Exploits

Another resent question I have received from my fellow students is “How do I get around Deep Freeze?�? It isn’t something that I can just tell a person while running around the track at school during PE class. So, Eric comes to your rescue again and explains it all, but first, if you are on a school computer and your teacher has Vision installed, you may want to do some stuff before reading this article so he/she can’t see what you’re doing.

There is a couple ways of stopping Vision. First, go to C:\Program Files\Master Solution you should see a folder inside called Vision, open it and see a program called MEUCONF, open it and hit “Run Manually�?, and that should solve that problem.

Another way is by simple unplugging the RJ45 connector from the NIC (Or in English, disconnect the wire coming from the networking card.)

FOR WINDOWS 95/98/ME:
Deep Freeze is a VxD (Virtual Device Driver) found in C:\Windows\System\Iosubsys\persifrz.vxd.
So the only way for hacking it is using a boot-disk and deleting the file. Yes…there is more files in C:\program~1\hypert~1\deepfre~1 but those are obsolete to us. They have nothing to do with what we are doing.

Note: persifrz.vxd IS Deep Freeze. Hence, deleting it will kill it completely

If you can’t boot from the floppy because your boot order is not setup that way, and your teacher has password-protected the bios, you can always 1-pull the battery out of the motherboard 2- move the “reset jumper�? by the bios to reset it.

FOR WINDOWS 2K/XP:
You need to delete 2 drivers and 1 service (I’m sure you can figure out the the paths)

DepFrzLo.sys (kernel driver)
DepFrzHi.sys (filesystem driver)
dfserv.exe (service)
frzstate.exe (password dialog)
persis00.sys (password file and “on/off switch”)

You should be good to go.

You should take Questions/Comments to the “Comments�? section of this post.

Finding myself always being asked questions at school about hacking, security, and how to exploit the faults in the schools server, and not being able to answer them because of the simple fact that I’m in Cyber Corp (Geek Squad of the School, like the cyber police.) and how I could get in trouble for letting the information out. It suddenly struck me that I should post these hacks, security issues, and exploits on “MY BLOG!!!� Yup…finally hit me that I could tell you everything you wanted to know about how to crack passwords, and why I hate Microsoft so much…are you ready?

One of the most annoying things about Windows is that in order to have a decent experience, you need to reformat and reinstall Windows once every 6 months at most, or you will have to endure the pain and suffering of all hell breaking loose on your computer, once a year. The reasons behind this are long and complex to an extent, but primarily they stem from the fact that Windows requires software manufacturers to repeatedly overwrite various shared components with their own custom versions, hence making them vulnerable. To make matters worse, software writers are allowed to pitch files all over your hard drive. On a good day an uninstaller will seek and destroy the majority of these files. So the uninstallers, if they don’t fail outright, leave a lot of junk behind. All of this leads to awful performance over time, and an increasing number of crashes and other crap. Since MicroSucks is so stupid and won’t get rid of there registries, and I have no clue why they hold on to them, spyware and viruses are easily tucked away hidden, until you do a spyware search.

So, you are going to reinstall Windows if you know what’s good for you. But if you are like most computer people, you took that stack of manuals and documentation that came with your computer and put it in a safe place, such as a fire, the trash, or even sold it on Ebay for that money you needed to pay that guy off for the bet you placed. Needless to say, that Windows serial number is long gone, or at the very least it is inconveniently located on the back of the machine partying with the elephant sized dust bunnies that have gathered in the darkness. But fear not my little hackers, code crackers, slackers, Eric has an answer! Windows being about as secure as the US-Mexico border will cough up the goods with a little persuasion from Keyfinder. Best of all, it won’t cost you anything to regain this valuable string of letters and numbers. Of course, I am sure some people will put it to more nefarious purposes. You bad wittle kiddies.

Speaking of nefarious (cool word huh), have you ever forgotten your administrative password for Windows (or maybe you need to break into your bosses email before he reads that email you accidentally sent to the whole company while drunk on Saturday night documenting his affair with the less-than-runway-super-sized-model, or for us younger tots, you want to show your teacher up for that “F� he/she gave you for proving him/her wrong)? Have no fear, MicroSucks comes to your rescue…again, with a handy knowledgebase article explaining just how one might go about this. (OK, this is another reason why MicroSucks… sucks, they tell you how to retrieve passwords on there own OS, which we all know only leads to the cause of havoc.) How to log on to Windows XP if you forget your password or your password expires

I know there is still a lot of unanswered questions, and I know a lot of people want to know how I make my “programs� (*cough*viruses) and I know that people want to know how to successfully use NET commands non-remotely, and remotely, but I’m not going to answer those right now, I’ll leave you wanting more . If you have questions or comments, or need to know how to do something else, let me know in the comments. Until next time, enjoy!

I know this is posted around in other places, and this “fix�? has been around ever since the beginning of September, but people still ask me if there is anyway they can get around stupid MicroSucks Windows Genuine Validation services when updating there pirated version of Windows XP. Yes, there is most defiantly a way, and I do know it. Let’s first discuss a few things.

1. What is Microsoft’s Windows Genuine Validation?

2. Why did Microsoft do that?

3. How do I bypass it.

Microsoft’s Windows Genuine Validation is basically code that is slipped onto your PC when you update Windows. If you have automatic updates on, it was even more hidden because Microsoft won’t tell you what they are putting on your computer until it’s there. Anyways…what it does is checks your version of Windows XP for a Genuine CD key. So if you have a pirated version of Windows XP on your computer, it is going to tell that your version isn’t genuine. If it isn’t a genuine version of Windows XP, you will not be able to receive any of the updates (like anyone does update anyways).

Microsoft did that because of the fact that they THINK they can stop people from paying for that OS. No one pays for it because of the hell Microsoft puts us through with their OS.

The fact of the matter is that Microsoft thinks they are smart, and they can stop us from pirating versions of there crappy operating system. Once you see the steps of bypassing this you will believe me when I say that “MICROSUCKS SUCKS!!!�?

Instructions:

Go to the Windows Update page. DO NOT CLICK THE “Custom�? or “Express�? buttons yet!

Copy and paste the following line into the address bar of your browser.

javascript:void(window.g_sDisableWGACheck=’all’)

Press Enter (THE PAGE SHOULDN’T CHANGE!)

Now you may click on one of the buttons “Custom�? or “Express�?

Told you it was so easy that it would make you go crazy. As you can see, it’s a simple JavaScript, by typing that into the browser and hitting enter; you disable that part of the code.

UPDATED: You may not be able to bypass using that javascript code, but don’t worry there is another way. In IE go to Tools -> Manage Add-ons -> “Add-ons that have been used by IE” -> Windows Genuine Advantage and check “disable”. Apply, hit Okay and reload the Microsoft Windows Update page.

UPATED AGAIN: Because of recent changes of IE and Windows tring to secure paying customers before they release Vista, Microsoft has made these previous ways of getting around not possible, but do not fear, here is the new way.

1- Download all updates including windows genuine valdiation

2- Go to start, run, and type in regedit

3- Locate yourself to HKLM \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ policies \ EXT \ CLSID

4. There will be two files, one has no value, and the other one should be set to 1.
Change the file value data that is “1″ to “0″.

5. Open windows update.

6. Select which way you want to go (either custom or express) it doesn’t matter at this point.

7. You will be asked to reinstall the Validation tool. DON’T DO IT! Instead…put the registry data variable string that you deleted back in with a value of 1

8. Click back and then click the update method of choice and voila!

There you go.