I've seen articles regarding the format of .lnk files and I'm keen to look into this. I've tried to open them using a hex editor, but it opens the executable, rather than the .lnk file. I know this because the typical "MZ" and "PE" signatures are where they should be for the .exe and, according to the .lnk properties, the file size is around 400 - 500 bytes.
How do I open the .lnk to examine it? I don't know if it's relevant, but I'm using XP Pro SP2, which is fully patched and the filing system is NTFS.
Thanks for your time (and patience!).
What editor? I just dropped several LNK files into WinHex (14.2) and it opened the file not the executable.
I used HEXedit from MiTeC and I've also tried Notepad++. I realise that the latter isn't specifically a hex editor but it does have a hex mode which I've used successfully to examine executables, as well as other files.
WinHex opens the .lnk file correctly. Hex Workshop (and it appears some others) seem to follow the link instead.
Thanks for the input. It looks like I'm going to have to get WinHex. I suspected that it might be something to do with the hex editors rather than what I was doing.
I haven't tried it … but how about renaming if x.lnk.txt?
I haven't tried it … but how about renaming if x.lnk.txt?
Perfect - nice trick which works like a dream. I guess it's just lateral thinking, but something which I'm going to have to practice!