of operating systems that run on a variety of architechtures. UNIX allows more than one user to access a computer system at the same time.
It is the OS in which kernel interacts directly with the hardware.kernal is consider to be heart of this os.In this Operating system everything is considered as a file,provides greater security.
Ex: posix 
LINUX:
Linux is an Operating system which use unix as its base and gives further more facilities and applications.Linux was first released by its inventor Linus Torvalds in 1991. Combining the Linux kernel with the GNU software forms the basis of the operating system family generally known as 'Linux'.
Merely speeking GUI is made in linux having unix as its core.Differnent organizations used the UNIX kernal and added their own essence to form their own version of linux.
Ex: Redhat, Fedora, Solaris,AIX,Ubuntu,Susee, Mandrake . .
Both UNIX and LINUX are Open source
Definition:
HACKING:A PATH:- DOS ATTACK
Such an attack clogs up so much bandwidth on the target system that it cannot serve even legitimate users.
Working:
ATTACKER-----Infinite Malicious Data-----à VICTIM
Tools:
üPing of Death, SYN Flooding, Teardrop, Smurf, Land [TYPES]
üTrin00, Tribal Flood Network etc [TOOLS]
Steps involved in
DOS Attacks
Ø1.Attacker---------Infinite/ Malicious Data--à Target Network
●
2.Target Network gets choked or cannot handle the malicious data and hence crashes.
●
3.As a result, even legitimate clients/ people cannot connect to the target network.
●
4.This results in loss of revenue, disrupt in services, inconvenience, customer dissatisfaction and many other problems.
PING OF DEATH
Ø
ØThe maximum packet size allowed to be transmitted by TCP\IP on a network is 65 536 bytes.
Ø
ØIn the Ping of Death Attack, a packet having a size greater than this maximum size allowed by TCP\IP, is sent to the target system.
Ø
ØAs soon as the target system receives a packet exceeding the allowable size, then it crashes, reboots or hangs.
Ø
ØThis attack can easily be executed by the ‘ping’ command as follows:
Ø
ping -l 65540 hostname
SMURF ATTACKS
Ø
ØIn SMURF Attacks, a huge number of Ping Requests are sent to the broadcast address of the target network, using Spoofed IP Addresses from within the target network.
Ø
ØDue to infinite loops thus generated and due to the large number of Ping Requests, the target network will crash, restart or hang up.
ØCountermeasure
Filter out all incoming packets which either:
ü Has its source address same as any internal system.
ü Has its target address as the broadcast address. There is NO reason why external systems need to send data to the broadcast address.
LAND ATTACKS
Ø
ØSome implementations of TCP/IP are vulnerable to packets which originate and terminate from the same IP Address.
Ø
ØHence, in a LAND attack, the attacker sends infinite packets to the victim system from the victim system itself (Spoofing!).
Ø
ØThe same source and target address and port number crashes the victim system.
Ø
ØCountermeasure:
Ø
• Simple filtering should solve the problem.
BUSINESS THREATS
•All services unusable.
•
•All users Disconnected.
•
•Loss of revenue.
•
•Deadlines can be missed.
•
•Unnecessary Inefficiency and Downtime.
•
•Share Values go down. Customer Dissatisfaction.
COUNTERMEASURES
§
§Separate or compartmentalize critical services.
§Buy more bandwidth than normally required to count for sudden attacks.
§Filter out USELESS/MALICIOUS traffic as early as possible.
§Disable publicly accessible services.
§Balance traffic load on a set of servers.
§Regular monitoring and working closely with ISP will always help!
§Patch systems regularly.
§IPSec provides proper verification and authentication in the IP protocol.
§Use scanning tools to detect and remove DOS tools.
TYPES OF WINDOWS VIRUS-
Its really a matter of concern that all virus,trojans,worm,malware,spyware .......and many more have been developed for WINDOWS operating System.No threat for unix,or linux and Macintosh.So here have a look of different types of virus...........
AdTool.*
AdvWare.*
AdWare.*------------------large classification
Backdoor.*(Trojan)-----------largely used for hacking purpose
Badjoke.*
BadTrans.worm
B02K.*
Bolanzo
BOrifice
Caw
CIH
Client.*
Constructor.*
CrackTool.HotHook
Damage.small
danton
DDoS
Dialer.*
Downloader.*
fraudTool.*
HackTool.*
Hoax.*
I-Worm.*
PornDialer.*
PSWTool.*
Rootkit.*
Trojan.*
Trojandownloader.*
TrojanDropper.*
TrojanExpl.Agent.bo
TrojanFlood.Ideknet.e
TrojanGameThief.*
TrojanProxy.*
TrojanPSW.*
TrojanSpy.*
TrojanSpy.zboot.*
W32.*- ----------------- most found virus
Worm.*
Worms.AutoRun.ml
YKRat.Backdoor
Renaming The Start Button:
To rename the start button, you will need a hex editor.
My preference is UltraEdit
Copy the \windows\explore.exe file to a new name (e.g. explorer_1.exe)
With the hex editor, open that file and go to offset 412b6
You will see the word start with blanks between each letter
Edit it be any 5 characters or less
Save the file
Boot to DOS
Copy the existing c:\windows\explorer.exe to explorer.org
Copy explorer_1.exe to explorer.exe
You will also need to replace the explorer.exe in the c:\windows\system32\dllcache file as well with the new one.
Note: If the partition is NTFS and you can't access the files from DOS:
Start Regedit
Go to HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon.
Change the value of Shell from Explorer.exe to explorer_1.exe
RESTRICTIONS IN WIN XP
If you want to make restrictions to what users can do or use on their computer without
having to run Poledit, you can edit the Registry. You can add and delete Windows
features in this Key shown below.
Zero is Off and the value 1 is On. Example: to Save Windows settings add or modify
the value name NoSaveSettings to 0, if set to1 Windows will not save settings. And
NoDeletePrinter set to 1 will prevent the user from deleting a printer.
The same key shows up at:
HKEY_USERS\(yourprofilename)\Software\Microsoft\Windows\CurrentVersion\Poli
cies\Explorer so change it there also if you are using different profiles.
1.Open RegEdit
2.Go to HKEY_CURRENT_USER\Software\Microsoft\CurrentVersion\Policies
3.Go to the Explorer Key (Additional keys that can be created under Policies are
System, Explorer, Network and WinOldApp )
4.You can then add DWORD or binary values set to 1 in the appropriate keys for ON
and 0 for off.
NoDeletePrinter - Disables Deletion of Printers
NoAddPrinter - Disables Addition of Printers
NoRun - Disables Run Command
NoSetFolders - Removes Folders from Settings on Start Menu
NoSetTaskbar - Removes Taskbar from Settings on Start Menu
NoFind - Removes the Find Command
NoDrives - Hides Drives in My Computers
NoNetHood - Hides the Network Neighborhood
NoDesktop - Hides all icons on the Desktop
NoClose - Disables Shutdown
NoSaveSettings - Don't save settings on exit
DisableRegistryTools - Disable Registry Editing Tools
NoRecentDocsMenu - Hides the Documents shortcut at the Start button
NoRecentDocsHistory- Clears history of Documents
NoFileMenu _ Hides the Files Menu in Explorer
NoActiveDesktop - No Active Desktop
NoActiveDesktopChanges- No changes allowed
NoInternetIcon - No Internet Explorer Icon on the Desktop
NoFavoritesMenu - Hides the Favorites menu
NoChangeStartMenu _ Disables changes to the Start Menu
NoFolderOptions _ Hides the Folder Options in the Explorer
ClearRecentDocsOnExit - Empty the recent Docs folder on reboot
NoLogoff - Hides the Log Off .... in the Start Menu
NoViewOnDrive – Restrict a drive to open
And here are a few more you can play with
ShowInfoTip
NoTrayContextMenu
NoStartMenuSubFolders
NoWindowsUpdate
NoViewContextMenu
EnforceShellExtensionSecurity
LinkResolveIgnoreLinkInfo
NoDriveTypeAutoRun
NoStartBanner
NoSetActiveDesktop
EditLevel
NoNetConnectDisconnect
RestrictRun - Disables all exe programs except those listed in the RestrictRun subkey
This key has many other available keys, there is one to even hide the taskbar, one to
hide the control panel and more. I'm not telling you how, as someone may want to
play a trick on you. The policies key has a great deal of control over how and what
program can run and how one can access what feature.
In the System key you can enter:
NoDispCPL - Disable Display Control Panel
NoDispBackgroundPage - Hide Background Page
NoDispScrSavPage - Hide Screen Saver Page
NoDispAppearancePage - Hide Appearance Page
NoDispSettingsPage - Hide Settings Page
NoSecCPL - Disable Password Control Panel
NoPwdPage - Hide Password Change Page
NoAdminPage - Hide Remote Administration Page
NoProfilePage - Hide User Profiles Page
NoDevMgrPage - Hide Device Manager Page
NoConfigPage - Hide Hardware Profiles Page
NoFileSysPage - Hide File System Button
NoVirtMemPage - Hide Virtual Memory Button
In the Network key you can enter:
NoNetSetup - Disable the Network Control Panel
NoNetSetupIDPage - Hide Identification Page
NoNetSetupSecurityPage - Hide Access Control Page
NoFileSharingControl - Disable File Sharing Controls
NoPrintSharing - Disable Print Sharing Controls
In the WinOldApp key you can enter:
Disabled - Disable MS-DOS Prompt
NoRealMode - Disables Single-Mode MS-DOS
Hidden Programs In Windows Xp
1- Private Character Editor
This program is for designing icons and Characters(Alphapet)
Click :start
Then :run
type :EUDCEDIT
.................................................................................................................................................
2- iExpress
This Program is for conerting your files to EXCUTABLE files
Click : start
Then : run
type : iexpress
.................................................................................................................................................
3-Disk Cleanup
This program used for cleaning harddisk to offer space
Click : start
Then : run
type : cleanmgr
.................................................................................................................................................
4-Dr Watson
This program Is for repairing problems in Windows
Click : start
Then : run
type : drwtsn32
.................................................................................................................................................
5-Windows Media Player 5.1
Opens the old media player
Click : start
Then : run
type : mplay32
.................................................................................................................................................
Program ............. CODE
__________ __________
Character Map = charmap
DirectX diagnosis = dxdiag
Object Packager = packager
System Monitor = perfmon
Program Manager = progman
Remote Access phone book = rasphone
Registry Editor = regedt32
File siganture verification tool = sigverif
Volume Contro = sndvol32
System Configuration Editor = sysedit
Syskey = syskey
Microsoft Telnet Client = telnet
XP Secrets...
Defrag
Secret - Hidden Command Line Switch
Instructions - Go to "Start", "Run" and Type defrag c: -b to defragment the Boot and Application Prefetch information.
Notes - Windows XP will run this automatically every three days or so, during system idle periods. BootVis will evoke this when you run the "Optimize System" function. There is no need to manually run this unless you wish to immediately optimize a newly installed application's load time.
For Paint
Secret - Image Trails
Instructions - Open an image and hold down Shift then drag the image around to create an image trail.
Secret - 10x Zoom
Instructions - Open an image and select the magnifying glass icon. Left-Click exactly on the line below the 8x.
The above 2 tricks works.. and i have checked...
Free Cell Cheat Code:
Secret - Instant Win
Instructions - Hold down Ctrl + Shift + F10 during game play. Then you will be asked if you want to Abort, Retry or Ignore. Choose Abort, then move any card to instantly win.
Secret - Hidden Game Modes
Instructions - In the "Game" menu choose "Select Game". Enter -1 or -2 to activate the hidden game modes.
Solitaire Cheat Code:
Secret - Instant Win
Instructions - Press Alt + Shift + 2 during game play to instantly win.
Secret - Draw single cards in a Draw Three game
Instructions - Hold down CTRL + ALT + SHIFT while drawing a new card. Instead of drawing three cards you will only draw one. delete
XP HIDDEN SECRATES:
Defrag
Secret - Hidden Command Line Switch
Instructions - Go to "Start", "Run" and Type defrag c: -b to defragment the Boot and Application Prefetch information. Similar to what BootVis invokes.
Paint
Secret - Image Trails
Instructions - Open an image and hold down Shift then drag the image around to create an image trail.
Secret - 10x Zoom
Instructions - Open an image and select the magnifying glass icon. Left-Click exactly on the line below the 8x.
Game Secrets
FreeCell
Secret - Instant Win
Instructions - Hold down Ctrl + Shift + F10 during game play. Then you will be asked if you want to Abort, Retry or Ignore. Choose Abort, then move any card to instantly win.
Secret - Hidden Game Modes
Instructions - In the "Game" menu choose "Select Game". Enter -1 or -2 to activate the hidden game modes.
Minesweeper
Secret - Reveal Mines
Instructions - Minimize or close all running applications. Launch Minesweeper, then type xyzzy. Next hold down either shift key for one second. Now when you move the mouse cursor over a Minesweeper square you will see a tiny white pixel in the top left corner of your desktop screen. This pixel will change to black when your mouse moves over a mine. You may need to change you desktop background to a solid color other then white or black to see the pixel.
Pinball
Secret - Extra Balls
Instructions - Type 1max at the start of a new ball to get extra balls.
Secret - Gravity Well
Instructions - Type gmax at the start of a new game to activate the Gravity Well.
Secret - Instant Promotion
Instructions - Type rmax at the start of a new game to go up in ranks.
Secret - Skill Shot
Instructions - Launch the ball partially up the chute past the third yellow light bar so it falls back down to get 75,000 points. There are six yellow light bars that are worth a varying amount of points:
First: 15,000 points
Second: 30,000 points
Third: 75,000 points
Fourth: 30,000 points
Fifth: 15,000 points
Sixth: 7,500 points
Secret - Test Mode
Instructions - Type hidden test at the start of a new ball to activate Test Mode. No notification will be given that this is activated but you can now left-click the mouse button and drag the ball around.
Secret - Unlimited Balls
Instructions - Type bmax at the start of a new ball. No notification will be given that this is activated but when a ball is lost a new ball will appear from the yellow wormhole indefinitely. Once this is activated you will be unable to activate other secrets without restarting the game.
Solitaire
Secret - Instant Win
Instructions - Press Alt + Shift + 2 during game play to instantly win.
Secret - Draw single cards in a Draw Three game
Instructions - Hold down CTRL + ALT + SHIFT while drawing a new card. Instead of drawing three cards you will only draw one.
OS Secrets
Add/Remove
Secret - Hidden Uninstall Options
Instructions - Warning: Proceed at your own risk! Browse to C:\Windows\inf\ and make a backup copy of sysoc.inf. Then open the original file C:\Windows\inf\sysoc.inf in notepad. Go to "Edit" and select "Replace". In "Find what:" type ,hide and in "Replace with:" type , then select "Replace All", save and close the file. Go to the control panel, "Add/Remove", select "Add/Remove Windows Components". You will now see many more Windows components to uninstall. Do not remove anything with no label or that you do not recognize or fully understand what it does. Doing so can break certain functionality in Windows.
Control Panel
Secret - Hidden Control Panel Extensions
Instructions - Download and install TweakUI, launch, go to "Control Panel" and check any item not selected, then "Apply" and "OK". You will now see the hidden control panel extensions.
Device Manager
Secret - Hidden Devices
Instructions - Go to the control panel, "System" icon, "Hardware" tab and select "Device Manager". Select View and Show hidden devices.
Music
Secret - Music from the Installer
Instructions - Browse to C:\Windows\system32\oobe\images\title.wma and play.
Shutdown
Secret - Display Hibernate Option on the Shut Down dialog
Instructions - Go to "Start", "Turn Off Computer..." and press either Shift key to change the "Stand By" button to "Hibernate".
Support Tools
Secret - Over 100 Windows XP Support Utilities are on the install CD
Instructions for Pre-SP2 users - If you do not have SP2 installed, put the original Windows XP CD in the CD-ROM Drive, run the D:\Support\Tools\setup.exe
Books On Hacking
Code:
17. [ FLASH ] rues on IBM AIX
http://video.antichat.net/file17.html
Code:
18. [ FLASH ] sequential of rues ispravlenym eksploytom
http://video.antichat.net/file18.html
Code:
19. Is utilized short hyphen. We make no invisible.
http://video.antichat.net/file19.html
Code:
20. Vulnerability http://www.chatmoscow.ru
http://video.antichat.net/file20.html
Code:
21. IRC. Mockery above Slader-Non
http://video.antichat.net/file21.html
Code:
22. Vulnerabilities SetccMS (XSS)
http://video.antichat.net/file22.html
Code:
23. Installation Apache, Php, Perl, Mysql to localhost
http://video.antichat.net/file23.html
Code:
24. Php- injection in the script of news CuteNews v1.3.1
http://video.antichat.net/file24.html
Code:
25. Method of the interpretation of khesha IPB 2..x and breaking the forum
http://video.antichat.net/file25.html
Code:
26. Breaking Invision Power Board sploytom
http://video.antichat.net/file26.html
Code:
27. New vulnerability PunBB
http://video.antichat.net/file27.html
Code:
28. cuz uze google'n'yandex before askin ' stupid questions %)
http://video.antichat.net/file28.html
Code:
29. WWWThreads Bug
http://video.antichat.net/file29.html
Code:
30. Breaking phpBB 2.0.15 new sploytom
http://video.antichat.net/file30.html
Code:
31. Active XSS in LiveJournal.com
http://video.antichat.net/file31.html
Code:
32. Installation of proxy to unix the machine
http://video.antichat.net/file32.html
Code:
33. XSS in phpBB with use phpNuke
http://video.antichat.net/file33.html
Code:
34. Idea of defeysa of the site through the search demands!
http://video.antichat.net/file34.html
Code:
35. Defeys of the site through the vulnerability in PunBB (php include)
http://video.antichat.net/file35.html
Code:
36. Breaking OF LARGE BROTHER - tntbrat.ru. SQL - injection.
http://video.antichat.net/file36.html
Code:
37. Breaking hack-info.net through PHP injection and GIF the file
http://video.antichat.net/file37.html
Code:
38. Breaking of the mailbox through the holes on the server
http://video.antichat.net/file38.html
Code:
39. SQL- Eng. in IPB 1. *, 2. *. Obtaining khesha of admina
http://video.antichat.net/file39.html
Code:
40. History of the breaking of one site
http://video.antichat.net/file40.html
Code:
41. XSS in MercuryBoard. New.
http://video.antichat.net/file41.html
Code:
42. Vulnerability IkonBoard. Reading it is file
http://video.antichat.net/file42.html
Code:
43. Error of khostera in tuning of system.
http://video.antichat.net/file43.html
Code:
44. Obtaining administrative privelegiy in paBugs
http://video.antichat.net/file44.html
Code:
45. Vulnerability phpBB in module downloads.php
http://video.antichat.net/file45.html
Code:
46. XSS in many search with- swing. It is in detail.
http://video.antichat.net/file46.html
Code:
47. Breaking phpBB new sploytom
http://video.antichat.net/file47.html
Code:
48. XSS in PunBB 1..x
http://video.antichat.net/file48.html
Code:
49. XSS in MercuryBoard 1..x
http://video.antichat.net/file49.html
Code:
50. Vulnerability in SR Guestbook
http://video.antichat.net/file50.html
Code:
51. Breaking of box on e-mail.ru (part of 2)
http://video.antichat.net/file51.html
Code:
62. Vulnerability in phpBB 2.0.12 (KEZ)
http://video.antichat.net/file62.html
Code:
63. Vulnerability in phpBB 2.0.12 (max_.pain89)
http://video.antichat.net/file63.html
Code:
64. We obtain seriynik for progi through ArtMoney
http://video.antichat.net/file64.html
Code:
65. We read strange letters on mail.ru through the sessions
http://video.antichat.net/file65.html
Code:
66. SQL injection in LedForums
http://video.antichat.net/file66.html
Code:
67. Example Post- Flood through DenyoLaunch III
http://video.antichat.net/file67.html
Code:
68. SQL injection in search.php in phpBB 2.0.6
http://video.antichat.net/file68.html
Code:
69. SQL injection in MercuryBoard 1.1.0
http://video.antichat.net/file69.html
Code:
70. Study of protection WinRAR 3..0b =)
http://video.antichat.net/file70.html
Code:
71. Second method of the theft of nikov in the chat room
http://video.antichat.net/file71.html
Code:
72. CHAT ROOM. Seizure of nikov.
http://video.antichat.net/file72.html
Code:
73. Presence s/n for WinZIP 8..0b
http://video.antichat.net/file73.html
Code:
74. We make patch for BlueFace (CodeFusion)
http://video.antichat.net/file74.html
Code:
75. We make patch for WinZIP 8..0b (CodeFusion)
http://video.antichat.net/file75.html
Code:
76. We penetrate in strange comp. through Remote Administrator
http://video.antichat.net/file76.html
Code:
77. Pincha no longer catches the antivirus
http://video.antichat.net/file77.html
Code:
78. Survey of bagov in cgi scripts.
http://video.antichat.net/file78.html
Code:
79. Idea of brutoforsa amperesecond through HTTP demands.
http://video.antichat.net/file79.html
Code:
80. As to drive away as'ku. One of the methods.
http://video.antichat.net/file80.html
Code:
81. By vlom with the aid of rAdmin Of brutforsera!
http://video.antichat.net/file81.html
Code:
82. one additional method to skachat' paid mp3 c of site mp3search.ru.
http://video.antichat.net/file82.html
Code:
83. Defeys on the rapid. Bagi on the server. Admin did not advance right on the folders.
http://video.antichat.net/file83.html
Code:
84. Vulnerability of site on cursor runcms
http://video.antichat.net/file84.html
Code:
85. Story about troyane pinch 1.0
http://video.antichat.net/file85.html
Code:
86. The new vulnerability Mybb. XSS works in all browsers.
http://video.antichat.net/file86.html
Code:
87. Breaking IcrediBB (SQL-injection)
http://video.antichat.net/file87.html
Code:
88. Baga in the the guest MPM Guesbook Pro
http://video.antichat.net/file88.html
Code:
89. As to rock mp3 for free from site mp3search.ru
http://video.antichat.net/file89.html
Code:
90. Sql-injection on cursor Php-Nuke
http://video.antichat.net/file90.html
Code:
91. SQL-injection in forum Zorum
http://video.antichat.net/file91.html
Code:
92. XSS and SQL-injection MyBB the forum
http://video.antichat.net/file92.html
Code:
93. Seizure Flesch chat room (part of 2)
http://video.antichat.net/file93.html
Code:
94. Seizure Flesch chat room (part 1)
http://video.antichat.net/file94.html
Code:
95. XSS in the forums in sparenykh BB tags VBulletin 3.0. *
http://video.antichat.net/file95.html
Code:
96. As to become adminom of forum ITA V1.49.
http://video.antichat.net/file96.html
Code:
97. Vulnerabilities in Zeroboard.
http://video.antichat.net/file97.html
Code:
98. Video about the the new XSS in the forums in sparenykh BB the tags
http://video.antichat.net/file98.html
Code:
99. UNION in SQL demands. Example of work.
http://video.antichat.net/file99.html
Code:
100. Vozmozhye vulnerabilities in scripts Manlix.
http://video.antichat.net/file100.html
Code:
101. As to become adminom on the site made in Flat-nuke.
http://video.antichat.net/file101.html
Code:
102. Error of adminov with installation Guestbook v1.1. Defeys on the rapid.
http://video.antichat.net/file102.html
Code:
103. Defeys for the small. Defeys on the rapid.
http://video.antichat.net/file103.html
Code:
104. Again PHPBB. if the provider of dull.
http://video.antichat.net/file104.html
Code:
105. XSS vulnerability in forum forum.antichat.ru (vbulletin 3.0.3)
http://video.antichat.net/file105.html
Code:
106. To the article about mail.ru. We steal Cooks in the chat room. More detailed video.
http://video.antichat.net/file106.html
Code:
107. To the article about mail.ru. We steal Cooks in the chat room. We become moderators chat.mail.ru.
http://video.antichat.net/file107.html
Code:
108. php inklyuding KorWeblog
http://video.antichat.net/file108.html
Code:
109. Breaking e-mail'ov 2. Sorting of passwords. Is utilized Brutus (under Windows).
http://video.antichat.net/file109.html
Code:
110. Breaking e-mail'ov. Is utilized THC - Hydra.
http://video.antichat.net/file110.html
Code:
111. Vulnerability Ultimate PHP Board (UPB) v1.9
http://video.antichat.net/file111.html
Code:
112. Forum Russian Board Or as it is not necessary to write authorization system. (found Max_.pain)
http://video.antichat.net/file112.html
Code:
113. As to obtain strange letters on ramblere
http://video.antichat.net/file113.html
Code:
114. LiteForum 2 (SQL-injection)
http://video.antichat.net/file114.html
Code:
115. We look passwords on forum Powered by Web Wiz Forums.
http://video.antichat.net/file115.html
Code:
116. Overcrowding of buffer. Theory.
http://video.antichat.net/file116.html
Code:
117. We steal UIN, having a base of the users
http://video.antichat.net/file117.html
Code:
118. As to steal the Internet on 445 port
http://video.antichat.net/file118.html
Code:
119. Baga ConfYmi 2.1
http://video.antichat.net/file119.html
Code:
120. We obtain root, I use sploita.
http://video.antichat.net/file120.html
Code:
121. Practitioner Flood
http://video.antichat.net/file121.html
Cool Trick
If you are very much conscious about your space on hard drive, then a good idea would be uninstalling some unwanted application of windows such, which are never used, like Windows Messenger, but can’t find them on Add and Remove list, then try this one open notepad and open the file located in SystemRoot ( generally c:/> ) /windows/inf/sysoc.inf, once you have open the file then find the word “hide” in the file and simply delete it.
Now go to Add and Remove programs, Find the application, and uninstall it. Alternatively you can use this one to uninstall window messenger, click on run (start>run) now put this line and hit enter to uninstall windows messenger:
RUNDLL32 ADVPACK.DLL,LaunchINFSection %windir%\INF\MSMSGS.INF,BLC.Remove
Similarly to install back windows messenger just run this line:
RUNDLL32 ADVPACK.DLL,LaunchINFSection %windir%\INF\MSMSGS.INF,BLC.msmsgr
To allow Windows XP to close non-responsive applications automatically upon shutdown:
In the above method we decrease the time of shut down of applications,
but by this tweak, Windows XP can be set to close crashed applications automatically. While this does not technically speed up the shut down process, it does streamline it, and ensure that the user will not give the shutdown command then get up and leave, only to find the PC still powered on because Windows never received input on what to do with a hung application.
Open REGEDIT and navigate to ‘HKEY_CURRENT_USER\Control Panel\Desktop’
Highlight the value ‘AutoEndTasks.’
Change the value to ‘1'
XP will now be able to close hung applications without user input during the shutdown process.
Uninstalling Windows from Command Prompt
One option included in Windows XP is the ability to uninstall XP if you performed an upgrade from Windows 98, 98SE, or Windows Me. The standard method of removing XP is achieved by booting into XP normally and uses the Add/Remove Programs tool in Control Panel. If you are unable to start XP normally, the second option is to load XP in Safe Mode then use the same tool. If you are unable to boot normally or boot into Safe Mode, XP can be removed by uninstalling from a Command Prompt. The procedure is as follows:
Important Note: This procedure is available only if a successful image of the previous operating system was created during the XP upgrade.
Start the computer to Safe Mode with Command Prompt.
At the command prompt, type cd\, and then press ENTER
Type cd\windows\system32, and then press ENTER.
Type osuninst.exe, and then press ENTER.
On screen instructions will guide you through the uninstall process to revert to the previous operating system.
This procedure can only be performed by users logged on as Administrator or a user with administrative rights.
Rename your processor
1) open regedit
2) goto HKEY_LOCAL_MACHINE->HARDWARE->DESCRIPTION->SYSTEM - > CENTRALPRCESSOR
3)CHANGE PROCESSORNAMESTRING
-------------------------------------------
Correcting System Hang at Startup
If your system hangs about 2 or 3 minutes at startup, where you can't access the Start
button or the Taskbar, it may be due to one specific service (Background Intelligent
Transfer) running in the background. Microsoft put out a patch for this but it didn't
work for me. Here's what you do:
· Click on Start/Run, type 'msconfig', then click 'OK'.
· Go to the 'Services' tab, find the 'Background Intelligent Transfer' service.
· Disable it, apply the changes & reboot.
(Note: Windows updates will not work correctly if this service is disabled)
MAKING WINDOWS XP GENUINE THE EASY WAY
download jellybean keyfinder from this website
http://www.magicaljellybean.com/keyfinder.shtml
Now open keyfinder.exe
Click on options and click "change windows key"
Now enter this key and you're done.
*****************************
V2C47-MK7JD-3R89F-D2KXW-VPK3J
*****************************
P.S: this works on windows xp sp2 only......
ppl u can try this out...
this might sound silly but it works perfectly...
TRY INSTALLING IE7 OR MEDIA PLAYER11
How to Speedup your PC by disabling various Services
Windows XP has a lot of services, some of which are not needed for normal use. To speed up and increase your systems security, disable these services.
To enter service manager-
Go to Start > Run and type services.msc and hit enter
Scroll down and highlight the service you want to adjust, right-click on it and choose Properties.
Now click the stop button and select Disable or Manual in the Startup Type scroll bar.
:idea: A useful tip is that instead of disabling something you are unsure of, set it to manual. When you restart your machine if that service has started then it is probably required by one of your components or software products. If it is still OFF then consider disabling it for greater protection.
Here’s the list of useless services:
Alerter - notifies selected users and computers of administrative alerts. If this service is turned off, applications that use the NetAlertRaise or NetAlertRaiseEx APIs will be unable to notify a user or computer (by a Message Box from the Messenger service) that the administrative alert took place.
Recommendation: Disabled.
Application Layer Gateway Service - Provides support for 3rd party plug-ins for Internet Connection Sharing/Internet Connection Firewall. Required if using Internet Connection Sharing/Internet Connection Firewall to connect to the internet.
Recommendation: Automatic if using ICS, Disabled if not.
Application Management - Used for Assign, Publish and Remove software services. If you can not modify your software installation of certain applications, put this service in to Automatic or Manual.
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Make Your Menus Load Faster
1. Go to Start then Run
2. Type ‘Regedit’ then click ‘Ok’
3. Find “HKEY_CURRENT_USER\Control Panel\Desktop\”
4. Select “MenuShowDelay”
5. Right click and select “Modify’
6. Reduce the number to around “100 ’
This is the delay time before a menu is opened. You can set it to “0’ but it can make windows really hard to use as menus will open if you just look at them - well move your mouse over them anyway.
Do anyone know where the password file is stored in pc(user account's) ?
Here is the answer for it
Yes password file was stored in windows system32 config and sam file
named as SAM
location : C:\windows\system32\config\SAM
we can change password by entering into the location given above.
limitation:
you cant access properly if you have not the administrator rights even you can do the changes if you are added in the power user list other wise you cant do anything with the limited account.
But you can do using cmd as given below
Go to Dos type net user administrator *
press enter now type your own password
So now you have hacked the administrator
Hack The time on the windows xp taskbar:
To hack the Time on the taskbar let's use the registry
Start -----> Run and type "regedit"
once on the regedit, we will navigate through HKEY_CURRENT_USER\Control Panel\International and select the"International folder"On the right panel we will change the value of s1159 and s2359 by MORNING and EVENING
To do that let's double click on s1159 or right click and click on modify and change AM by MORNING do the same thing to s2359
close all and that it is
Free online camera listing
I have done a lil job to find many free online cam link
but for a better view download and install:
AXIS Camera Control (ActiveX component) makes it possible to view Motion JPEG video streams from an Axis Network Video product directly in Microsoft Development Tools and Microsoft Internet Explorer. And download and install also: AXIS Media Control is the recommended method for viewing video images in Microsoft Internet Explorer. Installs automatically on first use, after which it can be configured by opening the AMC Control Panel applet from the Windows Control Panel.
http://212.181.20.125/view/view.shtm
http://63.243.46.98:8082/view/view.shtml
http://195.196.35.90/view/view.shtm
http://128.128.32.108/view/view.shtml
http://microcam.eecs.berkeley.edu:8080/view/view.shtml?videos=
http://131.204.75.149/view/view.shtml
http://66.14.118.60/view/view.shtml
http://webcam03.deg.net/view/view.shtml?videos=
http://vocafe.aces.utexas.edu/view/view.shtml
http://lfcam1.lf.psu.edu/view/view.shtml
http://ecam1.erskine.edu/view/view.shtml
http://82.188.208.242/view/view.shtml
http://cam1.asa.utk.edu/view/view.shtm
http://cam1.asa.utk.edu/view/view.shtml
http://130.111.231.69/view/view.shtml
http://cam002.ethz.ch/view/view.shtml?videos=&id=12
http://argus.sunderland.ac.uk/view/view.shtml
http://166.66.36.136/view/view.shtml
http://webcam1.is.uregina.ca/view/view.shtml
http://tarot4.obs-azur.fr/view/view.shtml?imagePath=/mjpg/video.mjpg&size=1
http://216.66.37.162:8000/view/view.shtml?videos=&id=83
http://192.121.228.226/view/view.shtml?videos=&id=226
http://webcam.modeemi.fi/view/view.shtml
http://circlecam.erskine.edu/view/view.shtml
http://cbawebcam.cba.nau.edu/view/view.shtml
http://taylorcam.caed.kent.edu/view/view.shtm
http://keursview.st.hhs.nl/view/view.shtml
http://ksunlivecam.sonoma.edu/view/view.shtml?videos=
http://cams.salden.nl:4445/view/view.shtml?videos=
http://213.3.2.205/view/view.shtml?videos=one
http://217.128.151.33/view/view.shtml?imagePath=
http://213.179.229.20/view/view.shtml
http://webcam.etvj.ch/view/view.shtml?videos=
http://130.111.224.27/view/view.shtml?videos=&id=2494
An Axis network camera can be described as a camera and computer combined in one intelligent unit. It captures and sends live video directly over an IP network such as a LAN, intranet or the Internet and enables users to view and/or manage the camera using a standard Web browser or video management software on any local or remote computer on a network. It allows authorized viewers from different locations to simultaneously access images from the same network camera.
You can view many of these network cam for free by using google by using these queries:
/view/view.shtml axis
"Live view - / - AXIS"
indexFrame.html axis
"Live web imaging unleashed"
(for a better view download and install: AXIS Camera Control (ActiveX component) makes it possible to view Motion JPEG video streams from an Axis Network Video product directly in Microsoft Development Tools and Microsoft Internet Explorer. And download and install also: AXIS Media Control is the recommended method for viewing video images in Microsoft Internet Explorer. Installs automatically on first use, after which it can be configured by opening the AMC Control Panel applet from the Windows Control Panel.)
Deciphering password from WS_FTP.ini file:
WS_FTP is a line of file transfer protocol client software produced by Ipswitch, Inc. for the Windows operating systems. WS_FTP stands for WinSock File Transfer Protocol. The graphical user interface of WS_FTP has two-panes: the left pane is the local computer that the software is installed on and the right pane is the server being connected to. Recent versions of WS_FTP include the ability to customize the panes and to connect to multiple servers at the same time.
The line includes a "Home" version (which lacks security features such as SSH and https support), a more powerful "Professional" version (also known as WS_FTP Pro), and an FTP server. WS_FTP Home used to be called WS_FTP LE, which was a Limited Edition version whose license permitted used by educational, government and non-profit home usrs (version 5.x and earlier). With version 6.0, WS_FTP LE's license was revised to allow for educational use only.
An initialization file, or INI file, is a configuration file that contains configuration data (i.e. idiom terms) for Microsoft Windows based applications.
Starting with Windows 95, the INI file format was superseded but not entirely replaced by a registry database in Microsoft operating systems. Recently, XML became a popular choice for encoding configuration, as well as other kinds of data for many applications, but INI format is still in use.
Although made popular by Windows, INI files can be used on any system thanks to their flexibility. They allow a program to store configuration data, which can then be easily parsed and changed.
and find the password
The password must be in that way:
PWD=V29BEA5A170EE544D8F2D7CEA802A182BA76A387266A14799AEA53D73B0AE 
This is only for education purpose.
So who ever try this is at his risk.
I am not sure that this will work 100 %.
But yes will work almost 70 percent of the times.
But before that you need to know some few things of yahoo chat protocol
leave a comment here after u see the post lemme know if it does works or not or u having a problem post here.
Following are the features : -
1) When we chat on yahoo every thing goes through the server.Only when we chat thats messages.
2) When we send files yahoo has 2 options
a) Either it uploads the file and then the other client has to down load it.
Either it connects to the client directly and gets the files
3) When we use video or audio:-
a) It either goes thru the server
Or it has client to client connection
And when we have client to client connection the opponents IP is revealed.On the 5051 port.So how do we exploit the Chat user when he gets a direct connection. And how do we go about it.Remember i am here to hack a system with out using a TOOL only by simple net commands and yahoo chat techniques.Thats what makes a difference between a real hacker and new bies.
So lets analyse
1) Its impossible to get a Attackers IP address when you only chat.
2) There are 50 % chances of getting a IP address when you send files
3) Again 50 % chances of getting IP when you use video or audio.
So why to wait lets exploit those 50 % chances .
I'll explain only for files here which lies same for Video or audio
1) Go to dos
type ->
netstat -n 3
You will get the following output.Just do not care and be cool
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
Just i will explain what the out put is in general.In left hand side is your IP address.And in right hand side is the IP address of the foreign machine.And the port to which is connected.Ok now so what next ->
2) Try sending a file to the Target .
if the files comes from server.Thats the file is uploaded leave itYou will not get the ip.But if a direct connection is established
HMMMM then the first attacker first phase is over
This is the output in your netstat.The 5101 number port is where the Attacker is connected.
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
TCP 194.30.209.15:5101 194.30.209.14:3290 ESTABLISHED
3) so what next???
Hmmm........ Ok so make a DOS attack now
Go to dos prompt and
Just do
nbtstat -A Attackers IPaddress.Can happen that if system is not protected then you can see the whole network.
C:\>nbtstat -A 194.30.209.14
Local Area Connection:
Node IpAddress: [194.30.209.15] Scope Id: []
NetBIOS Remote Machine Name Table
Name Type Status
---------------------------------------------
EDP12 <00> UNIQUE Registered
XYZ <00> GROUP Registered
XYZ <20> UNIQUE Registered
XYZCOMP1 <1E> GROUP Registered
MAC Address = 00-C0-W0-D5-EF-9A
Ok so you will ask now what next???
No you find what you can do with this network than me explaining everything.
so post ur comments and lemme know....
So the conclusion is never exchange files , video or audio till you know that the user with whom you are chatting is not going to harm you.
How to copy a protected movie DVD:
Recently released DVDs are now very often equipped with stronger copy protections - such as ARccOS™ and RipGuard DVD. Programs like DVD Shrink or DVD Decrypter cannot handle these types of discs.With this guide, we will see a simple method to bypass these protections.
These programs needs to be installed on your computer:
-RipIt4Me
-DVD Decrypter
-FixVTS
-DVD Shrink
How to:
Extract and run Ripit4Me.From the main screen select "wizard mode". 
You will see a new screen.Select "Rip full DVD" and your destination and click on next
In step 2 select "Create PSL" and then "Rip DVD". 
Press ok in window and the DVD decrypter will load. Press decrypt to start ripping
When finish, you will see a new screen.From here, you can select the cleanup method. After selecting, press "Do it!". 
When finish you can select to open the DVD files with DVD Shrink to test if working.IF DVD Shrink fails to open the movie (the known error screens), select "Process with FixVTS". The FixVTS will starting the cleaning phase.When finish, open with DVD Shrink the movie
How to Clone a Hard Drive without having to buy extra software
Did know that you could clone your current Hard Drive without having to by extra software? Maybe you didn't know that all that you needed, was already set up on your current system?
How to
Make sure that you have a Master and a Slave setup on your system. The Slave drive, in this case, is where all the data on the Master is going to go to.
First: Perform a Scandisk your Master drive and follow that with a thorough Defrag. If you have an Antivirus program, do a thorough sweep with the AV first, then do the Scandisk, followed by the Defrag.
Second: Do the same thing to the target drive, as you did the Master: Scandisk then a thorough Defrag.
Third: Right-click on the Target drive and click on Format. When the box comes up, click your mouse onto the "Full" button.
Fourth: After Formatting the Target drive, run a Scandisk again and click on the button that says "Autofix Errors".
Fifth: In this final part, you might want to cut-and-paste to code in, unless you are sure that you can do it without making any mistakes:
Click on the Start => Run... button, then place the following into the Runbox:
XCOPY C:*.*D: /c/h/e/k/r and then press the "Enter" button.
If you receive an error message, then remove the space from between XCOPY and C:
Anything that should happen to come up in the DOS box, just click "Y" for "Yes". When its all finished, pull the original Master from the system, designate the Slave as the Master (change your jumpers), then check your new Master out.
Please note:This trick has been tested (and worked) on all systems except for Windows 2000, so you really shouldn't have any problems.
Installing and booting Windows XP from USB drive:
Needed
# A USB2-compliant Hard disk drive (or a big USB2 stick).
# An original Windows XP CD
# WinISO or UltraISO. In this guide, i use the UltraISO
# The Microsoft CAB SDK
# A CD-burning software that can handle ISO files.I burn the image with Nero.
# Your computer must support booting from USB (view below)
To see if your PC supports booting from USB, connect your USB drive to your computer, directly, without a Hub. Then, shut down your computer, disconnect any other hard disk drives from it, and insert your Windows XP CD into the drive. Start the installation, and proceed to the section where you are allowed to pick a hard drive. If it goes beyond the partition selection, your drive is already fine for booting Windows XP. If not (seems to be the cases with many of the Freecom USB HDDs for example), you will get an error like "Windows is unable to find your drive, partition, data etc bla".
If you want to install XP to USB Stick, you can't do anything. But if you want to install XP to a USB HDD, this is usually not a big problem. All you need to do is "properly" format the drive. Reboot into your normal Windows, and get this HP tool , and use it to format your HDD completely and choose NTFS format.
How to
Open UltraISO, and select Tools -> Make CD/DVD Image... , and save your CD image.
After the CD dump is done, close and reopen UltraIUSO. Then, open the ISO file you just created using
File -> Open. Now, click the I386 folder, and select the following files (Ctrl key to multi-select)
# TXTSETUP.SIF
# DOSNET.INF
# USB.IN_
# USBPORT.IN_
# USBSTOR.IN_
Select Actions -> Extract and put the resulting files into some folder to work on them
Use the Cab SDK to extract the contents of the .IN_ files. Go to Start -> Run and type cmd.
No navigate to the folder you have the files and type these commands:
cabarc x USB.IN_
cabarc x USBPORT.IN_
cabarc x USBSTOR.IN_
You should end up with three new files in the folder, called:
# usb.inf
# usbport.inf
# usbstor.inf
Now delete the .IN_ files. No you must open the inf files with a text editor to modify them.
File TXTSETUP.SIF
Move the following entries from [InputDevicesSupport.Load] to the [BootBusExtenders.Load] section , as shown here
pci = pci.sys
acpi = acpi.sys
isapnp = isapnp.sys
acpiec = acpiec.sys
ohci1394 = ohci1394.sys
usbehci = usbehci.sys
usbohci = usbohci.sys
usbuhci = usbuhci.sys
usbhub = usbhub.sys
usbstor = usbstor.sys
[InputDevicesSupport.Load]
usbehci = usbehci.sys
usbohci = usbohci.sys
usbuhci = usbuhci.sys
usbhub = usbhub.sys
usbccgp = usbccgp.sys
hidusb = hidusb.sys
serial = serial.sys
serenum = serenum.sys
usbstor = usbstor.sys
... now the same for [BootBusExtenders] and [InputDevicesSupport]
[BootBusExtenders]
pci = "PCI-Bustreiber",files.pci,pci
acpi = "ACPI Plug & Play-Bustreiber",files.acpi,acpi
isapnp = "ISA Plug & Play-Bustreiber",files.isapnp,isapnp
acpiec = "Integrierter ACPI-Controllertreiber",files.none,acpiec
ohci1394 = "IEEE-1394-Bus-OHCI-konformer Anschlusstreiber",files.ohci1394,ohci1394
usbehci = "Erweiterter Hostcontroller",files.usbehci,usbehci
usbohci = "Open Hostcontroller",files.usbohci,usbohci
usbuhci = "Universeller Hostcontroller",files.usbuhci,usbuhci
usbhub = "Standard-USB-Hubtreiber",files.usbhub,usbhub
usbstor = "USB-Speicherklassentreiber",files.usbstor,usbstor
[InputDevicesSupport]
usbehci = "Erweiterter Hostcontroller",files.usbehci,usbehci
usbohci = "Open Hostcontroller",files.usbohci,usbohci
usbuhci = "Universeller Hostcontroller",files.usbuhci,usbuhci
usbhub = "Standard-USB-Hubtreiber",files.usbhub,usbhub
hidusb = "HID-Parser",files.hidusb,hidusb
serial = "Treiber fοΏ r seriellen Anschluss",files.none,serial
serenum = "Enumerator fοΏ r seriellen Anschluss",files.none,serenum
usbstor = "USB-Speicherklassentreiber",files.usbstor,usbstor
usbccgp = "USB Generic Parent Driver",files.usbccgp,usbccgp
No insert the following in the [HiveInfs.Fresh] section:
[HiveInfs.Fresh]
AddReg = hivedef.inf,AddReg
AddReg = hivesys.inf,AddReg
AddReg = hivesft.inf,AddReg
AddReg = hivecls.inf,AddReg
AddReg = hiveusd.inf,AddReg
AddReg = dmreg.inf,DM.AddReg
AddReg = usbboot.inf,usbservices
and also in [SourceDisksFiles]
[SourceDisksFiles]
usbboot.inf = 1,,,,,,_x,3,,3
bootvid.dll = 1,,,,,,3_,2,0,0,,1,2
kdcom.dll = 1,,,,,,3_,2,0,0,,1,2
Save and close TXTSETUP.SIF.
File DOSNET.INF
Open DOSNET.INF , and change the second [Files] section to look like this:
[Files]
d1,usbboot.inf
d1,_default.pif
d1,12520437.cpx
d1,12520850.cpx
File usb.inf
Change the bolded lines in the [StandardHub.AddService] and [CommonClassParent.AddService] sections:
[StandardHub.AddService]
DisplayName = %StandardHub.SvcDesc%
ServiceType = 1 ; SERVICE_KERNEL_DRIVER
StartType = 0 ; SERVICE_DEMAND_START
ErrorControl = 1 ; SERVICE_ERROR_NORMAL
ServiceBinary = %12%\usbhub.sys
LoadOrderGroup = Boot Bus Extender
[CommonClassParent.AddService]
DisplayName = %GenericParent.SvcDesc%
ServiceType = 1 ; SERVICE_KERNEL_DRIVER
StartType = 0 ; SERVICE_DEMAND_START
ErrorControl = 1 ; SERVICE_ERROR_NORMAL
ServiceBinary = %12%\usbccgp.sys
LoadOrderGroup = Boot Bus Extender
File usbport.inf
Change the bolded lines in the [EHCI.AddService], [OHCI.AddService] , [UHCI.AddService] and [ROOTHUB.AddService] sections:
[EHCI.AddService]
DisplayName = %EHCIMP.SvcDesc%
ServiceType = 1 ; SERVICE_KERNEL_DRIVER
StartType = 0 ; SERVICE_DEMAND_START
ErrorControl = 1 ; SERVICE_ERROR_NORMAL
ServiceBinary = %12%\usbehci.sys
LoadOrderGroup = Boot Bus Extender
[OHCI.AddService]
DisplayName = %OHCIMP.SvcDesc%
ServiceType = 1 ; SERVICE_KERNEL_DRIVER
StartType = 0 ; SERVICE_DEMAND_START
ErrorControl = 1 ; SERVICE_ERROR_NORMAL
ServiceBinary = %12%\usbohci.sys
LoadOrderGroup = Boot Bus Extender
[UHCI.AddService]
DisplayName = %UHCIMP.SvcDesc%
ServiceType = 1 ; SERVICE_KERNEL_DRIVER
StartType = 0 ; SERVICE_DEMAND_START
ErrorControl = 1 ; SERVICE_ERROR_NORMAL
ServiceBinary = %12%\usbuhci.sys
LoadOrderGroup = Boot Bus Extender
[ROOTHUB.AddService]
DisplayName = %ROOTHUB.SvcDesc%
ServiceType = 1 ; SERVICE_KERNEL_DRIVER
StartType = 0 ; SERVICE_DEMAND_START
ErrorControl = 1 ; SERVICE_ERROR_NORMAL
ServiceBinary = %12%\usbhub.sys
LoadOrderGroup = Boot Bus Extender
File usbstor.inf
Change / Add the bolded lines in the [USBSTOR.AddService] section
[USBSTOR.AddService]
DisplayName = %USBSTOR.SvcDesc%
ServiceType = 1
StartType = 0
Tag = 3
ErrorControl = 1
ServiceBinary = %12%\USBSTOR.SYS
LoadOrderGroup = Boot Bus Extender
File: USBBOOT.INF
Create a new file called USBBOOT.INF in the same directory as your other changed files, and put the following content into it:
[usbservices]
HKLM,"SYSTEM\CurrentControlSet\Services\USBSTOR","DisplayName",0x00000000,"USB Mass Storage Driver"
HKLM,"SYSTEM\CurrentControlSet\Services\USBSTOR","ErrorControl",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\USBSTOR","Group",0x00000000,"System Reserved"
HKLM,"SYSTEM\CurrentControlSet\Services\USBSTOR","ImagePath",0x00020000,"system32\DRIVERS\USBSTOR.SYS"
HKLM,"SYSTEM\CurrentControlSet\Services\USBSTOR","Start",0x00010001,0
HKLM,"SYSTEM\CurrentControlSet\Services\USBSTOR","Type",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbehci","DisplayName",0x00000000,"USB 2.0 Enhanced Host Controller Miniport Driver"
HKLM,"SYSTEM\CurrentControlSet\Services\usbehci","ErrorControl",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbehci","Group",0x00000000,"System Reserved"
HKLM,"SYSTEM\CurrentControlSet\Services\usbehci","ImagePath",0x00020000,"system32\DRIVERS\usbehci.sys"
HKLM,"SYSTEM\CurrentControlSet\Services\usbehci","Start",0x00010001,0
HKLM,"SYSTEM\CurrentControlSet\Services\usbehci","Type",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbhub","DisplayName",0x00000000,"USB2 Enabled Hub"
HKLM,"SYSTEM\CurrentControlSet\Services\usbhub","ErrorControl",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbhub","Group",0x00000000,"System Reserved"
HKLM,"SYSTEM\CurrentControlSet\Services\usbhub","ImagePath",0x00020000,"system32\DRIVERS\usbhub.sys"
HKLM,"SYSTEM\CurrentControlSet\Services\usbhub","Start",0x00010001,0
HKLM,"SYSTEM\CurrentControlSet\Services\usbhub","Type",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbuhci","DisplayName",0x00000000,"Microsoft USB Universal Host Controller Miniport Driver"
HKLM,"SYSTEM\CurrentControlSet\Services\usbuhci","ErrorControl",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbuhci","Group",0x00000000,"System Reserved"
HKLM,"SYSTEM\CurrentControlSet\Services\usbuhci","ImagePath",0x00020000,"system32\DRIVERS\usbuhci.sys"
HKLM,"SYSTEM\CurrentControlSet\Services\usbuhci","Start",0x00010001,0
HKLM,"SYSTEM\CurrentControlSet\Services\usbuhci","Type",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbohci","DisplayName",0x00000000,"Microsoft USB Open Host Controller Miniport Driver"
HKLM,"SYSTEM\CurrentControlSet\Services\usbohci","ErrorControl",0x00010001,1
HKLM,"SYSTEM\CurrentControlSet\Services\usbohci","Group",0x00000000,"System Reserved"
HKLM,"SYSTEM\CurrentControlSet\Services\usbohci","ImagePath",0x00020000,"system32\DRIVERS\usbohci.sys"
HKLM,"SYSTEM\CurrentControlSet\Services\usbohci","Start",0x00010001,0
HKLM,"SYSTEM\CurrentControlSet\Services\usbohci","Type",0x00010001,1
Now open the cmd again. Type the following commands:
cabarc n USB.IN_ usb.inf
cabarc n USBPORT.IN_ usbport.inf
cabarc n USBSTOR.IN_ usbstor.inf
The three IN_ files should now exist again.
We are finish with modifications.
Open your Windows CD image again with UltraISO. Navigate to the I386 folder, and delete the following files from the ISO file.
# DOSNET.INF
# TXTSETUP.SIF
# USB.IN_
# USBPORT.IN_
# USBSTOR.IN_
Now save the iso file. Now select "Add Files" and add your changed files, in detail:
# USBBOOT.INF
# DOSNET.INF
# TXTSETUP.SIF
# USB.IN_
# USBPORT.IN_
# USBSTOR.IN_
Save the ISO. You are done.
Now you can burn the image.
To test the CD, shut down your computer. Disconnect ANY internal and external hard drives (so Windows cannot find them during installation). Some computers will have trouble to boot without an internal HDD attached, check in your BIOS and, if possible, remove the HDD from the boot sequence and set the USB Harddisk as the first boot device, and the CDROM as second.
Also, now connect your USB Harddrive directly to the computer, without any Hubs in between. Windows should install just fine, with the exceptions noted below. At the installation, windows will prompt you, as they are "not certified" - This is normal. Just press "yes" a couple of times. Also, upon completion of the install, the system will complain once on the first bootup that the pagefile does not exist. You can ignore this for now, as Windows will work fine without it.
How to remove logos or watermarks from video source
f you downloaded a video file, or you have a TVrip file, or you made a video from your video camera, you may have some watermarks or text that you want to be removed from the video. In this guide, you can see how you can remove them easily.
File
In order to complete the guide, you will need this file
-Added: 2007-02-11 12:21:40 by Zeus
-Size: 45.0 Kb
-This file has been downloaded 124 times
Description: The DeLogo filter is designed to remove static elements, i.e. logos or watermarks from video source. While there are many ways how to put a logo to a video, DeLogo filter only covers those that are really static, i.e. not moving and not animated. On the other hand, it can successfully remove alpha-blended logos without destroying the picture beneath.
Also needed
VirtualDub 1.6.17
Unrar Delogo and move the file into Virtuadub's plugin folder.
Run the VirtualDub and open the movie file you want to remove the watermarks.
Now go to Video -> Filters. 
Select the DeLogo filter and press OK. 
Press OK again and close the window.
Now you are in the main program screen again. From the navigation tab below, seek in the video until you find a frame where the logo is best visible. Remember movie must be paused. 
Now press ctrl + 1, and open your preferred image editor (e.g. Windows Paint) and with right click select paste.
You have the screen you selected into Windows Paint.
Select the fine red (255, 0, 0) color and start to mark the logo. 
When finish, save the image to a numbered file, e.g. "Photo1.bmp", use a 24-bit color format.
Go to VirtualDub again and go to Video -> Filters.
Double click on DeLogo plugin and press the Load... button next to the Repair: text in the Mask properties group and load the image you saved here.
Press the Show preview button and check the result 
You can enhance the result using the controls in the Repair parameters group. If the video is interlaced, check the Interlaced checkbox. Also if the video doesn't have pixel aspect ratio 1:1, you can use the Pixel aspect slider to compensate it.
Press the Close button to close the filter configuration dialog and OK button to close the filters dialog. Continue processing the video as usual.
Search Google Like An Expert:
Here are 13 tips to help you search google like an expert.
1. Explicit Phrase: Lets say you are looking for content about internet marketing. Instead of just typing internet marketing into the Google search box, you will likely be better off searching explicitly for the phrase. To do this, simply enclose the search phrase within double quotes.
Example: “internet marketing”
2. Exclude Words: Lets say you want to search for content about internet marketing, but you want to exclude any results that contain the term advertising. To do this, simply use the “-“ sign in front of the word you want to exclude.
Example Search: internet marketing -advertising
3. Site Specific Search: Often, you want to search a specific website for content that matches a certain phrase. Even if the site doesn’t support a built-in search feature, you can use Google to search the site for your term. Simply use the “site:somesite.com” modifier.
Example: “internet marketing” site:www.smallbusinesshub.com
4. Similar Words and Synonyms: Let’s say you are want to include a word in your search, but want to include results that contain similar words or synonyms. To do this, use the “~” in front of the word.
Example: “internet marketing” ~professional
5. Specific Document Types: If you’re looking to find results that are of a specific type, you can use the modifier “filetype:”. For example, you might want to find only PowerPoint presentations related to internet marketing.
Example: “internet marketing” filetype:ppt
6. This OR That: By default, when you do a search, Google will include all the terms specified in the search. If you are looking for any one of one or more terms to match, then you can use the OR operator. (Note: The OR has to be capitalized).
Example: internet marketing OR advertising
7. Phone Listing: Let’s say someone calls you on your mobile number and you don’t know how it is. If all you have is a phone number, you can look it up on Google using the phonebook feature.
Example: phonebook:617-555-1212 (note: the provided number does not work – you’ll have to use a real number to get any results).
8. Area Code Lookup: If all you need to do is to look-up the area code for a phone number, just enter the 3-digit area code and Google will tell you where it’s from.
Example: 617
9. Numeric Ranges: This is a rarely used, but highly useful tip. Let’s say you want to find results that contain any of a range of numbers. You can do this by using the X..Y modifier (in case this is hard to read, what’s between the X and Y are two periods. This type of search is useful for years (as shown below), prices or anywhere where you want to provide a series of numbers.
Example: president 1940..1950
10. Stock (Ticker Symbol): Just enter a valid ticker symbol as your search term and Google will give you the current financials and a quick thumb-nail chart for the stock.
Example: GOOG
11. Calculator: The next time you need to do a quick calculation, instead of bringing up the Calculator applet, you can just type your expression in to Google.
Example: 48512 * 1.02
12. Word Definitions: If you need to quickly look up the definition of a word or phrase, simply use the “define:” command.
Example: define:plethora
13. Searching for URLs containing certain words. Use the "inurl:word" modifier.
How to get anything for $0.01 from paypal:
This tutorial will help you to hopefully get software and possibly products for almost free.
Note: It won't work on products because it sends the seller an email along the lines of "you have received $0.01 from (your paypal name) for (the product)". This works ONLY on automated software scripts where it detects that you gave a payment and emails you a link to download the software.
Also, this is an educational only guide. I don't know if is legal on some countries or all.
You only need firefox and the Tamper Data plugin.Install it as usual and restarf firefox.
Go to Tools -> Tamper data to open the plugin's window.
Don't click anything yet. 
Now go to any page you want to buy something (for example ebook). Note, you need to find a place that supports paypal or paypal shopping carts.
Now, before do anything, go back to tamper's window and press "Start Tamper". 
Don't visit any other site and don't click any other link. YOU ONLY NEED to click on the link from the site that will redirects you to paypal.
The Tamper with request window will pop up. Click the Tamper button.
Now, you need to modify the post variables.
Find the parameter called amount and change the value to 0.01 because that is the lowest amount PayPal will process. When you are done click the OK button at the bottom of the window. 
You will go to paypal's page.
You are done.
Disable delay from file hosting sites
If you don't want to wait to reach the download link from free upload sites, see how to bypass delaying tactics from the sites.
Please note this may not work on any server, even the script supports it.
You can't bypass the hour limit (you need to change your IP each time you have exceeded your bandwidth limit), or the letter typing method. However, you will find this script useful to bypass the count time limit.
Tested on megaupload and easy-share.com with success.
The method is very simple.
The only tool we need is Firefox.
First install the Greasemonkey addon and enable it. To enable the Greasemonkey, after installation, restart Firefox and look in the right (down). Right click on monkey's head and select enabled.
Now click on this link and if you have enabled the Greasemonkey, you will see a popup window.
Select install.
Now go to download the file you want without any time delay.
Sites support:
* www.filesend.net
* www.depositfiles.com
* www.badongo.com
* www.mihd.net
* www.icefile.net
* www.mytempdir.com
* www.bigupload.com
* www.yousendit.com
* www.live-share.com
* www.fileho.com
* www.megaupload.com - just wait for the script to start the download automatically
* www.rapidshare.com
* www.rapidshare.de
* www.oxyshare.com
* www.turboupload.com
* www.mooload.com
* www.icefile.com
* www.quicksharing.com
* www.verzend.be
* www.megashares.com
* www.ftp2share.com
* www.lix.in -- RapidShare
* www.filefactory.com
* www.sendspace.com
* www.yofreespace.com
* www.gigasize.com
* www.ileech.net
* www.rsprotect.com
* www.mediafire.com
* www.zshare.net
* www.binfile.org
* www.uploading.com
* www.easy-share.com
* www.axifile.com
* www.sharebigfile.com
* www.megarotic.com
* www.looler.com
* www.megashares.com
* www.gulli.com
* www.hyperupload.com
* www.link-protector.com
* www.icefile.org
* www.flyupload.com
* www.mfile3.com
* www.filefront.com
* www.bravoshare.com
* www.urlcash.net
* www.flyupload.com
Unlock any protected file in Windows
If you tried to remove a file or a folder and you got the "Access is denied" window, try this useful tutorial.
Let's see some reasons cause the file to be locked and be denied to edit or delete.
There has been a sharing violation.The source or destination file may be in use.The file is in use by another program or user.
Make sure the disk is not full or write-protected and that the file is not currently in use.
This is useful when you must replace any file in windows (crack.exe; .dll;) and you have to restart in safe mode.
How to
You only need this tool, named unlocker.
Install unlocker. After install, simply right click the folder or file and select Unlocker.
If the folder or file is locked, a window listing of lockers will appear
Now the only thing you can do is to click Unlock All and you are done!
Make any blocked kaspersky license to work:
If your Kaspersky key is blacklisted, don't search anymore. Let's see how you can use any key you wish.
File
In order to complete the guide, you will need this file.However, it seems that you are not a member. In order to download this file, you must login first.
Note : Tested only with v7
How to
Now go to Kasperksy menu and select"Settings". Now from the left menu, select "Service".
You have to uncheck the "Enable Self Defence" and click "Apply".
Now you have to delete your key from Kaspersky by choosing "Delete Key" from Activation tab.
Now open the patch you downloaded and run it.
Select "Clean" First and then click on the buttons below, (you have to choose the version you have, Antivirus or Internet Security).
Close the patch, open the Kaspersky, Enable the self Defence option andselect any key, blacklisted or not.
Now select update database to start updating the database.
How to Read Online Magazines for Free:
This is a very simple & non-geeky trick to help you read the latest issue of popular magazines like PC Magazine, MIT Technology Review, Popular Mechanics, MacWorld, Lonely Planet, Reader’s Digest, etc without paying any subscription charges.
You will also get to read adult magazines like Playboy and Penthouse. Best of all, these digital magazines are exact replicas of print and served as high-resolution images that you can also download on to the computer for offline reading.
Tools we need:
Firefox and User Agent Switcher
When User Agent Switcer is installed, go to Firefox's menu and select Tools -> User Agent Switcer -> Options -> Options...
From the menu on the left select agents and then choose add.
Now write down this:
Description : Mobile Safari 1.1.3 – iPhone
User Agent : Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420.1 (KHTML, like Gecko) Version/3.0 Mobile/4A93 Safari/419.3
No go to this site. Normally you will get this screen:
Now go to the Toos menu (in firefox) and then in User Agent Switcer select the Mobile Safari 1.1.3 – iPhone.
Refresh your browser and voila.
Now, let me finish the Playboy's issue :)
RapidShare no limit hack
As you know, many links are available in sites who offers free file host, like RapidShare and Megaupload.
You can download the files you want from these sites free and with very fast download speeds, but they want you to pay, to let you have unlimited access, otherwise you must wait some time for every file. In this tutorial you can see an easy way to bypass this limit.
File
In order to complete the guide, you will need this file
-Added: 2007/04/13 by Zeus
-Size: 8.37 MB
-This file has been downloaded 874 times
Description: Get this tool to download without limit from RapidShare.
Also Needed
- Microsoft .NET Framework
-ABBYY FineReader 8.0 Professional Edition. You need this registered and not trial. Search google for “ABBYY FineReader Professional v8.0.706” (with quotes) if you need to try it before you buy.
- Jitbit Macro Recorder (Optional. Read below. Need to be registered, because has limits to record time.)
Installation and configuration
Install ABBYY FineReader in default directory (C:\Program Files\ABBYY FineReader 8.0 Professional Edition).
Download and extract the file (from above link) anywhere. Copy the folder with name “USDownloader” into your C:/ folder. Now copy the two dlls’ from the OpenSSL folder ( libeay32.dll & ssleay32.dll) in your system32 folder.
The file you downloaded doesn’t require any modification from you. I have already done everything with suggested and correct values.
Open Fine Reader and go to: Tools -> Options -> General -> Load Options, and load C:\USDownloader\Rapid(SK)18.3.fbt.
Close the box.
Go to: Tools ->Language Editor, click User-defined Languages and a new language called "Rapid(sk)" should be there.
Highlight "Rapid(sk)", click Edit and note that a pattern will only be designated one of these characters "0123456789ABCDEFGHIJKLMNPQRSTUVWXYZ". Close both boxes. 
Go to: Tools -> Pattern Editor, the pattern SKsRapid(18.3-) should be set to (active). Click Edit and you will see the patterns which will be used during OCR and the number/letter that will be assigned to that pattern underneath. Close this box. 
Go to Tools -> Options -> 2. Read, ensure the Recognition language is "Rapid(sk)" and set "Train user pattern".
Close Fine Reader.
It is suggested to make a backup from 18.3.fbt in case things go wrong.
I have already tested the letters from rapidshare, so you don’t need any Fine Reader Pattern Training. But if you want to try your Pattern Training in Fine Reader, check at the end.
Change IP (Dynamic) Modem or Router
We have to config the way, your router changes the IP. We need to reset the router, so we obtain a new IP (for users with Dynamic IP).In file discrec.bat, we need to change the way we reset the modem/router.
I suggest you to run the discrec.bat before do anything and check if your IP changed here. If changed, you don’t need to do anything. Continue to the How to. If not, read below.
If you have a dialup connection, open Reconnect.exe, select dialup and put the required info. Select Save and reconnect. Now edit the disrec.bat and replace this:
sleep.exe 10
ipconfig /all
ipconfig /flushdns
ipconfig /release
ipconfig /renew
sleep.exe 10
with this:
sleep.exe 10
Reconnect.exe
If you have a router, the best way is to make a macro record.
Download the Jitbit Macro Recorder and install it. Open it and select Start Recording.
Now make the moves with your mouse:
-Open a new browser window.
-Type the router’s IP (f.e. 192.168.1.1) and type the username and password.
-Go to tools and select Reset.Wait until finish the rebooting process.
-Stop the recording (from the small window up left).
- Now in Jitbit Macro Recorder go to file and select compile to exe.
-Save the exe file into the USDownloader folder. Save it as reset.exe
-Edit the disrec.bat and replace this:
sleep.exe 10
ipconfig /all
ipconfig /flushdns
ipconfig /release
ipconfig /renew
sleep.exe 10
with this:
sleep.exe 10
reset.exe
sleep.exe 10
Change IP (Static)
If you have Static IP, edit and add this in discrec.bat:
:again
For /F %%i in ('printip') Do @Set IP=%%i
start/wait rasdial "YOUR CONNECTIONS NAME" /disconnect
for /F %%j in ('printip') Do @set IPNEW=%%j
if %IP% == %IPNEW% GOTO AGAIN
-------------------
or
-------------------
:again
For /F %%i in ('printip') Do @Set IP=%%i
rasdial "connection name" /DISCONNECT
rasdial "connection name" username password
for /F %%j in ('printip') Do @set IPNEW=%%j
if %IP% == %IPNEW% GOTO AGAIN
How to
You are done with any configuration. Now run the USD. Copy and paste any links you have. Let it to download the files without any limit.
Try your Pattern Training in Fine Reader
Open Fine Reader, ensure "Rapid(sk)" is in the language box at the top, go to File -> Open PDF/Image, browse to C:\USDownloader\BMP_RS\ and open any .bmp file.
You should now have 4 patterns. Click the button 2.Read. If a Pattern Training box should appear, means that Fine Reader can’t recognize the character. Put the character into box and press learn. If the Pattern Training box does NOT appear then Fine Reader can recognize the character, so open the rest images to ensure that all the characters recognized.
When you have finished training and you have make changes, you MUST SAVE your results. Go to: Tools -> Options -> General, click on Save Options and in the Save Options As box click on Rapid(SK)18.3.fbt then click Save and overwrite existing file. Go to Tools -> Options -> 2. Read and set "Use user pattern". Close Fine Reader.
Megaupload Hack:
Here is a crack/trick for Megaupload which stops the message "All download slots... assigned to your country are in use..." from appearing while downloading a file.
UPDATED 13/11/2006. Support Firefox 2.
It seems this method doesn't work on Firefox 2.
Here is another solution:
-Go to address bar and type: about:config
-Search for general.useragent.extra.firefox 
-Double click on it
-Change the default text with this: Firefox/2.0 MEGAUPLOAD 1.0
-Start downloading again without any toolbar Smile
Method 2 (Firefox 1)
You need only firefox and the User Agent Switcher addon.Install the addon and restart the firefox to take effect.
Now go to Tools-->User Agent Switcher--->Options--->Options
Click User Agents--->Add
Copy and paste this (only black text):
Description: MEGAUPLOAD
User Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Alexa Toolbar)
Click ok to close the window(s).
No go -again- to megaupload's link you got the message "All download slots...". Go to Tools--> User Agent Switcher and select MEGAUPLOAD.
Click reload and the message is gone.
enjoyyyyyyyyyyyyyyyyyyyyyy
Browse any password protected site without register
You must have noticed sometimes that when you click on a link in Google Search, it will take you to the password protected webpage of some premium website or forum which usually requires a free registration. You can now bypass such restrictions imposed by posing as GoogleBot when visiting such websites by changing the user string agent sent by the type of web browser you may be using Firefox or Internet Explorer 7.
This guide is for Firefox and IE7.
If you want a site to test, view this:
http://www.governmentsecurity.org/forum/index.php and select any subforums from "GSO Programming Section"
Firefox
You need the User agent switcher addon. Install it and restart firefox.
The go to Tools -> User Agent Switcher -> Options -> Options... and on User Agents from left and then click on Add.
Now put this at useragent field:
Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)
and give any description you want. 
Now go to any site you want (i don't know if this works in all forums and sites) that requires login.
Usually you will see a message that says you must login first or something like this.
In the image below, you can see a custom made message.
Now go to tools -> User Agent Switcher and select the User Agent you made. 
Now try to go to the site again (or press refresh).
You can browse the forum as GoogleBot.
For IE7
Save the following text as a .reg file and double click on it to import it into the registry.
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent]
@="Googlebot/2.1"
"Compatible"="+http://www.google.com/bot.html"
To undo the changes, save the following text in a .reg format and import it
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent]
@="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
Here is an image from the same page as above
enjoyeeeeeeeeeeeeeeeeeeeeee
Encryption:
This guide is for educational purposes only I do not take any responsibility about anything
happen after reading the guide. I'm only telling you how to do this not to do it. It's your decision.
If you want to put this text on your Site/FTP/Newsgroup or anything else you can do it but don't
change anything without the permission of the author.
<--=--=--=--=--=--=--=--=>
A word from the author:
I hope you like my texts and find them useful.
If you have any problem or some suggestion feel free to e-mail me but please don't send mails like
"I want to hack the US government please help me" or "Tell me how to bind a trojan into a .jpg"
Be sure if I can help you with something I will do it.
<--=--=--=--=--=--=--=--=>
Table of Contents
1.What is this text about?
2.About Encryption and how it works
3.About the Cryptography and PGP
4.Ways of breaking the encryption
-Bad pass phrases
-Not deleted files
-Viruses and trojans
-Fake Version of PGP
=--=--=--=--=--=--=--=--=
1.What is this text about?
-=-=-=-=-=-=-=-=-=-=-=-=-=
In this text I'll explain you everything about encryption,what is it,PGP,
ways that someone can read your encrypted files etc.Every hacker or
paranoid should use encryption and keep the other from reading their
files.The encryption is very important thing and I'll explain you how can
someone break and decrypt your files.
2.About Encryption and how it works
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
The Encryption is very old.Even Julius Caesar used it when he was
sending messages because he didn't trust to his messengers.You see
encryption is everywhere,when you watch some spy film you see
there's always a computer with encrypted files or some film about hackers
when the feds busted the hacker and they see all of the hacker's files are
encrypted.
When you have simple .txt file that you can read this is called "plain text".
But when you use encryption and encrypt the file it will become unreadable
by the time you don't enter the password.This text is called cipher text.
The process of converting a cipher text into plain text is called decryption.
Here's a little example:
Plain text ==>Encryption==>Ciphertext==>Descryption==>Plaintext
This example shows you the way when you encrypt and decrypt a file.
3.About the Cryptography and PGP
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Cryptography is science that use the mathematics to encrypt and decrypt data.This science
let you keep your files and documents safe even on insecure networks like the Internet.
The cryptography can be weak and strong.The best is of course the strong one.Even when you
use all the computers in the world and they're doing billion operations in second you'll just need
BILLIONS of years to decrypt strong encryption.
PGP (Pretty Good Privacy) is maybe the best encryption program to encrypt your files and documents.
It work in this way:
When you encrypt one file with PGP,PGP first compress the file.This saves you disk space and modem
transmition.Then it creates a session key.This session key works with a very secure and fast
confidential encryption algorithm to encrypt the file.Then the session key is encrypted with the
recipient's public key.
PGP ask you for pass phrase not for password.This is more secure against the dictionary attacks
when someone tries to use all the words in a dictionary to get your password.When you use
pass phrase you can enter a whole phrase with upper and lowercase letters with numeric and
punctuation characters.
4.Ways of breaking the encryption
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
PGP has been written for people that want their files encrypted for people that want privacy.
When you send an e-mail it can be read from other people if you use PGP only the person for who
is the message will be able to read it.
Now you know many things about PGP and the encryption but you may like to know can someone
break it and read your private texts and files.In fact if you use all the computers in the world to
decrypt a simple PGP message they'll need 12 million times the age of the universe to break it.
You see this is the BEST the encryption is so strong noone can break it.
The people that program it has done their work now everything depends on you.
-Bad pass phrases
*****************
The algorithm is unbreakable but they're other ways to decrypt the text and read it.
One of the biggest mistakes when someone writes his/her pass phrase is that the pass phrase is
something like : "John" "I love you" and such lame phrases.Other one are the name of some friend
or something like that.This is not good because this is pass phrase not password make it longer
put numbers and other characters in it.The longer your pass phrase is the harder it will be guessed
but put whole sentences even one that doesn't make sense just think in this way:
Someone is brute-forcing thousands of pass phrases from a dictionary therefore my pass phrase
should be someone that is not there in the dictionary something very stupid like:
hEllowOrld33IjustwanTtoteLLtoev3ryon3thatI'maLamErandI'mahacKer666
This is easy to remember because it's funny and there are only a few numbers but you may not use
upper and lowercase characters.I hope you know will put some very good pass phrase and be sure
noone will know it.
Another mistake is that you may write the pass phase on a paper and if someone find it you'll loose
it and he/she will be able to read your encrypted files.
-Not deleted files
******************
Another big security problem is how most of the operating systems delete files.So when you encrypt
the file you delete the plain text and of course leave the encrypted one.
But the system doesn't actually delete the file.It just mark those blocks of the disk deleted and free.
Someone may run a disk recovery program and still see all the files but in plaintext.Even when you're
writing your text file with a word editor it can create some temporary copies of it.When you close it
these files are deleted but as I told you they're still somewhere on your computer.
PGP has tool called PGP Secure Wipe that complete removes all deleted files from your computer
by overwriting them.In this way you'll only have the encrypted files on your computer.
-Viruses and Trojans
********************
Another dangerous security problem are the viruses and the trojans.So when you infect with a
trojan the attacker may run a key logger on your system.
*Note
A key logger is a program that captures all keystrokes pressed by you then saves them on your
hard drive or send them to the attacker
***************************************
So after the attacker run it he/she will be able to see everything you have written on your computer
and of course with your PGP pass phrase.
There are also a viruses designed to do this.Simpy record your pass phrase and send it back to the
attacker.
-Fake Version of PGP
********************
Another security problem is the PGP source that is
available so someone can make a fake copy of it that is recording your pass phase and
sending it back to the attacker.The program will look real and it will work but it may also have
functions you even don't know about.
A way of defending of these security problems is to use a trojan and a virus scanner.You should
also be sure your computer is clean from viruses and trojans when you install PGP and also be sure
you get PGP from Network Associates Inc. not from some other pages.
So now I hope you understand that PGP can't be braked but if you use it wisely and be sure
your pass phrase is good one,you're not infected with viruses or trojans and you're using the
real version of PGP you'll be secure.
How to Telnet with Windows XP :
The gem is telnet. To get help on Windows type
C:\>telnet /?
In cmd (command prompt).
****************
1. What is a Port on a computer? Port is like where things can go in and/or out of a computer. Some ports are easy to understand, like keyboard, monitor, printer and modem; Others are virtual (created by software). When modem port of (or LAN or ISDN or DSL) is connected to the Internet, your computer has the ability to open or close any of over 65,000 different virtual ports, and has the ability to connect to any of these on another computer - if it is running that port, and if a firewall doesn’t block it.
2. How do you address a computer over the Internet? There are two ways: by number or by name.
***************************************************************************
The simplest use of telnet is to log into a remote computer. Give the
command:
C:/>telnet targetcomputer.com (substituting the name of the computer you want to telnet into for targetcomputer.com)
If this computer is set up to let people log into accounts, you may
get the message:
login:
Type your user name here, making sure to be exact. You can't swap between lower case and capital letters. For example, user name Guest is not the same as guest.
If you don't know your user name and password, that means whoever runs that computer didn't give you an account and doesn't want you to log on.
Then cometh the message:
Password:
Again, be exact in typing in your password.
What if this doesn't work?
That is usually because people try to telnet into a computer, or a port on a
computer that is set up to refuse telnet connections. Here's what it
might look like when a computer refuses a telnet connection:
C:\ >telnet 10.0.0.3
Connecting To 10.0.0.3...Could not open connection to the host, on port 23. A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond.
Or you might see:
C:\ >telnet abcd.com
Connecting To abcd.com...Could not open connection to the host, on port 23.
No connection could be made because the target machine actively
refused it.
N.B: If you just give the telnet command without giving a port number, it
will automatically try to connect on port 23, which sometimes runs a
telnet server.
Windows computer has a telnet client program, meaning it will let ye telnet out of it. However you have to install a telnet server before anyone could Telnet into port 23 on your
computer.
If Telnet failed to connect, possibly the computer you were trying to telnet into was down or just plain no longer in existence or may be the people who run that computer don't want you to telnet into it.
How to Telnet into a Shell Account :
Even though you can't telnet into an account inside some computer, often you can get some information back or get that computer to do something interesting for you. Yep! you can get a telnet connection to succeed -without doing anything illegal ,almost any computer, even if you don't have permission to log in. There are many legal things you can do to many randomly chosen computers with telnet. For example:
C:/telnet freeshell.org 22
SSH-1.99-OpenSSH_3.4p1
That tells us the target computer is running an SSH server, which enables encrypted connections between computers. If you want to SSH into an account there, you can get a shell account for free at
http://freeshell.org/ You can get a free SSH client program from
http://winfiles.com/
One reason most Hackers have shell accounts on Internet servers is, because you can meet the real hackers there. When you've logged in, give the command w or who. That gives a list of user names n u can talk to other users with tht talk command. Another fun thing, if your shell account allows it, is to give the command
ps -auxww
It might tell you what commands and processes other users are running. Ask other users what they are doing and they might teach you something.
But be careful not to be a victim of technology!
***************
Also Your online provider might stop you making telnet probes of other computers. The solution is to get a local online provider and make friends with the people who run it, and convince them you are just doing harmless, legal explorations.[some of other ways r also ther].
Sometimes a port is running an interesting program, but a firewall won't let you in. For example, X.X.X.X(IP address) ,a computer on LAN, runs an email sending program, (sendmail working together with Postfix, and using Kmail to compose emails). User can use it from an account inside that IP address to send emails with headers that hide from where user send things.
If user try to telnet to this email program from outside this computer,
here's what happens:
C:\>telnet X.X.X.X 25
Connecting To X.X.X.X...Could not open connection to the host, on
port 25.
No connection could be made because the target machine actively
refused it.
However, if user log into an account on X.X.X.X and then telnet from
inside to port 25, here's what I get:
Last login: Sat Nov 11 12:59:59 2008 from X.X.X.X
Have a lot of fun...
ani@test-box:~> telnet localhost 25
Trying ::1...
telnet: connect to address ::1: Connection refused
Trying 127.0.0.1... [ani's note: 127.0.0.1 is the numerical
address meaning localhost, the same computer you are logged into]
Connected to localhost.
Escape character is '^]'.
220 test-box.local ESMTP Postfix
The reason to keep this port 25 hidden behind a firewall is to keep
people from using it to try to break in or to forge email.
***************
All about headers? It's at the beginning of an email that may - or may not - tell you a lot about
where it came from and when. To see full headers, in Outlook click
view -> full headers.
Using Robots.txt Files To Feed The Spiderbots:
Using Robots.txt Files To Feed The Spiderbots by: Christian Whiting It's a Thursday evening. You are looking at your website logs to determine where your hits are coming from. You notice you are getting a ton of 404 errors records for a robots.txt file. You might not even know what a robots.txt file is, let alone why it is missing from your website. Let take a look at this mysterious file that seems to be missing and why it's important to have it. Search engines like Google cruise the internet by sending out their spidering software. These are commonly known as spiderbots. The spiderbots visit websites all around the internet to include them in their index listings. The first thing they look for when they visit is a file called the robots.txt file. This file normally is found in the root directory of hosted website. This file contains a set of rules that the spiders are programmed to obey based on standard protocol. These rules help the visiting spider determine what part of your website to include or to ignore all together. The most common rule used in the robots.txt file is to deny the search engine spiders access to restricted areas of your website that you don't want them visiting and indexing for the whole internet to view. These restricted areas normally contain your downloads, images, or a cgi-bin directory that are used only by your website visitors or for the normal daily operations of you website. What A robots.txt file is not.... Keep in mind that a robots.txt file is not a method to keep your information secure and safe from prying eyes. It simply is used to lock visiting spiders from indexing areas of your website. Note that using a robots.txt file does not speed up the process of search engines indexing and getting your website in their search directories. Also, a robots.txt file is not used to tell search engine spiders what to do, only what not to do. Benefits of using a robots.txt file: If you have parts of your website that are very similar you can block them from being crawled to avoid being flagged as a spammer. This is especially useful if you have similar pages optimized for different website browsers or website connection speeds. You eliminate 404 errors for missing robots.txt from your server logs by using a robots.txt file. Just create a blank robots.txt file in a basic text file editing program and upload it to your root directory. Can be used to block search engine spiders from indexing part or all of your website saving valuable bandwidth Creating A robots.xt Creating a robots.txt file is not complicated but you should be sure to do it correctly. If your file contains incorrect rules it can completely block all spiders and prevent them from indexing your website. You can create a robots.txt file using a simple text editing program like NotePad or you can generate a file automatically using several software programs or online website resources. For information and rules on how to manually create a robots.txt file visit http://www.robotstxt.org/wc/exclusion.html#robotstxt To create a robots.txt file online visit: http://searchbliss.com/webmaster_tools/robots-txt-text-generator.htm Once you have a robots.txt file created upload it to your root directory of your website. Now you will be ready the next time the spiderbots come around.
hacking and virus collections:
Keyloggers -
-+- Dkey 2006 KEYLOGER - http://h4ck-y0u.org/viewtopic.php?t=11575
-+- Advanced Invisible Keyloger 1.5 - http://h4ck-y0u.org/viewtopic.php?t=26247
-+- Ardamax Keylogger - http://h4ck-y0u.org/viewtopic.php?t=32529
-+- Digital Keylogger Pro by Nytro - http://h4ck-y0u.org/viewtopic.php?t=35621
-+- Perfect keylogger - http://h4ck-y0u.org/viewtopic.php?t=31377
-+- Spytecor Keylogger 1.3.5 - http://h4ck-y0u.org/viewtopic.php?t=32637
-+- Spytech - Keystroke Spy v1.10 - http://h4ck-y0u.org/viewtopic.php?t=35589
-+- Ghost Keylogger 3.80 - http://h4ck-y0u.org/viewtopic.php?t=30091
-+- EliteLog 1.9 - http://h4ck-y0u.org/viewtopic.php?t=29674
-+- Golden Keylogger 1.32 - http://h4ck-y0u.org/viewtopic.php?t=4623
RAT's -
-+- XHacker Rat - http://h4ck-y0u.org/viewtopic.php?t=33541
-+- DeepFrozen 1.2 rat - http://h4ck-y0u.org/viewtopic.php?t=35494
-+- HookeRAT - http://h4ck-y0u.org/viewtopic.php?t=35695
-+- Nuclear RAT 2.1.0 - http://h4ck-y0u.org/viewtopic.php?t=33251
-+- Shark 2.2 - http://h4ck-y0u.org/viewtopic.php?t=28488
-+- Criminal-Rat - http://h4ck-y0u.org/viewtopic.php?t=28731
-+- Skiddie RAT - http://h4ck-y0u.org/viewtopic.php?t=35164
-+- BumP Rat 1.2 Beta - http://h4ck-y0u.org/viewtopic.php?t=34979
-+- ProRat 1.9 SE - http://h4ck-y0u.org/viewtopic.php?t=5823
-+- XplOit 1.4.5 RAT - http://h4ck-y0u.org/viewtopic.php?t=26687
-+- SubSeven Trojan RAT - http://h4ck-y0u.org/viewtopic.php?t=24977
Trojan's -
-+- Dem0nyc Trojan v1.1 - http://h4ck-y0u.org/viewtopic.php?t=34663
-+- 1337 Fun Trojan - http://h4ck-y0u.org/viewtopic.php?t=34081
-+- Virus Maker 3.0 - http://h4ck-y0u.org/viewtopic.php?t=19916
-+- M-T Trojan - http://h4ck-y0u.org/viewtopic.php?t=33961
-+- The Dragon Trojan - http://h4ck-y0u.org/viewtopic.php?t=32944
-+- SEASTAR 1.1.01 - http://h4ck-y0u.org/viewtopic.php?t=30737
-+- FKWP 2.0 - http://h4ck-y0u.org/viewtopic.php?t=411
Shell's -
-+- [WEB-SHELL] 31 Shell packed - http://h4ck-y0u.org/viewtopic.php?t=36915
-+- a to z all types of shell the lot - http://h4ck-y0u.org/viewtopic.php?t=36743
-+- C2007--C100 PhpShell - http://h4ck-y0u.org/viewtopic.php?t=36694
-+- C99 Shell With Mass Defacer - http://h4ck-y0u.org/viewtopic.php?t=28790
-+- C99 Shell modded by laydback - http://h4ck-y0u.org/viewtopic.php?t=26997
-+- Shell Package - http://h4ck-y0u.org/viewtopic.php?t=36062
-+- [PRIVATE] - wtf.php (v0.5) - http://h4ck-y0u.org/viewtopic.php?t=29012
-+- Some working r57s - http://h4ck-y0u.org/viewtopic.php?t=35640
Binder's & Crypter's -
-+- Art of Deception by ZiG[Binder] - http://h4ck-y0u.org/viewtopic.php?t=37170
-+- kBind Executable Binder - http://h4ck-y0u.org/viewtopic.php?t=36633
-+- .EXE Binder - http://h4ck-y0u.org/viewtopic.php?t=36637
-+- Valient Binder - http://h4ck-y0u.org/viewtopic.php?t=30998
-+- astrX[HAC Edition] - http://h4ck-y0u.org/viewtopic.php?t=35892
-+- [Binder] Hot Sauce - http://h4ck-y0u.org/viewtopic.php?t=32247
-+- Lite Binder - http://h4ck-y0u.org/viewtopic.php?t=30393
-+- Useless Binder - http://h4ck-y0u.org/viewtopic.php?t=32179
-+- -B-inder v1.2 - http://h4ck-y0u.org/viewtopic.php?t=32202
-+- Aholic Binder v1.0 - http://h4ck-y0u.org/viewtopic.php?t=31738
-+- Sharp Binder 1.1 - http://h4ck-y0u.org/viewtopic.php?t=28506
-+- J Multi Binder 1.0 - http://h4ck-y0u.org/viewtopic.php?t=27615
-+- gbinder v1.0 - http://h4ck-y0u.org/viewtopic.php?t=21134
-+- UnDo Crypter 1.6 Public Version - http://h4ck-y0u.org/viewtopic.php?t=36353
-+- X-Crypter 1.2 - http://h4ck-y0u.org/viewtopic.php?t=37018
-+- RLP 0.7.4 Protector Beta - http://h4ck-y0u.org/viewtopic.php?t=36921
-+- Hell Crypter v2 - http://h4ck-y0u.org/viewtopic.php?t=36351
-+- Hac Crew Crypter - http://h4ck-y0u.org/viewtopic.php?t=36124
-+- Mortal Team Crypter v2 - http://h4ck-y0u.org/viewtopic.php?t=36127
-+- Pussy Crypter V2 - http://h4ck-y0u.org/viewtopic.php?t=35307
-+- 1337 EXE Cryptor - http://h4ck-y0u.org/viewtopic.php?t=33687
-+- PlutoCrypt - http://h4ck-y0u.org/viewtopic.php?t=33191
-+- L0rd Crypter - http://h4ck-y0u.org/viewtopic.php?t=35309
Scanner's -
-+- RFi Scanner Multi-Engine - http://h4ck-y0u.org/viewtopic.php?t=36200
-+- BotScan PHP Injection [0.3b~] - http://h4ck-y0u.org/viewtopic.php?t=25495
-+- new ftpD scanner - http://h4ck-y0u.org/viewtopic.php?t=33389
-+- DV p0rt Scann3r v1.2 - http://h4ck-y0u.org/viewtopic.php?t=36220
-+- Retina Wifi Scanner v1.0.3.40 - http://h4ck-y0u.org/viewtopic.php?t=35954
-+- Phpbb Rfi Scanner - http://h4ck-y0u.org/viewtopic.php?t=35637
-+- Local Network Scanner - http://h4ck-y0u.org/viewtopic.php?t=28297
-+- BaKo's Private SQL Injection Scanner - http://h4ck-y0u.org/viewtopic.php?t=32413
-+- Acunetix Scanner V.4.0 - http://h4ck-y0u.org/viewtopic.php?t=32501
-+- X-Scan-v3.3 Best Scanner - http://h4ck-y0u.org/viewtopic.php?t=33613
Random Tools -
-+- OllyDbg 2.0 - http://h4ck-y0u.org/viewtopic.php?t=36865
-+- [Steam Account Checker] - http://h4ck-y0u.org/viewtopic.php?t=37155
-+- Hacker Tools. - http://h4ck-y0u.org/viewtopic.php?t=21899
-+- IPHEAR!!! super Duper Packs!!!! - http://h4ck-y0u.org/viewtopic.php?t=33522
-+- AiO Xxx Cracking Toolkit Suite - http://h4ck-y0u.org/viewtopic.php?t=20994
-+- [AIo]Free VoIp CAll - http://h4ck-y0u.org/viewtopic.php?t=31815
-+- Steam account hacker/bruteforcer - http://h4ck-y0u.org/viewtopic.php?t=36357
-+- MSN Tools + Some trix - http://h4ck-y0u.org/viewtopic.php?t=3305
-+- Steam Accountlist Checker [PERL] - http://h4ck-y0u.org/viewtopic.php?t=36896
-+- Account Checker v0.2 - http://h4ck-y0u.org/viewtopic.php?t=37002
-+- [v0.2 BETA] h4ck-y0u toolz - illuz1oN - http://h4ck-y0u.org/viewtopic.php?t=37004
-+- ~{0.2R Beta}~ H4CK-Y0U T00LZ - http://h4ck-y0u.org/viewtopic.php?t=37087
-+- Win_XP_Activator - http://h4ck-y0u.org/viewtopic.php?t=24737
-+- IP Tools - http://h4ck-y0u.org/viewtopic.php?t=36930
-+- exe 2 lnk - http://h4ck-y0u.org/viewtopic.php?t=34897
-+- Msn Lockdown - http://h4ck-y0u.org/viewtopic.php?t=35863
-+- VB Decompiler Pro - http://h4ck-y0u.org/viewtopic.php?t=36938
-+- UnderGround Hacker Tools - http://h4ck-y0u.org/viewtopic.php?t=8918
-+- Convert VB to C# or C# to VB - http://h4ck-y0u.org/viewtopic.php?t=36887
-+- Ultimate Hacking Security Pack 2007 - http://h4ck-y0u.org/viewtopic.php?t=37020
-+- HardCore Destruction - http://h4ck-y0u.org/viewtopic.php?t=36934
-+- Security-SearcherOnGoogle.php - http://h4ck-y0u.org/viewtopic.php?t=36893
-+- Rapidshrare Account Bruteforcer - http://h4ck-y0u.org/viewtopic.php?t=36599
-+- Wordlist Package - http://h4ck-y0u.org/viewtopic.php?t=36064
-+- Blog Hijacker v1.0.0 - http://h4ck-y0u.org/viewtopic.php?t=36894
-+- Hackers Fantastic KIT ( AIO ) - http://h4ck-y0u.org/viewtopic.php?t=24049
-+- Hack AIO - By st0l3n - http://h4ck-y0u.org/viewtopic.php?t=36818
-+- System hacking and tools - http://h4ck-y0u.org/viewtopic.php?t=36161
-+- Ultimate Free-Hack Teamspeak Pack - Reloaded - http://h4ck-y0u.org/viewtopic.php?t=16275
-+- Punisher Yah00 - http://h4ck-y0u.org/viewtopic.php?t=36727
-+- Rapid Hacker v3.0 Maximum Edition - by xyr0x - http://h4ck-y0u.org/viewtopic.php?t=35929
-+- Windows Key Password Reset 7.7 build 2018 - http://h4ck-y0u.org/viewtopic.php?t=18106
-+- Punisher FaceBook - http://h4ck-y0u.org/viewtopic.php?t=36729
-+- Hacking KIT - http://h4ck-y0u.org/viewtopic.php?t=36764
-+- 1337 SteamACC Stealer Private - http://h4ck-y0u.org/viewtopic.php?t=36110
-+- Lock A Msn Account - http://h4ck-y0u.org/viewtopic.php?t=36008
-+- Invasion 1.0.1 - Relaunch - http://h4ck-y0u.org/viewtopic.php?t=36748
-+- Anonymous Attached Mailer - http://h4ck-y0u.org/viewtopic.php?t=36647
-+- Ju u 1.0 [FF Pass stealer] - http://h4ck-y0u.org/viewtopic.php?t=36480
-+- Sql Dumper - http://h4ck-y0u.org/viewtopic.php?t=36335
-+- RapidShare Leechers Toolz! - http://h4ck-y0u.org/viewtopic.php?t=34310
-+- 90 Hacker Programs 2007 - http://h4ck-y0u.org/viewtopic.php?t=27984
-+- 5 in 1 window hack - http://h4ck-y0u.org/viewtopic.php?t=33291
-+- Abdelhamid Attacker v1 - http://h4ck-y0u.org/viewtopic.php?t=36261
-+- ecMass Flux - http://h4ck-y0u.org/viewtopic.php?t=32565
-+- Ghosty's Hacker Software - http://h4ck-y0u.org/viewtopic.php?t=36387
-+- CD Windows Kernel Source - http://h4ck-y0u.org/viewtopic.php?t=36381
-+- Russian icq bot - http://h4ck-y0u.org/viewtopic.php?t=36355
-+- Hacker begining toys - http://h4ck-y0u.org/viewtopic.php?t=29460
-+- Decrypt & Encryptor - http://h4ck-y0u.org/viewtopic.php?t=36015
-+- Teamspeak Pack Vol 3 - http://h4ck-y0u.org/viewtopic.php?t=36260
-+- Radmin 3.0 + crack - http://h4ck-y0u.org/viewtopic.php?t=24301
-+- WeB Hacking Toolz Pack - http://h4ck-y0u.org/viewtopic.php?t=29607
-+- Necro Tool Pack - http://h4ck-y0u.org/viewtopic.php?t=35959
-+- Advanced Mass Sender 4.3 - http://h4ck-y0u.org/viewtopic.php?t=32635
-+- Windows Live Messenger Freezerz (AIO) - http://h4ck-y0u.org/viewtopic.php?t=36179
-+- Format Windows - http://h4ck-y0u.org/viewtopic.php?t=33599
-+- w0rm's Text Encryptor & Decryptor v2.0 - http://h4ck-y0u.org/viewtopic.php?t=36090
-+- VNC Hack Pack - http://h4ck-y0u.org/viewtopic.php?t=35474
-+- Small DoS pack (With DDoS v1.0 winsocks fixed!) - http://h4ck-y0u.org/viewtopic.php?t=31594
-+- Network Sniffers 2007 v2 All In One - http://h4ck-y0u.org/viewtopic.php?t=32520
-+- [C#]Cd Keys Extractor [GUI] - http://h4ck-y0u.org/viewtopic.php?t=35346
-+- .htaccess breaker - http://h4ck-y0u.org/viewtopic.php?t=1353
-+- XP Password Administrator Hack Tool - http://h4ck-y0u.org/viewtopic.php?t=27262
-+- Huge Password List - http://h4ck-y0u.org/viewtopic.php?t=28865
-+- MailBomb Filter Bypassing - http://h4ck-y0u.org/viewtopic.php?t=12583
-+- The all stuff for hack bluetooth.. - http://h4ck-y0u.org/viewtopic.php?t=20536
-+- Ghost Radmin - http://h4ck-y0u.org/viewtopic.php?t=29150
-+- [AIO]WebHacking TooLz Pack By n1tr0 Mc - http://h4ck-y0u.org/viewtopic.php?t=29765
-+- Telnet brute force - http://h4ck-y0u.org/viewtopic.php?t=34971
-+- Collection Of Toolz *Real Ones* - http://h4ck-y0u.org/viewtopic.php?t=32212
-+- Auditalize [Scan Folders Of PHP Scripts For Vulns] - http://h4ck-y0u.org/viewtopic.php?t=29920
-+- MSN Flooder - http://h4ck-y0u.org/viewtopic.php?t=29655
-+- Evil Msn v3.0 - http://h4ck-y0u.org/viewtopic.php?t=33600
-+- Ethical Hacker Tools - http://h4ck-y0u.org/viewtopic.php?t=28917
-+- Email Bomb Script - http://h4ck-y0u.org/viewtopic.php?t=2835
-+- WiFi H@ck [BEST] -27in1- (AIO) - http://h4ck-y0u.org/viewtopic.php?t=32515
-+- AIDS 3.0 - http://h4ck-y0u.org/viewtopic.php?t=35887
-+- 2 MSN Hack AIOs - http://h4ck-y0u.org/viewtopic.php?t=12668
-+- Hacking TooLs List - http://h4ck-y0u.org/viewtopic.php?t=12588
-+- IceCold Reloaded msn password finder - http://h4ck-y0u.org/viewtopic.php?t=33552
-+- MSN FREZZER's - http://h4ck-y0u.org/viewtopic.php?t=23455
-+- CPU "Virus" - http://h4ck-y0u.org/viewtopic.php?t=35838
-+- Maya Password Stealer 1.1 - http://h4ck-y0u.org/viewtopic.php?t=26460
-+- PHP Email spoofer - http://h4ck-y0u.org/viewtopic.php?t=34529
-+- Ultimate Rapidshare Fishing Kit - http://h4ck-y0u.org/viewtopic.php?t=35515
-+- MD5SEARCH - http://h4ck-y0u.org/viewtopic.php?t=35622
-+- 8 Password Recovery Applications - http://h4ck-y0u.org/viewtopic.php?t=35565
-+- Msn Extra v1 - http://h4ck-y0u.org/viewtopic.php?t=30437
-+- Advanced RZ Password Recovery - http://h4ck-y0u.org/viewtopic.php?t=33145
-+- [AIO]Hacking-Cracking_Toolz_V.1 - http://h4ck-y0u.org/viewtopic.php?t=29764
-+- FeliksPack3 - Complete - http://h4ck-y0u.org/viewtopic.php?t=27296
-+- BaKo's PHP Auto Rooter [Public] - http://h4ck-y0u.org/viewtopic.php?t=34774
-+- TSGrinder - http://h4ck-y0u.org/viewtopic.php?t=35473
-+- RDesktop Source + Patch - http://h4ck-y0u.org/viewtopic.php?t=35469
-+- UnThemida 2.0 - http://h4ck-y0u.org/viewtopic.php?t=29633
-+- MPack Exploit Tool - http://h4ck-y0u.org/viewtopic.php?t=28332
-+- Keygenz 2007 - http://h4ck-y0u.org/viewtopic.php?t=33440
very usefull sites:
http://materialhacking.blogspot.com/
http://materialhacking.blogspot.com/
http://www.blitzkrieg08.co.nr/
http://www.softpedia.com/progDownload/Install-Unattended-Pro-Download-44655.htmlhttp://mac.softpedia.com/ MAC S/W DOWNLOADS
http://www.techpreparation.com/interview-questions.htm INTERVIEW QUESTIONS
http://techpreparation.com/
www.freeprogrammingresources.com
http://www.freeprogrammingresources.com/frcomplr.html VERY GOOD RESOURCE ON ALL PROGRAMMING RESOURCES N COMPILERS
http://www.freeprogrammingresources.com/source.html SOURCE CODE OF VARIOUS LANGUAGES
http://visualcplus.blogspot.com/ C++ MANIAC
http://codebeach.tradepub.com/?pt=cat&page=Comp TECHNICAL MAGAZINE FREE
http://geekai.com/18-windows-7-official-desktop-wallpapers/ TECH BLOG / WALLAPAPER
http://www.softpedia.com/progDownload/RunasSpc-Download-26716.html VERY VERY USEFUL SITE
http://www.winsupersite.com/vista/ VISTA N ALL DE STUFFS (VERY GOOD )
http://windows7news.com/ WINDOWS 7
http://www.winsupersite.com/showcase/win7_6519.asp WINDOWS 7 PREVIEWS AND SCREEN SHOTS
http://www.winsupersite.com/showcase/win7_6519_2.asphttp://www.winsupersite.com/win7/win7_preview.asp WINDOWS 7 PREVIEWS
http://www.softpedia.com/downloadTag/administrator+privileges
SOME OF DE GOOD S/W RESOURCES TO USE TO (GOOD RESOURCES INCLUDING ANTI VIRUS )
http://www.winsupersite.com/showcase/Default.asp
GOOD SITE FOR A COMPARATIVE STUDY AND VARIOUS IMPORTANT INFO. ABOUT THE VARIOUS TRACKS OF WINDOWS .
http://sourceforge.net/project/downloading.php?groupname=shutdown&filename=shutx_4052.exe&use_mirror=nchc
FOR S/W RESOURCES
http://www.informit.com/articles/article.aspx?p=339067
The Intel 845 Chipset Family very vivid and inforamtive study
http://www.heaven-for-computer.blogspot.com/
FOR FIREWALL N VARIOUS IMPORTANT OTHERS
http://www.deadfake.com/Send.aspx.............................................................****************
Brute Force Attack:
http://www.sharewareconnection.com/titles/password-stealer11.htm
http://www.filetransit.com/topfile.php?name=Fetch_Forgotten_Indiatimes_Password
http://idownload.ws/Advanced-Archive-Password-Recovery/more.htmlhttp://3d2f.com/tags/lost/password/
http://e-mail-password.downloadsoftware4free.com/live.html
http://www.1000files.com/free/lost-password.html
Google Chrome as Hacking Tool
This is not a joke. If you are using Google Chrome then it is very easy for a malicious attacker to get the Remote Access of your Computer.
Less than a week after the release of Google (NSDQ:GOOG)’s new Web browser Chrome, security researchers detected a buffer overflow vulnerability that could enable remote attackers to completely take control of a user’s computer.
The detected buffer overflow vulnerability, deemed critical by security experts, is the result of a boundary error in the handling of the “Save As” function. If a user saves a Web page serving malicious content, the program could cause a stack-based overflow error, which could open the door for remote hackers to unleash malicious code on a user’s machine.
Remote attackers could then exploit the flaw by constructing a specially crafted Web page infused with malicious code. The attacker could then entice a victim to open and then save the infected page, which would subsequently download malicious code onto the victim’s computer and give the attacker complete access to the affected system.
Chrome’s latest buffer overflow vulnerability is one of about half a dozen errors detected in the newly released beta Web browser, about half of which allow for remote code execution, experts say. Another vulnerability, discovered shortly after the browser’s release Tuesday, included a carpetbombing glitch that stemmed from a fundamental flaw in the underlying user agent Safari 3.1.
However experts say that several Chrome beta version flaws are anticipated and will likely be worked out with the final version as the browser is subsequently tested.
“I think for a new product like Chrome, it doesn’t concern me much that they’re discovering the number of vulnerabilities and the details are getting out there. That’s the point of beta, especially open source beta,” said John Bambenek, handler for the SANS Internet Storm Center. “I think that the people who are really into getting exploits on a number of machines are not interested in messing with Chrome until (Google) gets some distribution out there.”
“If it’s not public information, the hackers don’t have it either,” he added.
And despite some errors that could lead to remote exploitation, experts say that because the browser is still in beta and not yet widely adopted, security threats for most users for the time being remains small.
“I don’t think the consumer impact is very large yet,” said Bambenek, “but that could change very quickly.”
phone tracker
The following guide enables us to make clones of sims used in india
........... unlike the complicated guides you find on the net ....... i
have compiled them all together and made one simple guide which can be
followed even by beginners..covering only the relevant things needed to
know rather than going technically deep
Before i start off with this guide ..... i would like to make one thing
clear .......... SIM CLONING is illegal ..... there have been many
cases in india where people have been caught...... for cloning others
sims .......... and making calls worth thousands through it
............ recently many gsm operators in india have set up
surveillance techniques to trap people who use cloned sims............
So i once again request to everyone that please use this guide for
personal purpose only,do not use this guide for cheating ......
First off a little introduction about SIM CARDS.......
Our sim cards contain ......... two secret codes or keys called (imsi
value and ki value) which enables the operator in identifying the sim
card number and authenticate the customer ...... these codes are
related to our mobile numbers which...... the operators store in their
vast data base......... it is based on these secret keys that enables
the billing to be made to that customer. now what we do in sim cloning
is extract these two secret codes from the sim and programme it into a
new blank smart card often known as wafer........ since the operator
authentication on sims is based on these values..... it enables us to
fool the operators in thinking that its the original sim......... this
authentication is a big flaw concerning GSM technology.........
Now which sim cards can be cloned
Sim cards are manufactured on the basis of 3 algorithms....... COMP128v1,COMP128v2 and COMP128v3
now an important note currently only COMP128v1 version sim cards can be
cloned .... since this is the only algorithm which has been cracked by users......... bear in mind that 70% of all the sim cards we use are
COMP128v1...... now which gsm operators use what algorithms..... they
are as follows:
Airtel-90% can be cloned
Hutch-75% can be cloned
bpl mobile-90% can be cloned
idea-numbers before Aug 2005 can be cloned newer cards very rare
BSNL- 0% say no - reason not comp128v1 version
OK thats it about the background..... now lets get to the Main Part
1.ITEMS NEEDED
a)Sim card Reader (phoenix or smartmouse reader)
b)Plain or Blank silver wafer card or smart card
c)Software to Extract Ki and imsi (Woron scan 1.09 is the best)
d)Wafer Card Programmer (is a hardware chipset needed to programme smart card Millenium 2000VX MAX)
e)Software to make the PIC and EEPROM files (Sim Emu 1.06 configurator by pic-ador)
f)Software to write the PIC and EEPROM files to blank card (card master 2.1)
2.GETTING STARTED
a)Extracting the Ki and IMSI
first connect the sim card reader to the pc's com port insert your
original sim card..... run woron scan 1.06........ click on the menu
"card reader" and click settings and select the com port which the card
reader is connected to....dont change any thing else in
settings.....click ok
if you have a phoenix card reader checkmark pheonix in the card reader menu..... now click on "IMSI select" on the task menu...... the program will now
communicate with the sim card and retrieve the imsi value........ once
u got the imsi value..... write that on a piece of paper
now in the same way retrieve the "icc value" and write that down too
now click on "Ki search" now the program hacks the sim and retrieves
the the ki value which consists of 32 numbers......... Note that it may
take up to 8 hrs to completely get the ki value....... no matter how
much faster the comp is...... this is because the sim is only capable
of recieving and sending data@9600 bits/sec...
so goto sleep.... for now.....
After u wake up ....make sure u write down the Ki value safely in a
piece of paper like u did for the imsi value........ exit woron scan....
yaaahhoooo now u can stand up and proudly say that u hacked the sim
b)Making the PIC and EEPROM files with SIM EMU configurator
first uncheck the A3A8 checkbox under security........... Please dont
enable this even from the sim services menu. If enabled, it countsback
to zero and when it reaches zero,........ it will corrupt your simcard.
In the configurator you can set the number of ADN, FDN and SMS.
...........You can use the formulae ?16448 = (ADN - 51 ) x 32 +SMS x
176 + FDN x 32 must be less than 6480? for silver wafer cards.
Then generate the Hex files forPIC and EEPROM by clicking the Generate
Hex file. With this configurator, in addition to the 16 number
slots, you can make the simcard a Motorola Test card too. In 16 in 1 configurator the positions are from
0-9 and from A-F. Each position can be customised by induvidual PIN an
PUK codes. finished making the files now next step copy these files to
the blank card using the programmer......
c)Write the files to the SILVER WAFER card
Now we have the files to be written to the Silver Wafer card. For this we need the Wafer
card programmer and the software for programming. Here i am using the Millenium 2000VX Max programmer
and the Cardmaster 2.1 software. Connect the programmer and run the software. Select the type
of card you are using. Select the port by clicking setup > port. If the port set by you is correct the red
colour with message on ststus bar changes to yellow and shows no simcard. Insert the simcard and load
the files for PIC and EEPROM in the file to PIC and file to EEPROM fields respectively. Dont change any
other settings. Now you are at the last stage.
Press F3 or click edit > Auto Program. You can watch the
status bar about what is happening. Programming the pic.. programming the eeprom... programming the
pic.... verifying.... and atlast you will get the message that the card is programmed succesfully. Here
you may ask the question why the PIC is programmed again after programming the EEPROM?. The PIC is
first programmed with the eeprom loader to program the EEPROM. then the EEPROM is programmed
through the pic. After that the contents in the pic is erased and the actual file is programmed in the PIC
d) Cutting the smart card into a Sim card...... and settings on the phone
The card which we have made is a 16 in 1 sim card....... means we can store 16 different sim card numbers in one
This is the last step guys...... cut the smart card in the shape of ur sim card...... insert the sim card in the phone..... switch on the handset...... the phone asks for the PIN..... type ne 4
digit number this is for the first slot 0...... now the phone asks for
the PUK code again type ne 4 digit number again for the first
slot....... now the phone switches on with no network coverage...... a
network error message will appear....... this is usual because........
the main values (ki and imsi) have not entered....... so the network
operator cannot authenticate the sim.........
now the Finallee....... u would have noticed by now that a new menu
called the "sim emu 6.01" has appeared....... select it......you can
see the menus Configure, Select Phone and Information. Select Configure
and go to config postion. It asks for the position. You can select any
position from 0-9 and A-F. After selecting the position it asks for a
PIN and PUK. Always provide different PIN and PUK for each positions.
It helps us to switch to a number directly when the handset is switched
on. After PIN and PUK it asks for KI,IMSI and ICCID. You can now recall
the extracted values from STEP1 and enter it to appropriate fileds.
After doing all this..... u should now posses ur newly cloned sim
card...... u earned it congratulations..... ............. If not
then...... u must beat urself 10 times ........ and reapeat the entire
process.....
Download from a paypal site without paying a penny
Just a little basic html tip for those who are trying to download an application from sites which has an paypal order page & link to start you off.
Use a proxy when you try this to hide your ip as some sites will record your ip when you connect for security.
1) Rightclick your mouse (ctrl+click) viewsource and open the source of the site in an a texteditor
2) Search for the word "return"
3) Next to it you can find the url for the thank you page
4) Copy the url and paste it in your browser and you will see the download link
This works only if you can download instantly after payment, it will not work if the link needs to be emailed to you.
You can try it here to start with:
Code:
http://www.ramphelp.com/halfpipe.html
About half way down the page you will find:
Copy the link into your browser and download.
Cashing out Paypals
So your intrested in cashing out paypals well its not as easy as it sounds, but you can basicly cash out paypal account at a ATM!!
firstly you have to be located in the usa then the next sep would be to get some fulls - then you would have to get matching ID scans or what ever if fine...
You then need to go on www.paypal.com sign up useing one of your fulls so at this point you should have id fulls and paypal account assigned to one of the fulls - you then need to apply for a thing called a paypal credit card, but you also need to sort out a drop for where this will get sent to, to change the address is a little more complicated (well not really, but if you want more info on that then contact me.) so you then wait for a week and Bingo! you have your Paypal creditcard, now you can transfure funds to the paypal account that is assigned to the paypal credit card... i recomend you transfure 1000$ per paypal, if you want paypal account with avaliable ballance.
So you can cash out 500$ a day i recomend you go at midnight and then you can cash out 1000$ after 00:00 hours
the link to apply for the card is
hxxps://www.paypalcreditcard.com/bap/nav/home.jsp
Here is what you do:
This is for your cashout account:
0. You must be located in the United States for this to be possible.
1. Retreave your fulls. You will need info such as Name, DOB, SSN, Address, Phone number*, email, Bank info, etc.
2. You need to get SSN card scan with matching ID scan
3. Go to hxxps://www.paypal.com and sign up for a personal account using the information provided by your full. Make sure you?re using a proxy from the same state as your full info, same city is even better. Also you will need to use the address that is on the full, then later change the address.
a. Make sure the info on the full has never been registered with paypal previously. I am not sure how to do this, can anyone help?
4. You then need to apply for paypal debit card. Make sure to have the CC shipped to your drop and not the fulls drop.
Make mp3 files smaller without losing clarity
If you don't already have a copy of MusicMatch Jukebox, download one from musicmatch.com. The "Plus" version has more features and burns CDs faster, but the free version works just fine for converting files
1. Install music match box and then restart your computer if it asks
2. open music matchbox and click file convert files
3. in the bottom right hand corner called 'destination type' change it to mp3 pro.
4.you can edit the bitrate but the higher the bitrate the bigger the size
5. choose the songs you want to convert and click start
***if you want to try something different repeat step one and 2 and instead of making the destintion type mp3 pro make it 'mp3pro vbr'
again the lower the setting the smaller the size.
Virus details
Testbed consisted of 321 Viruses, Trojans and Worms, all for the Windows32 environment, and all reasonably new samples. I don't have any data on whether some of these are zoo, or ITW, but they are all real threats I feel someone is likely to encounter, since I got them off the internet (and i've verified they are real as each sample must be detected by at least 4 AV's for me to consider it). All scanners were installed on a clean system, without any traces of other anti-virus softwares - between each test the system and directories were cleaned, and the registry was sweeped. Each AV product was treated with a double-reboot, one before, and one after installation. Each scanner was set at its highest possible settings, and was triple checked for proper options and configuration. Most products were the full registered version when possible, others were fully functional unrestricted trials. All products were tested with the current version as of 6-14-04, and the latest definitions for that date. Each product was run through the test set a minimum of 3 times to establish proper settings and reliability, the only product to exhibit some variance on this was F-Secure, which had one scan come up less than the other two without any settings changes indicating a possible stability issue.
The final standings:
1) MKS-Vir
1a) eXtendia AVK
2) Kaspersky 5.0/4.5
2a) McAfee VirusScan 8.0
3) F-Secure
4) GData AVK
5) RAV + Norton (2 way tie)
6) Dr.Web
7) CommandAV + F-Prot + BitDefender (3 Way Tie)
8) ETrust
9) Trend
10) Panda
11) Avast! Pro
12) KingSoft
13) NOD32
14) AVG Pro
15) AntiVIR
16) ClamWIN
17) UNA
18) Norman
19) Solo
20) Proland
21) Sophos
22) Hauri
23) CAT Quickheal
24) Ikarus
Heuristics seemed to play some of a roll in this test, as no AV had every virus in my test in their definitions, and products with stronger heuristics were able to hold their position towards the top of the test. Double/Multi engined products put up strong showings as well, proving to me that the redundacy method works, and I think more AV companies should considering double-engines. The strongest heurisitical AV I noticed was F-Prot/Command, picking up only 247 samples with definitions but they were able to power through 67 additional hits on "Possible Virus" indicators - very strong! Norton with BloodHound activated had 30 Heuristical pickups, and DrWeb rounded up the pack with 20 heuristical pickups. eXtendia AVK grabs the number one slot with double engine scanning, anything the KAV engine missed, the RAV engine picked up with great redundancy on the double engine/definition system. McAfee actually missed only 2 samples with its definitions, but picked those 2 up as "Suspicious File", and therefore, scores nearly perfect as well.
The biggest dissapointments for me were Norman and Nod32. Even with Advanced-Heuristics enabled, NOD32 failed to pick up a large portion of the samples. Norman, while finding some of the toughest samples, managed to completely miss a large portion of them! Showing that their sandbox-emulation system has great potetential, but its far from complete.
Actual test numbers were:
Total Samples/Found Samples (321 total possible) + Number Missed + Detection Percentage
Discovered and tested MKS-Vir2004, from Poland. Surprisingly, this one with caught every sample perfectly on Medium Heuristics. Specifically, nearly 50 samples were picked up Heuristically giving it a perfect score of 321/321. However, when I increased Heuristics to "Super Deep", it picked up an addition 10 more suspicious files. Upon further investigation, it was found that it was picking up signatures of hacktool utilities left over in some of the archives and flagging those files. Indeed, this is impressive. MKS-Vir2004 exhibits the most advanced detection algorithms i've ever seen, clearly it only had signatures for 271 of my samples, but through code emulation, it was able to pick up all 321 samples!! It clearly labeled the Heuristically found ones as things as "Likely Win32 Trojan" or "Highly Suspicious Acting File". In addition, its scanning speed was incredibly quick, and its memory footprint was quite small. Impressive! Furthermore, this is a full featured and fairly polished product that appears to update at least once per day, and tech support responded to me within 5-15 minutes on my emails. Unfortunately, it appears to not be available in the US for purchase at this time.
1a) MKS_Vir 2004 - 321/321 0 Missed - 100%
1b) eXtendia AVK - 321/321 0 Missed - 100%
2a) Kaspersky 5.0 - 320/321 1 Missed - 99.70% (with Extended Database ON)
2b) McAfee VirusScan 8.0 - 319/321 + 2 (2 found as joke programs - heuristically) - 99%
3) F-Secure - 319/321 2 Missed - 99.37%
4) GData AVK - 317/321 4 Missed - 98.75%
5) RAV + Norton (2 way tie) - 315/321 6 Missed - 98.13%
6) Dr.Web - 310/321 11 Missed - 96.57%
7) CommandAV + F-Prot + BitDefender (3 Way Tie) - 309/321 12 Missed - 96.26%
8) ETrust - 301/321 20 Missed - 93.76%
9) Trend - 300/321 21 Missed - 93.45%
10) Avast! Pro - 299/321 22 Missed - 93.14%
11) Panda - 298/321 23 Missed - 92.83%
12) Virus Buster - 290/321 31 Missed - 90.34%
13) KingSoft - 288/321 33 Missed - 89.71%
14) NOD32 - 285/321 36 Missed (results identical with or without advanced heuristics) - 88.78%
15) AVG Pro - 275/321 46 Missed - 85.66%
16) AntiVIR - 268/321 53 Missed - 83.48%
17) Antidote - 252/321 69 Missed - 78.50%
18) ClamWIN - 247/321 74 Missed - 76.94%
19) UNA - 222/321 99 Missed - 69.15%
20) Norman - 215/321 106 Missed - 66.97%
21) Solo - 182/321 139 Missed - 56.69%
22) Fire AV - 179/321 142 Missed - 55.76%
23) V3 Pro - 109/321 212 Missed - 33.95%
24) Per_AV - 75/321 - 246 Missed - 23.36%
25) Proland - 73/321 248 Missed - 22.74%
26) Sophos - 50/321 271 Missed - 15.57%
27) Hauri - 49/321 272 Missed - 15.26%
28) CAT Quickheal - 21/321 300 Missed - 6%
29) Vir_iT - 10/321 311 Missed - 3%
30) Ikarus - Crashed on first virus. - 0%
Interesting also to note, is the detection level of the US AVK version with KAV+RAV engines was higher than the German version with KAV+BitDefender engines. Several vendors have free versions of their for purchase AV's, we didn't test the free versions, as it would serve no purpose for this test, but based on the results, none of the free versions would have been very impressive anyway. The term "Heuristics" seems like it should be taken very liberally, as some products that claim to be loaded with Heuristics scored miserably on items they clearly didn't have definitions for. Scanning speed was not measured, as it was totally irrelevant to my testing, and on-access scanners were not tested, as it would have been too time consuming, but considering most products have similar on-access engines as on-demand, and use the same database, results most likely, would be very similar.
Cut through the hype, cut through the marketing schemes, this was a real test, with real samples, and none of these samples were provided to the antivirus software vendors in advance. This is real world, and these are likely badguys you'll encounter, since I got them in my real encounters, and all were aquired on the internet in daily activities which anyone out there might be involved in. (Installing shareware, filesharing, surfing, etc). Keep in mind that with ITW tests the AV vendors have full disclosure of what they will be tested on in advance, not so here, so heuristics and real detection algorithms will play a big part, as well as the depth and scope of their definition database.
[Edit: After re-testing the Kaspersky products with Extended Database option turned ON, the moved up effectively scoring 100% considering the 1% margin of error]
Recover a quick erased cdrw
Procedure used to recover data from a quick-erased CD-RW disc
1. Make a file of exactly the size of the cdrw disc's capacity (650MB in my case).
(this step may not be needed)
2. With Nero I created a new project and added the file to it so that I have the disc filled. I gues you can also fill up the disc with other files.
The reason why I fill the disc is because I want Nero to make a session that uses the entire disc. Like I wrote earlier in this thread I experienced that my CD-Drive refuses to read off the disc beyond the session's boundaries. When you quick-erase a disc there is no session anymore so the drive will not read at all. Burning a new session will overwrite the data and burning only a small session will NOT make the drive read the other data that is still on the disc.
The reason why I used the one big file is so that I could later on recognize which part of the disc was overwritten by this file because this file contained all zeros (0x00).
3. I pressed burn and selected disc-at-once. Then while Nero was burning the leadin I pressed cancel. My CD-Drive finished writing the lead-in and Nero reported an error.
This is what was accomplished however: Now the disc contains a session that says that the used disc size is the complete disc. Nero did not get to writing file because I cancelled it. Good thing because I don't want Nero to write any files because my old data will get overwritten!
I gues it works the same with different writing software. Another method that I used during a test was simply press the reset button of the computer when the burning software was done with writing the lead-in and started with the files.
4. I had to restart the computer after cancelling burning.
With the cdrw disc inserted I saw in "my computer" that windows recognized that the disc was 650MB, clicking on it gave an error. Good so far!
Now with IsoBuster you can extract the sectors from a disc to a file. This is what I did.
I gues that if you have data-recovery software at this point it will be usefull because now (if all went well;)) the CD-Drive WILL read data from the entire disc. Anyway, I used ISO-Buster because the files that I needed to recover where a bit odd for nowadays (.XM, .S3M, .MP3):
In IsoBuster I had to do several steps:
Step 1: Find out from and to which sector the drive will read
By choosing "Sector View" you can look at any given sector.
Here I found out what the first and the last sectors where that are readable. (Hint I used the method for the old game: "Gues a number below 100, I'll tell if it is higher or lower than what you gues")
Step 2: Extract the actual sectors
By choosing "Extract From-To" you can extract any given range of sectors to a file. My disc was a data-disc so I choose the first extraction type "User data, 2048 bytes/block...".
In the end I got a .tao file which was about 650MB. I ran several programs on it to look for files inside a file by searching for file-header-paterns:
1. Multi Ripper 2.80 (for DOS, for the .XM files. It does many other file formats as well (jpg,png, bmp,wav,etc,etc +100). Try google with this query: Multi Ripper 2.80. I still had the file from good old days but I saw several good search results)
2. Winamp for mp3.
Winamp will scan any file when you give it the extension .mp3 and play it as one big song (so I renamed the .tao file to .mp3). I used the discwriter to get a .wav and the Adobe Audition to manually cut and save my songs. I looked at the MP3 file format and it is hard to find an mp3 file in a big file because it has no clear header just a bunch of mpeg-frames in most cases for me . A lot of my files had no ID3v2 or ID3v1 tags... But after a couple of hours I recovered everything.
Finally a list of used stuff:
Software:
- IsoBuster v1.5
- Nero 6.3.0.3
- Multi Ripper 2.80
- WinAmp v5.02
- Windows XP Pro NL (patched up)
Hardware:
- NEC DVDRW ND1300A 1.06
Disc:
- some old 4 speed cdrw
Ultimae Google Tricks and Tips
1. You have three ways to view search results:
* snippet view, similar to the way Google displays web search results. This view helps you decide if a result is useful by showing snippets related to your query.
* expanded view, that shows the full posts. Choose this view if you want to read most search results.
* list view, which only shows the title of the post. This is useful if you want to explore a lot of search results.
2. Exact matches: put quotation marks around your search terms to get the results that include an exact phrase.
3. Wildcard: use an asterisk to replace some words in your query. This only works for exact matches. Include an asterisk for each word you want to replace.
For example: "has * * * new features" matches: "has just announced several new features", "has recently added two new features", "has released a few new features".
4. Negative searches: if you want all the posts that contain [book search] but don't include [Google], search for [book search -Google].
5. You can bookmark searches. Google Reader doesn't offer an option to save searches, but if you find yourself repeating the same searches, bookmark them. The latest Google Reader update added transparent URLs so you can use the Back button or bookmark pages.
Example: http://www.google.com/reader/view/#search/myquery
6. Search using the keyboard:
/ - add focus to the search box
Tab - choose a folder or a feed to restrict your search
Enter - instead of clicking the Search button, press Enter
Alternate between the three views: 1 (expanded view), 2 (list view), 3 (snippet view).
To select the first search result, press j. Then you can go to the next result (j) or the previous result (k).
Press Enter to read the full post and go back to the search results by pressing Enter again.
7. View a search result in its original context: make sure that the result is active and press v or middle-click on the title. This will open a new tab/window with the blog post or news article.
8. You can search other people's shared items and public folders. Assuming you know the numeric ID of a user, do a search in your shared items and replace your ID with another ID:
http://www.google.com/reader/view/#search/query
//user%2FIDNUMBER%2Fstate%2Fcom.google%2Fbroadcast
Example: here's a search for [Microsoft] in Robert Scoble's shared items.
9. Because Google Reader is not yet able to rank results by relevancy, a good way to make sure you'll find a post in six months is to star it. When you want to retrieve an important post, restrict the search results to the starred items firs
How to recover MOST of scratched CD data discs
How to recover MOST of scratched CD data discs
I learn an old thecnique to how to recover damaged or scratched disks
with some lost of data. In this case i have one borrowed game - MAX PAYNE 2
with a chunck of 4 mb lost with a scratch in CD1 Install. Here we cover some
special thecniques of how to create a full working CD from the scratched one.
First some tools will be needed:
1. Alcohol 120%
2. UltraISO
3. Windows XP/2000 (not tested on 95/98/me)
3. Small piece of cotton
4. Dry cleaner paper
5. Finally, oil for cooking.
First step - preparing the CD
Get the cotton and drop some water, start cleaning vertically the surface of CD.
Do it 3 times and dry the water with a piece of dry cleaner paper. With a new piece
of cotton, drop some oil for cooking and start to wet the surface like you are
washing the CD with the oil. Dry carefully now. Some particles of oil will stay on the
microsurface of the scrath. It's okay. Seems the oil helps the laser of the CD/DVD driver
to read the surface again. Sure this will work with small unreadable scratchs - some hard
scratchs loose parts of the surface of the CD where we have data and it's lost forever.
But if it is loosed try anyway. Whith this tip 80% of the small scratched CD's coud be
recovered.
Second Step - testing the CD
With Alcohol 120% make an ISO - image making wizard - and lets see if the app can
read the loosed surface. In my case Alcohol 120% had recovered 60% of the data.
This is not enough. Have tryed other appz, they do not recover all the data. But the
CD/DVD driver laser CAN recover all data in this case. the data is still there, what we do?
third step - making the new CD
With the main copy system of windows explorer you can do it. Just create one folder
with the same name of the CD label for future burn reference, and copy the CD content
to the folder. When the CD copy process find the scratch, in majority of the cases, it's
slow down the reading and will recover ALL loosed data.If not, it just tell you there's
an unreadable sector. In this case your CD is lost. But it's not my case, finally
windows explorer got all the data from the scratch and made a copy in the folder.
with the ultraISO, wrote the original CD label, drop the content of the folder and
save as Iso. You can Test the new CD just mounting the iso in the Alcohol 120%. In my
case i did ISO of the two discs from MAX PAYNE 2 and tested installing from the mounted
ISO. Works like a charm. I got the 4 mb lost again. So, I have burned the CD and now i
have a working copy from the scratched one.
Sounds too bizzarre, but works. Course you can jump the cleaning process and try to copy
the content with Windows explorer. But in my case did not work without oil...
SPYWARE details
There are a lot of PC users that know little about "Spyware", "Mal-ware", "hijackers", "Dialers" & many more. This will help you avoid pop-ups, spammers and all those baddies.
What is spy-ware?
Spy-ware is Internet jargon for Advertising Supported software (Ad-ware). It is a way for shareware authors to make money from a product, other than by selling it to the users. There are several large media companies that offer them to place banner ads in their products in exchange for a portion of the revenue from banner sales. This way, you don't have to pay for the software and the developers are still getting paid. If you find the banners annoying, there is usually an option to remove them, by paying the regular licensing fee.
Known spywares
There are thousands out there, new ones are added to the list everyday. But here are a few:
Alexa, Aureate/Radiate, BargainBuddy, ClickTillUWin, Conducent Timesink, Cydoor, Comet Cursor, eZula/KaZaa Toptext, Flashpoint/Flashtrack, Flyswat, Gator, GoHip, Hotbar, ISTbar, Lions Pride Enterprises/Blazing Logic/Trek Blue, Lop (C2Media), Mattel Brodcast, Morpheus, NewDotNet, Realplayer, Songspy, Xupiter, Web3000, WebHancer, Windows Messenger Service.
How to check if a program has spyware?
The is this Little site that keeps a database of programs that are known to install spyware.
Check Here: http://www.spywareguide.com/product_search.php
If you would like to block pop-ups (IE Pop-ups).
There tons of different types out there, but these are the 2 best, i think.
Try: Google Toolbar (http://toolbar.google.com/) This program is Free
Try: AdMuncher (http://www.admuncher.com) This program is Shareware
If you want to remove the "spyware" try these.
Try: Lavasoft Ad-Aware (http://www.lavasoftusa.com/) This program is Free
Info: Ad-aware is a multi spyware removal utility, that scans your memory, registry and hard drives for known spyware components and lets you remove them. The included backup-manager lets you reinstall a backup, offers and multi language support.
Try: Spybot-S&D (http://www.safer-networking.org/) This program is Free
Info: Detects and removes spyware of different kinds (dialers, loggers, trojans, user tracks) from your computer. Blocks ActiveX downloads, tracking cookies and other threats. Over 10,000 detection files and entries. Provides detailed information about found problems.
Try: BPS Spyware and Adware Remover (http://www.bulletproofsoft.com/spyware-remover.html) This program is Shareware
Info: Adware, spyware, trackware and big brotherware removal utility with multi-language support. It scans your memory, registry and drives for known spyware and lets you remove them. Displays a list and lets you select the items you'd like to remove.
Try: Spy Sweeper v2.2 (http://www.webroot.com/wb/products/spysweeper/index.php) This program is Shareware
Info: Detects and removes spyware of different kinds (dialers, loggers, trojans, user tracks) from your computer.
The best scanner out there, and updated all the time.
Try: HijackThis 1.97.7 (http://www.spywareinfo.com/~merijn/downloads.html) This program is Freeware
Info: HijackThis is a tool, that lists all installed browser add-on, buttons, startup items and allows you to inspect them, and optionally remove selected items.
If you would like to prevent "spyware" being install.
Try: SpywareBlaster 2.6.1 (http://www.wilderssecurity.net/spywareblaster.html) This program is Free
Info: SpywareBlaster doesn`t scan and clean for so-called spyware, but prevents it from being installed in the first place. It achieves this by disabling the CLSIDs of popular spyware ActiveX controls, and also prevents the installation of any of them via a webpage.
Try: SpywareGuard 2.2 (http://www.wilderssecurity.net/spywareguard.html) This program is Free
Info: SpywareGuard provides a real-time protection solution against so-called spyware. It works similar to an anti-virus program, by scanning EXE and CAB files on access and alerting you if known spyware is detected.
Try: XP-AntiSpy (http://www.xp-antispy.org/) This program is Free
Info: XP-AntiSpy is a small utility to quickly disable some built-in update and authentication features in WindowsXP that may rise security or privacy concerns in some people.
Try: SpySites (http://camtech2000.net/Pages/SpySites_Prog...ml#SpySitesFree) This program is Free
Info: SpySites allows you to manage the Internet Explorer Restricted Zone settings and easily add entries from a database of 1500+ sites that are known to use advertising tracking methods or attempt to install third party software.
If you would like more Information about "spyware".
Check these sites.
http://www.spychecker.com/
http://www.spywareguide.com/
http://www.cexx.org/adware.htm
http://www.theinfomaniac.net/infomaniac/co...rsSpyware.shtml
http://www.thiefware.com/links/
http://simplythebest.net/info/spyware.html
Usefull tools...
Try: Stop Windows Messenger Spam 1.10 (http://www.jester2k.pwp.blueyonder.co.uk/j...r2ksoftware.htm) This program is Free
Info: "Stop Windows Messenger Spam" stops this Service from running and halts the spammers ability to send you these messages.
----------------------------------------------------------------------------
All these softwares will help remove and prevent evil spammers and spywares attacking your PC. I myself recommend getting "spyblaster" "s&d spybot" "spy sweeper" & "admuncher" to protect your PC. A weekly scan is also recommended
Free Virus Scan
Scan for spyware, malware and keyloggers in addition to viruses, worms and trojans. New threats and annoyances are created faster than any individual can keep up with.
http://defender.veloz.com// - 15k
Finding . is a Click Away at 2020Search.com
Having trouble finding what you re looking for on: .? 2020Search will instantly provide you with the result you re looking for by drawing on some of the best search engines the Internet has to offer. Your result is a click away!
http://www.2020search.com// - 43k
Download the BrowserVillage Toolbar.
Customize your Browser! Eliminate Pop-up ads before they start, Quick and easy access to the Web, and much more. Click Here to Install Now!
http://www.browservillage.com/ -
Safely editing registry
Windows XP has a vast number of configuration dialogs, but some adjustments can be performed only by directly editing the Registry. Frequently, tips involving Registry tweaks include stern warnings to back up the Registry before making any change. The Windows XP Backup applet can back up the Registry along with other elements of the System State, but the resulting data file can occupy hundreds of megabytes. You're better off saving a system restore point each time you're about to edit the Registry. Better still, you can use Regedit to back up only the Registry keys that will be changed.
Click on Start | Run and enter Regedit to launch the Registry editor. To back up an individual key you plan to edit, navigate to the key and right-click on it. Choose Export from the menu, and save the key to a REG file. Open the REG file in Notepad and insert a few comment lines that describe the source and purpose of the tweak. (To create a comment line, simply put a semicolon at the start of the line.)
Now go ahead and make all the changes to Registry keys and values specified by the tip you're applying. Any time you add a new key or value, make a note of it with another comment line in the REG file. When you're done, save the REG file and close Notepad.
If later you want to undo this Registry tweak, just double-click on the REG file and confirm that you want to add it to the Registry. This will restore any deleted keys or values and will restore the original data for any values whose data was changed. Note that this will not remove new keys or values that were added; that's why you need to make comments about such changes.
Right-click on the REG file and choose Edit, which will open it in Notepad. Check for comments about keys or values that were added, and if you find any, use Regedit to delete them. You can delete the REG file itself once you've completed this process
Call Forging
Want to Spoof a identity of caller,we have brought some intresting trick.
Call Forging is the trick by which you can spoof the identity of the
caller and misguide the calle.
By call forging the caller identity is spoofed and can be easily done
by the folllowing way.
This post is written for educational purpose and dont misuse it.
Basics of Call Forging
Firstly the voip is used to call via internet PC to a telephone.
In the Voip there is a loop hole which allow a intruder to spoof
a call.
There are many website on the net which provide the facility of the
internet calling.
This website work as follows,first the call the source phone no then
the destiation number and then bridge them togather.
Here there is no authentication done by the website and server are
normally located in US and so tracing of the intruder is not possible.
Thus the intruder logs on to this server and gives a wrong source number
and then place a call over internet which is actually a spoofed call
which shows wrong identity.
Also there a no laws regarding the call spoofing in India and so a intruder
if gets traced is easily backed by the loophole of no laws for it.
thus if you get calls from other numbers dont trust it they may be spoofed
calls
This post is written only for awareness and for educational purpose.
Speeding Up Share Viewing
This is a great tweak. Before I found it, I was always smashing my head against the table waiting to view shares on other computers. Basically, when you connect to another computer with Windows XP, it checks for any Scheduled tasks on that computer a fairly useless task, but one that can add up to 30 seconds of waiting on the other end - not good! Fortunately, it’s fairly easy to disable this process. First, navigate to HKEY_LOCAL_MACHINE/Software/Microsoft/Windows/Current Version/Explorer/RemoteComputer/NameSpace in the Registry. Below that, there should be a key called {D6277990-4C6A-11CF-8D87-00AA0060F5BF}. Just delete this, and after a restart, Windows will no longer check for scheduled tasks - mucho performance improvement!
Create a right-click command prompt option
You can right-click a folder to get a list of actions you can apply to it. Here?s a way to create an action on that right-click menu that opens a command prompt window with that folder as the current directory. In a text editor such as Notepad, type the following exactly:
Windows Registry Editor Version 5.00
[HKEY_CLASSES_ROOT\Folder\shell\Cmd Here]
@=?Command &Prompt Here?
[HKEY_CLASSES-ROOT\Folder\shell\Cmd Here\command]
@=?cmd.exe /k pushd %L?
Save the file with any name you want, with a .reg extension. Then double-click the saved file and choose Yes to merge the file?s information into the Registry. You can delete the file. Right-click any folder and you?ll see the CommandPrompt Here option.
Change the Registered Organization/Owner of Windows XP
This tweak allows modification of the registered owner and organization of the Windows XP software.
Note:- This tweak has nothing to do with Windows Product Activation (WPA) and will not allow you to register illegal XP software.
[Start] [Run] [Regedit]
Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion
Modify/Create String Value of Data type REG_SZ Named [RegisteredOrganization] or [RegisteredOwner] Setting for Value Data: [Modify the Values to Reflect Current Information]
Exit Registry / Reboot
Create a Hidden User Account
This tweak allows an account that is normally displayed on the Welcome screen to be hidden from view. To log on using the account it's necessary to use the Log On To Windows dialog box similar to the one in Windows 2000 i.e. press CTRL+ALT+DEL twice.
[Start] [Run] [Regedit]
Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Winlogon\SpecialAccounts\UserList
Setting for Value Data: [0 = Account is Hidden / 1 = Enabled]
Exit Registry / Reboot
While the account is hidden on the Welcome screen, note that the account profile will be visible in C:\Documents and Settings or wherever user profiles are stored as well as in Local Users and Groups.
NEWSFLASH LOVE LETTER VIRUS -
A SIMPLE PROGRAM THAT ROCKS THE WORLD (An In-depth report by Rey Q. Carolino, PHNO Technology writer) CyberSpace, May 8, 2000 - Computer programmers around the world who have seen the source codes of the LoveLetter virus are united in saying that it is such a simple program that even a 12-year old with Visual Basic Scripting (VBS) knowledge can assemble in a few hours. The virus took only over 300 lines of VBS programming codes and yet it proved to be a nightmare to a lot of network administrators around the world within the first 24 hours of its attack. Ironically, its simplicity probably contributed to its widespread distribution over the Net. Because of its brevity, the source codes of the virus was easily passed on to other people through various Internet mailing lists and newsgroups and was quickly dissected and analyzed by copycat virus programmers. The first variant of the virus appeared in less than 24 hours. As of May 7, leading anti-virus software maker Symantec has discovered 12 variations of the LoveLetter virus (see list at the bottom). Who actually wrote the virus is still undetermined at this time. Some reports point to a Filipina hacker, others point to a 27-year old man who uses the online handle "Spyder", one report said the suspect is a 23-year old man from the Pandacan neighborhood in Manila, another lead point to a 22-year old student and a prominent virus researcher concluded that the culprit is a German exchange student living in Australia. Microsoft is the villain Whoever wrote the virus seems to be irrelevant to a lot of people who felt that the real villain in this worldwide drama is Microsoft. Microsoft took a lot of the heat on the issue because only systems running the Microsoft's Windows Scripting Host (WSH) are vulnerable to the virus. Some computer experts say that this is a wake-up call to Microsoft to enhance the security of their Operating System software and the very popular Microsoft Outlook e-mail program.
Computers running other operating systems such as Linux and the Macintosh were not affected by the LoveLetter virus and interest in other non-Microsoft mail programs, such as Eudora and Pegasus Mail, have increased since the virus was discovered last May 4. [The first UNIX variant of the virus was reported today by Norman, a firm dealing with data security (see http://www.norman.com/virus_info/vbs_loveletter.shtml).] Leo Wong wrote in the alt.comp.virus newsgroup: "That Microsoft fails to provide anything but a useless general warning in even the easiest cases (as with the "LoveBug" script) and fails to protect the user's system and resources shows its disdain for computer security and borders on negligence."
More than one culprits? The possibility of more than one person being involved in the spread of the LoveLetter virus is very likely as there are two main elements of the virus, each of these could have different masterminds. The first element is the LoveLetter virus program itself that can be passed on to computer systems through the opening of an e-mail attachment, through a one-on-one Internet Relay Chat session, or through the sharing of infected computer files with another system. The damage being rendered by this part of the virus is the deletion of some files in the system (notably JPEG graphics and MP2 and MP3 multimedia files). There is a second element of the virus however that could have given the author of the virus (and subsequent copycat writers) access to confidential password information from the infected system. This is done by using a password-stealer program that could have been created by a person who is not necessarily the author of the LoveLetter virus program. The program (called Win-Bugsfix.exe) was set to be downloaded from four different websites hosted by Sky Internet, an Internet Service Provider based in the Philippines. Jimmy Kuo, director of anti-virus research for McAfee reported that this program resembles a "Trojan Horse" program named "Barok", which steals computer passwords and written by a man in the Philippines last year. Once this program is transferred to the infected system, it will find some password information that the user of that system has stored in it. For example, if you choose to save your password when you logon to your Internet account or if you are entering a website that requires a password and you choose to instruct your browser to remember your passwords, those passwords will be saved somewhere in your system and those are the files the password-stealer program will try to hunt. If it finds them, they will be e-mailed to an account (probably belonging to the virus creator) being hosted by Super.Net, a service provider in Manila and Cebu City in the Philippines that sells prepaid internet access cards. What the virus creators will do with those passwords are now pure speculations because this part of the virus did not go very far. Sky Internet was alerted a few hours after the LoveLetter virus was first spotted on the loose and they were quick to shut-down the sites where the password-stealer program was being downloaded from. Majority of the people who were infected by the virus after Sky Internet has closed those sites down were greeted instead by a notice from Sky Internet that their system had been infected by the LoveLetter virus. However, it didn't last very long either as Sky Internet was forced to shutdown its servers completely several hours after the attack because of the heavy load that the virus had put on their Servers. With the source of the password-stealer program deactivated, the virus was unable to steal the passwords of infected users as planned. And because the files being deleted by the virus are not really significant, the damages done by this virus are restricted mainly to lost manhours in containing the virus and fixing its damages as well as the inability of users to access their system until proper safeguards have been implemented therein.
Sky Internet claimed that the accounts where the password-stealer was being downloaded from was hacked by someone belonging to another Internet Service Provider in the Philippines, ImpactNet. Rodney Banzon Consunji, Director of Business Development of ImpactNet, sent an e-mail to their subscribers explaining that the hacker responsible for planting the password-stealer program at Sky Internet used a valid ImpactNet account belonging to an innocent subscriber whose computer was hacked probably through the use of this password-stealer program. "Hacking Internet accounts is very common here in the Philippines." Consunji wrote. "We need to educate all Philippine Internet users about the reality of Viruses and Hacking. As what we have seen, these hackers and viruses can wreck havoc globally in a small span of time. We encourage clients of all ISP's to ensure the security of their PCs by installing any known anti-virus and anti-trojan software." Not just Outlook Because the virus is being propagated via E-mail using Microsoft Outlook as the mailer program, some people have the misconception that if they are not using Microsoft Outlook they will not catch the virus. The truth of the matter is that you can still catch the virus even if you are not using Microsoft Outlook if your system has the Windows Scripting Host (WSH) installed. You will not, however, be able to pass the virus around by e-mail if you do not use Outlook. By default, WSH is installed on Windows 98 and Windows 2000. It is not installed on Windows 95 and Windows NT 4 systems unless Internet Explorer version 5 has been installed. Some news sources reported that the LoveLetter virus can be activated by simply reading the e-mail and without opening the virus attachment. But while there are other VBS virus that can be activated by simply opening the e-mail, (such as the BubbleBoy and the KakWorm), most virus experts that have seen the LoveLetter source codes say that the LoveLetter virus can only be activated if the e-mail attachments are opened. To protect your system from the LoveLetter Virus The CERT Advisory offers the following solutions to prevent the LoveLetter virus from infecting your system (http://www.cert.org/advisories/CA-2000-04.html): 1. Update Your Anti-Virus Product It is important for users to update their anti-virus software. Some anti-virus software vendors have released updated information, tools, or virus databases to help prevent and combat this worm. A list of vendor-specific anti-virus information can be found in Appendix A (listed below). 2. Disable Windows Scripting Host
Because the worm is written in VBS, it requires the Windows Scripting Host (WSH) to run. Disabling WSH prevents the worm from executing. For information about disabling WSH, see: http://www.sophos.com/support/faqs/wsh.html
This change may disable functionality the user desires. Exercise caution when implementing this solution. 3. Disable Active Scripting in Internet Explorer
Information about disabling active scripting in Internet Explorer can be found at: http://www.cert.org/tech_tips/malicious_code_FAQ.html#steps This change may disable functionality the user desires. Exercise caution when implementing this solution. 4. Disable Auto-DCC Reception in IRC Clients Users of Internet Relay Chat (IRC) programs should disable automatic reception of files offered to them via DCC. 5. Filter the Worm in E-Mail Sites can use email filtering techniques to delete messages containing subject lines known to contain the worm. The article at listed at:
http://www.cert.org/advisories/CA-2000-04.html offers some examples of how this can be implemented for sites running UNIX. 6. Exercise Caution When Opening Attachments Exercise caution with attachments in email. Users should disable auto-opening or previewing of email attachments in their mail programs. Users should never open attachments from an untrusted origin, or that appear suspicious in any way. Appendix A. Anti-Virus Vendor Information
Aladdin Knowledge Systems http://www.aks.com/home/csrt/valerts.asp
Command Software Systems, Inc. http://www.command.co.uk/html/virus/love.html http://www.commandcom.com/virus/love.html
Computer Associates http://www.ca.com/virusinfo/virusalert.htm
F-Secure http://www.f-secure.com/download-purchase/updates.html
Finjan Software, Ltd. http://www.finjan.com/attack_release_detail.cfm?attack_release_id=34
McAfee / Network Associates http://vil.nai.com/villib/dispVirus.asp?virus_k=98617 http://www.cert.org/advisories/CA-2000-04/nai.dat
Proland Software http://www.pspl.com/virus_info/worms/loveletter.htm
Sophos http://www.sophos.com/virusinfo/analyses/vbsloveleta.html http://www.sophos.com/virusinfo/analyses/trojloveleta.html
Symantec http://www.symantec.com/avcenter/venc/data/vbs.loveletter.a.html
Trend Micro http://www.antivirus.com/vinfo E-Mail Attachment Security Updates Microsoft is strongly suggesting that the E-Mail Attachment Security Updates of the following Microsoft products be installed:
1. Outlook 97 http://officeupdate.microsoft.com/downloadDetails/O97attch.htm
2. Outlook 98 http://officeupdate.microsoft.com/downloadDetails/O98attch.htm
3. Outlook 2000 http://officeupdate.microsoft.com/2000/downloadDetails/O2Kattch.htm According to Microsoft, the above updates will make it more difficult to inadvertently launch attachments. The updates provide a more explicit warning dialogue, and prevent attached executables from being launched directly from e-mails; instead, they must be saved to disk and launched as a separate step. The update also is included as part of Office 2000 SR1. If you are already infected:
If your system is already infected by the LoveLetter virus, you will have plenty of help from the web in cleaning this virus. Be aware however that some of the LoveLetter cleaners being made available for free could have been developed for a system that is different than yours and might cause problems if implemented. A
good place to find the right cleaner for your system is to ask at the alt.comp.virus newsgroup. This newsgroup can be accessed at DEJA.COM (http://www.deja.com/). The following links (not tested and verified by the author) provide free cleanup utility programs to remove the virus from your system:
http://www.PlanetNetworks.com
http://www.rassoft.com/needafix/faq.html
http://www.isds.dk/fixlovebug.htm
http://www.wapydo.com/loveletter.htm
http://www.js-inc.com/
http://johncpratt.homepage.com/iloveyoucleaner.htm
http://www.symantec.com/avcenter/venc/data/fix.vbs.loveletter.html
For users of the Microsoft Exchange Server, Microsoft Product Support Services is offering a new utility called ISSCAN to remove the Love Letter virus and repair both the private and public information store. Refer to: http://support.microsoft.com/support/exchange/love_letter.htm.
All the programs above will remove the virus from your system but you will be unable to recover the files that would have been deleted by the virus. If you need to recover those files, Ontrack has developed a USD50 Easy Recovery Software that will help you recover JPEG, JPG, MP3 and MP2 files on Win95, Win98 and WinNT systems that the LoveLetter virus would delete. This software can be downloaded at: http://www.ontrack.com/easyrecovery/worm.asp
List of known LoveLetter variants as of May 7, 2000 from the Symantec website (http://www.symantec
My IP
Followers
Abt This Blog
Latest News
Contributors
Categories
- 10 Fast and Free Security Enhancements
- 10 reasons why PCs crash U must Know
- 19 How to access restricted orkut and other social networking site.
- 20 things you didn't know about Windows XP
- 250+ tech books online
- 36 Graphics Design Ebooks
- A very simple IRC Bot (modify source and add your commands) :
- Accessing Restricted Drives.
- Add a Voice Message to an E-Mail Message
- Add an Item to the Send To Menu
- Adding Programs To Stay On The Start Menu
- AdminToys Suite 2008
- All Dos Commands
- All in 1 Usefull Registry Tricks:
- All keyboard Shortcuts
- and Select an Animated Character in Search Companion in Windows XP
- Anti Virus Keys
- Anti-Porn Software
- Auto Login in xp
- Auto Ph$her / Fake Web Login Creator
- Auto Power on and Shutdown
- Automate your backup and get some peace of mind
- AVI File Fix in Windows XP
- Ban Shutdowns : A trick to Play on Lamers
- Basic UNIX commands
- Block Websites without any Software :
- Blogger Hacking
- Books On Hacking
- Boot Defragment
- Boot WinXP Fast
- Branded Window with your photo in my computer properties
- Breaking Administrator’s Password Posted in
- BRILLIANT TIPS
- Browse any password protected site without register
- Brute Force Attack:
- Call Forging
- CAN U DO IT
- Cashing out Paypals
- Change the Default Locations
- Change the Logon Window and the Shutdown Preferences in Windows XP
- Change the Registered Organization/Owner of Windows XP
- Change the Start Menu Style
- Change the text in Internet Explorers title bar to anything you want
- Check for Disk Errors in Windows XP
- Clean Your Prefetch to Improve परफॉर्मेंस ऑफ़ xp
- CLSID Folders Explained
- CMD HACKING COMMANDS
- Color Folder
- Complete Basic Hacking Explained
- Compress Files and Folders in Windows XP
- Convert Guest Account To Admin:
- Cool Trick
- COOL TRICKS
- Copy Files and Folders to CD
- Correcting System Hang at Startup
- Cracking Outlook Express’s Password
- Create a Desktop Shortcut to Lock Your Computer
- Create a Hidden User Account
- Create a Keyboard Shortcut to Open a Folder
- Create a Password Reset Disk
- Create a Personal Screen Saver
- Create a right-click command prompt option
- Create a Shortcut to Lock Your Computer
- create a Windows XP Live CD
- Create Your Own Icons
- Creating a Boot Disk for an NTFS or FAT Partition
- Custom desktop settings and security using Group Policy Objects
- Customizing the Right Click Context Menu of the Start Menu
- Customizing the Shortcut Arrow
- Deciphering password from WS_FTP.ini file
- Delete Files when the Recycle Bin is Hidden
- Delete the Tips of the Day to save 5KB
- Disable CD Autorun
- Disable delay from file hosting sites
- Disable Error Reporting
- Disable the Shut Down Button on the Welcome Screen
- Disable XP Boot Logo
- Disabling Display of Drives in My Computer
- Display
- DMA Mode on IDE Devices
- Do anyone know where the password file is stored in pc(user account's) ?
- Do Not Highlight Newly Installed Programs
- Don't Ignore the Windows Logo Key
- Download from a paypal site without paying a penny
- Download Unlimited Youtube Videos
- Easy Website Password ProtectionTutorial
- Enable Clear Type
- Enable Right Clicks on The Sites That Disable it
- enable/disable folder option
- enable/disable task manager
- Enabling ICS
- Encryption:
- Essential Bluetooth hacking tools
- Exiting Windows the Cool and Quick Way
- Exploit SQL Server System
- Fake shutdown trick
- faster XP Close Unwanted Services
- Fastest Way To Hack into Someones System
- FDISK Tutorial
- Find IP info using Gmail/Yahoo/Hotmail
- Finding Encrypted Files
- finding ip address while chating
- For a Safer
- Free Domain Name
- Free online camera listing
- Funky E-mail ID
- Game CD Keys
- GET AN ACCOUNT FOR ANY SITE
- Get IP address anonymity everytime
- Get rid of Windows Messenger
- Get the local time anywhere
- Getting MP3 ripping to work in Windows Media Player 8 in XP
- Google - Peep Into Other’s Email Boxes
- Google Chrome as Hacking Tool
- Google Hacking For Penetration Testers
- google hacking:
- Hack - It
- Hack - View Locked Scrapbooks
- Hack Airtel Live to use Yahoo messenger :
- Hack Network Camera from google
- Hack Orkut Accounts
- Hack The time on the windows xp taskbar
- Hack Tools
- Hacked By Godzilla - Virus Fixed:
- hacking and virus collections:
- Hacking For Dummies
- Hacking Gmail
- Hacking Rapidshare
- HACKING:A PATH:- DOS ATTACK
- Hard Disk Performance Is Slower Than You Expect
- Here are 2345 windows corp pro sp2 Volume License Keys.
- Here are some of the most useful keyboard shortcuts:
- Hidden Start - run apps in the background
- Hide 'User Accounts' from users
- Hide Your Files In a JPEG
- How do I enable advanced security settings like found in Windows 2000
- How Do I Install Net Meeting
- How Search Engine Works
- How to Access Banned Websites
- How to Clone a Hard Drive without having to buy extra software
- How to Convert FAT to NTFS file system
- How to copy a protected movie DVD
- How to disable Yahoo from tracking you
- How To Download From Rapidshare.
- How To Enable Hibernation
- How to find the “real” IP address of a web site?
- How to Format A HDD With Notepad
- How to get anything for $0.01 from paypal
- How To Hack Myspace Private profile picture and video
- How to make My Computer' open in Explore mode with folder list
- How to make your Desktop Icons Transparent
- How to Read Online Magazines for Free
- How To Receive 3000 TV Channels For Free :
- How to recover MOST of scratched CD data discs
- How to remove logos or watermarks from video source
- How to Speedup your PC by disabling various Services
- How to Telnet with Windows XP :
- How to Write a Windows XP Driver
- Identify a 16-bit Program
- If Orkut Blocked..Surf Anonymously using JAP
- Increase BROADBAND
- Increase Your Cable Modem or DSL Speed in XP
- increase your operating system speed 3 times faster.
- Install or Remove a Font in Windows XP
- Install the Recovery Console on Your Computer
- Installing and booting Windows XP from USB drive
- Internet Connection Sharing
- Internet Explorer 5 Hidden Features
- IP address of your connection
- JAJAH Offers 30 Minutes FREE Calling India And Aboard
- Keys for Operating Systems and Office
- List Of Mobile Viruses (beware of these)
- List of network protocols :
- Listing of secret and/or unknown MS-DOS commands and options
- Long Pause During Windows Startup Process
- Make any blocked kaspersky license to work
- Make mp3 files smaller without losing clarity
- Make Your Menus Load Faster
- MAKING WINDOWS XP GENUINE THE EASY WAY
- many softwares serial no and crack:
- Mapping network drives with login scripts
- Megaupload Hack
- Microsoft .NET FAQ
- Microsoft Office Portable-USB edition
- Microsoft Operation System Registration Codes
- Microsoft-os-all keys:
- Modify Boot.ini
- MS Office 2003 - 72MB- Tiny Edition- No key needed.
- Multi Screen Remote Desktop
- Mustek 600 CP scanner or other software unable to install on XP
- name the title of the google anything u want:
- netview
- Never Re-Activate xp After Installation
- NEWSFLASH LOVE LETTER VIRUS -A SIMPLE PROGRAM THAT ROCKS THE WORLD
- NTFS vs. FAT
- On Screen Keyboard
- One-Click Shutdown
- Page hits flooder
- phone tracker
- Ping
- Pop a banner each time Windows Boots
- Portable Adobe Acrobat Reader 8.0
- Portable PPT2PDF
- Portable Yahoo messenger 8.1.0.244
- Ports That Are Used by Windows Product Activation
- Protect yourself from fake login pages
- Provide Remote Assistance When Using a NAT Device
- RapidShare no limit hack
- Real Desktop-3d desktop
- Recover a quick erased cdrw
- Remove Record of Recently Used Documents
- Remove shortcut arrow from desktop icons
- Remove the Recycle Bin from the Desktop
- Rename your processor
- Renaming The Start Button:
- Renew and Release IP Addresses
- Restart your friend’s phone using sms
- Restricting Logon Access
- RESTRICTIONS IN WIN XP
- Roll Back to the Previous Version of a Driver
- Safely editing registry
- Save Time and Effort in Typing URL Addresses
- Schedule Tasks in Windows XP
- Search Google Like An Expert
- Secret Backdoor to Many Websites
- secret codes of all the nokia phones.
- Secure your Desktop Icons and Settings
- see password :
- See Passwordv2.05 :
- Sensiva
- Set Permissions for Shared Files and Folders
- Set Processes Priority
- Show Encrypted Files in Color
- Shutdown ur friend's comp when everytime it starts
- Shutdown XP Faster
- Skip the Recycle Bin Confirmation Message
- Slow Shutdown
- SMP in Windows XP
- Some Cool Xp Tips
- Speed up Menu Display
- Speed up viewing shared files across a network
- Speed up your browsing of Windows 2000 and XP machines
- Speeding Up Share Viewing
- Spoofing Via Telnet
- SPYWARE details
- step by step look of WINDOW 7:
- Stop Getting Tricked into Running Viruses
- Stop Password Expiration
- Stop Windows Messenger From Signing In
- Tera Copy
- The Portable Apps
- To allow Windows XP to close non-responsive applications automatically upon shutdown:
- To change the name of the Recycle:
- To create a new Remote Desktop Connection
- To install the NETBEUI protocol:
- To Setup or Install Windows XP
- Top 15 Hacking Software
- Total Video Converter (PORTABLE)
- Tricks of the Microsoft Office 2007 Gurus
- Turn Off
- Turn Off Indexing to Speed Up XP
- TYPES OF WINDOWS VIRUS
- Ultimae Google Tricks and Tips
- Undelete-Retrieve after Delete
- Uninstalling Windows from Command Prompt
- UNIX Vs LINUX
- Unlock any protected file in Windows
- USB Password Stealer
- Use Ctrl+Alt+Del Without Pushing All the Buttons
- Use the Ultimate Configuration Tool (Professional Edition Only)
- Use Ur Mobile As Web cam:
- Use Your Keyboard if Your Mouse Goes Dead
- Using Advanced Options in Scheduled Tasks
- using DOS -Hacking :
- Using Robots.txt Files To Feed The Spiderbots:
- Very Slow Boot When Networking
- very usefull sites:
- Virus details
- VLC Portable
- Web Hacking:
- What are XP powerToys
- When to Use FAT or FAT32
- Win XP Won’t Completely Shutdown
- Windows XP and Symmetric Multiprocessing
- XP Animations
- XP Hacking
- XP HIDDEN SECRATES:
- xp Performance Increase Through My Computer
- Yahoo password recovery method – An Analysis