Curse

dum azz · May 03, 2008, 04:47 PM // 16:47

I have read around the forums for a while and noticed some posts about hacked accounts, and in almost all of those people make the conclussion: KEYLOGGERS. So i just thought i'dd help out by making this guide to avoid typing your password.

First of all... Easy way

:

Find your guild wars shortcut
Right click on it and click on properties
it should say something like this "C:\Program files\Guild Wars\Gw.exe"
make that line: "C:\Programfiler\Guild Wars\Gw.exe" -password abc123
swap out abc123 with your acctual password, and when you start it, it should automaticly log you in, without typing your password.

Ok, you would get around the keylogger that way, but if someone got a keylogger onto your system it wouldent be too hard for them to open the file and find the password, and if you share your computer with someone it wouldent be much safer then a keylogger at all, since they could just open the file and read the password.

Ok, a bit more advanced, and a bit safer:
This way include some minor programming in c++, but it shouldent be too hard

First of all, you'll need to download Dev-cpp, which is a free programming tool, you can get it here.
Install it somewhere and start the program.
Start it from your start menu
something about theemes will come up the first time you run it, just say yes and go to next step
Go to File->New->Sourcefile. This should open a document where you can write stuff, allmost like notepad .
Now this is where the programming starts.
Copy the lines below into the document.change XXXX for your acctual password.

Code:

#include  <windows.h>

using namespace std;

int main()
{
    system("\"Gw.exe\" -password XXXX");
}

Change XXXX to your acctual guild wars password.
Now press compiler (in the menu at the top) -> Compile and run. (or just press F9).
This will open up a "save to" window. Navigate to your guild wars folder (it needs to be the same place as your gw.exe file), name it antikey and press save.
Now it should start guild wars and auto log you in.
If it works, close guild wars and go to your guild wars folder again (if it dosent post here and ill try to help you out, DONT POST YOUR PASSWORD HERE THOUGH (just had to say it ).
Delete the antikey.cpp file (which is basicly the text file from the programming tool.) and make a shortcut to the desktop for the antikey.exe file (feel free to name it something less idiotic )

Very optional : Go to Start menu-> Bloodshed dev cpp->uninstall. this will uninstall the programming tool, if you have no further use for it.

If you share your computer with someone, they can still get into your accout by starting the antikey.exe. This last way is more safe and based around putting a password in the antikey.exe file.

Über way.

First do step 1-6 from the "advanced way"
Now copy the lines below into your document:

Code:

#include <iostream>
#include <windows.h>

using namespace std;

int main(){
string a; 
cout<<"enter pass: ";
cin>>a;    //puts the value you type into "a"
if ( a=="abc123" ) {  //If "a" is the same as abc123 (or whatever else you have typed in there) start guild wars with the -password thingy
    system("\"Gw.exe\" -password XXXX");
}
}

Swap out "abc123" for the password you want
Nnow press F9 (compiler->"Compile and run") and put it in your guild wars folder
Make a shortcut to your desktop and your basicly done (you may want to delete the .cpp file in your guild wars folder since it is the source and contains your password).
And you can uninstall dev-cpp, if your not going to start programming, you wont be needing it.
Look through what i wrote under the "advanced part code", to see if i forgot something.

The password can still be found by opening the file in a hex editor, but it would make it a lot harder to get your password

I hope at least someone found this guide interesting, and maybe someone out there wont get hacked because of this

.

Please post here it there is something i forgot

Edit: Bottom note:Easiest way: Don't download keyloggers, and scan all .exe files before use.

(MisterB)

~Dumazz

MisterB · May 03, 2008, 04:50 PM // 16:50

You left out the first rule, and the easiest way: Don't download keyloggers, and scan all .exe files before use.

dum azz · May 03, 2008, 04:53 PM // 16:53

/doh

added as bottom note, credit goes to you

mystical nessAL · May 03, 2008, 05:11 PM // 17:11

May aswell advice some free-to use or so programs.
I will advice you all to have atleast one program, its a MUST!
Ad-Aware - Plus(free) or Pro(pay)
Spy Sweeper - Dont know if it's free too
Norton anti spyware - Not bad, but I would suggest adding another program.

Aswell as decent antiviruses, like:

NOD32: Both free and pay versions are excellent
Kaspersky: allmighty one of my favorite antiviruses, but needs pay
Avast!: Free and easy to use, effective
AVG:free and easy to use, effective, but slows down your pc alil bit
Panda: Havent used it, but got great reviews

These are my recommendations anyways.

Dronte · May 03, 2008, 05:20 PM // 17:20

NOD32 is the best anti-virus stuff around.

Stockholm · May 03, 2008, 05:21 PM // 17:21

First rule is DON'T Download ANYTHING from a link posted on a forum.

like this one

here

dum azz · May 03, 2008, 05:26 PM // 17:26

Quote:

Originally Posted by Stockholm

First rule is DON'T Download ANYTHING from a link posted on a forum.

like this one

here

yea, you should allways check .exe files before using them, i could be a mean hacker wanting to steal your cookie box (but seriously, feel free to check them, there are some pages that host checks like that, just cant remember any atm

.

MisterB · May 03, 2008, 05:28 PM // 17:28

A batch file can easily open GW and enter the password for you; this is almost as easy as editing your shortcut as outlined in your first method. Of course it shares the same security vulnerability, as anyone can open the file, and find the password there.

For those who don't know how to make a batch file, just open Notepad, and type:

Gw.exe -password=XXXXXXX

Click on "File" in the top-left, "Save as," and navigate to your Guild Wars folder in the "Save In" selection box at the top. This folder must be the same place as your Gw.exe to work. Name the file Gw.bat, or whatever you want, provided you end it with ".bat". In the "Save as type" selection box, change the default from "Text Documents(*.txt)" to "All Files."

If done correctly, this will create a batch file to open GW, and enter your password. Note that you should not move the file once created, but you can make a shortcut to it wherever you wish. You can even type: "Gw.exe -email=XXXX -password=XXXX" if you want to enter your email address to quickly switch between multiple accounts.

mystical nessAL · May 03, 2008, 05:28 PM // 17:28

Quote:

Originally Posted by Dronte

NOD32 is the best anti-virus stuff around.

Kaspersky / bitdiffender got better reviews. I find kaspersky much better than nod32.

dum azz · May 03, 2008, 05:39 PM // 17:39

Quote:

Originally Posted by MisterB

A batch file can easily open GW and enter the password for you; this is almost as easy as editing your shortcut as outlined in your first method. Of course it shares the same security vulnerability, as anyone can open the file, and find the password there.

For those who don't know how to make a batch file, just open Notepad, and type:

Gw.exe -password=XXXXXXX

Click on "File" in the top-left, "Save as," and navigate to your Guild Wars folder in the "Save In" selection box at the top. This folder must be the same place as your Gw.exe to work. Name the file Gw.bat, or whatever you want, provided you end it with ".bat". In the "Save as type" selection box, change the default from "Text Documents(*.txt)" to "All Files."

If done correctly, this will create a batch file to open GW, and enter your password. Note that you should not move the file once created, but you can make a shortcut to it wherever you wish. You can even type: "Gw.exe -email=XXXX -password=XXXX" if you want to enter your email address to quickly switch between multiple accounts.

yea, i thought about including it, but its basicly the same as my shortcut method so i didnt

Antheus · May 03, 2008, 05:42 PM // 17:42

DO NOT DO THIS. EVER!!!!!

Holy bad advice....

Every key logger scans through process list. From there, it has access to command line parameters.

No need to log keys, just take it from there, in plain-text, 100% reliably.

DO NOT DO THIS. EVER!!!!!

MisterB · May 03, 2008, 05:42 PM // 17:42

Quote:

Originally Posted by dum azz

yea, i thought about including it, but its basicly the same as my shortcut method so i didnt

You're right; it's essentially the same thing. It's more useful as a method of switching between accounts, which also can be done with copied shortcuts, and switching accounts is not the topic of this thread.

Ec]-[oMaN · May 03, 2008, 05:43 PM // 17:43

Kaspersky has always informed me that quicktime player was trying to inject a keylogger, info please...

zwei2stein · May 03, 2008, 05:50 PM // 17:50

Quote:

Originally Posted by Antheus

DO NOT DO THIS. EVER!!!!!

Holy bad advice....

Every key logger scans through process list. From there, it has access to command line parameters.

No need to log keys, just take it from there, in plain-text, 100% reliably.

DO NOT DO THIS. EVER!!!!!

Yep.

"serious" keyloger making guides mention this.

mystical nessAL · May 03, 2008, 05:51 PM // 17:51

Quote:

Originally Posted by Ec]-[oMaN

Kaspersky has always informed me that quicktime player was trying to inject a keylogger, info please...

Maybe it is? Anyways, you could add that shit quicktime to trusted zones and it wont annoy you.

dum azz · May 03, 2008, 06:03 PM // 18:03

Quote:

Originally Posted by zwei2stein

Yep.

"serious" keyloger making guides mention this.

hmm, didnt actually know that, guess my guide is pretty useless then

At least i tried

maybe rename the thread to anti-look-over-the-shoulder-to-see-your-password thread

Admael · May 04, 2008, 12:29 AM // 00:29

Quote:

Originally Posted by MisterB

You left out the first rule, and the easiest way: Don't download keyloggers, and scan all .exe files before use.

Common sense: the first line of defense

All else: see NOD32 for details!
Also remember: Windows Firewall has your back.
It also doesn't hurt to: Port filter on router, nothing beats a HARD firewall.

Lania Elderfire · May 04, 2008, 01:23 AM // 01:23

It's also good to have a very good software firewall in addition to an hardware firewall that can monitor outgoing internet connections. AFAIK, keyloggers need to connect to the internet and send it's information. If you have a protected software firewall that monitors outbound connections it will catch it and you can block it's internet access...

But this works with other malware like adware, and phishing programs designed to send information stored on the computer, like credit card numbers.

It's always good to have multiple layers of firewalls... especially if you're paranoid like me :-)

Admael · May 04, 2008, 01:50 AM // 01:50

Many keyloggers that I've seen captures keystrokes and screencaps (printscreen).

A worthy antispyware will alert you of any application that attempts to capture keystrokes. These are usually recorded then passively FTP'ed to the owner's shell.

Firewalls usually allow transfer between the FTP port, 21 unless you have everything on high alert, make sure you take care of that keylogger once you've been alerted!