Please Scroll Down to See Forums Below During a convo with a brother better known to you all as Bouncer I told him about my unusual problem with my hotmail ac. One VERY sensitive conversation with my ex has been mysteriously deleted . She's in Germany now (not far enough if ya ask me) but every now and then we get a few prank calls - she just hangs up a few seconds after someone answers . I'm pretty sure it's her - she's more than a bit mental. So I was wonderin if anybody more knowledgeable than me can help me to trace it or somethin.
Hackin hotmail/yahoo accounts
- Thread starter Mandinka
- Start date
C
Code
Guest
Trace the call?
Or trace the deleted mail?
There are interesting ways to smoke her our regarding e-mail, but the phone trace will require that you, your local authorities and/or interpol co-operate. Your phone company will give you a phone number change for free if you call enough about the calls. In fact, they will insist on a # change before getting authorites involved.
You want to smoke her out and figure out if it's her in your inbox? Open another account with a free webmail provider (yahoo, iname, excite etc), make the user name very sexy and feminine, send yourself loving messages and throw in the ex-girlfriend's name from time to time....then keep a close eye on those messages.
If she calls/writes/chats to you, she acidently leak some of the false info you've put in those messages. But if those messages start getting deleted, then its sure to be her.
Your best bet is to cut your losses and change your passwords.
Or trace the deleted mail?
There are interesting ways to smoke her our regarding e-mail, but the phone trace will require that you, your local authorities and/or interpol co-operate. Your phone company will give you a phone number change for free if you call enough about the calls. In fact, they will insist on a # change before getting authorites involved.
You want to smoke her out and figure out if it's her in your inbox? Open another account with a free webmail provider (yahoo, iname, excite etc), make the user name very sexy and feminine, send yourself loving messages and throw in the ex-girlfriend's name from time to time....then keep a close eye on those messages.
If she calls/writes/chats to you, she acidently leak some of the false info you've put in those messages. But if those messages start getting deleted, then its sure to be her.
Your best bet is to cut your losses and change your passwords.
C
Code
Guest
I can vouch for that. I still have a 500 US Dollar bounty to the person who hacks a dummy account I made with yahoo.
Oh in case anyone is interested in trying....
[email protected] TO get the reward, you must forward the single message in the inbox to [email protected]
Oh in case anyone is interested in trying....
[email protected] TO get the reward, you must forward the single message in the inbox to [email protected]
HappyScrappy
New member
due to the way they are setup, hotmail/yahoo can only be broken into 4 different ways... well, 5.
1) it is software running on servers, if you could somehow hack their firewall, hack a server, then at that point you would pretty much have free reign on that server and likely others.
2) bad coding on their part (security holes) - there was a hole in hotmail where they left the debug option on and you could log into your account, then toy with the url, and get other people's mail.
3) brute force - you guess the password that they use. this is limited on both of those servers to 4 tries. that doesn't give you a very good shot, so you can't really automate it, you have to sit there, wait for the timeout, and then try more... slllloooowww.
this is easier if you know the person and what they are likely to pick.
4) go through the password recovery system - if you know the person, then you might know the answers to the questions that are asked (birthdate, etc).
5) is really the best way for any of it - and that is social engineering. similar to what Code was talking about.
1) it is software running on servers, if you could somehow hack their firewall, hack a server, then at that point you would pretty much have free reign on that server and likely others.
2) bad coding on their part (security holes) - there was a hole in hotmail where they left the debug option on and you could log into your account, then toy with the url, and get other people's mail.
3) brute force - you guess the password that they use. this is limited on both of those servers to 4 tries. that doesn't give you a very good shot, so you can't really automate it, you have to sit there, wait for the timeout, and then try more... slllloooowww.
this is easier if you know the person and what they are likely to pick.
4) go through the password recovery system - if you know the person, then you might know the answers to the questions that are asked (birthdate, etc).
5) is really the best way for any of it - and that is social engineering. similar to what Code was talking about.
p0ink
New member
fuck it, it is not that hard as long as the person you know is either an idiot or 'trusts' you. pickup a trojan like subseven or something and embed it in another file (i think yu can do this with even .mp3 file now or any other for that matter, instead of a normal executable file). well anyways, this runs a keylogger on the persons machine, which you can tell everything they typed. and it will say under which application they typed it. I already did this to two people and i had no problems with it.
Island Son
New member
in order, stop when you find the answer
1 check the trash folder, maybe you deleted it by mistake
2 check the other folders, maybe you moved it to another folder by mistake
3 change the password so something unusual. first part of one word, second part of another, stick a number in the middle, something like that
4 tell yahoo help your concerns, they might have the last set of ip's or regions that accessed your account. At least be able to tell you if anyone tried to login and failed out after the password change
5 If the phone # is blocked, ask the phone company to help. Keep a log of the dates/times.
Add an antivirus program like Norton to your PC. It'll find trojans too.
Code, if anyone could hack yahoo accounts it's worth a hell of a lot more than US$500
1 check the trash folder, maybe you deleted it by mistake
2 check the other folders, maybe you moved it to another folder by mistake
3 change the password so something unusual. first part of one word, second part of another, stick a number in the middle, something like that
4 tell yahoo help your concerns, they might have the last set of ip's or regions that accessed your account. At least be able to tell you if anyone tried to login and failed out after the password change
5 If the phone # is blocked, ask the phone company to help. Keep a log of the dates/times.
Add an antivirus program like Norton to your PC. It'll find trojans too.
Code, if anyone could hack yahoo accounts it's worth a hell of a lot more than US$500
HappyScrappy
New member
p0ink said:
an mp3 is just data - it is not an executable - a seperate program is needed to run it - extraneous info in it would just come out as static/noise.
there are two exceptions - there are certain companies that make executable music files and send them around so that they can track when and how many times it is listened to.
the other would be it is an executable, but someone added ".mp3" in the name (e.g. bspears.mp3.exe). if you have file extenstions turned off in windows (comes that way by default), then you would only see the .mp3 that is in the name, b/c it only looks at the last three as the real extension.
an executable has to be compiled, or it has to be script that is recognized and parsable by your system....
so while yes, a trojan might do it, an mp3 not.
Sorry couldn't get back to you sooner
Thanks for all the help , but I had already changed password , as for what Code was saying - we have an automated trace service in Ireland , after the call , you just dial 1471 and get the number. However it won't work if it's international - guess what - it didn't work every time I tried. I live in my parents house at the moment - they'd never hear of changin the phones and I understand - it's my fuckin problem - I just hate the bitch knowin anythin about me.
As for Code's other idea (sexy bitch as another account) , I'm gonna try it - man that will absolutely KILL her.
She used to work for compaq , now a large computer consultantcy in Germany so I'm sure she's way ahead of me on hacking - although I do wonder how someone gets hold of "subseven".
Thanks for your help guys.
manny78 said:
Thanks for all the help , but I had already changed password , as for what Code was saying - we have an automated trace service in Ireland , after the call , you just dial 1471 and get the number. However it won't work if it's international - guess what - it didn't work every time I tried. I live in my parents house at the moment - they'd never hear of changin the phones and I understand - it's my fuckin problem - I just hate the bitch knowin anythin about me.
As for Code's other idea (sexy bitch as another account) , I'm gonna try it - man that will absolutely KILL her.
She used to work for compaq , now a large computer consultantcy in Germany so I'm sure she's way ahead of me on hacking - although I do wonder how someone gets hold of "subseven".
Thanks for your help guys.
p0ink
New member
happyscrappy,
i know mp3 is not an executable file, but go check out subseven, i remember you being able to imbed it in non executable files. I know this sounds fucked up, and I am probably wrong, since I have not touched the program in months, but if im not n crack and i remember correctly, you can imbed it in non executable files. just check it out, cause im curious myself.
oh yeah, subseven is nifty because when the person signs online, it will notify you by email, irc, or even fucking icq that they are signed on and give you the ip so you can connect to their machine and get whatever the hell it is you want.
i know mp3 is not an executable file, but go check out subseven, i remember you being able to imbed it in non executable files. I know this sounds fucked up, and I am probably wrong, since I have not touched the program in months, but if im not n crack and i remember correctly, you can imbed it in non executable files. just check it out, cause im curious myself.
oh yeah, subseven is nifty because when the person signs online, it will notify you by email, irc, or even fucking icq that they are signed on and give you the ip so you can connect to their machine and get whatever the hell it is you want.
HappyScrappy
New member
p0ink said:
subseven is the same as backdoor_g - and when that gets in (via an executable), then it changes the registry so that ".dl" files are executable - normally they aren't...
other than that - I can't find anything that says it can do that.
wasn't trying to start shit - just wanted to expand on what can and can't be done for future reference.
C
Code
Guest
P0ink,
Bring it on man, my challenge still stands.
Let's roll and stop chattering about it, put up or shut-up.
Bring it on man, my challenge still stands.
Let's roll and stop chattering about it, put up or shut-up.
Similar threads
