Frequently Asked Questions

All your Questions answered in one place

Some of your Questions:

Q. Who are you?

OnlineHashCrack.com provides a professional service that attempts to recover your passwords (hashes like MD5, NTLM, Wordpress etc), your WPA dumps (handshakes) and your MS Office encrypted files, obtained in a legal way (pentest, audit, lost password,..).
/!\ We are NOT a hacking website, we do NOT hack/crack websites, and we assume all submitted hashes are for testing purposes or obtained in a legal way (pentest/audit for example).

Q. What kind of password?

We attempt to recover :

  • Windows login password (LM, NTLM)
  • Mac OS X login password
  • MD4 hash
  • MD5 hash
  • SHA1 hash
  • MySQL hash (all versions)
  • Wordpress & Joomla & phpBB
  • Microsoft Office encrypted files (Word, Excel, Powerpoint)
  • WiFi WPA / WPA2 handshakes.
Get the full detailed list here.
If you have other algorithms (Unix, salted, etc) you can contact us directly.
You can also answer the poll to influence the choice of the next supported algorithm.

Q. How do you do that?

Our distributed cracking system use several mechanisms : pre-calculated tables, GPU computations, huge wordlists, brute-force, etc.
We provide a system to reverse your hash for password recovering.
This online hash search is FREE for password length < 8 : you can freely try our system !
Benefits :

  • Fast (Min : few seconds / Max : 5 days)
  • Many algorithms supported (more than 20)
  • "On demand" service : contact us with your large hash file / special algorithm / whatever , we may help you.
  • Low cost : See our pricing policy

Q. Can you guarantee to recover my password?

No, a strong password having numbers, special characters and long length might not be recovered.
Fortunately we recover a large majority of passwords, and you only pay if the password is recovered.

Q. Is it free?

It depends : all you need to know is here : pricing.
"No crack no pay".

Q. What does "Not found" and "In progress" mean?

Three states are possible :
Status Description
"Cracked" Great ! We successfully recover your password :) We sent you an email, please check your inbox or spam folder.
"Not found" we cannot recover it, the password may be too complex. However if you have any hints about it (length / charset / keyboard used / algorithm / ...) you can contact us, we can check again (except for WPA).
"In Progress : X %" we are currently working on the task. At this state nobody on earth knows if the crack will be successful or not : no need to contact us, just wait you'll receive an email if recovered.

Q. How can I pay to get my password?

If your password has been recovered :
- Follow the "Buy Now" button next to the task you want to buy;
- Choose the service that suits you best among the list;
- You are securely redirected to the choosen partner website : we don't handle payments as this is not our job, we rely and trust on our partners.
- Our partner inform us about your payment, then your password is immediately displayed to you (no human action required).

If you need to pay, we acccept :

  • Bitcoins (more info)
  • Credit/Debit card
  • Amazon Giftcard
  • Paypal : NO ! (actually they do not accept us)
  • Paysafecard : NO !

Q. Are you guys a scam?!

Instead of a long speech, take a few seconds to consider the evidences that we are not a scam:
- Several customers testimonials
- "No Crack No Pay" : if we can't recover your password, you don't receive any notification, and our story ends here for this task.
- Test our services freely : send us a password whose length is < 8. We will recover it for you freely !
- Test our services freely : send us a password you already know : ask us for the first/last character : you'll see that we have the good one.

Q. Who would use your services?

- People who has forgotten their password (e.g: Windows or OSX account passwords)
- IT security experts, penetration testers, etc.
- IT security enthusiasts.

Q. Guarantee

We double check each password before sending you an email, thus we are 100% confident that the password is correct.
However, for any reason, if you are not satisfied with the service, contact us and we will check again with you.

Q. How long will a crack take?

Min : few seconds / Max : 5 days.

You are in a hurry?
You can speed up the recovery process of your task. Click on the 'clock' icon and follow the instructions.
We then put your task at the highest priority level of our tasklist. Your recovery task will be immediately on the top priority.

Q. Special requests

- Hashes (MD5, NTLM, etc) : If we did not recover you hash because the password may be too complex, and if you have any hints about it (length / charset / keyboard used / algorithm / ...) you can contact us, we can check again.
- WPA : We attempt to crack your WPA handshes by using huge private and public wordlists. We do not handle specific requests (bruteforce for example).
- MS Office (word, excel, powerpoint encrypted files) : We have a 100% success rate.

Q. Why choose you?

We have the experience and resources required to recover your hashes.
Here are several customers testimonials.

Q. How do I retrieve/extract a hash?

Depending of your system, please read our "how to" tutorials on the menu.

Q. How will I know when you recover it?

As soon as your password is recovered, we send you an email with the link to get the password.
You just have to wait while we work for you ;-)

Q. What does "HEX[xxxxxx]" mean?

It's the hexadecimal encoded representation of your password. Why ? Because your password contains non-ascii and/or non-printable character, that's why we surrounded it by "HEX[]".
Copy the hexadecimal string into a hexa-to-ascii converter (google can help you). Or look at this table asciitable.com.
Such unicode characters can be written with a keyboard with this manipulation.

Q. Refund policy

When your password length is > 7, we ask for a small fee before displaying your password. We double-check each password to ensure it's the good one, but if you have a problem with it and think it's wrong, we can obviously refund you (in bitcoins). The only thing to do is to prove us we are wrong. Please don't forget first to read the guide to check our result.

Q. Payment Decline

We are aware of the difficulties for USA and Canada customers when tring to pay via Credit Card.
Our Credit Card Payment Processor Partner does not allow USA/Canada customers to pay for our work. The only option for you is to use Bitcoins or Amazon.

Q. How to buy Bitcoins?

Bitcoin is an open-source, anonymous, and decentralized P2P currency ; You can purchase your tasks securely and anonymously. With your credit card you can instantly by Bitcoin at www.coinbase.com or www.bitstamp.net they are fast, reliable and secure. You can also visit www.howtobuybitcoins.info. More info here.

You can also buy Bitcoins with your Paypal account.

Q. Confidentiality

We delete uploaded WPA capture files once the process (successful or not) is finished. We do not keep any log or any file related to your upload.
For hashes (LM, NTLM, MD5,...) we just keep the hash, the password, and your email in order to notice you when the task is done.
You can permanently delete these information from our databases : just contact us.