1001

1:chkntfs /t:0
XP :sfc.exe
/purgecache , 3xxMb
Windows XP .ZIP zip

zipfldr.dll
: regsvr32 /u zipfldr.dll
Win XP
: :2005-7-5 4:15:52 : :1040
4CPU: 800 :128M+32M :20 G

: :
:17
Win98
32 32M
XP XP 256M
128M 32M XP
XP
? XP?
98 ( XP 98
)
1K XP
(:
XP SP1
SP2 BTQQ
3 XP )
R U ready?Lets go
WinXP ms
1 run Windows Messenger

:Regedit
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\MSMSGS
/BACKGROUND cfmon
2
regedit
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management
\PrefetchParameters EnablePrefetcher 1
none()
3
win2000
XP
4 Windows commadner+Winrar Win XP ZIP

zip
:regsvr32 /u zipfldr.dll
:zipfldr.dll Dll UnrgisterServer
5 XP Qos 20%
: gpedit.msc
QoS

QoS Packet
Scheduler(QoS )
Qos ()
Windows XP
30 Regedit
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\ Current
Version\Explorer\RemoteComputer\NameSpace{D6277990- 4C6A-11CF-8D8700AA0060F5BF}Windows XP
hoho~~~ !
7 Dr. Watson
win95 :
HKEY_LOCAL_MACHINE\SOFTWARE\ Microsoft\Windows NT\CurrentVersion\AeDebug
Auto 0 F5
memory.dmp
8KAO !:---->---->
---->--->---->>!
Windows XP 9 10 10
0 !
CHKNTFS /T:0 10
10
Bootvis
TraceOptimize System; Windows XP
MsConfig msconfig
Startup
?:
1 XP :
sfc.exe /purgecache 3xxM
2: %windows%\driver cache\i386 driver.cab 76M
3 help help %windows%\help

4xM
4%windows%\$NtUninstallQ311889$
1x-3xM
6:\%windows%\inf\sysoc.inf/
,hide,hide -
/ Windows ;
7?h \windows\ime ??8xM
8 NTFS 2x% NTFS
10
Windows XP Windows XP
RegEdit HKEY_CURRENT_USER\ Control

Panel\Desktop\Auto End Tasks 1
11
-> -> (Hibernate)Enable Hibernate

512MB 20G
1.4G XP 800
?? GHOST
??
()
: Windows XP
BBS
WELCOME
QQ Windows XP
QQ Windows XP QQ710
MSNMessenger ?
QQXP
:!
!
1 3D 3D
3D
2 ( C )
4
??
:?
(
)

(: 20G
)
5 :1
2
7 IP?:Steganos Internet Anonym Pro 6

Win XP
Before
ANSON
2006-02-17 14:29:35
Windows XP
Windows XP
Windows XP
Windows Me ZIP ZIP
WinRAR Zip
zipfldr.dll regsvr32
/u zipfldr.dll()
CAB regsvr32 /u cabview.dll cabview.dll
XP
regsvr32
/u schmedia.dll
Windows Media Player 8.0 Bug Nero
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion]
NoCDBurningDWORD1 1
Windows XP Windows Me
1.
[HKEY_CURRENT_USER\Software\Microsoft
\Windows\CurrentVersion\Applets\Regedit]
LastKey 2
2. Regedit
Administrators 3
30
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows
\CurrentVersion\Explorer\RemoteComputer\NameSpace]
Windows 4
IE
IE Internet Explorer
IE
1.gpedit.msc
2.Windows Internet
Explorer Internet Explorer
Internet Explorer
3. Internet Explorer
IE IE Internet
Explorer Internet Explorer
Internet Explorer IE
Windows XP
[HKEY_CURRENT_Software\Microsoft\Windows
\CurrentVersion\Explorer\Advanced]
TaskbarGroUPSizeDWORD
8 8
Windows XP
60 60
60 9
Windows XP
[HKEY_CURRENT_USER/Software/Microsoft/Windows
/CurrentVersion/Policies/Explorer]
NoLowDiskSpaceChecks1
10
10
Windows XP sysoc.inf
11 C:\WINDOWS\inf
Dr.Watson
11
WindowsXP
XP
1 XP
2 %windows%driver cachei386 driver.cab 76M
3 help %windows%help
4xM
4%windows%$NtUninstallQ311889$
1x-3xM
5 pagefile.sys
6\%windows%infsysoc.inf/
,hide,hide -
/ Windows
7 windowsime 8xM zrm
8 NTFS 2x%
10
50M
1.4G XP 800M
XP
WinXP

Regedit
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRunMSMSGS /BACKGROUND
cfmon
2
regedit
HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSession ManagerMemory
ManagementPrefetchParameters EnablePrefetcher 1
none
3
win2000
XP
4 Windows commadnerWinrar Win XP ZIP

zip
regsvr32 /u zipfldr.dll
zipfldr.dll Dll UnrgisterServer
5 XP QoS
gpedit.msc "
"QoS " "
"
"QoS Packet Scheduler
QoS " Qos
6
Windows XP
30 Regedit
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrent
VersionExplorerRemoteComputerNameSpace{D6277990-4C6A-11CF-8700AA0060F5BF}Windows XP
hoho~~~
7 Dr. Watson
win95
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionAeDebug
Auto 0 F5
memory.dmp
1)alerter
2)automatic updates windows
3)background intelligent transfer service
4)clipbook
5)Computer browser
6)DHCP client
7)Distributed link tracking client M
8)Distributed Transaction coordinator xxx

9)DNS Client
10)Error reporting service
11)Event Log
12)Fast user switching compatibility
13)help and support
14)Human interface device access
15)IMAPI CD-burning COM service
16)Indexing service
17)Internet Connection Firewall(ICF) ICF
18)IPSEC Services Quack
19)Logical Disk manager administrative service
20)messenger net send
21)MS software shadow copy provider
22)Net Logon
23)Netmeeting remote desktop sharing netmeeting
24)Network DDE
25)Network DDE DSDM

26)Network Location Awareness
27)NTLM Security support providertelnet
28)Performance logs and alert

29)Portable media serial number
30)Print Spooler Print ~
31) QoS RSVP
32)Remote desktop help session manager
33)remote Procedure Call LOCATOR RPC
34)remote registry
35)removable storage
36)routing and remote access
37)security accounts manager iis
38)smart card
39)smart card helper
40)SSDP Discovery service
41)system event notification
42)system restore service
43)task scheduler windows
44)tcp/ip netbios helper service
45)tcp/ip print server
46)Telephony
47)telnet
48)terminal services
49)uninterruptible power supply UPS
50)universal plug and play device host
51)upload manager
52)volume shadow copy
53)webclient
54)Windows Installer
55)windows image acquisition (WIA)
56)windows management instrumentation driver extensions
57)windows time
58)wireless zero configuration
59)WMI perfromance adapter
60)world wide web publishing service www
XP
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServiceslanmanserverparameters]
"AutoShareServer"=dword:00000000
"AutoSharewks"=dword:00000000
IPC$
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa]
"restrictanonymous"=dword:00000001
.REG
3721 hosts
127.0.0.1 cnsmin.3721.com
127.0.0.1 http://www.3721.net/
XP
1.../...
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellex]
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellexContextMenuHandlers]
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellexContextMenuHandlers
Copy To]@="{C2FBB630-2971-11D1-A18C-00C04FD75D13}"
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellexContextMenuHandlers
Move To]@="{C2FBB631-2971-11D1-A18C-00C04FD75D13}"
add.reg
2---->---->
---->--->---->>
3
4WinXP
OK
5
6HKEY_CURRENT_USERControl PanelDesktop
AugoEndTasks1
7
8chkntfs/t:0
XP
tasklist.exe /svc
Ghost .GHO
Ghost
Winxp Deploy.cab sysprep.exe
sysprep.exe
Ghost Ghost
.GHO
XP
XP
F1
windows
F2
F3
F10 ALT
windows CTRL+ESC
CTRL+ALT+DELETE
win9x
DELETE
SHIFT+DELETE
CTRL+N
CTRL+O
CTRL+P
CTRL+S
CTRL+X
CTRL+INSERT CTRL+C
SHIFT+INSERT CTRL+V
ALT+BACKSPACE CTRL+Z
ALT+SHIFT+BACKSPACE
Windows +M
Windows +CTRL+M
Windows +E
Windows +F
Windows +R
Windows +BREAK
Windows +CTRL+F
SHIFT+F10
SHIFT
CD CD word
ALT+F4
ALT+SPACEBAR
ALT+TAB
ALT+ESC
ALT+ENTER
windows MSDOS
PRINT SCREEN
ALT+PRINT SCREEN
CTRL+F4
word
CTRL+F6
shift
IE
ALT+RIGHT ARROW
ALT+LEFT ARROW
CTRL+TAB
shift
F5
CTRL+F5
F10
ALT+
CTRL+ F4
ALT+ F4
CTRL+ C
CTRL+ X
DELETE
F1
ALT+
SHIFT+ F10
CTRL+ ESC
ALT+(-)
CTR L+ V
ALT TAB
ALT+ TAB
CTRL+ Z
Windows
, NUM LOCK+(-)

NUM LOCK+*
NUM LOCK+(+)
F6
WINDOWS
Microsoft Windows
WINDOWS+ TAB
WINDOWS+ F
CTRL+ WINDOWS+ F
WINDOWS+ F1
WINDOWS+ R
WINDOWS
WINDOWS+ BREAK
Windows WINDOWS+ E
WINDOWS+ D
SHIFT+ WINDOWS+ M
Windows
SHIFT
ALT+
ALT+
BACKSPACE
ALT+
ENTER
SHIFT+ TAB
CTRL+ SHIFT+ TAB
TAB
CTRL+ TAB
BACKSPACE
F5
Windows
SHIFT CD-ROM
CTRL
CTRL+SHIFT
SHIFT+DELETE
F3
APPLICATION
F5
F2
CTRL+ A
ALT+ ENTER ALT+
APPLICATION Microsoft APPLICATION
Microsoft
Windows
Windows +PRINT SCREEN
Windows +SCROLL LOCK
Windows + PAGE UP
Windows + PAGE DOWN
Windows +
Windows +
SHIFT
ALT+ SHIFT+PRINT SCREEN
ALT+ SHIFT+NUM LOCK
SHIFT
NUM LOCK XP
XP
CABLE MODEM XP
F8
CABLE MODEM
XP
IDE GUI ULTRA DMA
Windows
XP Windows VGA Microsoft

Windows
IDE
Windows9X XP
Win XP
Windows XP
1.system32
Windows XP
Windows XP C:WindowsSystem32 ourstart.exe
2.Accwizsystem32
Windows
Windows
Windows
3.Charmapsystem32
Word Windows
Windows
4.CINTSETP(system32IMECintlgnt )
98b Windows XP
Windows
Windows XP
5.Cleanmgrsystem32

Windows
6.Clipbrdsystem32
Windows Windows
Windows XP
Windows 9X/Me
7.Control.exesystem32
Windows
8.Windows XP Drwtsn32system32
Drwtsn32 DrWatson Windows

(Drwtsn32.log)
Microsoft Drwatson
9.DVD DVDplaysystem32
DVD DVD
Windows XP DVD DVD
10.Iexpresssystem32
Iexpress Standard SelfExtractorSelf-Extractor for Software Installation

Iexpress
11.Migwizsystem32usmt
Windows
12.MsconfigWindowsPChealthHELPCTRBinaries
Windows SYSTEM.iniWIN.ini
BOOT.ini
13.Ntbackupsystem32
Windows XP
14.ODBC Odbcad32system32
Windows ODBC Windows
15.IP Nslookupsystem32
IP IP
IP ping IP
http://www.popsoft.com.cn IP DOS ping www.popsoft.com.cn
16.Osksystem32
CAI
17.Packagersystem32
Windows
18.Regedit32system32
Windows XP Regedit
19.ActiveX Regsvr32
ActiveX ActiveX
Windows
System regsvr32.exe Windows ActiveX
regsvr32 [/s] [/n] [/i(:cmdline)] dllname dllname ActiveX
System
/u
/s
/c
/i
/n/i
amovie.ocx regsvr32 amovie.ocx regsvr32

/uamovie.ocx
20.Rundll32
Windows Windows
Windows API
Windows rundll32.exe rundll32.exe
,,
rundll32.exe user.exe,ExitWindows F4
rundll32.exe shell32.dll,Control_RunDLL
rundll32.exe shell32.dll,Control_RunDLL desk.cpl
Win XP ()
--------------------------------------------------------------------------------
21.Sfcsystem32
Windows
Sfc.exe
22.Shrpubwsystem32
23.Microsoft Sigverifsystem32
Microsoft

24.Sndvol32
Windows
Windows sndvol32.exe Windows
sndvol32.exe
/r
C:WindowsSndvol32.exe /R
C:WindowsSndvol32.exe /R
Ctrl+S
25.Taskmgrsystem32
15
CPU
26.Telnetsystem32
Internet
Windows telnet.exe
27. FTP Tftpsystem32
FTP
FTP
28.Windows Wupdmgrsystem32
Windows Windows Update

Microsoft Windows
Windows Wupdmgr.exe
Windows XP
cpu
xp cpu xp
cpu
1."regedit";
2."[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSession ManagerMemory
ManagementSecondLevelDataCache]";
3. :
AMD Duron: 64(kb);

CeleronA/celeron2:128;
PII mobile/PIII E(E/P4/AMD K6-3/AMD THUNDERBird/Cyrix III:256;

AMD K6-2/PII/PIII katmai/AMD Athlon:512;
PII Xeon/PIII Xeon:1024;
4.
xp
xp I/O
1. "regedit";
2.[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSession ManagerMemory
ManagementIoPageLockLimit];
3.:
64M: 1000;
128M: 4000;
256M: 10000;
512M : 40000.
4.
xp PIII 800, 512M
1.egedit
2.[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSession ManagerMemory
ManagementPrefetchParametersEnablePrefetcher];
3. 01230-Disable,1-,2-,3- ("3"
)
4.
xp
c:windowsprefetch
dos chkntfs/t:0
0 0
Xp
1.
2.
3.
bug
1. xp quake3cs yinxs tweak

bug
2.regedit
3.[HKEY_CURRENT_USERControl PanelMouse]
"SmoothMouseXCurve"=hex:00,00,00,00,00,00,00,00,00,a0,00,00,00,00,00,00,00,40,
01,00,00,00,00,00,00,80,02,00,00,00,00,00,00,00,05,00,00,00,00,00
"SmoothMouseYCurve"=hex:00,00,00,00,00,00,00,00,66,a6,02,00,00,00,00,00,cd,4c,
05,00,00,00,00,00,a0,99,0a,00,00,00,00,00,38,33,15,00,00,00,00,00
4.
ntfs
ntfs
regedit
HKEY_LOCAL_MACHINESYSTEMCurrentContolSetControlFilesystem) DWORD 1
XP
Windows XP
(1)Windows 98 Windows Millennium Windows XP
a. FAT16 FAT32 NTFS Win98/Me NTFS
b. Win98/Me Win98/Me WinXP
(2)Windows NT 4.0 Windows 2000 Windows XP
a. FAT16 NTFS FAT32 Windows NT

FAT32 (Windows 2000 FAT32)
b. Windows NT 4.0 Windows 2000 Windows NT 4.0 Windows

2000 Windows XP (
Windows NT Service Pack 5 )
(3)Windows 98 Windows Millennium, Windows NT 4.0 Windows 2000 Windows XP
a. FAT16 FAT32 NTFS Windows 98 Windows

Millennium NTFS Windows NT FAT32
b. Windows 98 Windows Millennium Windows 98 Windows

Millennium Windows NT 4.0 Windows 2000 (Windows NT
SP5 ) Windows NT 4.0 Windows 2000 Windows XP
Windows XP
WinXP
winnt32.exe i386 windows
Windows XP Windows 95Windows 98Windows MeWindows NT
Windows 2000 Windows XP winnt32
winnt32 [/checkupgradeonly] [/cmd:command_line] [/cmdcons]

[/copydir:i386folder_name] [/copysource:folder_name] [/debug[level]:[filename]] [/dudisable]
[/duprepare:pathname]
[/dushare:pathname] [/m:folder_name] [/makelocalsource] [/noreboot] [/s:sourcepath]
[/syspart:drive_letter]
[/tempdrive:drive_letter] [/udf:id [,UDB_file]] [/unattend[num]:[answer_file]]
/checkupgradeonly
Windows XP /unattend
Upgrade.txt systemroot
/cmd:command_line
/cmdcons
NTFS
/cmdcons
/copydir:i386folder_name
Windows XP
i386 Private_drivers
/copydir:i386Private_drivers
systemrootPrivate_drivers
/copydir
/copysource:folder_name
Windows XP
Private_drivers
/copysourcerivate_drivers
systemrootPrivate_drivers /copysource /copydir

/copysource
/debug[level]:[filename]
/debug4ebug.log C:systemrootWinnt32.log
20 -- 1 -- 2 -- 3 -- 4 -
/dudisable
/dushare:pathname
Windows Update
/duprepare
/duprepare
pathname
/duprepare
Windows Update
Windows XP /dushare
/m:folder_name
/makelocalsource
/makelocalsource
/noreboot
/s:sourcepath
Windows XP /s:sourcepath
/syspart:drive_letter
/tempdrive
/syspart Windows NT 4.0Windows 2000 Windows XP
/syspart Winnt32 Windows 95Windows 98 Windows Me
/tempdrive:drive_letter
Windows XP
/tempdrive winnt32
/udf:id [,UDB_file]
(UD (id)
/unattend UDF UDF
/udf:RAS_user,Our_company.udb Our_company.udb RAS_user
UDF_file Unique.udb
/unattend
Windows 98 Windows Me
/unattend[num]:[answer_file]
Num Windows 98
Windows MeWindows NTWindows 2000 Windows XP num
/unattend Windows XP
Microsoft Windows XP
Windows XP
Microsoft OEM
Windows Windows XP
Windows XP ""
setup.exe
Windows XP C ""
""
DOS
Windows DOS NT
9x DOS Windows 98 setup.exe
smartdrv.exe,/i386 winnt.exe
smartdrv.exe A (A Win98 )F Windows

XP (smartdrv.exe windows 9x windows 9x windows
)
A:smartdrv.exe
A:F:
F:cd i386
F:i386winnt.exe
smartdrv.exe
Windows XP.
Windows XP
"Winnt.sif", I386 ,
. , :
1.
2.
WinXP "",
.
:
1. Administrator "", .
2. NetBEUI TCP/IP , .
3. QoS, gpedit.msc, , .
4.IE Google, IE , .
5.WORKGROUP 'WORKGROUP', Administrator ,
.
6. "ProductID=", 'xxxxx-xxxxx-xxxxx-xxxxx-xxxxx'
7., .
8. 137GB IDE , "EnableBigLba=Yes".
;--------------------------------------------------------------------Start the fiie
;SetupMgrTag
[Data]
AutoPartition=1
MsDosInitiated="0"
UnattendedInstall="Yes"
[Unattended]
UnattendMode=FullUnattended
OemSkipEula=Yes
OemPreinstall=No
TargetPath=WINDOWS
EnableBigLba=Yes
[GuiUnattended]
AdminPassword=*
EncryptedAdminPassword=No
AutoLogon=Yes
AutoLogonCount=1
OEMSkipRegional=1
TimeZone=220
OemSkipWelcome=1
[UserData]
ProductID=
FullName="."
OrgName="."
ComputerName=*
[Display]
BitsPerPel=16
Xresolution=800
YResolution=600
Vrefresh=75
[TapiLocation]
CountryCode=886
AreaCode=02
[RegionalSettings]
LanguageGroup=1,9
Language=00000404
[Branding]
BrandIEUsingUnattended=Yes
[URL]
Home_Page=http://www.google.com/
Help_Page=http://help.htm
Search_Page=http://search.htm
[Proxy]
Proxy_Enable=0
Use_Same_Proxy=1
[Identification]
JoinWorkgroup=WORKGROUP
[Networking]
InstallDefaultComponents=No
[NetAdapters]
Adapter1=params.Adapter1
[NetClients]
MS_MSClient=params.MS_MSClient
[NetServices]
MS_SERVER=params.MS_SERVER
MS_PSched=params.MS_PSched
[NetProtocols]
MS_TCPIP=params.MS_TCPIP
MS_NetBEUI=params.MS_NetBEUI
[params.MS_TCPIP]
DNS=Yes
UseDomainNameDevolution=No
EnableLMHosts=Yes
AdapterSections=params.MS_TCPIP.Adapter1
[params.MS_TCPIP.Adapter1]
SpecificTo=Adapter1
DHCP=Yes
WINS=No
NetBIOSOptions=0
;--------------------------------------------------------------------end of file
?
1. WinISO , .
2. WinISO, .
3. WinISO 1..
4., Nero *.ISO .
Windows XP
http://www.microsoft.com/downloads/release.asp?releaseid=33291
http://www.microsoft.com/downloads/release.asp?releaseid=33290
HDcopy .img
----NTFS
NTFS C NTFS
NTFS FAT32 FAT
NTFS, FAT32,"" NTFS
convert.exe "convert c: /fs:ntfs" c
NTFS
NTFS Windows XP Windows 2000
NTFS
pccat a.txt, whislter
whistler a.txt NTFS
CIH NTFS NTFS

CIH CIH NTFS FAT32
DOS Windows 9x NTFS NTFS
GHOST GHOST XP/NT
DOS FAT32
FAT32NTFS
NTFSNTFS
NTFS
FAT32 FAT16
2G 2G 2G

EFS EFS EFS

2G
WindowsNT 9x NT4.0 2000xp,98me NT,9x
Windows XP
XP
XP 5080 XP
XP XP
XP
C
XP
DOS SMARTDRV.EXE
CONFIG.SYS HIMEM.SYS SMARTDRV 815
SMARTDRV
Windows
Windows2000
FATFAT32NTFS
NTFS NTFS
NTFS XP
NTFS DOS FDISK

FAT32 PQ
Windows XP
Windows XP
STOP 0x000000ED UNMOUNTABLE_BOOT_VOLUME
BIOS
1. Ultra Direct Memory Access (UDMA)

2. 40 (40-wire) UDMA 80 40
3. (BIOS) UDMA
80 UDMA 40
UDMA IDE
XP C NT
RESET XP
XP
Windows
XP DOS
XP
XP

XP XP
XP
Windows XP
Windows XP Intel i815 (US
BIOS [Legacy USB support]Windows XP
USB i815
1. BIOS [Legacy USB support] BIOS
2. [Legacy USB support] USB

PS/2 BIOS
XP
2 3 XP
CMOS
1999 XP
XP
XP
Windows
XP C
XP
XP
XP
-->-->-->
2
Windows XP
Windows XP
Windows XP
Regedit.exe
4
3.5 1 2 3 4
Windows XP
5
Windows XP
Microsoft Word
7 Windows XP
Windows XP
8 Ghost
Ghost DiskPartition
Local 3 Disk
Partition Check
LocalPartitionTo Image
TAB
GHO
3 No Fast
High Yes
Ghost GHO
LocalDiskTo Disk
Ghost Yes
Ghost
Ghost
LocalDiskTo Image
Win XP
1
zip winzip winrar

Windows XP ZIP zip
zipfldr.dll
: regsvr32 /u zipfldr.dll
:chkntfs /t:0
3, XP
:sfc.exe /purgecache
4: services.msc XP
CSDN
http://blog.csdn.net/ajinn/archive/2006/08/14/1062537.aspx
XP
XP ms
V4V5V6
V5 V6
XP MS
XP
sysrep
XP
1 XP
:sfc.exe /purgecache 3xxM
2: %windows%driver cachei386 driver.cab

76M
4xM
1x-3xM
5 win2000/server pagefile.sys :
""
6:%windows%infsysoc.inf/
,hide,hide "-"
"/ Windows ";
8 NTFS 2x%
9
""""""""
10 :(
50M
1.4G XP 800
WinXP ms

:Regedit
"HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRunMSMSGS"/BACKGROUND
cfmon
2
regedit
HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSession
ManagerMemoryManagementPrefetchParameters EnablePrefetcher "1"
none()
3
win2000
XP ""
4 Windows commadner+Winrar WinXP ZIP

zip
:"regsvr32 /uzipfldr.dll"
:zipfldr.dll DllUnrgisterServer
5 XP Qos
: gpedit.msc "" "
""" "QoS " ""
""""""
"QoS PacketScheduler(QoS
)" Qos ()
WindowsXP
30 Regedit
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionExplorerRemoteComputerNameSpac
e{D6277990-4C6A-11CF-87-00AA0060F5BF}
Windows XP hoho~~~ !
7 Dr. Watson
win95 :
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsNTCurrentVersionAeDebug
Auto "" 0 F5
memory.dmp
"" 8
1)alerter
4)clipbook
5)Computer browser
6)DHCP client
7)Distributed link tracking client

4M
8)Distributed Transaction coordinator ***
9)DNS Client
11)Event Log
13)help and support
16)Indexing service ?
20)messenger net send 21)MS software shadow copy provider
22)Net Logon !
24)Network DDE
25)Network DDE DSDM
27)NTLM Security support provider-telnet
28)Performance logs and alert
29)Portable media serial number !
31) QoS RSVP !
34)remote registry
37)security accounts manager iis38)smart card
39)smart card helper !!!
44)Telephony ?
45)telnet
49)upload manager
51)webclient
52)Windows Installer MSI
55)windows time
57)WMI perfromance adapter !
IPC$
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa] "restrictanonymous"=
dword:00000001
.REG
1.../...
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellex
ContextMenuHandlers]
ContextMenuHandlersCopy To]
@="{C2FBB630-2971-11D1-A18C-00C04FD75D13}"
ContextMenuHandlersMove To]
@="{C2FBB631-2971-11D1-A18C-00C04FD75D13}"
add.reg
2*** !:>>>
->>>!
3:""
""
4WinXP
:"""""""
""""" OK
5:""""""
"""""""
"
6:HKEY_CURRENT_USERControl PanelDesktop
"AugoEndTasks""1"
7:""""""
""
8"chkntfs/t:0"
ms XP
tasklist.exe /svc
Ghost .GHO
Ghost
sysprep.exe""""
Ghost Ghost
.GHO !
XP
CSDN
http://blog.csdn.net/scmzhx/archive/2009/10/11/4618200.aspx
WinXP
WinXP
1
2
3
4
1 XP
2 %windows%driver cachei386 driver.cab 76M
4xM
4%windows% $NtUninstallQ311889 $
1x-3xM
5 win2000/server pagefile.sys
6%windows%infsysoc.inf/
,hide,hide -
/ Windows
8 NTFS 2x%
10
50M
1.4G XP 800
WinXP ms

Regedit
cfmon
2
regedit
ManagementPrefetchParameters EnablePrefetcher 1( 3
none
3
win2000
XP

zip
5 XP Qos
gpedit.msc "
"QoS " "
"
QoS " Qos
6
Windows XP
30 Regedit
VersionExplorerRemoteComputerNameSpace{D6277990-4C6A-11CF-8D8700AA0060F5BF}Windows XP
hoho~~~
7 Dr. Watson
win95
Auto 0 1 F5
memory.dmp
1)alerter
4)clipbook
5)Computer browser
6)DHCP client
7)Distributed link tracking client M

9)DNS Client
11)Event Log
13)help and support
16)Indexing service

22)Net Logon
24)Network DDE
25)Network DDE DSDM

28)PerFORMance logs and alert

31) QoS RSVP
34)remote registry
38)smart card
44)Telephony
45)telnet
49)upload manager
51)webclient
55)windows time

IPC $
.REG
3721 hosts
127.0.0.1 cnsmin.3721.com
127.0.0.1 www.3721.net
1.../...
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellexContextMenuHandlersCopy To]
@="{C2FBB630-2971-11D1-A18C-00C04FD75D13}"
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellexContextMenuHandlersMove To]
@="{C2FBB631-2971-11D1-A18C-00C04FD75D13}"
add.reg
2KAO **---->---->
---->--->---->>
3
4WinXP
OK
5
AutoEndTasks1 ( 0
7
8chkntfs/t:0
ms XP
tasklist.exe /svc
Ghost .GHO
Ghost
sysprep.exe
Ghost Ghost
.GHO
XP
CSDN
http://blog.csdn.net/dong1983/archive/2004/11/28/196946.aspx
WinXP Win98
WinXP
XP ms
V4V5V6
V5 V6
XP MS
XP
sysrep
XP come on baby ~~
1 XP
2 %windows%driver cachei386 driver.cab

76M
4xM
1x-3xM
5 win2000/server pagefile.sys
6%windows%infsysoc.inf/
,hide,hide -
/ Windows
7 h windowsime 8xM zrm
8 NTFS 2x%
10
50M
1.4G XP 800
WinXP ms

Regedit
cfmon
2
regedit
ManagementPrefetchParameters EnablePrefetcher 1
none
3
win2000
XP

zip
5 XP Qos
gpedit.msc
" "QoS " "
"
QoS " Qos
Windows XP
30 Regedit
VersionExplorerRemoteComputerNameSpace D6277990-4C6A-11CF-8D8700AA0060F5BF{}Windows XP
hoho~~~
7 Dr. Watson
win95
Auto 0 F5
memory.dmp
1)alerter
4)clipbook
5)Computer browser
6)DHCP client
7)Distributed link tracking client

M
9)DNS Client
11)Event Log
13)help and support
16)Indexing service
22)Net Logon
24)Network DDE
25)Network DDE DSDM
28)PerFORMance logs and alert
31) QoS RSVP
34)remote registry
38)smart card
44)Telephony
45)telnet
49)upload manager
51)webclient
55)windows time
IPC
Windows XP IPC
IPC
IPC
HKEY_LOCAL _MACHINESYSTEMCurrentControlSetControlLSA RestrictAnonymous

1
HKEY_LOCAL_MACHINESYSTEMCurrentControlSet Services
LanmanServerParameters
AutoShareServerREG_DWORD0
AutoShareWksREG_DWORD0
.REG
3721 hosts
127.0.0.1 cnsmin.3721.com
127.0.0.1 www.3721.net
1.../...
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellexContextMenuHandlersCopy To]
@="C2FBB630-2971-11D1-A18C-00C04FD75D13{}"
[HKEY_LOCAL_MACHINESOFTWAREClassesAllFilesystemObjectsshellexContextMenuHandlersMove
To]
@="C2FBB631-2971-11D1-A18C-00C04FD75D13{}"
add.reg
2KAO ---->--->---->--->---->>
4WinXP
OK
AugoEndTasks1
8chkntfs/t:0
ms XP
tasklist.exe /svc
Ghost .GHO
Ghost
sysprep.exe
Ghost Ghost
.GHO
XP
CSDN http://blog.csdn.net/aupha/archive/2004/07/27/53731.aspx

1001

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

1001

Uploaded by

Copyright:

Available Formats

1:chkntfs /t:0

Windows XP .ZIP zip

: :2005-7-5 4:15:52 : :1040

4CPU: 800 :128M+32M :20 G

1 run Windows Messenger

4 Windows commadner+Winrar Win XP ZIP

2: %windows%\driver cache\i386 driver.cab 76M

3 help help %windows%\help

7?h \windows\ime ??8xM

8 NTFS 2x% NTFS

RegEdit HKEY_CURRENT_USER\ Control

-> -> (Hibernate)Enable Hibernate

7 IP?:Steganos Internet Anonym Pro 6

Windows Me ZIP ZIP

CAB regsvr32 /u cabview.dll cabview.dll

Windows Media Player 8.0 Bug Nero

2 %windows%driver cachei386 driver.cab 76M

7 windowsime 8xM zrm

1 run Windows Messenger

4 Windows commadnerWinrar Win XP ZIP

8)Distributed Transaction coordinator xxx

25)Network DDE DSDM

28)Performance logs and alert

Windows Registry Editor Version 5.00

Windows Registry Editor Version 5.00

Windows Registry Editor Version 5.00

CTRL+ SHIFT+ TAB

ALT+ ENTER ALT+

APPLICATION Microsoft APPLICATION

Windows +PRINT SCREEN

Windows +SCROLL LOCK

Windows + PAGE DOWN

ALT+ SHIFT+PRINT SCREEN

ALT+ SHIFT+NUM LOCK

XP Windows VGA Microsoft

Drwtsn32 DrWatson Windows

Iexpress Standard SelfExtractorSelf-Extractor for Software Installation

Windows ODBC Windows

amovie.ocx regsvr32 amovie.ocx regsvr32

27. FTP Tftpsystem32

Windows Windows Update

AMD Duron: 64(kb);

PII mobile/PIII E(E/P4/AMD K6-3/AMD THUNDERBird/Cyrix III:256;

PII Xeon/PIII Xeon:1024;

xp PIII 800, 512M

1. xp quake3cs yinxs tweak

(1)Windows 98 Windows Millennium Windows XP

a. FAT16 FAT32 NTFS Win98/Me NTFS

b. Win98/Me Win98/Me WinXP

(2)Windows NT 4.0 Windows 2000 Windows XP

a. FAT16 NTFS FAT32 Windows NT

b. Windows NT 4.0 Windows 2000 Windows NT 4.0 Windows

(3)Windows 98 Windows Millennium, Windows NT 4.0 Windows 2000 Windows XP

a. FAT16 FAT32 NTFS Windows 98 Windows

b. Windows 98 Windows Millennium Windows 98 Windows

winnt32 [/checkupgradeonly] [/cmd:command_line] [/cmdcons]

systemrootPrivate_drivers /copysource /copydir

smartdrv.exe A (A Win98 )F Windows

;--------------------------------------------------------------------Start the fiie

4., Nero *.ISO .

CIH NTFS NTFS

NTFS DOS FDISK

1. Ultra Direct Memory Access (UDMA)

Windows XP Intel i815 (US