ATF labs

Hi there,I know I havent updated my blog lately, and after only a few posts , but today I will give you an informative guide on how to recover files for free with linux based software (i find the windows file recovery software a bit junky).

tools needed:

blank cd/dvd whatever ubuntu needs nowadays

computer that has usb port and dvd/cd drives (unless your using a DIFFERENT pen drive with ubuntu)

iso image of ubuntu

internet connection

first some points to make sure you understand

1. DO NOT WRITE TO THAT PENDRIVE IT MAY OVERWRITE THE DATA YOUR TRYING TO RECOVER.
2. THIS IS NOT 100% GUARANTEED TO WORK
3. I TAKE NO LIABILITY IF THINGS GO WRONG, I MAY HELP IF YOUASK FOR HELP ON THE COMMENT

I dont like being rude but nor do I like being blame when things go wrong.

ok, first burn the image to a blank cd/dvd or make a bootable pen drive, I wont say how here but I will may write a tutorial here if I feel like it or there is big demand for the tutorial.

boot into ubuntu with whatever media your using and make sure you have access to the internet by clicking applications > accessories>terminal

then type ping google and you shpuld see something similar but not exact to this

ad@prometheus:~$ ping google.com
PING google.com (74.125.67.100) 56(84) bytes of data.
64 bytes from gw-in-f100.google.com (74.125.67.100): icmp_seq=1 ttl=54 time=134 ms
64 bytes from gw-in-f100.google.com (74.125.67.100): icmp_seq=6 ttl=54 time=130 ms
64 bytes from gw-in-f100.google.com (74.125.67.100): icmp_seq=11 ttl=54 time=130 ms
64 bytes from gw-in-f100.google.com (74.125.67.100): icmp_seq=16 ttl=54 time=132 ms
^C
— google.com ping statistics —
16 packets transmitted, 4 received, 75% packet loss, time 15067ms
rtt min/avg/max/mdev = 130.520/131.989/134.629/1.741 ms

Please bear in mind that I have a crap internet connection. and hit ctrl+c once youve got replies

but if your getting replies from google its good, if not look around the ubuntu forums etc to get your nic/ wlan card working

now that you have ubuntu and internet working proceed.

in that same terminal type this

sudo apt-get install foremost

foremost is a good tool for file recovery

now type this

tail -f /etc/mtab

now plug in your pendrive and wait for it to be recognised the screen should add a new entry and ubuntu will open a filebrowser on your pendrive, close the file browser and copy a part of  the screen, this is your device hardware tag, heres what happened for me.

/dev/sdb /media/FAGBAIT vfat rw,nosuid,nodev,uhelper=hal,shortname=mixed,uid=1000,utf8,umask=077,flush 0 0

the important part is the first bit: /dev/sdb, it may be different for you so dont copy me, keep a note of that /dev/xxx entry and type this

sudo foremost -i /dev/xxx -o ~/recovered

after you done that it will chug along recovering files until its finished, nows the important bit, check what it has recovered click on places then Home folder and you should see a file called recovered, open that and it will have a folder for each filetype recovered open each file and you should see your recovered files, they will not keep file names. I did it on my old mp3 player that would currupt data when it runs out of battery and it managed to recover all the album art, one music track, and a few of my old college documents. and this drive was formatted MANY times since that data was lost.

Anonymous Howto, linux based access your pen drive, deleted, File recovery, files, flash, flash drive, linux, memory stick, pen drive, pendrive, recover, recover deleted files, usb

It has been found out that there is a botnet spread and theres a chance you might of been affected and you wont ever know, you are affected if you have never changed your router password, or set it to an easily guessable one. This bot is called psyb0t, it scans random IPs trying to connect to telnet, ssh or the web interface, It is known to be able to take control of many linksys devices. It has the ability to DDoS sites and to do deep packet inspection to find usernames and passwords. At the moment its only targeting rapidshares, whch makes me think that the creator of this botnet is in the skiddie scene trying to sell stolen rapidshares.

My suggestion is to change your routers password to some thing hard to figure out

Anonymous Uncategorized

There was a lot of controversy about PIFTS and I will give you a rundown on what happened, in simple words.

PIFTS is basically a part of Norton Antivirus, it is an acronym for: “Product Information Framework Trouble Shooter”, Its a patch for older versions of Norton that helps it updae.

THE PROBLEM

A Symantec employee released a version of this that wasn’t digitally signed (that is a special chunk of data of as file that is a mathematic formula of that file to make sure it hasn’t been tampered with.)

Because of that the firewall component of Norton and Zonealarm wouldn’t detect it as part of the Norton antivirus package and made it show security warning which people were worried about.

THE FALL-OUT

People who were worried posted on the Symantec forum about this and (at this point the staff were unaware) the staff hought it was just spam and deleted it, but because a formidble force called 4chan discovered this they started mass posting on the site, so the staff closed down the forums.

This sparked debate that there is a conspiracy.

IS IT A CONSPIRACY?

No.

AM I SAFE?

Yes, unless you have downloaded and installed unofficial software to fix the problem, these are bogus and will infect your system with malware.

WHAT ABOUT SYMANTEC?

This is a massive PR disaster to them.

Anonymous cock-ups

H.D Moore, the creator of the Metasploit project has released a scalable peice of software that allow you to use VOIP to automate the process of finding open modems or PBX’s and can provide reports on what types of phone system it has found.

You are better off reading it at its own site:

http://www.warvox.org/

Anonymous Phone