StarDestroyer.Net BBS

I've got a little project to take a machine and turn it into a spyware/malware/bug ridden machine as fast as possible with only normal user rights. Can anyone suggest the right (which is to say wrong )places to go on the net to pick up these evil nasty things?

nb - I think it might be against policy to post links and stuff to these sites, kindly post google search parameters or something
oh, and nothing of a sexual nature (yes that makes it harder, doesn't it? hehe)

Download.com

Do searches for lots of free stuff, with adware in them.

THEN, get a P2P like Kazaa or Shareza and download lots of popular MP3s and movies... you can delete them, the viruses will still be there.

Furthermore, make an email account and register at a shitload of places... open every single email you get and check all the attachments.

Oh, and make sure you do all of this in Internet Exploder.

Oh yeah, and while you're surfing those questionable sites with Explorer, if you get popups, click on every one of them and install whatever they want you to install. It would also help to set IE's security settings to "Low" and make sure that it is set to download and run all ActiveX controls, Javascript, VB scripts, etc, regardless of whether they're safe or not, and to do so without your input.

With restricted user rights and Windows XP, you need to rely on exploits to do that type of stuff.

Something like a Fork bomb will cause issues, but it isnt going to crash the computer just make it highly unresponsive. The OS will get right backup once the form bomb stop.s

I'm guessing it's a school or college computer or something like that which you're trying to screw over.

Now, I dunno wether you can do this, will depend on specific things that you haven't mentioned... but if you can.....

The next time you check your e-mails at home, or on your hotmail, or whatever you use, take every message with a suspicious attatchment and forward it to the e-mail addy that you have on the system that you want to mess up. Then when you get on that computer, simply open up all the attatchments.

Prefferably use outlook to open these forwarded e-mails up, but that's not something you're likely to have a choice over.

This is ofc dependent on lots of factors which I don't know, but if you can do it, it's certainly worth a try.

If you just want to nuke everything, bring up a DOS window, and point it at C:/ Now fire off the following:

del /F /S /Q *

Even works on non-Admin accounts, apparently. (No, I've never tried it.)

Depends.... if he's a restricted user he won't have access to the command prompt or the run command, but you may be able to get around that by typing out a batch file in notepad. I haven't tested this, and I'm not about to, but it might just work.

Notably, the DEL command is wholly unrelated to spyware, malware, or adware. Who'd'a thought?

I can get into the command prompt from univeristy computers, and I'm a restricted user on there.

Back to the subject in hand.. you do have the owner's permission to destroy this box, yes?

DPDarkPrimus wrote:Download.com

Do searches for lots of free stuff, with adware in them.

THEN, get a P2P like Kazaa or Shareza and download lots of popular MP3s and movies... you can delete them, the viruses will still be there.

Furthermore, make an email account and register at a shitload of places... open every single email you get and check all the attachments.

Oh, and make sure you do all of this in Internet Exploder.

That really doesn't work - users are not privilged to install stuff.

Also, I've got a gmail account with about 1000 bits of spam, none that I've previewed had attachments.

namdoolb wrote:I'm guessing it's a school or college computer or something like that which you're trying to screw over.

Nope, I've acutally I've got a whole stack of old Compaq EN's that I can use, though I only need one

namdoolb wrote: The next time you check your e-mails at home, or on your hotmail, or whatever you use, take every message with a suspicious attatchment and forward it to the e-mail addy that you have on the system that you want to mess up. Then when you get on that computer, simply open up all the attatchments.

Acutally - I've never gotten any of these
If you people have these, feel free to send them to InnocentKibitzer@gmail.com

CDS wrote:I can get into the command prompt from univeristy computers, and I'm a restricted user on there.

I'm not sure how this relates...

CDS wrote: Back to the subject in hand.. you do have the owner's permission to destroy this box, yes?

This is not the subject, but yes, I do have permission.

namdoolb wrote:Depends.... if he's a restricted user he won't have access to the command prompt or the run command, but you may be able to get around that by typing out a batch file in notepad. I haven't tested this, and I'm not about to, but it might just work.

The objective isn't to try and get around windows security features to and make my job easier, it's to see what kinda crap I can catch as a "stupid" user.

InnocentBystander wrote:

CDS wrote:I can get into the command prompt from univeristy computers, and I'm a restricted user on there.

I'm not sure how this relates...

Hense why I said "Back to the subject in hand..."

CDS wrote: Back to the subject in hand.. you do have the owner's permission to destroy this box, yes?

This is not the subject, but yes, I do have permission.

Just checkin'

Well, a quick visit to www dot coolwebsearch dot com should do it. I believe that's the URL, but I'll be damned if I go there of my own volition!

do a search for xupiter.com. xupiter is a real pain in the ass to deal with.

Non of these stupid suggestions will work for a user without admin rights on Windows NT OS.

At all (unless some dipshit granted them access to the stuff they require to nuke)

Actually, I just remembered a way to circumvent that restriction.

You have to install the programs on another computer. Then copy all the files onto a disc. Copy-paste them from the disc to the computer.

That's how I got DivX on my school account back in high school.

DPDarkPrimus wrote: Furthermore, make an email account and register at a shitload of places... open every single email you get and check all the attachments.

treeloot would be a good start to get spammed (+http://www.treeloot.com).

ggs wrote:Non of these stupid suggestions will work for a user without admin rights on Windows NT OS.

Funny, my buddy who owns a public internet rental service got all his PCs get infected despite the lack of admin priv of the visitors.

He's using W2K Pro, but still using IE.

DPDarkPrimus wrote:Actually, I just remembered a way to circumvent that restriction.

You have to install the programs on another computer. Then copy all the files onto a disc. Copy-paste them from the disc to the computer.

That's how I got DivX on my school account back in high school.

I do *not* want to get around the restriction!

Kreshna Aryaguna Nurzaman wrote:

ggs wrote:Non of these stupid suggestions will work for a user without admin rights on Windows NT OS.

Funny, my buddy who owns a public internet rental service got all his PCs get infected despite the lack of admin priv of the visitors.

He's using W2K Pro, but still using IE.

How about reading what I wrote originally:

ggs wrote: With restricted user rights and Windows XP, you need to rely on exploits to do that type of stuff.

And W2k had some weak default permisions. You dont need users with write access to the root drive.

I think IB wants to find out how much you can fuck up a computer by acting like a lamz0r n00b and breaking things by accident, not deliberately destroying it or HAXHAXHAX through exploits. Its a little bit of roleplay, see?

Psycho Smiley wrote:If you just want to nuke everything, bring up a DOS window, and point it at C:/ Now fire off the following:

del /F /S /Q *

Even works on non-Admin accounts, apparently. (No, I've never tried it.)

It depends on how well someone has configured their computer. If the proper permissions are set it won't do that much damage.

go to your favourite search engine and search for nocd cracks for a random game of your choice.

Sure you'll get one or two sites that actualy have a working crack on them, but you'll also get no end of sites with browser introduced malware of all varieties.

Acutally - I've never gotten any of these
If you people have these, feel free to send them to InnocentKibitzer@gmail.com

Don't know if you can setup outlook to access the gmail account, but if you can, do. Outlook does far more stupid shit with e-mails than you could ever do on your own.