Hard Light Productions Forums
Off-Topic Discussion => General Discussion => Topic started by: Sandwich on November 28, 2004, 05:11:19 am
-
Here's the story. A good friend of mine by the name of Nathan registered for an ICQ account way back in the beginning - account #453638. He told me it was stolen about a year ago. But I never removed it from my contact list.
Now this morning, I see someone logging on with that account. So I start a convo with whoever it is, thinking perhaps Nathan mananged to get the account back. But nope, it seems to be some sort of script kiddie. Here's the chat I've had so far:
[q][12:55:15] Sandwich: Nathan?
[12:56:36] FaraoN: "Nathan" - whose that name? If yes that whose?
[12:56:53] Sandwich: This isn't nathan?
[12:56:57] Sandwich: who the heck are you then?
[12:57:08] Sandwich: This is Nathan's original ICQ number
[12:57:26] Sandwich: How'd you get it?
[12:59:03] FaraoN: what has got not your deal :) but Nathan all have left in nowhere, she has eaten polar bears
[12:59:49] FaraoN: here is such here is patty =)
[12:59:59] Sandwich: yeah, just wait until Nathan sics his polar bears on your ass
[13:00:10] Sandwich: hack you all up and down the arctic river
[13:01:08] FaraoN: you are there weakened, bitterns beer, and attention on boss
[13:02:33] FaraoN: you there not VWVshow off the intelligence if I ùàñ shall begin to insult that little not will
[13:03:45] Sandwich: Lern to spik english, moror
[13:03:58] Sandwich: moron
[13:04:00] Sandwich: lol
[13:05:24] FaraoN: go in its Izraeli jew
[13:06:01] Sandwich: oh, so there IS an intelligent person on the other end
[13:06:05] FaraoN: Laugh Out Loud
[13:07:25] FaraoN: mutant
[13:07:36] Sandwich: poopy head
[13:08:25] FaraoN: go fords
[13:08:56] Sandwich: hmmmm.... go Chicago Bulls!
[/q]
I'm trying to perhaps get on this kid's "good" side, find out more info. But I'd much rather just swipe the account back and be done with it.
Anyone got a clue?
-
Interesting conversation. Reminds me of those AIs trying to beat the Turing Test - unsuccessfully. :p
No idea dude, sorry. :)
-
sounds like english isn't his first language, even 12 year old english speaking kids usually have better grammar than that. :p
-
He tried password recovery? The guy using that account has not entered his email address, at least it isn't visible. Maybe the original email address associated with that account is still stored on the ICQ servers.
Worth a try. Here (https://web.icq.com/secure/password)'s the link.
-
Ask for his password somehow?
-
Originally posted by Sandwich
she has eaten polar bears
erk...:eek:
Try an ICQ bomb... There's many places to find them... Or ask an0n...
-
http://neworder.box.sk/codebox.links.php?&key=icq
-
slightly OT, but is it possible to find out a physical location based on an IP address? I'm rather sure it is (then again, I might just be completey deluded) but the question is how?
-
http://www.infosyssec.net/infosyssec/tools2.htm <----More tools
And you can localise an IP's physical location down to ~30 miles, give or take, by using something like NeoTrace to run down everything up to the local exchange supplying the user with a connection.
-
Yay an0n!
I never did figure out why people hate you... :nervous:
-
Because I'm a non-nonsense, John Smiths drinking, urban bandito with nowhere to go and nothing to lose.
But mostly because I tried to destroy the formatting of WS and HLP with rogue TD tags.
-
Meh... You know what you're talking about at least :p
-
*tests something*
-
Originally posted by an0n
*tests something*
*snips tags*
ROFL! :D
-
woah!
-
I remember how to do it now.
It needs to be in the sig so everything is in the right order.
-
Bah.
No HTML in sigs. ****ers.
-
On a related note: The lvlshot tag works if you put it in your sig.
-
Eh.... wtf was that? Like all red and ****...
-
Just put <[color=324234][/color]td> somewhere in yer post.
-
whats it supposed to do?
-
you cheated an0n i don't love you frequently anymore :mad:
-
If Sandwich comes back, I can show you some interesting flaws.
It's stuff that needs admin permissions to work properly due to the layout of vBulletin.
-
do some of these work on a phpbb?
-
Some of the more rudamentary ones will, assuming the board has HTML enabled.
-
hm...
-
Where the hell is Sandwich when ya need him?
-
Any board with HTML on ought to be vulnerable to some of these.
Try adding < / td> or something too.
-
Alot of boards have <[color=21321][/color]td and td> in the censor. I'm pretty sure WS does, thanks to me.
-
Wait... aren't td's something to do with tables nested within the html? I vaugely remember them from my web page design class... So all its really doing, is screwing the table in the post around?
-
Yup.
Like I said, the more interesting stuff needs Sandwich here.
-
I assume they've disabled embedding....
EDIT: Removed the audio file. It was getting annoying.
-
That's just stupid. I could embed hardcore porn or something.
Infact, I think I might, just for ****s and giggles.
NOTE: Firefox users shouldn't notice anything.
-
Some time ago, quite a few threads had embedded midi's. Might be fun in a siggy. I remember there was some CSS to embed off-site webpages. Together with a PHP IP snooper and a PM, it could always be fun.
-
I've since found more interesting uses for PHP.
The mail function is of particular interest due to it's simplicity and general usefulness.
-
Maeg, you're up for some coding fun, right?
-
[color=66ff00]Actually I'm up for some packing fun, I'm off to uni in a few hours. *shrugs*
Why not do it on penguinbomb and link to the results?
[/color]
-
vB3 at PB.
I need HLP's old code and an admin to do it.
It affects PB anyways. It links to the two admin CP's and forces a change in the PB style. I made it for when HLP goes down, so PB automagically switches to the HLP style the first time an admin tries to login to a downed HLP.
-
All I need you to do is click one link to see if it works.
-
[color=66ff00]Heheh it's not that I don't trust you but...
I don't trust you. ;)
I'd be waiting for HLP to turn into the world's largest dungeon pr0n repository.
[/color]
-
C'maaaaan.
-
Have I ever, in all my time here, done anything more harmful than embarrassing drunk people on IRC and playing with the TD tags (the image-switch on Razor excluded)?
And it's one little link to benefit the community (*shudders*), not like I'm asking you to admin me or anything.
-
Oooh! I know:
Hippo already tried the exact same thing, only on a smaller scale. It didn't work, but regardless - there were no ill effects. Ask him. He's fine. No board explosions. No porn epidemic. No "I 4m t3h ubr4-f3gg0t!" in his sig.
No ****ing style change at NW.
C'maaan, I've been waiting since before the last crash to try it out. It'll be fun. Funner than Disneyland even!
-
What are TD tags anyway?
-
Table.....something.
I know TR is table return.
-
[color=66ff00]Sorry mate, you're going to have to wait until Sandwich turns up to see if you can tinker but i'd be betting his answer would be no.
[/color]
-
It's not tinkering! It's one goddamn click!
And I've been waiting for that bastard for all of....err....5 hours (at a guess). I think the Palestinians got him.
-
uhm, table division I think, and isn't tr table row?
-
Is it?
**** knows.
-
Oh, there's another thing, kids:
Profanity - If you place COLOR tags (with a random number as the color and closing tags immediately after) inside a censored word, it won't detect it and thus it will appear.
Observe: ****ing ****s!
-
**** it, I'll wait till he comes on ICQ, you unhelpful miscreants.
-
Pfft. That works with the bold and italic tags, too. If you're too fucking lazy to type colour every time...
-
With bold and italic they can censor them. With the colour tags, the random number stops them from adding it to the censor.
-
I thought the image switch with Razor was me? Or was that Stealth?
-
I don't ****ing know anymore.
I know someone switched it for porn and I switched it for less-harsh porn that mentioned Styxx.
-
*raises hand*
It was Goa[color=23423][/color]tse (before it went down). I guess that was kind of unoriginal anyway.
-
Originally posted by an0n
Oooh! I know:
Hippo already tried the exact same thing, only on a smaller scale. It didn't work, but regardless - there were no ill effects. Ask him. He's fine. No board explosions. No porn epidemic. No "I 4m t3h ubr4-f3gg0t!" in his sig.
:nod: :nod: :nod: :nod:
-
*logs out of Hippo's account*
JOKING! I'm joking.
-
:D
-
;)
-
I'm sitting here watching this discussion of hacking the bord when suddenly there is a loud grinding noise behind me comeing from the rear left speaker, for some reason my first thought was "oh, my God, what the fuck did he emmbed in the page"
turns out it was just the water heater guy sawing through the gas line that runs into my room right there (for the heater)
-
The embedded file went from crickets chirping, to Kari Wuhrer screaming "No nude pictures!", to Al Bundy's Christmas Poem.
-
Though, sawing through a gas line is bad too...
-
Originally posted by an0n
Table.....something.
I know TR is table return.
TR = Table Row
TD = Table Data
-
His email; [email protected]
http://www.icq.com/whitepages/search_result.php?search_type=uin&to=%25U&uin=453638
-> http://www.intramail.ru/~rasik/ -> some oage there with email addresses
(ICQ search on that email resolves to the same number as was nicked)
Dunno if it helps, tho. You can at least copy all the ruskie text over from that website. Try esperanto text, too.... if he says he speaks it (and he's doubtless enough of a dick to do so), he'll probably pick it for a password.
-
If he's dumb enough you could get him to send you his ICQ data files. You can then crack the data files using a program like ICQ history reader.
http://www.icqinfo.ru/soft_icqhr.shtml
Or you could try a brute force program...
http://te.mirabiliz.com/icqload.html
These utilities could be outdated, so do some searching. Maybe visit script kiddy IRC channels.
-
This has kind of ventured into the dangerous areas of forum discussion. If people are going to start posting links up, please PM an0n with them rather than post them up publically.
-
Don't look at me; I'm only introducing some script kiddies email address to the wonderful world of email gathering bots........
-
Out of curiosity, can those bots get to the internal forums?
-
Originally posted by Moonsword
Out of curiosity, can those bots get to the internal forums?
Don't think so. IIRC they're served pages in the same way as any user would be (i.e. generated HTML via server requests), so they'd need to have the same password access to get any internal access.
-
Yeah, bots can't get to internals.... at least... not if the permissions system is behaving... :nervous:
-
We keep HTML enabled on the forums because we feel that, in general, we can trust our user base not to do anything excessively stupid. Don't prove us wrong.
;)