Memanipulasi Registry WindowsSeperti yang anda tau Registry merupakan “jantungnya” Windows berbeda dengan OS Linux yang tidak memakai Registry dan untuk orang-orang yang iseng seperti saya mungkin dan anda setelah membaca artikel ini, Registry pada windows dapat dimanfaatkan untuk dimanipulasi.

Registry pada Windows terdapat di C:\Windows\system32\reg.r dan windows mempunyai tool untuk mengeditnya yang bernama regedit di directory yang sama pula..Delphi mempunyai Unit Registry yang dapat digunakan untuk menulis, mengganti, menghapus registry-registry Windows, dengan delphi dan sediktit pengetahuan tentang registry kita bisa melakukannya. Misalnya:*Mendisable TaskManager*{tambahkan Registry pada klause uses}

Procedure TForm1.Form.Create(Sender:TObject);varreg:Registry;Beginreg:=TRegistry.Create;Tryreg.RootKey:=HKEY_CURRENT_USER;reg.OpenKey(’\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System’,true);reg.WriteInteger(’DisableTaskMgr’,1);reg1.CloseKey;Finallyreg.free;end;end;

Agar Aplikasi jalan saat window pertama aktipUser_key:[HKEY_LOCAL_MACHINE\Software\Microsoft\Wind ows\CurrentVersion\RunName:String nama applikasi{sperti contoh make virus with delphiType:REG_SZ(String_Value)Value:

Disable TaskManagerUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]Name: DisableTaskMgrType: REG_DWORD (DWORD Value)Value: (0 = default, 1 = disable Task Manager)

jika typenya DWORD maka reg.writenya integer.diatas adalah Value2/nilai untuk mendisable TaskManger,anda juga bisa memanipulasi value-value yang lain dengan melihatnya di Regedit tool yang penting adalah parameter-parameternya…anda tidak perlu repot2 membuka regedit untuk melihat nilai-nilai yang lain saya saya sudah merangkum sebagian nilai-nilai yang biasa di gunakan.kuarang baik apa saya coba untuk pengunjung fajardelhpiscript,,he…nih:

Mendisable regeditUser Key: [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]Name: DisableRegistryToolsType: REG_DWORD (DWORD Value)Value: (0 = allow regedit, 1 = disable regedit)

Menghilangkan “RUN” dari Start MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoRunType: REG_DWORD (DWORD Value)Value: (0 = disabled, 1 = enabled)System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]Name: IgnoreShiftOverideType: REG_DWORD (DWORD Value)Value: (0 = default, 1 = ignore shift)

menDisable Taskbar Context MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoTrayContextMenuType: REG_DWORD (DWORD Value)Value: (0 = disabled, 1 = enabled)

Menyembunyikan subfolder Start MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\

Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoStartMenuSubFoldersType: REG_DWORD (DWORD Value)Value: (0 = default, 1 = enable restriction)

MEnghilangkan tombol All Program dari start menuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoStartMenuMoreProgramsType: REG_DWORD (DWORD Value)Value: (0 = default, 1 = disable button)

Disable kemampuan klik kanan di DesktopUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoViewContextMenuType: REG_DWORD (DWORD Value)Value: (0 = disabled, 1 = enabled)

menDisable Task SchedulerSystem Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]Name: SchedulingAgentType: REG_SZ (String Value)Value: mstask.exe

Disablemen MS-DOS Command PromptUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp]Name: Disabled

Type: REG_DWORD (DWORD Value)Value: (0 = disable, 1 = enable)

menDisable Command Prompt dan Batch FilesUser Key: [HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\System]Name: DisableCMDType: REG_DWORD (DWORD Value)Value: (0 = default, 1 = disabled, 2 = disabled but allow batch)

Run Start up di CMD(Command Prompt)User Key: [HKEY_CURRENT_USER\Software\Microsoft\Command Processor]Name: AutoRunType: REG_SZ (String Value)Value: Command to Executeex:AutoRun REG_SZ “c:\batch\environ.bat”kalau lebih dari satu maka ?”command1 && command2?

menspesifikasi exe file saat winlogonSystem Key: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]Name: SystemType: REG_SZ (String Value)Value: (default = lsass.exe)

menDisable Menu Bars dan Start Buttonubah nama key dengan mengganti “-” di atas GUID (i.e. {-5b4dae26-b807-11d0-9815-00c04fd91972}).System Key: [HKEY_CLASSES_ROOT\CLSID\{5b4dae26-b807-11d0-9815-00c04fd91972}]Hide or Display Administrative Tools MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]Name: StartMenuAdminToolsType: REG_SZ (String Value)Value: Yes or No

menghilagkan kemampuan klik kanan di start menu Button (All Windows)Nilai manipulasi ini akan kelihatan ketika user menekan klik kanan pada tombol startuntuk memilih Explore atau Find.

key [HKEY_CLASSES_ROOT\Directory\shell] kemudian nilai ’shell’ ganti menjadi ’shell.old’.lakukan juga padakey [HKEY_CLASSES_ROOT\Folder\shell] dan ganti nilainya menjadi [...\shell.old].

menghilangkan Control Panel, Printer dan Network SettingsUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoSetFoldersType: REG_DWORD (DWORD Value)Value: (0 = disabled, 1 = enabled)

menghilangkan setting taskbar di start menuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoSetTaskbarType: REG_DWORD (DWORD Value)Value: (0 = disabled, 1 = enabled)

menghilangkan tombol logoff di start menuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoLogOffType: REG_DWORD (DWORD Value)Value: (1 = no log off, 0 = show log off)

Disable Drag-dan-Drop di Start MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoChangeStartMenuType: REG_DWORD (DWORD Value)Value: (0 = disable restriction, 1 = enable restriction)

menghilangkan Run dari Start MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\

Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoRunType: REG_DWORD (DWORD Value)Value: (0 = disabled, 1 = enabled)

menghilangkan “Search” dari Start MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoFindType: REG_DWORD (DWORD Value)Value: (0 = disabled, 1 = enabled)

MEnghilangkan Tray Items dari TaskbarUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoTrayItemsDisplayType: REG_DWORD (DWORD Value)Value: (0 = default, 1 = enable restriction

Disable Folder Options MenuUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoFolderOptionsType: REG_DWORD (DWORD Value)Value: (0 = show options, 1 = hide options)Remove Properties fromMy ComputerUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\

CurrentVersion\Policies\Explorer]Name: NoPropertiesMyComputerType: REG_DWORD (DWORD Value)Value: (0 = Properties, 1 = No Properties)

menghilangkan semua Items di the DesktopUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoDesktopType: REG_DWORD (DWORD Value)Value: (0 = disable restriction, 1 = enabled restriction)

Disable Hotkeys WindowsUser Key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]System Key: [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]Name: NoWinKeysType: REG_DWORD (DWORD Value)Value: (0 = disable restriction, 1 = enable restriction)

Peringatan HardDisk penuhSystem Key: [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanmanServer\Parameters]Name: DiskSpaceThresholdType: REG_DWORD (DWORD Value)Value: 0 - 99 percent (Default is 10