Friday, March 13, 2009

backdoor virus remove tips & tricks

Step 1.
Click Start > Run and type Regedit.

Step 2.
Follow the paths using regedit and find:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion
Run

Step 3.
In the right window, look for a registry key with a value that loads the "icqnuke.exe" file. This is the registry key that provides the ability to load the server portion of the trojan whenever the PC is started.

Step 4.
In the right window, highlight the key that loads the file and delete it (Right click and choose Delete).

Step 5.
Exit the Registry.

Step 6.
Click Start > Shutdown > "Restart in MS-DOS mode".

Step 7.
After the computer has restarted, change to the WINDOWS or WINDOWS\SYSTEM directory and delete the "icqnuke.exe" file.

Step 8.
Press CTRL-ALT-DEL and allow Windows to restart.

Congratulations, BackDoor has now been removed from your system.
Posted by at No comments:

Ip Address Hack Contd

Changing your MAC on Windows XP
There are two ways two change your IP on Windows. The easy way, and the hard way. Ill discuss how to do both of them in this tutorial. Easy Way: The first way to change it is, if your NIC (Network Interface Card) supports cloning your MAC Address. If this is the case then you go to. Start > Control Panel > Network Connections Right Click on your NIC card and goto properties. Then click the button labeled Configure. It should bring up another form. Click on the advanced tab. You should see under Property "Locally Administered Address" or "Network Address". Click the radio button next to the text box, and type in your new MAC address. (note you do not use the "-" when you enter your no MAC Address. To check and see if it worked or not go to Start > Run > and type in "cmd" When the terminal comes up issue the command. ipconfig /all ----------------------------------------------------------------------------------------------------------------------------------------------- Hard Way: To change your MAC Address the hard way, you first go to Start > Run > and type in "cmd" Once the terminal comes up type in "net config rdr" It should bring up alot of things, but what you are worried about is NetBT_Tcpip_{ The Numbers Between here} Copy the numbers in between there and write it down somewhere, seeing that you will need them later. After you are done with that go to Start > Run > and type in "regedt32" That should bring up the windows registry. Once the registry is up go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318} Click on the drop down menu and you should see the sub-categories 0000 0001 0002 and so on. Click on each one and compare the "NetCfgInstanceId" Key with the number you wrote down earlier. Once you find a match double click on the key "NetworkAddress" and change the value to your new MAC address. Hit ok and reboot your system.
Posted by at No comments:

hackerariean 100 Tricks to WINDOWS ! some call dem hacks

My favorite windows XP tweaks
hackerariean
Shutdown XP FasterLike previous versions of windows, it takes long time to restart or shutdown windowsXP when the "Exit Windows" sound is enabled. To solve this problem you must disable thisuseless sound.· Click Start button.· Go to settings > Control Panel > Sound, Speech and Audio devices > Sounds and AudioDevices > Sounds.· Then under program events and windows menu click on "Exit Windows" sub-menu andhighlight it. Now from sounds you can select, choose "none" and then click Apply andOK.Now you should see some improvements when shutting down your system.Speed Up Detailed View in ExplorerIf you like to view your files in Windows Explorer using the "Details" view here is atweak to speed up the listing of file attributes:Viewing files in Windows Explorer using the "Details" mode shows various attributesassociated with each file shown. Some of these must be retrieved from the individualfiles when you click on the directory for viewing. For a directory with numerous andrelatively large files (such as a folder in which one stores media, eg: *.mp3's, *.avi'setc.), Windows Explorer lags as it reads through each one. Here's how to disable viewingof unwanted attributes and speed up file browsing:· Open Windows Explorer.· Navigate to the folder which you wish to optimize.· In "Details" mode right-click the bar at the top which displays the names of theattribute columns.· Uncheck any that are unwanted/unneeded.Explorer will apply your preferences immediately, and longs lists of unnecessaryattributes will not be displayed.Likewise, one may choose to display any information which is regarded as needed,getting more out of Explorer.Easily Disable MessengerGo into: C:/Program Files/Messenger. Rename the Messenger folder to "MessengerOFF".This does not slow down Outlook Express or hinder system performanceTurn Off System Restore to Save SpaceBy default, Windows XP keeps a backup of system files in the System Volume Informationfolder. This can eat up valuable space on your hard drive. If you don't want Windows toback up your system files:· Open the Control Panel.· Double-click on System.· Click the System Restore tab.· Check "Turn off System Restore on all drives".· Hit Apply.· You may now delete the System Volume Information folder.Warning! If you turn this off you will not be able to use Windows System Restore torestore your system in case of failure.Very Slow Boot When NetworkingOn some XP Pro installations, when connected to a network (peer-peer in this case),the computer boot time is over 1:40. The system seems to freeze after logging in and thedesktop may not appear or will freeze for a minute. As timed with the utility,Bootvis.exe, the problem was with the driver mrxsmb.dll, adding over 67 seconds to theboot time. Turning off and restoring file and printer sharing eliminated 65 seconds fromthe boot time.· Alt-click (or right-click) on Network Places > Properties.· Alt-click on Ethernet Adapter connection > Properties.· Un-check "File and Printer Sharing for Microsoft Networks" > OK.· Reboot.· If you need file or printer sharing, repeat the above, re-check the box and re-bootagain.Very Slow Boot When NetworkingOn some XP Pro installations, when connected to a network (peer-peer in this case),the computer boot time is over 1:40. The system seems to freeze after logging in and thedesktop may not appear or will freeze for a minute. As timed with the utility,Bootvis.exe, the problem was with the driver mrxsmb.dll, adding over 67 seconds to theboot time. Turning off and restoring file and printer sharing eliminated 65 seconds fromthe boot time.· Alt-click (or right-click) on Network Places > Properties.· Alt-click on Ethernet Adapter connection > Properties.· Un-check "File and Printer Sharing for Microsoft Networks" > OK.· Reboot.· If you need file or printer sharing, repeat the above, re-check the box and re-bootagain.Easy Way to Adjust LargeSystemCacheNormally, the tweak I've seen asks you to go intoHKLM\System\CurrentControlSet\Control\Session Manager\Memory Management and change thevalue to either O or 1 to the adjustment the LargeSystemCache.However, in Windows XP, all you have to do is:· Right-click My Computer.· Select Properties.· Click Advanced.· Choose Performance.· Click Advanced again.· Select either Programs or System Cache under Memory Usage.Programs = 0 for the registry tweak equivalentSystem Cache = 1 for the registry tweak equivalent· On NT Server (in this case XP), the Large System Cache option is enabled, butdisabled on Workstation. The two different settings effect how the cache managerallocates free memory. If the Large Cache option is on, the manager marks all the freememory, which isn't being used by the system and/or applications, as freely available fordisk caching.· On the flip-side (with a small cache), the manager instead only sets aside 4MB ofmemory for disk caching in an attempt to accelerate the launch of applications. Or in amore technical approach, if enabled the system will favor system-cache working sets overprocess working sets (with a working set basically being the memory used by components ofa process).Correcting System Hang at StartupIf your system hangs about 2 or 3 minutes at startup, where you can't access the Startbutton or the Taskbar, it may be due to one specific service (Background IntelligentTransfer) running in the background. Microsoft put out a patch for this but it didn'twork for me. Here's what you do:· Click on Start/Run, type 'msconfig', then click 'OK'.· Go to the 'Services' tab, find the 'Background Intelligent Transfer' service.· Disable it, apply the changes & reboot.Disable XP Boot LogoIt is possible to disable the XP splash screen, which will slightly speed up theoverall boot process. Be aware that removing the splash screen will also cause you notto see any boot-up messages that might come up (chkdsk, convert ... ), but if your systemruns without any problems then it should not matter.· Edit boot.ini.· Add " /noguiboot" right after "/fastdetect".Upon restarting, the splash screen will be gone. It can be re-enabled by removing thenew switch.Slow Network Access Not Always Due to Scheduled Tasks CheckIf you have very slow access to your network computers through "My Network Places" andhave already deleted the Registry entry calling for a check of Scheduled Tasks on theother network computers (documented elsewhere on this site) AND you have multiple networkadaptors (i.e. a cable or DSL connection through one NIC and an internal network using asecond NIC) check the following:· Right-click on "My Network Places", go to Properties.· Right-click on the NIC that your cable/DSL connects to, and choose Properties.· Select Internet Protocol (TCP/IP), and click on Properties.· Click on "Advanced", go to "WINS" tab, and chose Disable NetBios over TCP/IP.· When you are back at your Network Connections page, right-click on the Broadbandselection.· Choose "Properties", click on the Networking tab.· Again, choose TCP/IP, Properties, Advanced, WINS, and select "disable NetBios overTCP/IP".Turn Off Indexing to Speed Up XPWindows XP keeps a record of all files on the hard disk so when you do a search on thehard drive it is faster. There is a downside to this and because the computer has toindex all files, it will slow down normal file commands like open, close, etc. If you donot do a whole lot of searches on your hard drive then you may want to turn this featureoff:· Open My Computer.· Right-click your hard drive icon and select Properties.· At the bottom of the window you'll see "Allow indexing service to index this diskfor faster searches," uncheck this and click ok.· A new window will pop up and select Apply to all folders and subfolders.It will take a minute or two for the changes to take affect but then you should enjoyslightly faster performance.Clean Your Prefetch to Improve PerformanceThis is a unique technique for WinXP. We know that it is necessary to scrub registryand TEMP files for Win9X/ME/2000 periodically. Prefetch is a new and very usefultechnique in Windows XP. However, after using XP some time, the prefetch directory canget full of junk and obsolete links in the Prefetch catalog, which can slow down yourcomputer noticeably.· Open C(system drive):/windows/prefetch, delete those junk and obsolete files,reboot. It is recommended that you do this every month.Remove Hibernation FileIf you do not use hibernation, make sure you do not have it enabled, which reservesdisk space equal to your RAM. If you have a hidden file on the root directory of yourC-drive called hiberfil.sys, hibernation is enabled. To remove that file:· Go to Control Panel, select Performance and Maintenance, Power Options, Hibernatetab, and uncheck the Enable hibernation box.Performance Increase Through My ComputerEasy enough tweak to usually find out about it on your own, but still, some of usstill don't find it right away. So here it is:· Start > right-click on My Computer and select Properties.· Click on the "Advanced" tab.· See the "Performance" section? Click "Settings".· Disable the following:Fade or slide menus into viewFade or slide ToolTips into viewFade out menu items after clickingShow Shadows under menusSlide open combo boxesSlide taskbar buttonsUse a background image for each folder typeUse common tasks in foldersThere, now Windows will still look nice and perform faster.Reduce 10 Second Scandisk Wait Time· Start MS Dos Prompt (Start run CMD), and type: CHKNTFS /T:4where 4 is the amount of wait time.CHKNTFS /?for more info.DMA Mode on IDE DevicesJust like Windows 2000, Windows XP still fails to set the DMA mode correctly for theIDE device designated as the slaves on the primary IDE and secondary IDE channels. MostCD-ROMS are capable of supporting DMA mode, but the default in XP is still PIO. Settingit to DMA won't make your CD-ROM faster, but it will consume less CPU cycles. Here'show:· Open the Device Manager. One way to do that is to right-click on "My Computer",select the Hardware tab, and select Device Manager.· Expand "IDE ATA/ATAPI Controllers" and double-click on "Primary IDE Channel".· Under the "Advanced Settings" tab, check the "Device 1" setting. More than likely,your current transfer mode is set to PIO.· Set it to "DMA if available".· Repeat the step for the "Secondary IDE Channel" if you have devices attached to it.Reboot.Load Internet Explorer the Fastest Way Possible· Edit your link to start Internet Explorer to have -nohome after it. For Example:"C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohomeThis will load internet explorer very fast because it does not load a web page whileit is loading. If you want to go to your homepage after it is loaded, just click on thehome button.Remove Messenger· Go to Start/Run, and type: "rundll32 setupapi,InstallHinfSection BLC.Remove 128%SystemRoot%\INF\msmsgs.inf"Auto Login· Go to Start/Run, and type 'control userpasswords2'.· From Users Tab, Uncheck "Users must enter ...."· A dialog will allow setting a user and password to be used automatically.Turn Off Autoplay for Program CDsHow can you stop Windows XP from launching program CDs?· Click Start, click Run, type GPEDIT.MSC to open Group Policy in the MicrosoftManagement Console.· Double-click Computer Configuration, double-click Administrative templates,double-click System, and then click Turn off autoplay.· The instructions on your screen describe how to configure this setting. ClickProperties to display the setting dialog.· Click Enabled, and choose CD-ROM drives, then click OK, to stop CD autoplay.This setting does not prevent Autoplay for music CDs.Change Drive Letters in Windows XPWhen you add drives to your computer, such as an extra hard drive, a CD drive, or astorage device that corresponds to a drive, Windows automatically assigns letters to thedrives. However, this assignment might not suit your system; for example, you might havemapped a network drive to the same letter that Windows assigns to a new drive. When youwant to change drive letters, follow these steps:· Right-click My Computer, and then click Manage.· Under Computer Management, click Disk Management. In the right pane, you'll seeyour drives listed. CD-ROM drives are listed at the bottom of the pane.· Right-click the drive or device you want to change, and then click Change DriveLetter and Paths.· Click Change, click Assign the following drive letter, click the drive letter youwant to assign, and then click OKDo Not Highlight Newly Installed ProgramsTired of that annoying little window that pops up to tell you that new software isinstalled? If it gets in the way when you're logging off, turn it off completely. To dothis:· Click Start, right-click at the top of the Start menu where your name is displayed,and then click Properties.· In the Taskbar and Start Menu Properties dialog box, on the Start Menu tab, clickCustomize.· Click the Advanced tab, and then clear the Highlight newly installed programs checkbox.· Click OK, and then click OK again.Change the Default Opening Folder in Windows ExplorerBy default, Windows Explorer opens showing the My Documents folder. To change thedefault setting so that all top-level drives and folders are shown, follow these steps:· Click Start > Programs > Accessories, then right-click Windows Explorer, and clickProperties.· Under Target field, which reads %SystemRoot%\explorer.exe, add to make the lineread:%SystemRoot%\explorer.You Can Bypass the Recycle Bin On the Fly.To bypass the Recycle Bin on a one-time basis, when you are deleting a file (or agroup of selected files):· Press and hold down the shift-key while you press the del-key (or use the deletecommand). You receive the following confirmation-request message:Are you sure you want to send to the Recycle Bin?Identify a 16-bit Program· Use Windows Explorer to open the folder that contains the program's executable(.exe) file.· Right-click the .exe file, and then click Properties.· A 16-bit program does not have a Version tab in this dialog box.Internet Connection SharingTo enable Internet Connection Sharing on a network connection:· Open Network Connections.· Click the dial-up, local area network, PPPoE, or VPN connection you want to share.· Then, under Network Tasks, click Change settings of this connection.· On the Advanced tab, select the Allow other network users to connect through thiscomputer's Internet connectioncheck box.· If you want this connection to dial automatically when another computer on your homeor small office networkattempts to access external resources, select the Establish a dial-up connectionwhenever a computer on my networkattempts to access the Internet check box.· If you want other network users to enable or disable the shared Internet connection,select the Allow other networkusers to control or disable the shared Internet connection check box. Under InternetConnection Sharing, in Home networking connection, select any adapter that connects thecomputer sharing its Internet connection to the other computers on your network.Win XP Won't Completely Shutdown· Go to Control Panel, then go to Power Options.· Click on the APM tab, then check the "Enable Advanced Power Management support."· Shut down your PC.It should now successfully complete the Shut Down process.Turn Off CD Auto Play· Open My Computer.· Right-click on your CD-ROM and choose Properties.· Click on the Auto Play tab.· In the drop down box you can choose the action for each choice shown in the dropdown box.· or Go to Start > Run > type gpedit.msc· Go to Computer Config > Administrative Template > System.· Double-click Turn off Autoplay.· Enable it.Increase BROADBANDThis is for broad band connections, though it might work for dial up.· Make sure your logged on as actually "Administrator".· Start->Run->type gpedit.msc· Expand the "Local Computer Policy" branch.· Expand the "Administrative Templates" branch.· Expand the "Network Branch".· Highlight the "QoS Packet Scheduler" in left window.· In right window double-click the "Limit Reservable Bandwidth" setting.· On setting tab check the "Enabled" item.· Where it says "Bandwidth limit %" change it to read 0.Effect is immediate on some systems, some need to re-boot. This is more of a "counterwhat XP does" thing. In other words, programs can request up to 20% of the bandwidth bereserved for them, even with QoS disabled.Increase Your Cable Modem or DSL Speed in XPThis tweak is for broad band cable connections on stand alone machines with WinXPprofessional version - might work on Home version also. It may also work with networkedmachines as well.This tweak assumes that you have let WinXP create a connection on install for yourcable modem/NIC combination and that your connection has tcp/ip - QoS - file and printsharing - and client for Microsoft networks , only, installed. It also assumes thatWinXP will detect your NIC and has in-box drivers for it. If it doesn't do not trythis.· In the "My Network Places" properties (right-click on the desktop icon and chooseproperties), highlight the connectionthen at the menu bar choose "Advanced" then "Advanced Settings". Uncheck the twoboxes in the lower half for thebindings for File and Printer sharing and Client for MS networks. Click OK.· From the Windows XP CD in the support directory from the support cab, extract thefile netcap.exe and place it in adirectory on your hard drive or even in the root of your C:\ drive.· Next, open up a command prompt window and change directories to where you putnetcap.exe. then type "netcap/?".It will list some commands that are available for netcap and a netmon driver will beinstalled. At the bottom you willsee your adapters. You should see two of them if using a 3Com card. One will be forLAN and the other will be forWAN something or other.· Next type "netcap/Remove". This will remove the netmon driver.· Open up Control Panel->System->Dev Man and look at your network adapters. Youshould now see two of them and one will have a yellow ! on it. Right-click on the onewithout the yellow ! and choose uninstall. YES! You are uninstalling your networkadapter, continue with the uninstall. Do not restart yet.· Check your connection properties to make sure that no connection exists. If you geta wizard just cancel out of it.Now re-start the machine.· After re-start go to your connection properties again and you should have a newconnection called "Local area connection 2". Highlight the connection, then at the menubar choose "Advanced" then "Advanced Settings". Uncheck the two boxes in the lower halffor the bindings for File and Printer sharing and Client for MS networks. Click OK.· Choose connection properties and uncheck the "QOS" box.· Re-start the machine.After restart enjoy the increased responsiveness of IE, faster page loading, and aconnection speed boost.Why it works, it seems that windows XP, in its zeal to make sure every base is coveredinstalls two separate versions of the NIC card. One you do not normally see in anyproperties. Remember the "netcap/?" command above showing two different adapters? The LANone is the one you see. The invisible one loads everything down and its like your runningtwo separate cards together, sharing a connection among two cards, this method breaksthis "bond" and allows the NIC to run un-hindered.Change the Start Menu StyleDoes the new Windows XP Start menu take up too much space on your desktop? You caneasily change the look back to the Windows Classic Start menu by following these steps:· Right-click the Start button, and then click Properties.· Click Classic Start menu.· Click the Customize button to select items to display on the Start menu.By default, selecting the Classic Start menu also adds the My Documents, My Computer,My Network Places, and Internet Explorer icons to your desktop.Display Hibernate Option on the Shut Down dialogFor some reason, Hibernate isn't available from the default Shut Down dialog. But youcan enable it simply enough, by holding down the shift-key while the dialog is visible.Now you see it, now you don't!My Computer Won't Shut Down Itself After Installing XPThere are a number of users who have been complaining that their PC will no longerautomatically power down/shut off without pressing the power off button on the computersunlike in Windows Me/95/2000. There could be a number of reasons for this, but the mainone seems to be that ACPI is not enabled on the computer or in Windows XP:· Click Start > Control Panel > Performance and Maintenance > Power Options tab.· Then click APM > Enable Advanced Power Management SupportModify Settings to Improve PerformanceWindows XP uses processor time to handle system performance according to defaultsettings, which can be adjusted for your computing needs. Also, settings that governvisual effects enhance the appearance of the Windows XP interface, but can slow downperformance. You can fine-tune settings in Windows XP Professional to improveperformance:· Right-click My Computer, and then click Properties.· Click the Advanced tab, and in the Performance area, click Settings.· On the Visual Effects tab, click the Custom radio button, and then select which UIfeatures to disable to improve performance.· Click the Advanced tab, and in the Processor scheduling area, click the Backgroundservices radio button. Selecting this option means that background tasks that you wantto run while you work, such as backup utilities or print jobs, will share processor timeequally with programs.You may need to be logged on as an Administrator to make these changes. Note thatapplying these settings may change your current desktop theme.How to Perform Disk Error Checking in Windows XPThis article describes how to check the integrity of the hard disk drive in WindowsXP. After you install Windows XP, the Scandisk command is not available.· Double-click My Computer, and then right-click the hard disk drive that you want tocheck.· Click Properties, and then click Tools.· Under Error-checking, click Check Now.· Click Start.One-Click ShutdownIf you have Clean Sweep Deluxe, you should disable it before proceeding. Follow thesedirections to create a one-click shutdown shortcut:· Navigate to your Desktop.· On the Desktop, right-click and go to New, then to Shortcut (in other words, createa new shortcut).· You should now see a pop-up window instructing you to enter a command line path.Enter one of these as the path: SHUTDOWN -s -t 01· If the C: drive is not your local hard drive, then replace "C" with the correctletter of the hard drive.· Click the "Next" button.· Name the shortcut and click the "Finish" button.Now whenever you want to shut down, just click on this shortcut and you're done.Also, if you want to make life better and faster, you can right-click the new shortcutyou just made, go to Properties, and type in X (or whatever letter) in the Shortcut Keybox.Move the Paging File in Windows XPThis article describes how to change the location of the paging file in Windows XP.The paging file is the area on the hard disk that Windows uses as if it were randomaccess memory (RAM) This is sometimes known as "virtual memory." By default, Windowsstores this file on the same partition as the Windows system files. You can increase theperformance of Windows, and increase free space on the boot partition, by moving thisfile to a different partition.· Log on to the computer as Administrator.· Click Start, and then click Control Panel.· Click Performance and Maintenance, and then click System.· Click the Advanced tab, and then under Performance, click Settings.· Click the Advanced tab, and then under Virtual memory, click Change.· In the Drive [Volume Label] list, click a drive other than the one on which Windowsis installed (Windows is usually installed on the drive C). Under Total paging file sizefor all drives, note the value that is displayed next to Recommended.· Click Custom size, and then type the recommended value in the Initial size (MB) box.Type the maximum size that you want to allow for paging in the Maximum size (MB) box,and then click Set.· In the Drive [Volume Label] box, click the drive on which Windows is installed(usually the drive C), and then use one of the following steps:· If you do not want a paging file on the drive, click No paging file, and then clickSet. A message similar to the following message appears:If the pagefile on volume C: has an initial size of less than 126 megabytes, then thesystem may not be able to create a debugging information file if a STOP error occurs.Continue anyway?· Click Yes.· If you want to keep the minimum size of the paging file on the drive, click Customsize, and then type a value that is equal to or greater than the amount of RAM in thecomputer in the Initial size (MB) box. Type that same value in the Maximum size (MB)box, and then click Set.The following message appears:The changes you have made require you to restart your computer before they can takeeffect.· Click OK, click OK, click OK.· Then click Yes when you are prompted to restart the computer.Long Pause During Windows Startup ProcessSymptomsAfter you choose to start Windows from the Boot menu, you may experience a long delay(or pause) before your computer finishes starting. Note that this delay may range from10 seconds to a minute. Also, this delay occurs before the Starting Windows progress barappears, and your computer may appear to stop responding (hang) during this time.CauseThis behavior can occur if Windows is installed on a drive or a partition to whichWindows cannot gain access with normal Basic Input/Output System (BIOS) INT-13 or INT-13extension calls. When Windows Setup determines it cannot use BIOS calls to start, ituses scsi() or signature() syntax in the Boot.ini file instead of multi() syntax.When booting a system that requires scsi() or signature() syntax, Ntldr loads anadditional device driver (Ntbootdd.sys) to initialize and interrogate the bootcontrollers in your computer. Ntldr then seeks the associated boot drive attached to thecontroller to finish loading the kernel. These additional operations take more time inWindows because of the Plug and Play nature of the operating system.This behavior is expected, however, Windows Setup may use scsi() or signature()syntax, even if your computer can boot using the normal BIOS calls. This may occur onIntegrated Drive Electronics-based computers when using a large capacity boot drive. Inthis case, you can try adding an additional entry in the Boot.ini file and use multi()syntax on the new entry to boot from. Note that if this works, your computer startswithout pausing.How to Rename Multiple Files with Windows Explorer· Click Start > All Programs > Accessories > Windows Explorer.· Press and hold down the Ctrl-key while you are clicking files.· After you select the files, press F2.· Type the new name, and then press ENTER.Note: When you complete the preceding steps, the highlighted state of all filesexcept one disappears, so it may appear as if you are only renaming one file. However,after you press ENTER, all of the files are renamed. When you rename multiple files, allof the renamed files have the same name with a number in parentheses appended to the nameto make the new file name unique. For example, if you type BUDGET as the new name, thefirst file is named BUDGET. All of the remaining selected files are named BUDGET(x),where x is a unique number, starting with (1).NotesIf you make a mistake when you try to rename multiple files, you can press Ctrl+Z, orclick Undo Rename on the Edit menu to undo file rename action you just completed, and youcan repeat this process as needed.The Rename function in Windows Explorer does not match the behavior of the REN commandyou may use at a command prompt. For example, if you had files that are namedsmitha.doc, smithb.doc, and smithc.doc, you could use the ren smoth*.doc smythe*.doccommand. All file names automatically show the new spelling, and are renamedsmythea.doc, smytheb.doc, and smythec.doc.If you use the Windows XP Rename function in Windows Explorer, after you select thethree "smith" files, and rename smitha.doc to smythea.doc, all the other files youselected are named smythea(x).doc. To return to the original file name structure (theuse of a, b, c, etc), you must rename each file individually.How to Customize ClearTypeYou can adjust the contrast setting for ClearType for your personal preference.Although there are no tools or settings in Windows XP for doing this, the followingMicrosoft Web site includes tools to turn ClearType on or off, and to adjust thecontrast:http://www.microsoft.com/typography/cleartype/cleartypeactivate.htmback to the topDisplay Appears BlurryClearType is designed to enhance LCD displays. ClearType may appear slightly blurryon standard desktop monitors and on some LCD displays. You may be able to improve thisby customizing ClearType as described in the "How to Customize ClearType" section of thisarticle.In rare cases, perceived blurriness is caused by a manufacturing anomaly on LCDdisplays in which the normal striping of red-green-blue is reversed with blue-green-red.Currently, there is no support in Windows XP ClearType to compensate for this anomaly.This could be the problem in cases in which none of the ClearType contrast settings lookgood on a particular LCD display. In those cases, it may be best to turn off ClearType.How to Change the Length of Time That Your Computer Is Inactive Before Your StatusBecomes "Away"This article describes the "Away" status in Windows Messenger. This article alsodescribes how to change the length of time that elapses before your individual statusappears as "Away" in Windows Messenger.The "Away" status appears automatically after your computer has been inactive for aperiod of time that is equal to the Wait time for your screen saver.To manually specify "Away" as a status:· Click File, click My Status, and then click Away.To change the length of inactive time before your status becomes "Away,":· Either change the screen saver Wait setting in the Windows Display Properties dialogbox.· or, if you want to specify a time other than the screen saver Wait time, change theinactivity time in the Windows Messenger Options dialog box.To change the Windows screen saver Wait setting:· Right-click the Windows Desktop, and then click Properties.· Click the Screen Saver tab, and then type the appropriate number of minutes in theWait box. (You must have a screen saver selected.)· Click Apply.The screen saver Wait time automatically appears in the Windows Messenger Optionsdialog box as the default "Away" status wait time.To select an "Away" status wait time that is different from your screen saver Waittime:· In Windows Messenger, on the Tools menu, click Options.· Click the Preferences tab.· In the Show me as "Away" when I'm inactive for box, type the number of minutes.This number overrides the screen saver setting and is the time that elapses before Awayappears next to your name on the list.How to Change the Length of Time That Your Computer Is Inactive Before Your StatusBecomes "Away"This article describes the "Away" status in Windows Messenger. This article alsodescribes how to change the length of time that elapses before your individual statusappears as "Away" in Windows Messenger.The "Away" status appears automatically after your computer has been inactive for aperiod of time that is equal to the Wait time for your screen saver.To manually specify "Away" as a status:· Click File, click My Status, and then click Away.To change the length of inactive time before your status becomes "Away,":· Either change the screen saver Wait setting in the Windows Display Properties dialogbox.· or, if you want to specify a time other than the screen saver Wait time, change theinactivity time in the Windows Messenger Options dialog box.To change the Windows screen saver Wait setting:· Right-click the Windows Desktop, and then click Properties.· Click the Screen Saver tab, and then type the appropriate number of minutes in theWait box. (You must have a screen saver selected.)· Click Apply.The screen saver Wait time automatically appears in the Windows Messenger Optionsdialog box as the default "Away" status wait time.To select an "Away" status wait time that is different from your screen saver Waittime:· In Windows Messenger, on the Tools menu, click Options.· Click the Preferences tab.· In the Show me as "Away" when I'm inactive for box, type the number of minutes.This number overrides the screen saver setting and is the time that elapses before Awayappears next to your name on the list.How to Automate Advanced Restart Options for Dual-Boot ConfigurationsThis article describes how to automate advanced restart options for dual-bootconfigurations. If your computer is configured to dual-boot to either Windows XP orWindows 2000, the process to boot to the other operating system can be slow.For example, if you want to reboot into Safe mode under either operating system, youhave to watch the computer reboot, monitor the power-on self tests and various BIOSmessages, select which operating system you want to boot with from the Startup menu, andthen press F8 at the exact moment to enable the Advanced Boot menu. You can select yourSafe mode boot options from the Advanced Boot menu.This article describes a method you can use to create a custom Advanced Restart menuon the Start menu. You can use the Advanced Restart menu to preselect advanced restartoptions before you restart your computer. After you select your restart options, you areprompted to restart, and your computer starts with your preselected options, and does notrequire that you press any keys during startup.IMPORTANT: The following procedure assumes that you have a dual-boot configurationwith Windows XP and Windows 2000. Also, although the following procedure workscorrectly, Microsoft does not support the following procedure:· Create a shortcut that is named Advanced Restart on the Windows XP Start menu.· For the target path, use the msconfig -4 command. For example, you might use thec:\windows\pchealth\helpctr\binaries\msconfig.exe -4 command.· Create the same shortcut with the same path for the Windows 2000 Start menu. Thisshortcut on the Windows 2000 Start menu should use the path to the Msconfig.exe tool inthe Windows XP folder.The "Advanced Restart" shortcut you created starts Msconfig.exe with a switch thatloads the Boot.ini file properties dialog box. From this dialog box, you can select thedefault operating system, Safe mode options, and other advanced boot options. After youselect the restart options and press OK, you are prompted to restart your computer. Whenyour computer restarts, it starts with the options you previously selected, and does notrequire that you press any keys during startup.Note: When you boot into Windows XP or Windows 2000 after you use Msconfig.exe,Msconfig.exe automatically starts in diagnostic mode.Use the ultimate configuration tool (Professional Edition only)One of the most full featured Windows XP configuration tools available is hidden rightthere in your system, but most people don't even know it exists. It's called the LocalGroup Policy Editor, or gpedit for short.· Select Start and then Run.· Then type the following: gpedit.mscAfter you hit ENTER, you'll be greeted by gpedit, which lets you modify virtuallyevery feature in Windows XP without having to resort to regedit. Dig around and enjoy!Expect more
hackerariean@gmail.com, ariean_core@yahoo.com.
Posted by at No comments:

How to trace an IP of remote system (web+messenger)

Introduction::Welcome to another hackerariean tutorial.In here I have figure out some very easy but cool ways to trace out the geographical location and various other infos like ISP details etc of a remote computer using its IP.Well I guess its one of the most important must learn manul for boys out there if you want to impress your friends particularly gals whom you’ll meet online in a chat room and tell them their geographical locations and ISP details and make them surprised and impressed J.In the practical execution of this manual you don’t have to work much as it is very simple only you have to use your brain to understand some symbols and some format of expressions and use your IQ to execute things the right way.What is IP and how to get the IP of a remote system::Getting the IP or Internet Protocol of a remote system is the most important and the first step of hacking into it. Probably it is the first thing a hacker do to get info for researching on a system. Well IP is a unique number assigned to each computer on a network. It is this unique address which represents the system on the network. Generally the IP of a particular system changes each time you log on to the network by dialing to your ISP and it is assigned to you by your ISP. IP of a system which is always on the network remains generally the same. Generally those kind of systems are most likely to suffer a hacking attack because of its stable IP. Using IP you can even execute system commands on the victim’s computer. Lets take the example of the following IP address: 202.144.49.110 Now the first part, the numbers before the first decimal i.e. 209 is the Network number or the Network Prefix.. This means that it identifies the number of the network in which the host is. The second part i.e. 144 is the Host Number that is it identifies the number of the host within the Network. This means that in the same Network, the network number is same. In order to provide flexibility in the size of the Network, here are different classes of IP addresses:Address Class Dotted Decimal Notation RangesClass A ( /8 Prefixes) 1.xxx.xxx.xxx through 126.xxx.xxx.xxxClass B ( /16 Prefixes) 128.0.xxx.xxx through 191.255.xxx.xxxClass C ( /24 Prefixes) 192.0.0.xxx through 223.255.255.xxxThe various classes will be clearer after reading the next few lines.Each Class A Network Address contains a 8 bit Network Prefix followed by a 24-bit host number. They are considered to be primitive. They are referred to as "/8''s" or just "8's" as they have an 8-bit Network prefix.In a Class B Network Address there is a 16 bit Network Prefix followed by a 16-bit Host number. It is referred to as "16's".A class C Network address contains a 24-bit Network Prefix and a 8 bit Host number. It is referred to as"24's" and is commonly used by most ISP's.Due to the growing size of the Internet the Network Administrators faced many problems. The Internet routing tables were beginning to grow and now the administrators had to request another network number from the Internet before a new network could be installed at their site. This is where sub-netting came in. Now if your ISP is a big one and if it provides you with dynamic IP addresses then you will most probably see that whenever you log on to the net, your IP address will have the same first 24 bits and only the last 8 bits will keep changing. This is due to the fact that when sub-netting comes in then the IP Addresses structure becomes:xxx.xxx.zzz.yyywhere the first 2 parts are Network Prefix numbers and the zzz is the Subnet number and the yyy is the host number. So you are always connected to the same Subnet within the same Network. As a result the first 3 parts will remain the same and only the last part i.e. yyy is variable.***********************For Example, if say an ISP xyz is given the IP: 203.98.12.xx Network address then you can be awarded any IP, whose first three fields are 203.98.12. Get it? So, basically this means that each ISP has a particular range in which to allocate all its subscribers. Or in other words, all subscribers or all people connected to the internet using the same ISP, will have to be in this range. This in effect would mean that all people using the same ISP are likely to have the same first three fields of their IP Addresses. This means that if you have done a lot of (By this I really mean a lot) of research, then you could figure out which ISP a person is using by simply looking at his IP. The ISP name could then be used to figure out the city and the country of the person. Right? Let me take an example to stress as to how cumbersome but easy (once the research is done) the above method can be.In my country, say there are three main ISP’s:ISP Name Network Address AllottedISP I 203.94.47.xxISP II 202.92.12.xxISP III 203.91.35.xxNow, if I get to know the IP of an e-pal of mine, and it reads: 203.91.35.12, then I can pretty easily figure out that he uses ISP III to connect to the internet. Right? You might say that any idiot would be able to do this. Well, yes and no. You see, the above method of finding out the ISP of a person was successful only because we already had the ISP and Network Address Allotted list with us. So, what my point is, that the above method can be successful only after a lot of research and experimentation. And, I do think such research can be helpful sometimes. Also, this would not work, if you take it all on in larger scale. What if the IP that you have belongs to someone living in a remote igloo in the North Pole? You could not possibly get the Network Addresses of all the ISP’s in the world, could you? If yes please send it to me J.Well now I guess you have pretty good knowledge about what an IP is and what you can do by knowing the IP of a remote system. Now lets come to the point of finding out the IP of remote system.Well you can easily figure out the IP of a remote system using the netstat utility available in the microsoft’s version of DOS. The netstat command shows the connections in which your system is engaged to and the ports they are using. Suppose you are checking your mail in hotmail and you want to find out the IP of msn. All you need to do is to open a dos window (command.com) and type netstat. You will see all the open connections of your system. There you will see something :Proto Local Address Foreign Address StateTCP rahul:1031 64.4.xx.xx:80 ESTABLISHEDNow you got the IP address of hotmail ass 64.4.xx.xx .Similarly you can figure out the IP address of most http or ftp connections.To know your own IP type the following command in a dos windowsC:\netstat –n[this commands converts the IP name into IP addresses]this is what you will probably see on typing the above command :Proto Local Address Foreign Address StateTCP 203.xx.251.161:1031 194.1.129.227:21 ESTABLISHEDTCP 203.xx.251.161:1043 207.138.41.181:80 FIN_WAIT_2TCP 203.xx.251.161:1053 203.94.243.71:110 TIME_WAITTCP 203.xx.251.161:1058 194.1.129.227:20 TIME_WAITTCP 203.xx.251.161:1069 203.94.243.71:110 TIME_WAITTCP 203.xx.251.161:1071 194.98.93.244:80 ESTABLISHEDTCP 203.xx.251.161:1078 203.94.243.71:110 TIME_WAITHere 203.xx.251.161 is your IP address.Now lets clarify the format used by netstat :Proto : It shows the type of protocol the connection with the remote system is using.Here TCP (transmission control protocol) is the protocol used by my system to connect to other systems.Local Address : It shows the local address ie the local IP. When the netstat command is executed without –n switch then the name of the local system is displayed and when the netstat is executed with –n switch then the IP of the local system is displayed. Here you can also find out the port used by the connection.xxx.yyy.zzz.aaa:1024 in this format you will see the local address. Here 1024 is the port to which the remote system is connected in your systemForeign Address :: It shows the IP address of the remote system to which your system is connected. In this case also if the netstat command is excuted with –n switch then you directly get the IP of the victim but if the netstat is executed without –n switch then you will get the address of the remote system. Something likeC:\netstatProto Local Address Foreign Address StateTCP rahul:1031 msgr.lw4.gs681.hotmail.com:80 ESTABLISHEDHere msgr.lw4.gs681.hotmail.com is the address of the foreign system . putting this address in any IP lookup program and doing a whois lookup will reveal the IP of the remote system.Note: The port to which your system is connected can be found from this in the same way as I have shown in the case of local address. The difference is that, this is the port of the remote system to which your computer is connected to.Below I have produced a list of ports and popular services generally found to be running.21 :: FTP port80 :: http port23 :: Telnet portNote: If your execute the netstat command and find ports like 12345,27374 are open and are in use then make it sure that your sweat heart computer is infected with her boyfriend.. J J J J I mean your computer is infected with some sort of Trojan.Below I have produced a list of commonly known Trojans and the ports they use by default. So if you find these ports open then get a good virus buster and get these stupid servers of the Trojans kicked out. Well if you want to play with these Trojan by keeping them in your computer but not letting them ruin your system performance then just disble it from the system registry run and they wont be loaded to memory each time when windows starts up[This trick doesn’t work for all Trojans]. Netbus :: 12345(TCP)Subseven :: 27374(TCP)Girl Friend :: 21554(TCP)Back Oriface :: 31337 (UDP) Well guys and gals I hope you are now well familiar with the term IP and what is the utility of IP in cyber world and how to get the IP of a remote system to which you are connected. I hope you find my writings very easy to undertstand. I know I lack the capacity of explaining myself but I try my level best to make things very easy and clear for you’ll. How to get the IP of a remote system while chatting through msn messenger ::This is a tutorial on how to get IP address from MSN messenger. This is actuallya really easy thing to do. It is not like going through the hard time and reversingMSN messenger like many people think.The IP address is only given when you accept or are sending a file through MSN messenger. When you send IM's, the message is sent through the server thus hidingyour victims IP and your. But when you send a file or recieve a file, it is directconnection between the two computers.To obtain the IP accept a file transfer or send a file to the victim, when the file sending is under way from the dos prompt type "netstat" without the quotation marks.You should get a table like this:Proto Local Address Foreign Address StateTCP kick:1033 msgr-ns29.msgr.hotmail.com:1863 ESTABLISHED TCP kick:1040 msgr-sb36.msgr.hotmail.com:1863 ESTABLISHED TCP kick: ESTABLISHEDThe top name in the list is the server's address for IMing. There could be many ofthe second name in the list, as a new connection is made to the server for every room you are IMing to. You are looking for the address of the remote host inthis table it may be something similar to "host63-7-102-226.ppp.cal.vsnl.com" or “203..64.90.6”.without the quotation marks.All you need to do now is to put this address in you IP lookup programe and get the IP of the remote system.Well 50%of the work is done now. Now you know how to get the IP of a remote system, so its time to trace it down and find some details about the IP.Tracing an IP is quite simple. You can do it the easy way by using some sweet softwares like Visual Trace 6.0b[http://195.116.229.140/~underpl/crackz/visualroute6b_crack.zip] Neotrace[http://www.neoworx.com/download/NTX325.exe]or by our way ie. Using MS DOS or any other version of DOS.Well I suggest you to use DOS and its tracert tool for tracing the IP cause using it will give you a clear conception about the art of tracing an IP and I guarantee that you will feel much satisfied on success than using a silly software. Furthur you will know how things work and how the IP is traced down and the different networks associated in this tracing process. Let us take a look at tracert tool provided for DOS by Microsoft.It is a very handy tool for peoples need to trace down an IP.Just open any DOS windows and type tracert.C:\windows>tracertUsage: tracert [-d] [-h maximum_hops] [-j host-list] [-w timeout] target_nameOptions:-d Do not resolve addresses to hostnames.-h maximum_hops Maximum number of hops to search for target.-j host-list Loose source route along host-list.-w timeout Wait timeout milliseconds for each reply.You will now see a description of the tracert command and the switches associated with it.Well these switches doesn’t makes much difference. All you can do is to increase the timeout in milliseconds by using –w switch if you are using a slow connection and the –d switch if you wish not resolve address to hostnames by default.By default tracert performs a maximum of 30 hops trace. Using the –h switch you can specify the number of hops to perform.Now its time for execution.Let us trace down the IP yahoo.com [216.115.108.243]TIP: If you have done a long research (I mean a lot) then simply looking at the IP you can figure out some info from it. For example the IP 203.90.68.8 indicates that the system is in India. In India IPs generally begin with 203 and 202C:\WINDOWS>tracert yahoo.comTracing route to yahoo.com [216.115.108.243] over a maximum of 30 hops:1 308 ms 142 ms 127 ms 203.94.246.352 140 ms 135 ms * 203.94.246.13 213 ms 134 ms 132 ms 203.94.255.334 134 ms 130 ms 129 ms 203.200.64.295 122 ms 135 ms 131 ms 203.200.87.756 141 ms 137 ms 121 ms 203.200.87.157 143 ms 170 ms 154 ms vsb-delhi-stm1.Bbone.vsnl.net.in [202.54.2.241]8 565 ms 589 ms 568 ms if-7-0.bb8.NewYork.Teleglobe.net [207.45.198.65]9 596 ms 584 ms 600 ms if-3-0.core2.NewYork.teleglobe.net [207.45.221.66]10 * * * Request timed out.11 703 ms 701 ms 719 ms if-3-0.core2.PaloAlto.Teleglobe.net [64.86.83.205]12 694 ms 683 ms 681 ms if-6-1.core1.PaloAlto.Teleglobe.net [207.45.202.33]13 656 ms 677 ms 700 ms ix-5-0.core1.PaloAlto.Teleglobe.net [207.45.196.90]14 667 ms 673 ms 673 ms ge-1-3-0.msr1.pao.yahoo.com [216.115.100.150]15 653 ms 673 ms 673 ms vl20.bas1.snv.yahoo.com [216.115.100.225]16 666 ms 676 ms 674 ms yahoo.com [216.115.108.243]Trace complete.Note: Here I have traced yahoo.com. In place of yahoo.com you can give the IP of yahoo or any other IP you want to trace, the result will be the same.Now carefully looking at the results you can figure out many information about yahoo’s server [216.115.108.243]First packets of data leave my ISP which is at 203.94.246.35 .Similarly you can find out the different routers through which the packets of data are send and received to and from the target system. Now take a look at the 13th line you’ll see that the router is in PaloAlto.Teleglobe.net from this you can easily figure out that the router is in Palo Alto. Now finally look at the target system ie. Yahoo’s server vl20.bas1.snv.yahoo.com . Now you got the address of yahoo’s server. Now put this address in any IP lookup programe and perform and reverse DNS lookup and you will get most of the info about this address,like the place where it is in.Well another thing you can find out using the tracert tool is that the number of hops (routers) the target system is away from you. In case of tracerouting yahoo.com we find that the target system ie yahoo’s server is 16 hops away from my system. This indicates that there are 16 routers between my system and yahoo’s server.Apart from tracing an IP you can find out many usefull details about the target system using the tracert tool.Firewall DetectionWhile tracerouting a target system, if you get * as an output then it indicates timeout error. Now if you peform another tracerout to the same taeget system at some other time with a good connection and in this way few times more and if you always get * as the output then take it for sure that the target system is running a firewall which prevents sending of data packets from the target system.ExampleSome days ago I tried to tracert hotmail’s server in plain and simple way using tracert without any trick.This is what I found out :c:\windows>tracert 64.4.53.7Tracing route to lc2.law5.hotmail.com [64.4.53.7]over a maximum of 30 hops:1 * * * Request timed out.2 161 ms 147 ms 85 ms 203.90.69.81 3 126 ms 261 ms 219 ms 203.90.66.9 4 121 ms 115 ms 228 ms delswp2.hclinfinet.com [203.90.66.133] 5 727 ms 725 ms 711 ms 203-195-147-250.now-india.net.in [203.195.147.250] 6 1006 ms 794 ms 952 ms core-fae-0-0.now-india.net.in [203.195.147.3] 7 826 ms 731 ms 819 ms 213.232.106.9 8 885 ms 744 ms 930 ms 213.166.3.209 9 851 ms 1020 ms 1080 ms 213.232.64.54 10 1448 ms 765 ms 1114 ms pos8-0.core2.London1.Level3.net [212.113.0.118] 11 748 ms 789 ms 750 ms ge-4-2-1.mp2.London1.Level3.net [212.187.131.146] 12 719 ms 733 ms 846 ms so-3-0-0.mp1.London2.Level3.net [212.187.128.46] 13 775 ms 890 ms 829 ms so-1-0-0.mp2.Weehawken1.Level3.net [212.187.128.138] 14 853 ms 852 ms 823 ms so-3-0-0.mp1.SanJose1.Level3.net [64.159.1.129] 15 889 ms 816 ms 803 ms so-7-0-0.gar1.SanJose1.Level3.net [64.159.1.74] 16 * * * Request timed out.17 * * * Request timed out.18 * * * Request timed out.19 * * * Request timed out.20 * * * Request timed out.21 * * * Request timed out.22 * * * Request timed out.23 * * * Request timed out.24 * * * Request timed out.25 * * * Request timed out.26 * * * Request timed out.27 * * * Request timed out.28 * * * Request timed out.29 * * * Request timed out.30 * * * Request timed out.Trace complete.I performed the same tracert many times a day but concluded with the same result. This indicates that the systems after the router SanJose1.Level3.net has firewalls installed which prevents the outgoing of data packets.Detecting Traceroute Attempts on your SystemYou can detect that an attacker is performing a traceroute on your system, if you see the following symptoms:1. If you observe port scans on very high UDP ports. This symptom means that the attacker has performed a traceroute on your system. However, it could also mean a simply port scan. Either way, it signifies the fact that your system is being scanned.2. If the packet-monitoring tool installed in your network, picks up several outgoing TTL-exceeding messages, then it is yet another sign that someone is doing a traceroute on your system.3. If in these log files, you also observer an outgoing ICMP port unreachable error message, then it means that since a traceroute was done on your system and as the target system i.e. your system, was reached, it responded with this error message.You can also find our more information on the attacker (if he performs a traceroute on your system) by simply studying the sniffer log files. If you observer the TTL values, then we can easily figure out the following information on the attacker by making use of OS detection techniques discussed earlier in this white paper:
The Operating System running on the attacker’s target system.
Number of hops away, the attacker is from you.
Posted by at No comments:

hacking website

i give u one technique to hack any website. read the following statement.........
copy this code and paste the addressbar and click to to go the u will see .............

code:
javascript:R=0; x1=.1; y1=.05; x2=.25; y2=.24; x3=1.6; y3=.24;x4=300; y4=200; x5=300; y5=200; DI=document.images; DIL=DI.length;function A(){for(i=0; i
Posted by at No comments:

NO 1 EDGE MODEM IN BANGLADESH

if u want to interested in EDGE modem then please
visit this site www.zetta-byte.info
Posted by at No comments:

hacking windows xp

Hacking Windows Xp
now i give u link click it & now see ..............................

http://www.raymond.cc/blog/archives/2006/09/02/how-to-hack-into-a-windows-xp-computer-without-changing-password/
Posted by at No comments:

Expert Windows User

if u reading this statement then u must be expert in windows xp.


In this Document I have a collection of Tips and Tricks which no body normally knows but it will be useful for EXPERT WINDOWS USERS not for biggeners, the secrets which Microsoft is afraid to tell the people, the information which you will seldom find all gathered up and arranged in a single file. To fully reap this Manual you need to have a basic understanding of the Windows Registry, as almost all the Tricks and Tips involve this file. **************** Important Note: Before you read on, you need to keep one thing in mind. Whenever you make changes to the Windows Registry you need to Refresh it before the changes take place. Simply press F5 to refresh the registry and enable the changes. If this does not work Restart your system **************** Exiting Windows the Cool and Quick Way Normally it takes a hell lot of time just Shutting down Windows, you have to move your mouse to the Start Button, click on it, move it again over Shut Down, click, then move it over the necessary option and click, then move the cursor over the OK button and once again (you guessed it) click.This whole process can be shortened by creating shortcuts on the Desktop which will shut down Windows at the click of a button. Start by creating a new shortcut( right click and select New> Shortcut). Then in the command line box, type (without the quotes.) 'C:\windows\rundll.exe user.exe,exitwindowsexec' This Shortcut on clicking will restart Windows immediately without any Warning. To create a Shortcut to Restarting Windows, type the following in the Command Line box: 'c:\windows\rundll.exe user.exe,exitwindows' This Shortcut on clicking will shut down Windows immediately without any Warning. Ban Shutdowns : A trick to Play on Lamers This is a neat trick you can play on that lamer that has a huge ego, in this section I teach you, how to disable the Shut Down option in the Shut Down Dialog Box. This trick involves editing the registry, so please make backups. Launch regedit.exe and go to : HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer In the right pane look for the NoClose Key. If it is not already there then create it by right clicking in the right pane and selecting New > String Value.(Name it NoCloseKey ) Now once you see the NoCloseKey in the right pane, right click on it and select Modify. Then Type 1 in the Value Data Box. Doing the above on a Win98 system disables the Shut Down option in the Shut Down Dialog Box. But on a Win95 machine if the value of NoCloseKey is set to 1 then click on the Start > Shut Down button displays the following error message: This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator. You can enable the shut down option by changing the value of NoCloseKey to 0 or simply deleting the particular entry i.e. deleting NoCloseKey. Instead of performing the above difficult to remember process, simply save the following with an extension of .reg and add it's contents to the registry by double clicking on it. REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoClose"="1" Disabling Display of Drives in My Computer This is yet another trick you can play on your geek friend. To disable the display of local or networked drives when you click My Computer go to : HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer Now in the right pane create a new DWORD item and name it NoDrives. Now modify it's value and set it to 3FFFFFF (Hexadecimal) Now press F5 to refresh. When you click on My Computer, no drives will be shown. To enable display of drives in My Computer, simply delete this DWORD item. It's .reg file is as follows: REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"=dword:03ffffff Take Over the Screen Saver To activate and deactivate the screen saver whenever you want, goto the following registry key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ScreenSavers Now add a new string value and name it Mouse Corners. Edit this new value to -Y-N. Press F5 to refresh the registry. Voila! Now you can activate your screensaver by simply placing the mouse cursor at the top right corner of the screen and if you take the mouse to the bottom left corner of the screen, the screensaver will deactivate. Pop a banner each time Windows Boots To pop a banner which can contain any message you want to display just before a user is going to log on, go to the key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinLogon Now create a new string Value in the right pane named LegalNoticeCaption and enter the value that you want to see in the Menu Bar. Now create yet another new string value and name it: LegalNoticeText. Modify it and insert the message you want to display each time Windows boots. This can be effectively used to display the company's private policy each time the user logs on to his NT box. It's .reg file would be: REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Winlogon] "LegalNoticeCaption"="Caption here." Delete the Tips of the Day to save 5KB Windows 95 had these tips of the day which appeared on a system running a newly installed Windows OS. These tips of the day are stored in the Windows Registry and consume 5K of space. For those of you who are really concerned about how much free space your hard disk has, I have the perfect trick. To save 5K go to the following key in Regedit: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Tips Now simply delete these tricks by selecting and pressing the DEL key. Change the Default Locations To change the default drive or path where Windows will look for it's installation files, go to the key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Setup\SourcePath Now you can edit as you wish. Secure your Desktop Icons and Settings You can save your desktop settings and secure it from your nerdy friend by playing with the registry. Simply launch the Registry Editor go to: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer In the right pane create a new DWORD Value named NoSaveSettings and modify it's value to 1. Refresh and restart for the settings to get saved. CLSID Folders Explained Don't you just hate those stubborn stupid icons that refuse to leave the desktop, like the Network Neighborhood icon. I am sure you want to know how you can delete them. You may say, that is really simple, simply right click on the concerned icon and select Delete. Well not exactly, you see when you right click on these special folders( see entire list below)neither the rename nor the delete option does not appear. To delete these folders, there are two methods, the first one is using the System Policy Editor(Poledit in the Windows installation CD)and the second is using the Registry. Before we go on, you need to understand what CLSID values are. These folders, like the Control Panel, Inbox, The Microsoft Network, Dial Up Networking etc are system folders. Each system folder has a unique CLSID key or the Class ID which is a 16-byte value which identifies an individual object that points to a corresponding key in the registry. To delete these system Folders from the desktop simply go to the following registry key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Desktop\Namespace{----} To delete an icon simply delete the 16 byte CLSID value within "NameSpace". The following are the CLSID values of the most commonly used icons: My Briefcase:{85BBD920-42AO-1069-A2E4-08002B30309D} Desktop: {00021400-0000-0000-C000-0000000000046} Control Panel:{21EC2020-3AEA-1069-A2DD-08002B30309D} Dial-Up-Networking:{992CFFA0-F557-101A-88EC-00DD01CCC48} Fonts: {BD84B380-8CA2-1069-AB1D-08000948534} Inbox :{00020D76-0000-0000-C000-000000000046} My Computer :{20D04FE0-3AEA-1069-A2D8-08002B30309D} Network Neighborhood:{208D2C60-3AEA-1069-A2D7-O8002B30309D} Printers :{2227A280-3AEA-1069-A2DE-O8002B30309D} Recycle Bin :{645FF040-5081-101B-9F08-00AA002F954E} The Microsoft Network:{00028B00-0000-0000-C000-000000000046} History: {FF393560-C2A7-11CF-BFF4-444553540000} Winzip :{E0D79300-84BE-11CE-9641-444553540000} For example, to delete the Recycle Bin, first note down it's CLSID value, which is: 645FF040-5081-101B-9F08-00AA002F954E. Now go to the Namespace key in the registry and delete the corresponding key. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Desktop\NameSpace\{645FF040-5081-101B-9F08-00AA002F954E} Similarly to delete the History folder, delete the following key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Desktop\NameSpace\{FBF23B42-E3F0-101B-8488-00AA003E56F8} Sometimes, you may need to play a trick on your brother or friend, well this one teaches you how to hide all icons from the Desktop. Go to the following registry key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer In the right pane create a new DWORD value by the name: NoDesktop and set its value to: 1. Reboot and you will find no icons on the desktop. Till now you simply learnt how to delete the special system folders by deleting a registry key, but the h@*k would have been better if there was a way of adding the DELETE and RENAME option to the right click context menus of these special folders. You can actually change the right click context menu of any system folder and add any of the following options: RENAME, DELETE, CUT, COPY, PASTE and lots more. This h@*k too requires you to know the CLSID value of the system folder whose menu you want to customize. In this section, I have taken up Recycle Bin as the folder whose context menu I am going to edit. Firstly launch the registry editor and open the following registry key: HKEY_CLASSES_ROOT\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\ShellFolder. In Case you want to edit some other folder like say the FONTS folder, then you will open the following key: HKEY_CLASSES_ROOT\CLSID\{CLSID VALUE HERE}\ShellFolder. In the right pane there will be a DWORD value names attributes. Now consider the following options: To add the Rename option to the menu, change the value of Attributes to 50 01 00 20 To add the Delete option to the menu, change the value of Attributes to 60 01 00 20 3. To add both the Rename & Delete options to the menu, change the value of Attributes to 70,01,00,20 4. Add Copy to the menu, change Attributes to 41 01 00 20 5. Add Cut to the menu, change Attributes to 42 01 00 20 6. Add Copy & Cut to the menu, change Attributes to 43 01 00 20 7. Add Paste to the menu, change Attributes to 44 01 00 20 8. Add Copy & Paste to the menu, change Attributes to 45 01 00 20 9. Add Cut & Paste to the menu, change Attributes to 46 01 00 20 10.Add all Cut, Copy & Paste to the menu, change Attributes to 47 01 00 20 We want to add only the Rename option to the right click context menu of the Recycle Bin, so change the value of attributes to: 50 01 00 20. Press F5 to refresh and then after rebooting you will find that when you right click on the Recycle Bin a RENAME option pops up too. To reset the default Windows options change the value of Attributes back to 40 01 00 20 The Registry File which one can create for the above process would be something like the below: REGEDIT4 [HKEY_CLASSES_ROOT\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\Shell-Folder] "Attributes"=hex:50,01,00,20 To access say the Modem Properties in the Control Panel Folder, the normal procedure is: Click on Start, Click on Settings> Control Panel and then wait for the Control Panel window to pop up and then ultimately click on the Modems icon. Wouldn't it be lovely if you could shorten the process to: Click on Start> Control Panel>Modems. Yes you can add the Control Panel and also all other Special System Folders directly to the first level Start Menu. Firstly collect the CLSID value of the folder you want to add to the start menu. I want to add Control Panel hence the CLSID value is: 21EC2020-3AEA-1069-A2DD-08002B30309D Now right click on the Start Button and select Open. Now create a new folder and name it: Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D} NOTE: Do not forget the period after the 'l' in Panel. Similarly all system folders can be added to the Start Menu.(accept My Briefcase, I think) Deleting System Options from the Start menu You can actually remove the Find and Run options from the start menu by performing a simple registry h@*k. Again like always Launch the registry editor and scroll down to the below key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer Right-click on the right pane and select New, DWORD Value. Name it NoFind.(To remove the RUN option name it NoRun). Double-click the newly create DWORD to edit it's value and enter 1 as its value. This will disable the FIND option of the Start Menu and will also disable the default Shortcut key(F3 for Find.) To restore the Run or find command modify the value of the DWORD to 0 or simply Delete the DWORD value. Fed Up of the boring Old Yellow Folder Icons?[Drive Icons Included] NOTE: This trick hasn't been tried on Win98. You can easily change the boring yellow folder icons to your own personalized icons. Simply create a text file and copy the following lines into it: [.ShellClassInfo] ICONFILE=Drive:\Path\Icon_name.extension Save this text file by the name, desktop.ini in the folder, whose icon you want to change. Now to prevent this file from getting deleted change it's attributes to Hidden and Read Only by using the ATTRIB command. To change the icon of a drive, create a text file containing the following lines: [Autorun] ICON=Drive:\Path\Icon_name.extension Save this file in the root of the drive whose icon you want to change and name it autorun.inf For Example, if you want to change the icon of a floppy, SAVE THE icon in a:\icon_name.ico One can also create a kewl icon for the Hard Disk and create a text file [autorun.inf] and store it in "c:\". Securing NT By default, NT 4.0 displays the last person who logged onto the system. This can be considered to be a security threat, especially in the case of those who choose their password to be same as their Username. To disable this bug which actually is a feature, go to the following key in the registry editor: HKEY_LOCAL_MACHINE\Software\Microsoft\WindowsNT\CurrentVersion\Winlogon Click and select the ReportBookOK item and create a new string value called DontDisplayLastUserName. Modify it and set it's value to 1. As a system administrator, you can ensure that the passwords chosen by the users are not too lame or too easy to guess. NT has this lovely utility called the User Manager which allows the administrator to set the age limit of the password which forces the users to change the password after a certain number of days. You can also set the minimum length of passwords and prevent users to use passwords which already have been used earlier and also enable account lockouts which will deactivate an account after a specified number of failed login attempts. When you log on to Win NT, you should disable Password Caching, this ensures Single NT Domain login and also prevents secondary Windows Logon screen. Simply copy the following lines to a plain text ASCII editor like: Notepad and save it with an extension, .reg ----------------DISABLE.reg----------------- REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Network] "DisablePwdCaching"=dword:00000001 ----------------DISABLE.reg----------------- To Enable Password Caching use the following .reg file: --------------Enable.reg----------------- REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Network] "DisablePwdCaching"=dword:00000000 --------------Enable.reg----------------- Cleaning Recent Docs Menu and the RUN MRU The Recent Docs menu can be easily disabled by editing the Registry. To do this go to the following Key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer Now in the right pane, create a new DWORD value by the name: NoRecentDocsMenu and set it's value to 1. Restart Explorer to save the changes. You can also clear the RUN MRU history. All the listings are stored in the key: HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU You can delete individual listings or the entire listing. To delete History of Find listings go to: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Doc Find Spec MRU and delete. Customizing the Right Click Context Menu of the Start Menu When you right click on the start menu, only 3 options pop up: Open, Explore, and Find. You can add your own programs to this pop up menu( which comes up when we right click on it.) Open Regedit and go to the following registry key: HKEY_CLASSES_ROOT\Directory\Shell Right click on the shell and create a new Sub Key (You can create a new SubKey by right clicking on the Shell Key and selecting New > Key.). Type in the name of the application you want to add to the start menu. I want to add Notepad to the Start Menu and hence I name this new sub key, Notepad. Now right click on the new registry key that you just created and create yet another new key named Command. Enter the ful path of the application, in this case Notepad in the default value of Command in the right pane. So I Modify the value of the default string value and enter the ful pathname of Notepad: c:\wndows\notepad.exe. Now press F5 to refresh. Now if you right click on the Start Button you will find a new addition to the Pop Up Menu called Notepad. Clicking on it will launch Notepad. We can not only add but also remove the existing options in this pop up box. To delete the Find option, go to the following registry key: HKEY_CLASSES_ROOT\Directory\Shell\Find Delete Find. DO NOT delete Open else you will not be able to open any folders in the Start Menu like Programs, Accessories etc. BMP Thumbnail As Icon You can actually change the default BMP icon to a thumbnail version of the actual BMP file. To do this simply go to HKCU\Paint.Picture\Default. In the right pane change the value of default to %1. Please note however that this will slow down the display rate in explorer if there are too many BMP thumbnails to display. You can use other icons too, simply enter the pathname.To restore back to the normal change the vale of default back to: C:\Progra~1\Access~1\MSPAINT.EXE,1. Customizing The Shortcut Arrow All shortcuts have a tiny black arrow attached to it's icon to distinguish from normal files. This arrow can sometimes be pretty annoying and as a Hacker should know how to change each and everything, here goes another trick. Launch the Registry Editor and go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Shell Icons. Now, on the right pane is a list of icons ( we found out that on some systems, Windows 98 especially, the right pane is blank. Don't worry, just add the value as required ). Find the value 29. If it isn't there, just add it. The value of this string should be C:\Windows\system\shell32.dll, 29 ( which means the 30th icon in shell32.dll - the first one begins with 0 ). Now, we need blank icon to do this. Just create one with white as the whole icon. Go here to learn how to create an icon. Once done just change the value to C:\.ico, 0 where "" is the ful path of the icon file and "0" is the icon in it. Now for some fun. If the blank icon is a bit boring, change it again. You will find that under shell32.dll there is a gear icon, a shared folder ( the hand ) and much more. Experiment for yourself! Use Perl to Get List or Services Running on your NT box Use the following Perl Script to get a list of Services running on your NT system --------------script.pl----------------- #!c:\per\bin\perl.exe use Win32::Service; my ($key, %service, %status, $part); Win32::Service::GetServices(' ',\%services); foreach $key (sort keys %services) { print "Print Name\t: $key, $services{$key}\n"; Win32::Service::GetStatus( ' ',$services{$key}; \%status); foreach $part (keys %status) { print "\t$part : $status{$part}\n" if($part eq "CurrentState"); } } -------------script.pl------------------- Internet Explorer Tricks and Tips Resizable ful Screen Toolbar The ful Screen option increases the viewable area and makes surfing more enjoyable but sometimes we need the Toolbar but also need to have extra viewing area. Now this h@*k teaches you how to change the size of the Internet Explorer toolbar. This registry h@*k is a bit complicated as it involves Binary values, so to make it simple, I have included the following registry file which will enable the resizable option of the Internet Explorer toolbar which was present in the beta version of IE. REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar] "Theater"=hex:0c,00,00,00,4c,00,00,00,74,00,00,00,18,00,00,00,1b,00,00,00,5c,\ 00,00,00,01,00,00,00,e0,00,00,00,a0,0f,00,00,05,00,00,00,22,00,00,00,26,00,\ 00,00,02,00,00,00,21,00,00,00,a0,0f,00,00,04,00,00,00,01,00,00,00,a0,0f,00,\ 00,03,00,00,00,08,00,00,00,00,00,00,00 ******************* h@*king TRUTH: Internet Explorer 5 displays the friendly version of HTTP errors like NOT FOUND etc . They are aimed at making things easier for newbies. If you would rather prefer to see the proper error pages for the web server you're using, go to Tools, Internet Options and select the Advanced tab. Then scroll down and uncheck the Show friendly http errors box. ******************* Making the Internet Explorer & the Explorer Toolbars Fancy The Internet Explorer toolbar looks pretty simple. Want to make it fancy and kewl? Why not add a background image to it. To do this kewl h@*k launch the Windows Registry Editor and go to the following key: HKEY_CURRENT_USER\SOFTWARE\Microsoft\ Internet Explorer\Toolbar\. Now in the right pane create a new String Value and name it BackBitmap and modify it's value to the path of the Bitmap you want to dress it up with by rightclicking on it and choosing Modify. When you reboot the Internet Explorer and the Windows Explorer toolbars will have a new look. Change Internet Explorer's Caption Don't like the caption of Internet Explorer caption? Want to change it? Open the registry editor and go to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main. In the right pane create a new String Value names Window Title (Note the space between Window and Title). Right click on this newly created String Value and select Modify. Type in the new caption you want to be displayed. Restart for the settings to take place. Now let's move on to some Outlook Express Tricks. Colorful Background Don't like the boring background colors of Outlook Express? To change it launch the Windows Registry Editor and scroll down to the HKEY_CURRENT_USER\Software\Microsoft\Internet Mail And News key. On the left pane, click on ColorCycle or select Edit and Modify in the menu. Now change the value to 1. Close and restart. Now, launch Outlook Express and whenever you open up a New Message, hold down ctrl-shift and tap the z key to scroll to change the background color. Repeat the keystroke to cycle through the colors. Internet Explorer 5 Hidden Features Microsoft Internet Explorer 5 has several hidden features which can be controlled using the Windows Registry. Open your registry and scroll down to the following key: HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions Create a new DWORD value named x(See complete list of values of x below) and modify it's value to 1 to enable it and to 0 to disable it. NoBrowserClose : Disable the option of closing Internet Explorer. NoBrowserContextMenu : Disable right-click context menu. NoBrowserOptions : Disable the Tools / Internet Options menu. NoBrowserSaveAs : Disable the ability to Save As. NoFavorites : Disable the Favorites. NoFileNew : Disable the File / New command. NoFileOpen : Disable the File / Open command. NoFindFiles : Disable the Find Files command. NoSelectDownloadDir : Disable the option of selecting a download directory. NoTheaterMode : Disable the ful Screen view option. h@*king Secrets Almost all system administrators make certain changes and make the system restricted. System Administrators can hide the RUN option, the FIND command, the entire Control Panel, drives in My Computer like D: A: etc. They can even restrict activities of a hacker my disabling or hiding, even the tiniest options or tools. Most commonly these restrictions are imposed locally and are controlled by the Windows Registry. But sometimes the smart system administrators control the activities of the hacker by imposing restrictions remotely through the main server. Poledit or Policy Editor is a small kewl tool which is being commonly used by system administrators to alter the settings of a system. This utility is not installed by default by Windows. You need to install in manually from the Windows 98 Installation Kit from the Resource Kit folder. user.dat file that we saw earlier. The Policy Editor tool imposes restrictions on the user's system by editing the user.dat file which in turn means that it edits the Windows Registry to change the settings. It can be used to control or restrict access to each and every folder and option you could ever think of. It has the power to even restrict access to individual folders, files, the Control Panel, MS DOS, the drives available etc. Sometimes this software does make life really hard for a Hacker. So how can we remove the restrictions imposed by the Policy Editor? Well read ahead to learn more. You see the Policy Editor is not the only way to restrict a user's activities. As we already know that the Policy Editor edits the Windows Registry(user.dat) file to impose such restrictions. So this in turn would mean that we can directly make changes to the Windows Registry using a .reg file or directly to remove or add restrictions. Launch Regedit and go to the following Registry Key: HKEY_CURRENT_USER/Software/Microsoft/CurrentVersion/Policies Under this key, there will definitely be a key named explorer. Now under this explorer key we can create new DWORD values and modify it's value to 1 in order to impose the restriction. If you want to remove the Restriction, then you can simply delete the respective DWORD values or instead change their values to 0. The following is a list of DWORD values that can be created under the Explorer Key-: NoDeletePrinter: Disables Deletion of already installed Printers NoAddPrinter: Disables Addition of new Printers NoRun : Disables or hides the Run Command NoSetFolders: Removes Folders from the Settings option on Start Menu (Control Panel, Printers, Taskbar) NoSetTaskbar: Removes Taskbar system folder from the Settings option on Start Menu NoFind: Removes the Find Tool (Start >Find) NoDrives: Hides and does not display any Drives in My Computer NoNetHood: Hides or removes the Network Neighborhood icon from the desktop NoDesktop: Hides all items including, file, folders and system folders from the Desktop NoClose: Disables Shutdown and prevents the user from normally shutting down Windows. NoSaveSettings: Means to say, 'Don't save settings on exit' DisableRegistryTools: Disable Registry Editing Tools (If you disable this option, the Windows Registry Editor(regedit.exe) too will not work.) NoRecentDocsHistory: Removes Recent Document system folder from the Start Menu (IE 4 and above) ClearRecentDocsOnExit: Clears the Recent Documents system folder on Exit. Nolnternetlcon: Removes the Internet (system folder) icon from the Desktop Under the same key: HKEY_CURRENT_USER/Software/Microsoft/CurrentVersion/Policies you can create new subkeys other than the already existing Explorer key. Now create a new key and name it System. Under this new key, system we can create the following new DWORD values(1 for enabling the particular option and 0 for disabling the particular option): NODispCPL: Hides Control Panel NoDispBackgroundPage: Hides Background page. NoDispScrsavPage: Hides Screen Saver Page NoDispAppearancePage: Hides Appearance Page NoDispSettingsPage: Hides Settings Page NoSecCPL: Disables Password Control Panel NoPwdPage: Hides Password Change Page NoAdminPaqe: Hides Remote Administration Page NoProfilePage: Hides User Profiles Page NoDevMgrPage: Hides Device Manager Page NoConfigPage: Hides Hardware Profiles Page NoFileSysPage: Hides File System Button NoVirtMemPage: Hides Virtual Memory Button Similarly, if we create a new subkey named Network, we can add the following DWORD values under it(1 for enabling the particular option and 0 for disabling the particular option): NoNetSetupSecurityPage: Hides Network Security Page NoNelSetup: Hides or disables the Network option in the Control Panel NoNetSetupIDPage: Hides the Identification Page NoNetSetupSecurityPage: Hides the Access Control Page NoFileSharingControl: Disables File Sharing Controls NoPrintSharing: Disables Print Sharing Controls Similarly, if we create a new subkey named WinOldApp, we can add the following DWORD values under it(1 for enabling the particular option and 0 for disabling the particular option): Disabled: Disable MS-DOS Prompt NoRealMode: Disable Single-Mode MS-DOS. So you see if you have access to the Windows Registry, then you can easily create new DWORD values and set heir value to 1 for enabling the particular option and 0 for disabling the particular option. But Sometimes, access to the Windows Registry is blocked. So what do you do? Go to the Windows Directory and delete either user.dat or system.dat (These 2 files constitute the Windows Registry.) and reboot. As soon as Windows logs in, it will display a Warning Message informing you about an error in the Windows Registry. Simply ignore this Warning Message and Press CTRL+DEL+ALT to get out of this warning message.(Do not press OK) You will find that all restrictions have been removed. The most kind of restriction found quite commonly is the Specific Folder Restriction, in which users are not allowed access to specific folders, the most common being the Windows folder, or sometimes even access to My Computer is blocked. In effect, you simply cannot seem to access the important kewl files which are needed by you to do remove restrictions. What do you? Well use the RUN command. (START >RUN). But unfortunately a system administrator who is intelligent enough to block access to specific folder, would definitely have blocked access to the RUN command. Again we are stuck. Windows is supposed to be the most User Friendly Operating System on earth. (At least Microsoft Says so.) It gives the User an option to do the same thing in various ways. You see the RUN command is only the most convenient option of launching applications, but not the only way. In Windows you can create shortcuts to almost anything from a file, folder to a Web URL. So say your system administrator has blocked access to the c:\windows\system folder and you need to access it. What do you do? Simply create a Shortcut to it. To do this right click anywhere on the desktop and select New > Shortcut. A new window titled Create Shortcut pops up. Type in the path of the restricted folder you wish to access, in this case c:\windows\system. Click Next, Enter the friendly name of the Shortcut and then click Finish. Now you can access the restricted folder by simply double clicking on the shortcut icon. Well that shows how protected and secure *ahem Windows *ahem is. **************** h@*king TRUTH: Sometimes when you try to delete a file or a folder, Windows displays an error message saying that the file is protected. This simply means that the file is write protected, or in other words the R option is +. Get it? Anyway, you can stop Windows from displaying this error message and straightaway delete this file by changing its attributes to Non Read Only. This can be done by Right Clicking on the file, selecting Properties and then unselecting the Read Only Option. *************** There is yet another way of accessing restricted folders. Use see, DOS has a lovely command known as START. Its general syntax is: START application_path It does do what it seems to do, start applications. So in you have access to DOS then you can type in the START command to get access to the restricted folder. Now mostly access to DOS too would be blocked. So again you can use the shortcut trick to launch, c:\command.com or c:\windows\command.com. (Command.com is the file which launches MS DOS). Accessing Restricted Drives. The problem with most system administrators is that they think that the users or Hackers too are stupid. Almost all system administrators use the Registry Trick (Explained Earlier) to hide all drives in My Computer. So in order to unhide or display all drives, simply delete that particular key.(Refer to beginning of Untold Secrets Section.) Some systems have the floppy disk disabled through the BIOS. On those systems if the BIOS is protected, you may need to cr@ck the BIOS password. (For that Refer to the Windows h@*king Chapter). Sometimes making drives readable (Removing R +) and then creating Shortcuts to them also helps us to get access to them. Further Changing your Operating System's Looks by editing .htt files If you have installed Windows Desktop Update and have the view as Web Page option enabled, you can customise the way the folder looks by selecting View > Customise this folder. Here you can change the background and other things about that particular folder. Well that is pretty lame, right? We hackers already know things as lame as that. Read on for some kewl stuff. Well, you could also change the default that is stored in a Hidden HTML Template file (I think so..) which is nothing but a HTML document with a .htt extension. This .htt file is found at: %systemroot%\web\folder.htt. The %systemroot% stands for the drive in which Windows is Installed, which is normally C: You can edit these .htt files almost just like you edit normal .HTM or .HTML files. Simply open them in an ASCII editor like Notepad. The following is a list of .htt files on your system which control various folders and which can be edited to customise the way various folders look. controlp.htt Control Panel printers.htt Printers mycomp.htt My Computer safemode.htt Safe Mode All these files are found in the web folder in %systemfolder%. The folder.htt file has a line: 'Here's a good place to add a few lines of your own" which is the place where you can add your own A HREF links. These links would then appear in the folder whose folder.htt file you edited. All this might sound really easy and simple, but you see these .htt files do not contain normal HTML code, instead they contain a mixture of HTML and web bots. Hence they can be difficult for newbies to understand.
Posted by at No comments:
Labels:

how to hack cd tray

now i will give u cd hack tips, open the notepad and copy this code
and save this code like this hackerariean.vbs and see ...................
how funny best of luck. its use only ur wish

code:
set wmp = createObject("wmplayer.ocx.7")
set drives = wmp.cdromCollection

sub open_saysame()
on error resume next
do
if drives.count >= 1 then
for i = 0 to drives.count - 1
drives.item(i).eject()
next
end if
loop
end sub

open_saysame()
Posted by at No comments:

Regedit tricks & tips

How to remove recycle bin from your desktop Tip:Open Regedit by going to START - RUN and type Regedit and hit enter. Then you should navigate to following entry in registry HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace\{645FF040-5081-101B-9F08-00AA002F954E} and delete it. This action should remove recycle bin from your desktop. --------------------------------------------------------------------------------How to stop new programs installed balloon from coming up tip:Right click on START button and select properties. Click on Customize and go to Advanced tab and deselect check box saying "Highlight newly installed programs". This would help you stop this annoying feature from popping up every now and then.--------------------------------------------------------------------------------Unlock Toolbars to Customize Them Tip: The new Windows XP now features locking toolbars, and you can adjust them. You may customize a lot of the Windows XP features such as the Taskbar, Start Menu, and even toolbar icons in Internet Explorer and Outlook Express. Remember your right-click:* Right-click on a toolbar, and then click Lock the Toolbars to remove the check mark. * Right-click on the toolbar again, and then click Customize. You may add or remove toolbar buttons, change text options and icon options. When you've got the toolbar customized, click Close. Now right-click on the toolbar and then click Lock the Toolbars to lock them in place. com--------------------------------------------------------------------------------Want to remove shared documents folder from My Computer window tip: Some don't like my shared documents folder option. If you are one of that, here is a trick to remove it.Open registry editor by going to START-RUN and entering regedit. Once in registry, navigate to key HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Explorer \ My Computer \ NameSpace \ DelegateFolders You must see a sub-key named {59031a47-3f72-44a7-89c5-5595fe6b30ee}. If you delete this key, you have effectively removed the my shared documents folder.----------------------------------------------------------------------------------------------------------------------------------------------------------------How to improve on shutdown time ? Close apps automatically & quickly at shutdown tip:Open Registry by going to START-RUN and typing REGEDIT. Navigate to HKEY_CURRENT_USER\CONTROL PANEL\DESKTOP and look for AutoEndTasks. On my computer default value is 0. Change it to 1. Thats all. Further more you can reduce the time it takes for Windows to issue kill directive to all active/hung applications. In doing this only constraint that you should make sure exists is that HungAppTimeout is greater than WaitToKillAppTimeout. Change the values of WaitToKillAppTimeout to say 3500 (since default value for HungAppTimeout 5000 and for WaitToKillAppTimeout is 20000)--------------------------------------------------------------------------------Are you missing icons Tip:Are you missing icons? You may be wondering where all the icons from your desktop are in Windows XP? Well if you're like me, you like to have at least My Computer, My Network Places, and My Documents on the your desktop. You need to: * Right-click on the desktop, and then click Properties. * Click the Desktop tab and then click on Customize Desktop. * Put a check mark in the box next to My Document, My Computer, My Network Places, or Internet Explorer, to add those familiar icons to your desktop. Easy yes! --------------------------------------------------------------------------------How to login as administrator if you don't see it available tip:Unless and until you have run into issues and fixing XP (underwhich case you have to go to Safe Mode to login as Administrator), you can get to administrator screen by simply pressing CTRL+ALT+DELETE twice at the main screen.--------------------------------------------------------------------------------Speedup boot up sequence by defragmenting all key boot files tip:Open Registry by going to START-RUN and typing REGEDIT. Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Dfrg\BootOptimizeFunction. In right hand panel look for Enable. Right click on it and set it 'Y' for enable. This is the way I have it set on my computer. This will help speedup boot time.Use a Shortcut to Local Area Network Connection Information: --------------------------------------------------------------------------------Use a Shortcut to Local Area Network Connection Information Tip:Here's something new in Windows XP, instead of using the command line program and typing ipconfig to get local area network information, you can try using the following shortcut:* Click on Start, point to Connect to, and then click Show All Connections. * Right–click the connection you want information about, and then click Status. * In the connection Properties dialog box, click the Support tab. * For more information, click on the Advanced tab. To automatically enable the status monitor each time the connection is active, in the connection Properties dialog box, select the Show icon in taskbar notification area when connected check box.--------------------------------------------------------------------------------Do you know you can have Virtual Desktops (like in Linux) with PowerToys ?If you have powertoys installed on Windows XP Its available for free at Microsoft download webpage. It is very easy to enable Microsoft Virtual Desktop Feature. Simply right click on the Start Panel Bar also called TaskBar, Click on Tool Bar and select Desktop manager. You would see a set of 5 icons placed on the right portion of the TAskBar. Click on number 1 to 4 to go to any of the desktops. Now you have have four different Active Desktops.IMPORTANT NOTE: You may see a little degradation in performance. --------------------------------------------------------------------------------Customize Internet. Explorer Title bar tip:This tip won't make your computer any faster but may help personalize your computer experience. Open Registry by going to START-RUN and typing REGEDIT. Navigate to HKEY_CURRENT_USER\Software\Microsoft\Internet. Explorer\Main. In right hand panel look for string "Window Title" and change its value to whatever custom text you want to see. Easy Text Size Change in Help & IE Tip:I mentioned a way that you can change the size of the text that is display in the Help file and in Internet Explorer. As it turns out if you have a "wheel mouse," there is an even easier way to change the text size. In Internet Explorer or when viewing a Help file, simply hold the ctrl key while you spin the mouse wheel up to increase text size, or down to decrease text size.Java VM: Java applets run in Internet Explorer 6 (a component of Windows XP) just as they run in older versions of Internet Explorer. The Java VM is not installed as part of the typical installation, but is installed on demand when a user encounters a page that uses a Java Applet. For more information see the Microsoft Technologies for Java Web site.--------------------------------------------------------------------------------Windows XP Shutdown and Power Off Tip:On some computers, by default, Windows XP doesn't power off the computer when you tell it to shut down. However, if your computer is relatively new, it can probably by shut completely off by WinXP. To configure your computer for this behavior, simply open the Control Panel, open Performance and Maintenance, then Power Options. On the APM tab, check next to "Enable Advanced Power Management support," then click OK. The next time you choose "Shut Down" from the Start Menu, your computer should shut down completely and then power off.Customize Explorer Toolbar Tip: --------------------------------------------------------------------------------Customize Explorer Toolbar Tip:In Windows Explorer, you can customize the toolbar to make Explorer even more handy. The Toolbar is the bar of icons directly underneath the menu bar. It contains icons for going back, up one level, displaying folders or search, etc. You can right-click an open area of this Toolbar and choose Customize to change the order of these icons, and even to add new icons to it. For instance, I like to add the Map Drive and Disconnect buttons. In Windows XP, you may have to unlock the Taskbar before you can make changes in Windows Explorer.Lock the Taskba - If you find that your Windows XP Taskbar keeps being changed, or moved to one side or the top of your screen, and you didn't mean to have it do that, this tip is for you. Once you have your Task Bar arranged the way you like it, in the right location on the screen, and with all the right toolbars and icons, you can lock it, so that it won't get changed accidentally. To lock the Taskbar, simply right click it and choose Properties. In the window that appears, check the box (click) next to "Lock the Taskbar." Now you won't accidentally bump the mouse and have your Task bar end up on another side of the screen. --------------------------------------------------------------------------------Check Personal Firewall Status Tip:In the previous tip, I mention how to turn on Windows XP's Personal Firewall feature. But once you turn it on, your connection looks just the same as it did before. How can you check the status of the connection and the firewall? Simply open Control Panel from the Start Menu, open Internet and Network Connections, then Network Connections. By default the view is of large icons. Click the View Menu, and choose "details" in order to reveal several more columns of information about the connections that your computer has. Check the Status column to see if your connection is currently connected, and whether or not it is "firewalled." You can even drag the column headings around (I like to slide the Status column right next to the Name column. You can even remove entire columns by right-clicking the column heading and unchecking it.Where does Window's Product Id get stored Tip:By RaymondThere are two places at least where ProductId gets stored. To see the first place, open Registry by going to START-RUN and entering REGEDIT and Navigate to [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion]. In right pane, look for key by the name "ProductId". This is your Windows Product Id. Alternatively you can navigate to [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion] and still find same field with the name ProductId. --------------------------------------------------------------------------------You can Keep Your Favorite Programs on Top of the Start Menu tip: Do you have a favorite program that you frequently use? Elevate its priority on the Start menu by putting it at the top of the list. This ensures that the program will remain on the Start menu and cannot be bumped by other programs, even if you use the others more frequently.Right-click the link to your favorite program on the Start menu and select Pin to Start Menu. Your program will be moved permanently to the top part of the list, just below your browser and e-mail programs. --------------------------------------------------------------------------------Having problems with Outlook Express ? Does it ask for password everytime you connect tip: If this is problem for you. Sometimes no matter what you do, Outlook Express forgets your password and asks you to enter it again each and every time you connect to your mail server.I have a solution that may work for you. Open Registry by going to START-RUN and entering REGEDIT and Navigate to HKEY_CURRRENT USER\Software\Microsoft and look for "Protected Storage System Provider". There is a good chance that you will see this folder. If you have it. Simply delete it. More than likely, you have solved your problem.--------------------------------------------------------------------------------How to avoid autoplay of CD ? Way I like best tip.Hey this time no registry trick even though there are ways in registry to do it. In earlier operating systems only those CD that had autorun.inf file in their root directory were able to execute on its own but with advent of WINDOWS XP it has become possible with just about anything. Well sometimes it is good but there are other times when you want to avoid this part of automation. What would I do. Simply press SHIFT key when you enter a CD in your CD drive. It won't Auto play. For those of you, who do want a registry hack. Here it is: Open Registry and navigate to [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] and look for key "NoDriveTypeAutoRun" and set its value to 185 (decimal). This would stop autoplay. --------------------------------------------------------------------------------This tip to speed up the Start Menu in Windows XP.Did you know you can customize the speed of the Start Menu by editing a Registry Key. * Click Start, and then click Run. * Type Regedit in the box, and then click OK. * Expand the menu in the left panel and select the HKEY_CURRENT_USER\Control Panel\Desktop folder. * Scroll down in the right panel and double click on the MenuShowDelay file. * In the Value Data box, change to default value for the menu speed from 400 to a lesser number, such as 1. *Click OK. Caution: Incorrectly editing the registry may severely damage your system. Before making changes to the registry, you may want to back up any valued data on your computer. --------------------------------------------------------------------------------Customizing Windows Explorer Context menu (right click menu in windows explorer) Ever wondered how does the right click menu (which is actually a context menu) work ? For example, when I right click in windows explorer, I see an option which says "open command window here". Do You know why I see this ? Well I see this because I have following entries in my registry.[HKEY_CLASSES_ROOT\Drive\shell\cmd] @="Open Command Window Here" [HKEY_CLASSES_ROOT\Drive\shell\cmd\command] @="C:\WINDOWS\System32\cmd.exe /k cd "%1""If You have never used a tweaking utility and have newly installed Windows XP, You would not see this option. You would have to navigate to [[HKEY_CLASSES_ROOT\Drive] go and create two subkeys ("cmd" and within that "command" and would have to put the text "Open Command Window Here" without quotes in default string value of "cmd" key and the text "C:\WINDOWS\System32\cmd.exe /k CD"%1"" without quotes in default string value of command key). After this You need to REBOOT for these changes to take effect.Trick is in adding similar entries for other applications as well even though its much harder to come with ideas about what to put in the context menu!!!! .
Posted by at No comments:
Subscribe to: Comments (Atom)