Windows Hacking
How to fix corrupted windows files in XP?
How to fix corrupted windows file is very easy.Following these following steps
Requirement:
1. Windows XP CD
Now, follow this steps:
1. Place the xp cd in your cd/dvd drive
2. Go to start
3. Run
4. Type sfc /scannow (without “)
Now sit back and relax, it should all load and fix all your corrupted file on win XP.Hope this method can fix your corrupted xp system files.
2. Open DOS & run ipconfig /displaydns command.
3. The DNS Cache shows where you have been.
4. The best way to improve the privacy of your InPrivate browsing sessions is to also clear the local DNS cache after closing the browser. Open up an administrative level command prompt and type ipconfig /flushdns and hit Enter.
How to Export Registry Keys:
1.Click Start, and then click Run.
2.In the Open box, type regedit, and then click OK.
3.On the File menu, click Export.
4.In the Save in box, select the boxs at the bottom the bottom according to weather you want toexport all or only selected branches of the registry
.
Next select a location in which to save the backup .reg file. In the File name box, type a file name, and then click Save.
How to Restore the Registry
1.To restore registry keys that you exported, double-click the .reg file that you saved.
From here you can add, remove or change drive letters and paths to the partition.
Now in this post I will be telling you how you can create your own folder with in any name in “Send To” option so that whenever you will copy any files or folders, you will simply send them to your folder instead of using CTRL-C and CTRL-V.
1) Firstly you’ll have to access hidden files. So change your view settings to make all hidden files visible.
Tools -> folder options -> view (tab) and select the show hidden files and folders.
2) In Windows 7 also you will have to unmark “hide system protected files and folder”. After that you can see all the hidden system protection file, now go to
C:\Users\UserName\SendTo folder.
3) Open up my computer and locate your most used folders let us take “Fun”. Create a shortcut of the most used folders (Fun) in
C:\Users\UserName\SendTo folder.
4) You can do this in a number of ways.
Right click -> send to desktop (create shortcut) and move the shortcut from the desktop to the C:\Users\UserName\SendTo folder.
Copy the most used folder and go to C:\Users\UserName\SendTo folder and right click -> paste shortcut.
Concept of Hibernate Mode
When you switch your laptop to hibernate mode, you are turning your computer off but saving everything you had up last while the computer was on. So when you turn it back on, the laptop will load up all the last work or whatever windows you had open before you enabled hibernate. As we all know when we restart our system, all the data that was present in RAM get vanished.
So how exactly this hibernate mode loads all the last work you had open before. In hibernate mode the current state of the system is saved in file called hiberfil.sys in your C drive and size of this file is around 1.5 Gb. Bydefault this file is invisible, if you want see this file
Goto folder options >> view >> choose show option and uncheck hide O/S protected files.
But I recommend you should always hide your O/S protected files.
So when you will choose hibernate mode your system will power down. When you will turn the system power back on, the saved information is read from the hiberfil.sys, restoring the last used settings.
How to know the last shut down Time in your Windows 7 ?
If you are feeling that somebody is physically accessing your computer & you don’t know at what time he/she is accessing your computer. Then friends here are the following steps to know the last shut down time of your computer:-
1. Go to start menu & write event viewer in search option & then hit enter.
If you are a Windows XP user, Go to Start> Run. Type eventvwr.msc and click OK button.
2. Event viewer window will open.
3. First click on “Window Logs” on the left side of the window & then click “System” on the right side of the window.
4. Now all the system files will open on the right side. Now scroll down the Source column & try to find out the EventLog with Event ID 6006 will show the correct time and date of last PC shutdown (In this case the time is 4/21/2010 12:26:57 PM).
So the last shut down time of my PC is 4/21/2010 12:26:57 PM.
That’s how you can easily find out when exactly was your computer last shut down.
1) Press Ctrl+alt+delete to open the task manager
2) goto Shut down tab in Menu bar
3) Press ctrl and click on turn off, computer will shutdown immediately.
Try it..!!
You might have noticed often that, whenever you plug in your USB into the USB port or when you insert a CD or DVD into the CD/DVD ROM drive, Auto play option automatically gets executed.
It is very dangerous to allow any drive auto play on its own, specially USB drives. Because, along with Autorun files, USB drives containing virus also gets executed resulting your computer affected by virus or Trojan horses.
So this trick goes this way.
Disable CD Autorun
1) Click Start, Run and enter GPEDIT.MSC
2) Go to Computer Configuration, then-> Administrative Templates,
—> System
.
3) Locate the entry for Turn autoplay off. Double click on it.
4) Click on Enable.
5) Select All Drives to disable all drives including USB drives or only CD Rom drive.
6) Now click on apply.
Hope This post Helps You .
Description:
Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
When the worm is executed, it copies itself as the following file with the Hidden attribute set: %CommonProgramFiles%\SysLive.exe
It then creates the following files, which are copies of other threats: * %Windir%\fonts\[FOUR RANDOM LETTERS].fon (Trojan Horse) * %Temp%\~[RANDOM LETTERS].tmp (Hacktool.Rootkit)
The worm then creates the following registry entry so that it runs every time Windows starts: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\”SysLive” = “%CommonProgramFiles%\SysLive.exe”
The worm then creates the following registry entries to alter behavior when certain files are accessed or executed: * HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KRepair.COM\”Debugger” = “ntsd -d” * HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KISLnchr.exe\”Debugger” = “ntsd -d” * HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVSetup.exe\”Debugger” = “ntsd -d”
Next, the worm creates a service with the following characteristics: Service Name: [THREE RANDOM LETTERS] Display Name: [THREE RANDOM LETTERS] ImagePath: “\??\%SystemDrive%\DOCUME~1\VIRUSM~1\LOCALS~1\Temp\~[RANDOM_LETTERS].tmp”
The worm contacts the following URL to check for Internet connectivity: www.baidu.com/Count/Count.asp
Then it attempts to access the following URL: www.hgcqsf.cn/1004.txt
The worm attempts to download and execute potentially malicious files on to the compromised computer.
The worm may also attempt to modify the Internet Explorer home page.
It may disable Windows File Protection and overwrite the following file with its own code: %Windir%\explorer.exe
Next, the worm copies itself to all removable drives as the following file: %DriveLetter%\SysLive.exe
It then creates the following file so that it runs when the above drives are accessed: %DriveLetter%\AutoRun.inf.
Please comment if you like it..
How to use any blacklisted key in Kaspersky – By Lokendra Singh
I shared a simple Registry trick/tweak for getting more days (trial periods) for Kaspersky Anti-Virus Product and that trick still works great 100%. But if you People don’t want to make changes in Registry after every month, then just follow this new trick that I am going to tell you now. That trick also works 100% same as old one but the Concept is totally different and only one time you have to follow this trick. Then you will get all the services and updates till Kaspersky exist in your computer system.
How to fix corrupted windows file is very easy.Following these following steps
Requirement:
1. Windows XP CD
Now, follow this steps:
1. Place the xp cd in your cd/dvd drive
2. Go to start
3. Run
4. Type sfc /scannow (without “)
Now sit back and relax, it should all load and fix all your corrupted file on win XP.Hope this method can fix your corrupted xp system files.
How to Make Private Browsing More Private ? – By Preetam Rawat
Privacy features such as InPrivate browsing in Internet Explorer 8 and similar features in ChromeFirefox promise to protect your privacy by not keeping track of page history, temporary files and cookies. This may be enough to hide your tracks from a beginner computer user but there are still traces of what sites you visit within the local DNS cache. An advanced user can run the ipconfig /displaydnsDOS to view the most recent sites visited. So in order to have more secure follow these steps :-
1. Lets first open Bing in Internet Explorer 8 by using its private browsing facility.2. Open DOS & run ipconfig /displaydns command.
3. The DNS Cache shows where you have been.
4. The best way to improve the privacy of your InPrivate browsing sessions is to also clear the local DNS cache after closing the browser. Open up an administrative level command prompt and type ipconfig /flushdns and hit Enter.
How to Back Up the Registry
Before you edit the registry, export the keys in the registry that you plan to edit, or back up the whole registry. If a problem occurs, you can then follow the steps how-to restore the registry to its previous state.How to Export Registry Keys:
1.Click Start, and then click Run.
2.In the Open box, type regedit, and then click OK.
3.On the File menu, click Export.
4.In the Save in box, select the boxs at the bottom the bottom according to weather you want toexport all or only selected branches of the registry
.
Next select a location in which to save the backup .reg file. In the File name box, type a file name, and then click Save.
How to Restore the Registry
1.To restore registry keys that you exported, double-click the .reg file that you saved.
How to change drive letter
To change drive letters (useful if you have two drives and have partitioned the boot drive, but the secondary drive shows up as “D”)- Go to Start >
- Control Panel >
- Administrative Tools >
- Computer Management >
- Disk Management >
Or
You Can Go Directly By Typing the Command in Run: diskmgmt.msc
Then right-click the partition whose name you want to change (click in the white area just below the word “Volume”) and select “change drive letter and paths.”From here you can add, remove or change drive letters and paths to the partition.
How to Send Data on a Right Click to Your Desired Folder?
Whenever you attach a removable disk and want to send some items in it, you have option either you select the required files and do a CTRL –C, open the removable disk and do a CTRL-V or you select the required files right click on it and there you find “Send To” option. In “Send To” you find the name of removable disk and you simply send the items into it. Well, What if i get the name of my own desired folder there which I use frequently for keeping my stuff.Now in this post I will be telling you how you can create your own folder with in any name in “Send To” option so that whenever you will copy any files or folders, you will simply send them to your folder instead of using CTRL-C and CTRL-V.
1) Firstly you’ll have to access hidden files. So change your view settings to make all hidden files visible.
Tools -> folder options -> view (tab) and select the show hidden files and folders.
2) In Windows 7 also you will have to unmark “hide system protected files and folder”. After that you can see all the hidden system protection file, now go to
C:\Users\UserName\SendTo folder.
3) Open up my computer and locate your most used folders let us take “Fun”. Create a shortcut of the most used folders (Fun) in
C:\Users\UserName\SendTo folder.
4) You can do this in a number of ways.
Right click -> send to desktop (create shortcut) and move the shortcut from the desktop to the C:\Users\UserName\SendTo folder.
Copy the most used folder and go to C:\Users\UserName\SendTo folder and right click -> paste shortcut.
Play with your Desktop Screen
Here is cool trick to rotate your computer screen. you can rotate it by 90 or 180 or 360 angle. You can invert your window screen an d can impress your friends, This is one of the scariest tricks which turns Windows upside down. Here are steps:Press Ctrl, Alt and then any of the four arrow keys .
Down arrow key rotate by 180 degree, invert screen
Left arrow key rotate by 90 degree.
Right arrow key rotate by 270 degree
Up arrow key make it normal again.
Concept of Hibernate Mode
When you switch your laptop to hibernate mode, you are turning your computer off but saving everything you had up last while the computer was on. So when you turn it back on, the laptop will load up all the last work or whatever windows you had open before you enabled hibernate. As we all know when we restart our system, all the data that was present in RAM get vanished.
So how exactly this hibernate mode loads all the last work you had open before. In hibernate mode the current state of the system is saved in file called hiberfil.sys in your C drive and size of this file is around 1.5 Gb. Bydefault this file is invisible, if you want see this file
Goto folder options >> view >> choose show option and uncheck hide O/S protected files.
But I recommend you should always hide your O/S protected files.
So when you will choose hibernate mode your system will power down. When you will turn the system power back on, the saved information is read from the hiberfil.sys, restoring the last used settings.
How to know the last shut down Time in your Windows 7 ?
If you are feeling that somebody is physically accessing your computer & you don’t know at what time he/she is accessing your computer. Then friends here are the following steps to know the last shut down time of your computer:-
1. Go to start menu & write event viewer in search option & then hit enter.
If you are a Windows XP user, Go to Start> Run. Type eventvwr.msc and click OK button.
2. Event viewer window will open.
3. First click on “Window Logs” on the left side of the window & then click “System” on the right side of the window.
4. Now all the system files will open on the right side. Now scroll down the Source column & try to find out the EventLog with Event ID 6006 will show the correct time and date of last PC shutdown (In this case the time is 4/21/2010 12:26:57 PM).
So the last shut down time of my PC is 4/21/2010 12:26:57 PM.
That’s how you can easily find out when exactly was your computer last shut down.
Shutdown Windows XP in less then 5 sec
To Shutdown Windows XP in less then 5 sec. do the following:1) Press Ctrl+alt+delete to open the task manager
2) goto Shut down tab in Menu bar
3) Press ctrl and click on turn off, computer will shutdown immediately.
Try it..!!
How to Disable CD/DVD or USB drive Auto run
Steps For “How to Disable CD/DVD or USB drive Auto run.”
Well, this is one of my most suggested and favorite computer trick. What this small trick does is, it simply makes you to disable Autorun of any removable drives such as CD, DVD, Pen drives etc.You might have noticed often that, whenever you plug in your USB into the USB port or when you insert a CD or DVD into the CD/DVD ROM drive, Auto play option automatically gets executed.
It is very dangerous to allow any drive auto play on its own, specially USB drives. Because, along with Autorun files, USB drives containing virus also gets executed resulting your computer affected by virus or Trojan horses.
So this trick goes this way.
Disable CD Autorun
1) Click Start, Run and enter GPEDIT.MSC
2) Go to Computer Configuration, then-> Administrative Templates,
—> System
.
3) Locate the entry for Turn autoplay off. Double click on it.
4) Click on Enable.
5) Select All Drives to disable all drives including USB drives or only CD Rom drive.
6) Now click on apply.
Hope This post Helps You .
Description:
Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000
When the worm is executed, it copies itself as the following file with the Hidden attribute set: %CommonProgramFiles%\SysLive.exe
It then creates the following files, which are copies of other threats: * %Windir%\fonts\[FOUR RANDOM LETTERS].fon (Trojan Horse) * %Temp%\~[RANDOM LETTERS].tmp (Hacktool.Rootkit)
The worm then creates the following registry entry so that it runs every time Windows starts: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\”SysLive” = “%CommonProgramFiles%\SysLive.exe”
The worm then creates the following registry entries to alter behavior when certain files are accessed or executed: * HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KRepair.COM\”Debugger” = “ntsd -d” * HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KISLnchr.exe\”Debugger” = “ntsd -d” * HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\KAVSetup.exe\”Debugger” = “ntsd -d”
Next, the worm creates a service with the following characteristics: Service Name: [THREE RANDOM LETTERS] Display Name: [THREE RANDOM LETTERS] ImagePath: “\??\%SystemDrive%\DOCUME~1\VIRUSM~1\LOCALS~1\Temp\~[RANDOM_LETTERS].tmp”
The worm contacts the following URL to check for Internet connectivity: www.baidu.com/Count/Count.asp
Then it attempts to access the following URL: www.hgcqsf.cn/1004.txt
Note: This URL was not active at the time of writing.
The worm attempts to download and execute potentially malicious files on to the compromised computer.
The worm may also attempt to modify the Internet Explorer home page.
It may disable Windows File Protection and overwrite the following file with its own code: %Windir%\explorer.exe
Next, the worm copies itself to all removable drives as the following file: %DriveLetter%\SysLive.exe
It then creates the following file so that it runs when the above drives are accessed: %DriveLetter%\AutoRun.inf.
Please comment if you like it..
How to use any blacklisted key in Kaspersky – By Lokendra Singh
I shared a simple Registry trick/tweak for getting more days (trial periods) for Kaspersky Anti-Virus Product and that trick still works great 100%. But if you People don’t want to make changes in Registry after every month, then just follow this new trick that I am going to tell you now. That trick also works 100% same as old one but the Concept is totally different and only one time you have to follow this trick. Then you will get all the services and updates till Kaspersky exist in your computer system.
Basic Concept behind this trick > ” We have to prevent our Kaspersky Key to be blacklisted (For this we will use a Anti-blacklist) and make fool to Kaspersky that we have a genuine Kaspersky Key. Thus Kaspersky will provide us all the updates and services till the license validity ends.”
Just follow these steps :
Step-1: Download “Kaspersky 2010 Anti-blacklist” from the given links :
From Ziddu.com : http://ziddu.com/download/9800647/Kaspersky2010Antiblacklist.rar
or
From Mediafire.com : http://mediafire.com/download.php?mtuqzy0yjm2
Step-2: Open your Kaspersky Product ( Kaspersky Antivirus or Internet Security 2010) and follow these sub-steps :
* Click settings
* Uncheck enable protection
* In options uncheck self-defense
* Exit Kaspersky
Step 3: Now backup “cllr.dll” from “C:\Program Files\Kaspersky Lab\Kaspersky Antivirus or Internet Security 2010\cllr.dll”.
Step-4: Extract “Kaspersky 2010 Anti-blacklist” and copy “cllr.dll” from it and paste in “C:\Program Files\Kaspersky Lab\Kaspersky Antivirus or Internet Security 2010\” and replace it.
Step-5: Now open Kaspersky, enable its protection and self defense.
Step-6: Now open License Manager and click on Activate License.
Step-7: Now disconnect from net and use this expired beta code : T1JVS-NNMBD-K1QTN-SUBP8
Step-8: Now it attempts fail and ask for key.
Step-9: Now you can use any key and that will not be blacklisted.
Now you have a Kaspersky full functionally version . . . . . . . Enjoy !!
Just follow these steps :
Step-1: Download “Kaspersky 2010 Anti-blacklist” from the given links :
From Ziddu.com : http://ziddu.com/download/9800647/Kaspersky2010Antiblacklist.rar
or
From Mediafire.com : http://mediafire.com/download.php?mtuqzy0yjm2
Step-2: Open your Kaspersky Product ( Kaspersky Antivirus or Internet Security 2010) and follow these sub-steps :
* Click settings
* Uncheck enable protection
* In options uncheck self-defense
* Exit Kaspersky
Step 3: Now backup “cllr.dll” from “C:\Program Files\Kaspersky Lab\Kaspersky Antivirus or Internet Security 2010\cllr.dll”.
Step-4: Extract “Kaspersky 2010 Anti-blacklist” and copy “cllr.dll” from it and paste in “C:\Program Files\Kaspersky Lab\Kaspersky Antivirus or Internet Security 2010\” and replace it.
Step-5: Now open Kaspersky, enable its protection and self defense.
Step-6: Now open License Manager and click on Activate License.
Step-7: Now disconnect from net and use this expired beta code : T1JVS-NNMBD-K1QTN-SUBP8
Step-8: Now it attempts fail and ask for key.
Step-9: Now you can use any key and that will not be blacklisted.
Now you have a Kaspersky full functionally version . . . . . . . Enjoy !!
Note: It will work on both KIS 2010 & KAV 2010 without any problem. My both tricks for Kaspersky security are totally working 100% but if you don’t wanna do anything manually then you can try Kaspersky Trial Reseter v2.3 also, it is also a great tool.