JAN 19 2008
There are rumors that Rapidshare.com, the German file sharing and data storage giant, has been shut down by the authorities after a court order.
German collections agency GEMA have reportedly won a temporary injunction against both RapidShare.de and RapidShare.com, according to a report.
However no court records have revealed any issued Rapidshare court order as of yet.
Currently rapidshare.com is not working but rapidshare.de is.
Users have been experiencing errors such as: "The following error was encountered: * Connection Failed The system returned: connection refused"
A Wikipedia entry was made that read: "As of 19 January 2008 16:00 GMT, Rapidshare AG’s servers were shutdown by anti-piracy authorities in Germany. More than hundreds of Rapidshare servers were seized from their offices in Berlin although no arrests were made. Sources said, authorities are contemplating pursuing legal action against users who distribute and download pirated copies of software and movies from these servers."
It was quickly removed.
Rapidshare.com, formerly Rapidshare.de, has been widely used as a vehicle for the transfer and sharing of pornography. Site such as HCMF.com commonly used the site as a means of perpetuating the illegal sharing of pornography.
A NSFW and EXTREMELY graphic example of its use (or abuse, depending on your view) can be found here. (you must be 18) As you can see, below the photo are the links to where the pieces needed to make one file exist (or existed) on Rapidshare.
Rapidshare.com, and Filefactory.com have also been abused by spammers, says Dave Marcus, security research and communications manager for McAfee's Avert Labs.
The "official" word is that the downtime is said to have been caused by a server overload.
Rapidshare technician Steven Gircham has reportedly commented on this issue - "There are rumors concerning attacks made on the Rapidshare.com servers. There are also rumors that Rapidshare has been shut down by a court order. These rumors are false. We would like to apologize to our users and inform them that no data has been lost. There have been some hardware issues as a result of high bandwidth and server overload. We are doing our very best to resolve the hardware issues."
you can still view the site via IP - 80.239.151.250
They either got DOS attacked, and are having trouble getting there DNS working or they want it to at least appear that way. At the moment, it would appear that they where NOT taken down by any "anti-piracy orginizations"
Story developing...
STILL its not working!!!! can't download anything from the site! hope it works soon
NOOOOOOOOOOOOOOOOOO. I just uploaded there as well.
Now I know why those links didnt work today.. Hope they sort it out soon because theres alot of rom hosted with rapidshare
Since a few hours, rapidshare.com is down. But is it down? No Smile Just the nameservers. So .... you can fix it.
Just download following & input the content into your windows hosts file. Fixed.
(hosts: C:\Windows\System32\drivers\etc\hosts)
Code:
http://maghia.free.fr/hosts.txt
If any problems happen, open cmd & input: ipconfig /flushdns
Enjoy!
greetz
mxantho said:
Since a few hours, rapidshare.com is down. But is it down? No Smile Just the nameservers. So .... you can fix it.
Just download following & input the content into your windows hosts file. Fixed.
(hosts: C:\Windows\System32\drivers\etc\hosts)
Code:
http://maghia.free.fr/hosts.txt
If any problems happen, open cmd & input: ipconfig /flushdns
Enjoy!
greetz
Click to expand...
Click to collapse
Works like a charm! Thanks!
Thanks for the information mxantho, you're a genius, my downloads are working again.
And remember, you can edit the hosts file on Vista but you can't save it overwiting the old one.
Just copy your C:\Windows\System32\drivers\etc\hosts file into the desktop, open with notepad, insert the rapidshare entries found here then save.
Remove the .TXT suffix and copy it back in the C:\Windows\System32\drivers\etc\ directory
RS is facing some maintenance trouble. Everything should go back to normal in couple of hours.
The main Homepage is up and running... But I can't still download... I am gonna try mxsantho method
hope it works for me
tested it works
Rapidshare is back and running!
Yep just to confirm, downloading fine off rapidshare.
Well that was a worry over nothing, site ok and no problems here now.
Hi mrvanx how are things?
boz said:
Well that was a worry over nothing, site ok and no problems here now.
Hi mrvanx how are things?
Click to expand...
Click to collapse
Hey dude, not bad. (talk on 4wm)
It's all fine now
Related
Does the xda 2 have voice dialling features? If not, how could I get around this?
Re: Voce dialling
delon said:
Does the xda 2 have voice dialling features? If not, how could I get around this?
Click to expand...
Click to collapse
You can use the Microsoft Voice Command program
HTH
Stefan
You can find it @ a.b.warez.pocketpc
or pay 40U$.
Sorry, I'm a newbie with newsgroups.... Could u help me setup the newsgroup for a.b.warez.pocketpc? Any help would be greatly appreciated..... thanks....
I've got the same problem. I would love to check that newsgroup as well but I do not find a newsserver containing that group.
Could somebody please post the address of a newsserver that is able to check that group?
Thanks a lot...
how to enter news groups
get the address of the new group server of your isp
use a newreader program like outlook express or something else
scann for usegroups sellect the newgroup you want and enter it
news groups is not really http based
well are not as a rule anyway
I am living in a students home with LAN-connection to the net. So there is no dial-up ISP. The newsserver of my university does not accept the above mentioned group.
Is there a kind of workaround to read this group?
News groups
For all you newbees; Let me address this message first;
:!: It's illegal to download software from newsgroups! :!:
But I can't stop you from doing so... :twisted:
the best way to read newsgroups is to take 5 steps;
1; Get a program that reads alt.binaries posts; like grabit and install the progam.
2; Get a newsserver account or check your ISP. (mostly they also have access to newsgroups but are limited.)
like;
I use www.usenet.com
www.easynews.com
www.usenetserver.com
www.giganews.com
www.supernews.com
www.astraweb.com
www.usenetmonster.com
www.100proofnews.com
(get a account that gives you unlimited download. Should cost you about 15 U$ a month.)
3; then find a post message site like (www.nfonews.com)where groups tell other people what they are posting and where you can find the files. (like the Voice Command from M$) :lol:
Alot of Dutchies are using FTD. (This is a program)
But there are numerious sites that will give you this info.
4; Once you have the info where you can find your ‘points of interest’, start your grabber software and subscribe your news account info.
Then find the location. E.g; alt.binaries.warez.pocketpc
Grabber finds the location and you can start downloading your ‘points of interest’.
Most files are wrapped as *.rar files. So you need to have a rar program to unpack the files. There are also *.par files. you also need those files if the program is brokendown in hunderds of *.rar files. *.par files are a sort of repair files. Let say you mis a couple of *.rar files of LOTR dvd. (yes you can find everything) Mostly the uploader will place also *.par files to repair the lost *rar files. So you still have the full program you are downloading.
5; The last thing you have to do is buy a bigger hard disk. B/c you are constantly downloading new things.. 120gb is not big.
More info @ :arrow: http://www.shemes.com/community/viewforum.php?f=6
Hope this helps you a little bit more on your quest for golden software treasures..
Hi
was just wondering why isnt the site using bittorrent to distribute the huge ROM files instead of FTP? it would cut down on their bandwidth and/or queue and i would think the download speeds would be faster with several/more seeds
just a thought.
that is a good idea you know.
i agree with you, ideea is great, i will ask my friend to make one
In a year of being one this site and who knows how many Roms I have downloaded and up loaded I fail to see the problem with FTP.
Even if the conection breaks a good FTP client will resume.
Bittorrent has its merits I agree but how many times do we change roms and are the roms real that BIG.
This is not RomWood.
MDAIIIUser said:
In a year of being one this site and who knows how many Roms I have downloaded and up loaded I fail to see the problem with FTP.
Even if the conection breaks a good FTP client will resume.
Bittorrent has its merits I agree but how many times do we change roms and are the roms real that BIG.
This is not RomWood.
Click to expand...
Click to collapse
i'll tell you what might be the problem with FTP. for instance, at home I have unlimited internal traffic and limited external traffic. if i download the rom from ftp, i will use my external traffic, but if i will use the torrents, the torrent client is configured so, that it uses only interbal traffic. so, the advantage is obvious
bola said:
Hi
was just wondering why isnt the site using bittorrent to distribute the huge ROM files instead of FTP? it would cut down on their bandwidth and/or queue and i would think the download speeds would be faster with several/more seeds
just a thought.
Click to expand...
Click to collapse
It really would be a great idea. But with m$ and [email protected]@ and [email protected]@ and also frudulent peeps out there you might get a bricker. Trust me when it comes to apps espescially these types, bittorrent might not be the best idea.
I remember with the psp, firmware hacks, some people released brickers so this could happen here too.
moyofalaye said:
bola said:
Hi
was just wondering why isnt the site using bittorrent to distribute the huge ROM files instead of FTP? it would cut down on their bandwidth and/or queue and i would think the download speeds would be faster with several/more seeds
just a thought.
Click to expand...
Click to collapse
It really would be a great idea. But with m$ and [email protected]@ and [email protected]@ and also frudulent peeps out there you might get a bricker. Trust me when it comes to apps espescially these types, bittorrent might not be the best idea.
I remember with the psp, firmware hacks, some people released brickers so this could happen here too.
Click to expand...
Click to collapse
umm with the bricker ROMs, isnt the FTP site exposed to that too? I mean, the FTP site doesnt stop anyone from uploading files. (i could be wrong)
i think the issue is verification of file integrity rather than the mode of distribution.
perhaps only those with proven track record of working ROMs are allowed to submit seeds?
This may take some work if you are not familar with the program, but perhaps PGP or gpg sign the ROMs, and have the torrent be a ZIP file, with the ROM, and a PGP/gpg signature file in it?
Just make sure either a copy of the public key, or the key ID and fingerprint is printed on the website, and have the key available on a keyserver.
PGP is the commercial version (www.pgp.com), gpg, or gnupg (www.gnupg.org) is the OSS version, both are interchangable, and both are highly secure.
The bittorrent protocol is not illegal. The shared files could be illegal. [email protected]@ or [email protected]@ will not say anything to the rom files afaik.. Because the ROM files are free to download..
Correct. Since the ROMs that'd be distributed over the tracker are neither music nor movies the people from the riaa and mpaa would not say anything against it. The only ones who could say anything against it are HTC, or I-Mate or Dopod, or whatever company is the author of the ROMs. But I guess they would've shut down the FTP by now if they'd have anything against it.
Bittorrent is a great way to distribute software and would have several advantages over the ftp like cost of running the server, security of data (anyone remember the time a lot of stuff was deleted from the ftp for example?), etc. A lot of (legal) software distribution is done in the Linux and open source community.
In conclusion I see no reason not to switch to Bittorrent. If you decide to do it and need help setting up the software I'd be happy to assist.
Has anyone EVER managed to make n0p’s free (!) Tower Toppler ( http://toppler.sourceforge.net/ ) port (available at http://n0p.tonych.info/?Tower_Toppler ) work on his / her WM device?
It wouldn't work on mine - it just displays "null" instead of the name of the map. Tested on several of my devices, with both the older XScale only and the new ARM (02.12.2006) build.
Alternatively, does anyone know n0p's accessibility? I'd need this info on my forthcoming article on all Nebulus clones for Windows Mobile.
Hmm, I wanted to check it out but when I tried downloading from http://n0p.tonych.info/?Tower_Toppler I got a "leach alert" page saying something about no referrals and turning off download accelerators.
Found this odd since I have no download managers installed.
Tried it with Firefox 2.0.0.3 and Explorer 6.0 and nothing...
levenum said:
Hmm, I wanted to check it out but when I tried downloading from http://n0p.tonych.info/?Tower_Toppler I got a "leach alert" page saying something about no referrals and turning off download accelerators.
Found this odd since I have no download managers installed.
Tried it with Firefox 2.0.0.3 and Explorer 6.0 and nothing...
Click to expand...
Click to collapse
Directly (left) click the links, do NOT do a right-click + Save link as.
No luck. Tried it directly with both browsers.
Even ran Spybot just in case.
Played with the desktop version for a bit - nice little game.
Interesting thing is I did not see an email address anywhere on the developers site (and I even checked the Russian version - yes I read Russian).
Oh well, it was just curiosity any way. I have about 20 games on my Jamin as it is and in order to get some respect I need to at least pretend to use it for work stuff
Good luck with your article.
levenum said:
No luck. Tried it directly with both browsers.
Even ran Spybot just in case.
Played with the desktop version for a bit - nice little game.
Interesting thing is I did not see an email address anywhere on the developers site (and I even checked the Russian version - yes I read Russian).
Oh well, it was just curiosity any way. I have about 20 games on my Jamin as it is and in order to get some respect I need to at least pretend to use it for work stuff
Good luck with your article.
Click to expand...
Click to collapse
Strange it didn't work. I can put it on my database back-end so that the entire world can access it there without problems tomorrow morning; I'll give you the URL as soon as it's up.
In the meantime, I was able to make the game work (see http://forum.xda-developers.com:80/showthread.php?t=304230 if interested). Guys, you MUST give this game a try - it REALLY rocks! n0p has again presented us something REALLY cool, thanks!
ANYWAY, if anyone does know n0p's accessibility, let me know. I, as the Windows Mobile Best Software Awards 2007 Nomination Manager, want to nominate some of his stuff for this year's awards and, for this, I also need to contact him.
See http://www.winmobiletech.com/sekalaiset/TopplerARM.7z for the mirrored file
Thanks a lot for mirroring the file. (You relay shouldn't have bothered)
Keep the excellent articles coming.
levenum said:
Thanks a lot for mirroring the file. (You relay shouldn't have bothered)
Keep the excellent articles coming.
Click to expand...
Click to collapse
You're welcome, and thanks
Mods please move this post if in the wrong place. OK, I couldn't find it ANYWHERE on XDA but, I did find it by doing extensive baidu (China's Equivalent of Google Search engine) searches and translations. So I give to you all QPST 2.7 build 402. I have the newest and latest QXDM and QCAT also. They were uploaded to the Chinese site on February 13, 2013. QXDM requires activation so I wont post it. I will post QCAT if anyone requests it though, as it does not require activation and neither does this version of QPST. I have seen numerous posts over the net where people wanted QPST 2.7 build 385 but this one surpasses that version. Annoyingly enough though, I still cant write settings to my girlfriends LGL55CV3 Straight Talk android phone with it . So if anyone here can help me out on this, please feel free to do so. So enjoy and hit thanks if I've helped you out.:good: http://www.mediafire.com/?yya85byog8kqtxn
:good:
solcam said:
Mods please move this post if in the wrong place. OK, I couldn't find it ANYWHERE on XDA but, I did find it by doing extensive baidu (China's Equivalent of Google Search engine) searches and translations. So I give to you all QPST 2.7 build 402. I have the newest and latest QXDM and QCAT also. They were uploaded to the Chinese site on February 13, 2013. QXDM requires activation so I wont post it. I will post QCAT if anyone requests it though, as it does not require activation and neither does this version of QPST. I have seen numerous posts over the net where people wanted QPST 2.7 build 385 but this one surpasses that version. Annoyingly enough though, I still cant write settings to my girlfriends LGL55CV3 Straight Talk android phone with it . So if anyone here can help me out on this, please feel free to do so. So enjoy and hit thanks if I've helped you out.:good: http://www.mediafire.com/?yya85byog8kqtxn
Click to expand...
Click to collapse
---------- Post added at 04:36 PM ---------- Previous post was at 03:44 PM ----------
:good:
solcam said:
Mods please move this post if in the wrong place. OK, I couldn't find it ANYWHERE on XDA but, I did find it by doing extensive baidu (China's Equivalent of Google Search engine) searches and translations. So I give to you all QPST 2.7 build 402. I have the newest and latest QXDM and QCAT also. They were uploaded to the Chinese site on February 13, 2013. QXDM requires activation so I wont post it. I will post QCAT if anyone requests it though, as it does not require activation and neither does this version of QPST. I have seen numerous posts over the net where people wanted QPST 2.7 build 385 but this one surpasses that version. Annoyingly enough though, I still cant write settings to my girlfriends LGL55CV3 Straight Talk android phone with it . So if anyone here can help me out on this, please feel free to do so. So enjoy and hit thanks if I've helped you out.:good: http://www.mediafire.com/?yya85byog8kqtxn
Click to expand...
Click to collapse
Ummmm...Yeah. If you say so.
solcam said:
Ummmm...Yeah. If you say so.
Click to expand...
Click to collapse
Anyone managed to download this?
No. It says that it belongs to an unvalidated account. I know that 418 is now out too if anyone might have this one.
cezar1 said:
This file infected by troyan. Thanks a lot
Click to expand...
Click to collapse
I had no issues with it... and still use it. I will look into it. I did not upload it, I just posted the link.
---------- Post added at 10:56 PM ---------- Previous post was at 10:32 PM ----------
cezar1 said:
This file infected by troyan. Thanks a lot
Click to expand...
Click to collapse
I did some checking and a few people DID have issues with this. Thank you for bringing it to my attention...
If you install this via "setup.exe" it will put a backdoor on your system. It lives at "C:\Users\Admin\AppData\Roaming\Qualcomm". It will also add itself to the "HKCU/Software/Microsoft/Windows/Current Version/Run" key in the registry. There is no virus in the MSI file.
You should be able to detect it, remove it and use build 422. Again, I am using it without issue.
rekamyenom said:
I had no issues with it... and still use it. I will look into it. I did not upload it, I just posted the link.
Click to expand...
Click to collapse
Hello, fellow QPST users.
QPST 2.7 Build 4.2.2 is a fake version with keylogger.
Some a$$hole downloaded latest public QPST build (4.0.2) and decompiled MSI installer package, then edited all "4.0.2" to "4.2.2", added "fake changelog", added keylogger (qualcomm.exe), then repackaged and spread around web!
Everyone who downloaded QPST build "4.2.2" should change all his passwords.
More info about malware from fake 4.2.2 build (QPST.2.7.422.msi)
MSI package (QPST.2.7.422.msi) was embedded/tampered with qualcomm.exe which is a .NET based malware that logs your keystrokes and sends it to attacker's server.
How to delete the actual malware from your system?
Look at the startup from msconfig or CCleaner, there should be a file called qualcomm.exe thats set to start everytime system starts. Delete both registry and file.
If you wanted to see what data thief was stolen from you. Just open the .dc file (in "dclogs" folder) with Notepad and see for yourself.
In XP, dc file is located here!
C:\Documents and Settings\Administrator\Application Data\dclogs
there should be a file called "201X-XX-XX-X.dc
if you open that DC files with Notepad, you'll see all your keystrokes.
Here is mine. I've intentionally entered paypal site with fake info.
:: Run (3:01:51 AM)
Script kiddie. NET Based malware, huh?[ESC]
:: Program Manager (3:02:14 AM)
e
:: Firefox (3:02:18 AM)
www.paypal.com
[email protected][TAB]
mypaypalpass
[ENTER]
:: Documents and Settings (3:02:19 AM)
[UP]
:: Administrator (3:02:28 AM)
[DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN]
[DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN][DOWN]
d
:: (3:02:34 AM)
:: Administrator (3:02:34 AM)
d
:: (3:03:11 AM)
mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm
:: [Release] QPST 2.7 BUILD 422 - Download Here - Enjoy - Mozilla Firefox (3:03:57 AM)
crap
How to delete?d
:: Clipboard Change : size = 16 Bytes (3:03:57 AM)
QPST.2.7.422.msi
:: (3:04:23 AM)
cccccc
Click to expand...
Click to collapse
Keylogger sends the logs from keylogger to "qpst.hopto.me"
So please report about this incident where and when you encounter QPST 4.2.2 somewhere (forums, posts, sharing-sites, etc)
Copy my whole post and paste it where you see 4.2.2 mentioned.
Bonus: Fake Changelog
If you've installed this 422 build, then open the Readme.txt in C:\Program Files\Qualcomm\QPST\Documents
Scroll down and see the "6/12/13 QPST 2.7.422 changelog"
6/12/13 QPST 2.7.422
1) EFS Hello commands will not be sent unless the device is in a compatible mode. Sending this command when the
device is in download mode can cause a "server busy" message for a few seconds because of command retries.
2) Support for the Sahara device protocol (see 80-N1008-1 or equivalent) is now built in to the QPST server process.
This protocol is only supported by USB Serial ports, not TCP/IP connections. In QPST Configuration a device in
this mode will display as "Q/QCP-XXX (Sahara Download)". This mode can only be detected (1) when the QPST server
process starts or a COM port in this mode added to QPST, or (2) when a device enters Sahara mode on a port assigned
to QPST. This is because the device only sends its Hello message once, as soon as the COM port is opened.
Click to expand...
Click to collapse
Changelog above is actually cloned from QPST 2.7.394 Just scroll down and see Build 2.7.394 changelog. Its same!
So forget about Build 422. It doesn't exist.
Use QPST 2.7 Build 402. It's the latest public build
Sorry about my english
Best Regards
AnycallMongolia
can somebody give proper qpst latest version.
pl provide dropbox link
madroamer said:
can somebody give proper qpst latest version.
pl provide dropbox link
Click to expand...
Click to collapse
Okey, someone (HuaweiDevices.ru) leaked QPST v2.7.411 to the public. I've installed it myself and confirmed that its legit build.
Here is original link of the leak..
Here is my link.
http://d-h.st/qAy
Thread cleaned, potentially unsafe file and posts are gone. All members are to be reminded that whenever you flash anything, regardless of what it is, you take chances.
Thanks for the report, and thanks for not being disrespectful regarding the matter.
Now, back to development.
Thanks for your sharing this.
solcam said:
Mods please move this post if in the wrong place. OK, I couldn't find it ANYWHERE on XDA but, I did find it by doing extensive baidu (China's Equivalent of Google Search engine) searches and translations. So I give to you all QPST 2.7 build 402. I have the newest and latest QXDM and QCAT also. They were uploaded to the Chinese site on February 13, 2013. QXDM requires activation so I wont post it. I will post QCAT if anyone requests it though, as it does not require activation and neither does this version of QPST. I have seen numerous posts over the net where people wanted QPST 2.7 build 385 but this one surpasses that version. Annoyingly enough though, I still cant write settings to my girlfriends LGL55CV3 Straight Talk android phone with it . So if anyone here can help me out on this, please feel free to do so. So enjoy and hit thanks if I've helped you out.:good: http://www.mediafire.com/?yya85byog8kqtxn
Click to expand...
Click to collapse
anycallmongolia said:
Okey, someone (HuaweiDevices.ru) leaked QPST v2.7.411 to the public. I've installed it myself and confirmed that its legit build.
Here is original link of the leak..
Here is my link.
http://d-h.st/qAy
Click to expand...
Click to collapse
Link works. Thank you.
Hello guys, i have a LG G2 with 3g issue , it works just in 2g, somebody can upload his QCN file so i try to replace mine with it? Thank you so much
!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!
!!! TROJAN AGAIN !!!
Some time ago in Feb 2014 man named anycallmongolia posted a link to QPST 2.7 build 411
Link points to the site HuaweiDevices.ru
h_t_t_p_://_huaweidevices._ru/ROMS/QPST_2.7.411.rar
Later I'd personally downloaded this version from this topic a few times in 2014 and this was normal non fake QPST which i'd installed on a few PC's. (Can't remember particular link now). Today I would like to install QPST to a new NB PC, so assumed this topic as the best source. Being a recovery/data structures expert I always inspect code (mostly by viewing in text/hex). As most of members I've very high trust level to xda (certainly it's much higher then one related to the "famous and respectable" corps like Google/MS/Apple/etc, who aren't on my side, I'm sure).
I've installed QPST got from this topic a few times, so I'd almost pressed Enter (I use FAR most of time and advice you to do the same) over the DL'd file "qpst 2 7 411.exe".... What??? - EXE??? And it's just about 500Kb long... But QPST installer occupies about 16Mb.
I've explored body - I's typical malware with slightly "encoded" (to prevent direct reading) data inside. QXDM offered on the neighbor page is the same malware of the same size.
If you'll try to dl QPST from above link you'll got 404 error in the center of normal html page with site menu etc... What normal man would think in this case? He'll think page/product have moved (e.g. due to overload protection) and what he'll do next? He'll try to find where page have moved and... will got link in menu just at the bottom of 404 page. It's just trivial (but very good working!) "social engineering" - publish real app in trusted place and when it will pass checks replace it with malware. (Or may be domain was sold to the criminals as it often occures in Russia for a few latest years). Even if you will check DL url in the status bar it will show link to the .RAR archive, but ASAY click the link it will be redirected to .exe!
PLEASE PUBLISH BIG WARNING on TOPIC START and remove links to HUAWEIDEVICES.RU!!!
Furthermore. Situation is much worse because huaweidevices shows 1ST position in search request "QPST 2.7.411" by Yandex.ru (#1 search engine in Russia) and 2ND position in Google results with the same request!!! It's VERY DANGEROUS situation! Thousands if not millions of peoples are at risk of infection.
I'm going to write abuses to Google and Yandex NOW!
Please spread info on such a new attack manner/technique around your friends, collegues and internet.!
Always check what you run!!!
QPST 2.7 build 425 (The REAL Thing!)
It is so irritating to see all of the jerks who are trying to spread viruses and malware nowadays.
Here is the REAL build 425:
http://www.mediafire.com/download/neeapht51ub2333/QPST.WIN.2.7_Installer-00425.1.zip
drkcobra said:
It is so irritating to see all of the jerks who are trying to spread viruses and malware nowadays.
Here is the REAL build 425:
h_t_t_p_://_w_w_w.mediafire.com/download/neeapht51ub2333/QPST.WIN.2.7_Installer-00425.1.zip
Click to expand...
Click to collapse
Very very very BIG Thank you!!!
That's really new one and it contains new very promising QFIL util. Didn't explored much yet!
God bless on you man!
BTW does anybody know how to descramble (decrypt)/scramble (encrypt) back EFS/NVRAM partitions (in most cases modemst*). I'd like to be able to patch/change every byte in EFS (not just locks etc bull****, my phones are always free of any contracts). Full modem FW reversing seems too difficult to me (i'm 'not so strong' in ARM assembly and there is too much code in modem FW). I'm sure for a such long period (over decade) of EFS life there should be methods around to manipulate it independently of mfr/commercial products, but I can't find them for a long time. Trust me, it's fully idiotic situation I'm (you're) not able to do with my (yours) computer (PDA is computer, not the "phone") all I want to do being "restricted" to access only data some f...n mfr "allowed" me to access. It's my device, I'd paid for it and I will decide what me to do with it.
Furthermore, modern public licenses don't allow to hide parts of object (device) code, where GNU/GPL code is the main part. Is anybody here who think that Linux/Unix value in ALL there f...n "modern" Android devices less than 90%? Most router mfrs have already forced by requirements GNU/GPL to publish full compilable code of their firmware. I shouldn't have clue what all they want to hide related to their "commercial" and manipulating interests. Using 30years of thousands people's free labor in their commercial products , they're obligated to publish full sources and should DO IT.
Apple is today wealthiest corp on this planet, but If you'll look into the Apple's internals you'll find tons of MODERN Linux code (protected by modern GNU/GPL) simply stolen from open source depositories, then adopted to MacOS/iOS then closed and sold as commercial product . Is it fair game?
TheDrive said:
Very very very BIG Thank you!!!
That's really new one and it contains new very promising QFIL util. Didn't explored much yet!
God bless on you man!
BTW does anybody know how to descramble (decrypt)/scramble (encrypt) back EFS/NVRAM partitions (in most cases modemst*). I'd like to be able to patch/change every byte in EFS (not just locks etc ...................
Click to expand...
Click to collapse
I use EFS Pro for BackUp and Restore.... Sadly its windows only, but works great with VirtualBox on Linux Mint Cinnamon/MATE 17.1 x64.
Hosted on the wonderful XDA:
http://forum.xda-developers.com/gal...ol-updated-09-06-14-efs-professional-t1308546
FWIW
I hear you about Apple, used to be a hardcore fan, when they were nearly bankrupt. I still swear by OS X, but not the iTard line of devices. I tell my nieces and nephews to get an Android cause they are not ignorant! lol There should be more of an effort to make people understand that Apple is using allot of *BSD (Linux) source. The GUI is closed, but some of the other source is available in the dev program site they host.
unimatrix725 said:
I use EFS Pro for BackUp and Restore.... Sadly its windows only, but works great with VirtualBox on Linux Mint Cinnamon/MATE 17.1 x64.
Hosted on the wonderful XDA:
http://forum.xda-developers.com/gal...ol-updated-09-06-14-efs-professional-t1308546
Click to expand...
Click to collapse
Thank you! Certainly I know this good product. It can manipulate NVRAM through COM-port, just the way QPST does it communicating w/modem FW. Is has many advanced options but seems not to be reliable enough (too many OEM customizations around, it's difficult to reverse all) As you stated it can also backup some partitions (like EFS). but you can do this yourself just by simple ADB/Unix shell commands (e.g. "dd if=/dev/block/mmcblk0p?? of=/sdcard/mmcblk0p??.img")
You can write simple scripts and perform such backups directly from device (to SD). Furthermore, you can customize CWM/TWRP for your device to perform such backups from recovery.
To do it you should know which partition numbers to backup/restore (to backup/restore what data you want).
There are methods/commands available to get needed info to build full device partition map (e.g. some devices contains "folders" named "by-names" deeper in /dev/block/... (where partitions are named), but in some cases (e.g. some 2013 MSM7227 based Samsung phones like GT-S756x) there is no names associated with particular proprietary partitions in the device, (at all) so the only way to find what data reside there is to backup and look (hex) with your own "experienced" eyes what these data seems to be (or search what others found on the theme). EFSPro "from the box" also knows only a few device's partition maps so, in most cases you should build configuration for your device manually with full knowledge of it.
There is no problem to locate and backup encrypted modem data partitions (modemst*/efs/etc...) if your device is rooted. Moreover, if your device has standard Qualcomm bootloader (not OEM's cut) you can switch device to the standard Qualcom DM (download mode) when all your eMMC contents will be exposed to USB bus as mass storage device (just like UFD or SDCard) and you can backup/restore whole drive contents or particular partitions just like PC's own partitions (try some "chnese" stuff (made of quality parts) instead of "branded" ones and you'll see superiority of the "open world".
But main question is how to decrypt modem data to explore and change them as I want at any time. Mfrs (i.e. Qualcomm and OEMs hide serials, locks etc BS there, but there is a lot of other interesting stuff related to modem configuration which is also closed and encrypted. This drives me wild because it's my device and my serials/locks and other stuff too, so it's my option to do with is what I want and no one else. I'm definitely know and sure modem FW/config and even mask ROM (which we most probably never will be able to explore) contains many hidden features that may lead to remotely force device to collect info about user and perform actions without his knowledge and consent. I have no matter what all these sec... services planned to do with all these exploits they forced OEMs/chipmakers to implement., but (sic!) they allowed information about these exploits to leak wild! So some "generic" engineers who simply have job and low level access to cellular provider's equipment (which able to broadcast custom service packets) to make "what they want with user's phones (e.g. switch it on or request GPS data) just "for fun". F them all, but most idiotic is fact that being an 25y experienced "lowest level" service engineer I can't get access and control over my own devices (i.e. computers). It's incorrect. It would be difficult but we should pay more attention to explore internals and get clue what goes on.
unimatrix725 said:
FWIW
I hear you about Apple, used to be a hardcore fan, when they were nearly bankrupt. I still swear by OS X, but not the iTard line of devices. I tell my nieces and nephews to get an Android cause they are not ignorant! lol There should be more of an effort to make people understand that Apple is using allot of *BSD (Linux) source. The GUI is closed, but some of the other source is available in the dev program site they host.
Click to expand...
Click to collapse
I've personally explored OSX files and partitions and seen much modern Linux code inside. They even don't hide "copyrights". Nobody will explore anyway and nobody cares. Old 80x-90x versions of public licenses allowed to do "anything" with free open sources (including to make changes, then close sources and sell product). After some smartasses like Apple used this hole to sell free labor of thousands of peoples, public license had changed. Modern licenses allows you to sell derived product, but obligate you to open sources (with same license) so anyone else can use them to and sell too. You can't close your part of sources if free code is most valuable part of your product. E.g. router mfr can't close part his own sources to make firmware sources "uncompilable" because Linux definitely is most valuable part of router FW. This warrant later development of free open source programs and free community n whole. Apple stated that they used only old 80x code in their OS'es and then developed it separately and thus they are not obligated to open sources to everyone. They would be right unless they didn''t used a lot of modern code protected by modern public license's requirements. I didn't explored deeply. May be they publish all derived code for free. Today we can't say accurately if some modern Linux components they adopt for Mac/iOS are most valuable part of their systems or not. We should explore all the code to make decision. but anyway it's not fair to use a lot of thousand's people's free labor just to make money. Google's position here is not ideal but much more fair. They publish most of sources and support open source community. They don't try to make system "unbreakable" and they don't force you to use their accounts too much. I've NO Google "phone" account AT ALL. I've no need in any "markets", "clouds" ect BS., which lead absolutely no problem to me to effectively use Android devices. There are lots of free APK's around
It practice, I have 2-3 old iPhones just for experiments. Yes we have Jailbreaks and some other stuff, but even if you break and get access to your device it's very uncomfortable to work with it at low level. On my sight just one ADB interface costs more then all "jingles and bells" of iOS's GUI. All these "tethered-untethered", "unbreakable" bootloaders in Mask ROM, lack of normal tools to explore and manage data on any level, total control and extraction of my data by mfr via strongly encrypted obfuscated protocols and hidden services make these devices useless for me in practice.
Windows Phone is even far more closed OS then iOS. You have no control over your data at all. You can't do a thing with WP device unless you sign up with MS account. You can't get access to your own data (except MM files) unless you sync it with MS cloud, i.e. you will be forced to send all your private data to MS and MS will decide whether to give piece of it back to you or not. Matrix in action. I've absolutely no clue what thought MS bosses when they decided to close ALL in OS that have had less than 1% of market. Their 1st goal was to attract developers to write apps for their OS and there was no better way to kick them than "close All". There is no matter does it perform GUI actions good or not when devs and users have no effective way to collect and use "useful" results of device's work.
drkcobra said:
It is so irritating to see all of the jerks who are trying to spread viruses and malware nowadays.
Here is the REAL build 425:
http://www.mediafire.com/download/neeapht51ub2333/QPST.WIN.2.7_Installer-00425.1.zip
Click to expand...
Click to collapse
The new versions got rid of QXDM and RF NV Manager.
Build 415
etirkca said:
The new versions got rid of QXDM and RF NV Manager.
Click to expand...
Click to collapse
I have not used this version, so do not know if it has been removed from this one or not, but here is a legitimate copy of build 415:
http://www.mediafire.com/download/ac6yh57yye363mx/QPSTWIN2700415.rar
I logged into the forum today from my win10 laptop and everytime I open a page in the forum, an executable file called USNC is downloaded. Any other members facing this?
What is this? Is it a bug? A virous? Or should I install it so as to be able to surf the forum better?
Any advise will be appreciated.
Thanx.
Hello.
Even the same thing happens to me. Every time I open a XDA forum page I will see a window where you plan to save a "USNC" file from the web address https://cs.ffbtas.com
This happens either with a Windows 10 PC or MAC.
What is it about? virus? malware?
Happens here also on my phone. Latest Chrome for Android.
I'm getting the same result. @svetius can you look into it?
Same here. It's piss annoying
Same here. I've like 6 downloads!
Yep just logged on and happening to me everytime a page opens on xda... dont think its a virus most likely a bug.. annoying and laggy though
I'm facing the same problem very annoying
Same here. Windows7
It's a broken targeted advert link
They are broken advertising links from a company called Feature Forward. You know those ad videos that play on all sorts of different websites, including this one? Ever wonder how they work? A targeted ad gets sent to your browser. Somehow these are broken, and all you get is an empty file with no extension. But if you check the packet data its an active link to a file traceable to a domain in Washington. Registered under Feature Forward.
http://whois.domaintools.com/ffbtas.com
Don´t know what this have to do with xda ? is there any mod admin or someone else who can declare whats happend ? maybe is a secure problem on xda ?
Whois & Quick Stats
Registrant Org Feature Forward Ltd. is associated with ~1 other domains
Registrar GODADDY.COM, LLC
Registrar Status clientDeleteProhibited, clientRenewProhibited, clientTransferProhibited, clientUpdateProhibited
Dates Created on 2016-03-03 - Expires on 2018-03-03 - Updated on 2016-03-03
Name Server(s) NS1.P20.DYNECT.NET (has 252,892 domains)
NS2.P20.DYNECT.NET (has 252,892 domains)
NS3.P20.DYNECT.NET (has 252,892 domains)
NS4.P20.DYNECT.NET (has 252,892 domains)
IP Address 184.173.133.205 - 1 other site is hosted on this server
IP Location United States - District Of Columbia - Washington - Ofer Zinger
ASN United States AS36351 SOFTLAYER - SoftLayer Technologies Inc., US (registered Dec 12, 2005)
Domain Status Registered And Active Website
Whois History 17 records have been archived since 2016-03-03
IP History 1 change on 2 unique IP addresses over 1 years
Registrar History 1 registrar
Hosting History 1 change on 2 unique name servers over 1 year
Whois Server whois.godaddy.com
Website
Website Title Feature Forward
Server Type nginx/1.8.0
Response Code 200
SEO Score 73%
Terms 1912 (Unique: 588, Linked: 5)
Images 4 (Alt tags missing: 2)
Links 6 (Internal: 0, Outbound: 1)
Whois Record ( last updated on 2017-05-18 )
Domain Name: ffbtas.com
Registrar URL: http://www.godaddy.com
Registrant Name: Ohad Gliksman
Registrant Organization: Feature Forward Ltd.
Name Server: NS1.P20.DYNECT.NET
Name Server: NS2.P20.DYNECT.NET
Name Server: NS3.P20.DYNECT.NET
Name Server: NS4.P20.DYNECT.NET
DNSSEC: unsigned
You must Register or Log in to view the Whois record for this domain name
madvinegar said:
I logged into the forum today from my win10 laptop and everytime I open a page in the forum, an executable file called USNC is downloaded. Any other members facing this?
What is this? Is it a bug? A virous? Or should I install it so as to be able to surf the forum better?
Any advise will be appreciated.
Thx.
Click to expand...
Click to collapse
Yes I do!
However the XDA site is affected only. But I don't have any idea to get rid of it. Any help is greatly appreciated.
PS:
Just found out on Virus Total that it may be a clean site: https://www.virustotal.com/en/file/...e6c5e0d40ee7ea3296d52373/analysis/1492037740/
It's good to know this doesn't seem like a cause for concern.
Same here
Same for me!
Same here. I was about to start a new thread and find many guys facing same issue.
Its annoying. Any thread / forum i click, this file gets downloaded automatically.
The same thing happens on anandtech and other sites. Hard to say if it was 100% legit to begin with or if it was a drive by download operation that has just been shut down.
i m also facing same issue and this file keep downloading automatically in my android as well as pc both running on same wifi network and i found that a new folder named file is formed in my download path which is not deleting if i try to delete then comes back in next second and its occupiying my storage it is behaving like some sort of virus how to get rid of this
Those using chrome i just installed Adblock & Adblock Plus and its gotten rid of the downloads
+1
getting the annoying USNC file thing too. and confirm it's on anandtech as well. if it's a broken advert, then guessing removing the rogue advert from the site would sort it no?
i also used internet explorer just to check if its chrome problem and it said "Do you want to open or save usnc from cs.ffbtas.com?"
Anybody any idea?