Hacking the Windows Registry continued...
THE PROBLEM
Hello guys, this is the second article on Windows Registry hacking. Here I will give you examples of some of the most common Windows Registry hacks and tweaks.
THE PRINCIPLE:
If you are not yet familiar with the Windows Registry, please consider reading the first article of the series [here] before reading on. All the hacks that follow are fully functional and have been tested on Windows XP and Windows 7 (equally work on Windows Vista and Windows 8).
DISCLAIMER: I strongly recommend you NOT to run these hacks on your working computer, If you want to test them personally or modify them, consider setting up a Virtual Machine. Moreover, the content of this article is exclusively meant for educational purpose. Use the information provided at your own risk. Neither Computer Tips and Tricks nor its authors are responsible for what you do of this knowledge.
THE SOLUTION:
Task Manager Hack
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System.
Copy paste the 3 lines of text below in an empty file in notepad and save it as filename.reg where filename is any name of your choice.
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=dword:00000001
What this lines of code do basically is tell the OS to create a new dword value with name DisableTaskMgr and data value 1, as easy as that. Double clicking on this file will disable the Task Manager on that machine. To reanable the Task Manager, just change the value from 00000001 to 00000000
Command prompt (cmd) Hack
This consists in disabling/enabling the command prompt of any Windows based computer. The key in which we will apply modifications to perform the hack is HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System.
Copy paste the 3 lines of text below in an empty file in notepad and save it as filename.reg where filename is any name of your choice.
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System]
"DisableCMD"=dword:00000001
To reanable the command prompt, just change the value from 00000001 to 00000000. To disable the command prompt but allow batch files to be run change the value from 00000001 or 00000000 to 00000002.
Registry Editor Hack
This is one of my favorite, after messing up with your victims computer use this one as the finishing move. After applying this hack, he will no longer be able to manually apply any modifications to the registry nor even to open the registry editor. (NOTE: There are other ways indeed to bypass this restriction, I will cover that in a future article :)).The key in which we will apply modifications to perform the hack is HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System.
Copy paste the 3 lines of text below in an empty file in notepad and save it as filename.reg where filename is any name of your choice.
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableRegistryTools"=dword:00000001
Run Command Hack
This consists of disabling / enabling the ability to launch commands or processes from the Start menu by removing the Run option. The key in which we will apply modifications to perform the hack is HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer to disable the run command for the actual user or HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\
Explorer to disable the run command for the whole system.
Explorer to disable the run command for the whole system.
Copy paste the 3 lines of text below in an empty file in notepad and save it as filename.reg where filename is any name of your choice.
NOTE: Log off or restart the computer for the change to take effect.
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoRun"=dword:00000001
To re-anable the run command , just change the value from 00000001 to 00000000 then log off or restart the computer.
Microsoft Management Console Hack (gpedit.msc)
gpedit is a feature of the Microsoft family of operating systems that control the working environment of user accounts and computer accounts. Group Policy provides the centralized management and configuration of operating systems, applications, and users' settings in an Active Directory environment. In other words, It controls amongst other what users can and cannot do on a computer system. This is something you should definetly consider disable after using all the above hacks if you really want to mess up a computer, because any savvy computer user can re-enable all what we just hacked above and much more just by using this feature. The key in which we will apply modifications to perform the hack is HKEY_CURRENT_USER\Software\Policies\Microsoft\MMC\{8FC0B734-A0E1-11D1-A7D3-0000F87571E3}.
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Policies\Microsoft\MMC\{8FC0B734-A0E1-11D1-A7D3-0000F87571E3}]
"Restrict_Run"=dword:00000001
To reanable the gpedit.msc , just change the value from 00000001 to 00000000.
Temporary files are created by running applications to store files while they work on them. Nevertheless the temporary file folder, if not cleaned on a regular basis can occupy tremendous amounts of space. By default, disk cleanup utilities only delete temporary files that are 7 days old. What if you want to delete all the temporary files at the end of each day? The key in which we will apply modifications to perform this tweak is HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\VolumeCaches\Temporary Files.
Copy paste the 3 lines of text below in an empty file in notepad and save it as filename.reg where filename is any name of your choice.
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\VolumeCaches\Temporary Files]
"LastAccess"=dword:00000001
To change, just modify the dword value. For example if I prefer it to delete files that are 3 days old, I should have 00000003 instead of 00000001.
Copy paste the 3 lines of text below in an empty file in notepad and save it as filename.reg where filename is any name of your choice.
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\VolumeCaches\Temporary Files]
"LastAccess"=dword:00000001
To change, just modify the dword value. For example if I prefer it to delete files that are 3 days old, I should have 00000003 instead of 00000001.
Verbose boot messages Tweak
This is a very handy tweak if you are the kind of computer guy that always wants to know what is the cause when things go wrong. This tweak enables verbose messages during the boot process which could help you identify with absolute precision which driver(s) or application(s) are responsible for slow boot and startup and to troubleshoot them. The key in which we will apply modifications to perform this tweak is HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System
Copy paste the 3 lines of text below in an empty file in notepad and save it as filename.reg where filename is any name of your choice.
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]
"VerboseStatus"=dword:00000001
Hope it helps! Stay Tunned!
For any question, suggestion, remark, request or special query or to receive a copy of the source codes of the program, please leave a comment below with your request and email address or
- at freecomputertipsandtricks@gmail.com
- follow us on our facebook page Computer Tips and Tricks
- join our facebook group Computer Tips and Tricks
No comments:
Post a Comment
Please Leave a Comment...