Everyday Tech

Lockerz Collect points and get free items

2010-05-03T12:10:00.005+08:00

How many hour do you spend in facebook, friendster, twitter youtube and other networking and entertainment sites? at the end what do you get??? well i stumbled upon this site called lockerz.com and its pretty much just logging in watching videos and inviting friend to collect points, point which give you a chance to get some cool item, when i mean cool item i meant really cool like ipods, ipad imac mac notebook ect..depending on point you collect. It is a invitation only site so if you want to joint just leave me your eamil address and ill invite you... Check the site You have nothing to loose but your time already taken up by other networking and entertainment site Peace.

99 Ways to make Your PC Faster

2010-04-28T11:37:00.002+08:00

Well i was kinda bored and i came upon this on the internet, and its quite helpful thanx to the guy who wrote it Aseem. using some softwares, cleaning, tweaking, and maintaining your pc will make it perform better, i hope that this guide will be helpful to you.. enjoy reading and Tweaking

1. Defragment your computer hard disk using free tools like SmartDefrag.

2. You should also defragment your Windows pagefile and registry.

3. Clean up hard drive disk space being taken up by temporary files, the recycle bin, hibernation and more. You can also use a tool like TreeSize to determine what is taking up space on your hard drive.

4. Load up Windows faster by using Startup Delayer, a free program that will speed up the boot time of Windows by delaying the startup of programs.

5. Speaking of startup programs, many of them are useless and can be turned off. Use the MSCONFIG utility to disable startup programs.

6. By default, the size of the paging file is controlled by Windows, which can cause defragmentation. Also, the paging file should be on a different hard drive or partition than the boot partition. Read here on the rules for best paging file performance.

7. In Windows XP and Vista, the Windows Search indexing service is turned on for all local hard drives. Turning off indexing is a simple way to increase performance.

8. If you don’t care about all the fancy visual effects in Windows, you can turn them off by going to Performance Options.

9. You can optimize the Windows boot time using a free program called Bootvis from Microsoft.

10. Clean your registry by removing broken shortcuts, missing shared DLLs, invalid paths, invalid installer references and more. Read about the 10 best and free registry cleaners.

11. One of the main reasons why PC’s are slow is because of spyware. There are many programs to remove spyware including Ad-Aware, Giant Antispyware, SUPERAntiSpyware, and more.

12. If you have a deeper spyware infection that is very hard to remove, you can use HijackThis to remove spyware.

13. Remove unwanted pre-installed software (aka junk software) from your new PC using PC Decrapifier.

14. Disable unnecessary Windows services, settings, and programs that slow down your computer.

15. Tweak Windows XP and tweak Windows Vista settings using free programs

16. Disable UAC (User Account Control) in Windows Vista

17. Tweak your mouse settings so that you can copy and paste faster, scroll faster, navigate quickly while browsing and more. Read here to learn how to tweak your mouse.

18. Delete temporary and unused files on your computer using a free program like CCleaner. It can also fix issues with your registry.

19. Delete your Internet browsing history, temporary Internet files, cookies to free up disk space.

20. Clean out the Windows prefetch folder to improve performance.

21. Disable the XP boot logo to speed up Windows boot time.

22. Reduce the number of fonts that your computer has to load up on startup.

23. Force Windows to unload DLLs from memory to free up RAM.

24. Run DOS programs in separate memory spaces for better performance.

25. Turn off system restore only if you regularly backup your Windows machine using third party software.

26. Move or change the location of your My Documents folder so that it is on a separate partition or hard drive.

27. Turn off default disk performance monitors on Windows XP to increase performance.

28. Speed up boot time by disabling unused ports on your Windows machine.

29. Use Process Lasso to speed up your computer by allowing it to make sure that no one process can completely overtake the CPU.

30. Make icons appear faster while browsing in My Computer by disabling search for network files and printers.

31. Speed up browsing of pictures and videos in Windows Vista by disabling the Vista thumbnails cache.

32. Edit the right-click context menu in Windows XP and Vista and remove unnecessary items to increase display speed.

33. Use the Windows Performance Toolkit and the trace logs to speed up Windows boot time.

34. Speed up your Internet browsing by using an external DNS server such as OpenDNS.

35. Improve Vista performance by using ReadyBoost, a new feature whereby Vista can use the free space on your USB drive as a caching mechanism.

36. If you have a slow Internet connection, you can browse web pages faster using a service called Finch, which converts it into simple text.

37. Use Vista Services Optimizer to disable unnecessary services in Vista safely.

38. Also, check out my list of web accelerators, which are programs that try to prefetch and cache the sites you are going to visit.

39. Speed up Mozilla Firefox by tweaking the configuration settings and by installing an add-on called FasterFox.

40. Learn how to build your own computer with the fastest parts and best hardware.

41. Use a program called TeraCopy to speed up file copying in Windows XP and Vista.

42. Disable automatic Last Access Timestamp to speed up Windows XP.

43. Speed up the Start Menu in Vista by hacking the MenuShowDelay key in the registry.

44. Increase the FileSystem memory cache in Vista to utilize a system with a large amount of RAM.

45. Install more RAM if you are running XP with less than 512 MB or Vista with less than 1 GB of RAM.

46. Shut down XP faster by reducing the wait time to kill hung applications.

47. Make sure that you have selected “Adjust for best performance” on the Performance tab in System Properties.

48. If you are reinstalling Windows, make sure that you partition your hard drives correctly to maximize performance.

49. Use Altiris software virtualization to install all of your programs into a virtual layer that does not affect the registry or system files.

50. Create and install virtual machines for free and install junk program, games, etc into the virtual machines instead of the host operating system. Check out Sun openxVM.

51. Do not clear your paging file during shutdown unless it is needed for security purposes. Clearing the paging file slows down shutdown.

52. If your XP or Vista computer is not using NFTS, make sure you convert your FAT disk to the NTFS file system.

53. Update all of your drivers in Windows, including chipset and motherboard drivers to their latest versions.

54. Every once in a while run the built-in Windows Disk Cleanup utility.

55. Enable DMA mode in Windows XP for IDE ATA/ATAPI Controllers in Device Manager.

56. Remove unnecessary or old programs from the Add/Remove dialog of the Control Panel.

57. Use a program click memtest86 or Prime95 to check for bad memory on your PC.

58. Determine your BIOS version and check the manufactures website to see if you need to update your BIOS.

59. Every once in a while, clean your mouse, keyboard and computer fans of dust and other buildup.

60. Replace a slow hard drive with a faster 7200 RPM drive, SATA drive, or SAS drive.

61. Changing from Master/Slave to Cable Select on your hard drive configuration can significantly decrease your boot time.

62. Perform a virus scan on your computer regularly. If you don’t want to install virus protection, use some of the free online virus scanners.

63. Remove extra toolbars from your Windows taskbar and from your Internet browser.

64. Disable the Windows Vista Sidebar if you’re not really using it for anything important. All those gadgets take up memory and processing power.

65. If you have a SATA drive and you’re running Windows Vista, you can speed up your PC by enabling the advanced write caching features.

66. Learn how to use keyboard shortcuts for Windows, Microsoft Word, Outlook, or create your own keyboard shortcuts.

67. Turn off the Aero visual effects in Windows Vista to increase computer performance.

68. If you are technically savvy and don’t mind taking a few risks, you can try to overclock your processor.

69. Speed up the Send To menu in Explorer by typing “sendto” in the Run dialog box and deleting unnecessary items.

70. Make sure to download all the latest Windows Updates, Service Packs, and hot fixes as they “normally” help your computer work better.

71. Make sure that there are no bad sectors or other errors on your hard drive by using the ScanDisk orchkdsk utility.

72. If you are not using some of the hardware on your computer, i.e. floppy drive, CD-ROM drive, USB ports, IR ports, Firewire, etc, then go into your BIOS and disable them so that they do not use any power and do not have to be loaded during boot up.

73. If you have never used the Recent Documents feature in Windows, then disable it completely as a long list can affect PC performance.

74. One basic tweak that can help in performance is to disable error reporting in Windows XP

75. If you don’t care about a pretty interface, you should use the Windows Classic theme under Display Properties.

76. Disable short filenames if you are using NTFS by running the following command: fsutil behavior set disable8dot3 1. It will speed up the file creation process.

77. If you have lots of files in a single folder, it can slow down Explorer. It’s best to create multiple folders and spread out the files between the folders.

78. If you have files that are generally large, you might want to consider increasing the cluster size on NTFS to 16K or even 32K instead of 4K. This will help speed up opening of files.

79. If you have more than one disk in your PC, you can increase performance by moving your paging file to the second drive and formatting the volume using FAT32 instead of NTFS.

80. Turn off unnecessary features in Vista by going to Control Panel, choosing Uninstall a program, and then clicking on Turn Windows features on and off. You can turn off Remote Differential Compression, Tablet PC components, DFS replication service, Windows Fax & Scan, Windows Meeting Space, and lots more.

81. Install a free or commercial anti-virus program to help protect against viruses, etc. Make sure to use an anti-virus program that does not hog up all of your computer resources.

82. Completely uninstall programs and applications using a program like Revo Uninstaller. It will get rid of remnants left behind by normal uninstalls.

83. If you know what you are doing, you can install several hard drives into your machine and set them up in RAID 0, RAID 5, or other RAID configurations.

84. If you are using USB 1.0 ports, upgrade to 2.0. If you have a Firewire port, try to use that instead of a USB port since Firewire is faster than USB right now.

85. Remove the drivers for all old devices that may be hidden in Device Manager that you no longer use.

86. A more extreme option is to choose a faster operating system. If you find Vista to be slow, go with Windows XP. Switching to Mac or Linux is also an option.

87. One of the easiest ways to speed up your PC is to simply reformat it. Of course, you want to backup your data, but it is the best way to get your computer back to peak performance.

88. Speed up Internet browsing in IE by increasing the number of max connections per server in the registry.

89. If you use uTorrent to download torrents, you can increase the download speeds by tweaking the settings.

90. If you have a desktop background, make sure it’s a small and simple bitmap image rather than a fancy picture off the Internet. The best is to find a really small texture and to tile it.

91. For the Virtual Memory setting in Windows (right-click on My Computer, Properties, Advanced, Performance Settings, Advanced, Virtual Memory), make sure the MIN and MAX are both the same number.

92. If you search on Google a lot or Wikipedia, you can do it much faster on Vista by adding them to the Vista Start Menu Instant Search box.

93. If you have a custom built computer or a PC that was previously used, make sure to check the BIOS for optimal settings such as enabled CPU caches, correctly set IDE/SATA data transfer modes, memory timings, etc. You can also enable Fast/Quick boot if you have that option.

94. If you have a SCSI drive, make sure the write cache is enabled. You can do so by opening the properties of the SCSI drive in Windows.

95. If you have a machine with an older network card, make sure to enable the onboard processor for the network card, which will offload tasks from the CPU.

96. If you are using Windows Vista, you can disable the Welcome Center splash screen that always pops up.

97. If you already have anti-spyware software installed, turn off Windows Defender protection.

98. If you are running a 32-bit version of Windows and have 4GB of RAM or more, you can force Windows to see and use all of the RAM by enabling PAE.

99. Buy a new computer!!! Pretty easy eh?

Prevent Autorun USB Drive viruses

2010-04-28T04:39:00.003+08:00

Well i was thinking of sharing this software to you Because it helped me a lot in preventing some auto-run viruses when you plug in your usb, this autorun viruses or worm sometime are immune to your anti-virus and some are just scripts that automatically attacks you pc. the software is called "USB Disk Security" you can pay for it or download it on torrent which is i think free and with serial. what this software do is simply blocks autorun.inf and script that automatically run in your pc when you plug a usb it also scans USB for threats and .EXE that are unknown, after you scanned your USB simply press delete all then your off to scanning your usb drive for other viruseswith your Anti-Virus(i prefer NOD32). Its just like having an anti-virus + an Extra security for your pc. Hope you Get the benefits of this as i did..

Don't forget to click the adds as a sign of thank you and comment on the post THANX

FaceBook Problem Hijacker

2010-03-07T11:13:00.006+08:00

http://kent01.justfree.com/ <<---SOLUTION When I log in to my facebook i get this Site. well your facebook account has been hijacked its no a virus so dont worry..

So what to do...

download hijackthis from trendmicro and Do a system scan then look for some websearch sites and some unknown names of webpages, put a check on them and click fix checked. "be careful on choosing the names of webpages, you might also delete some of your sartup programs like antivirus and stuff". Hope this helps.

Just give me thanks if this helps Rock on!!!

How To remove Jay.exe and mveo.exe Manually

2008-11-11T11:40:00.002+08:00

To be able to locate all the mveo.exe and jay.exe files,
1. open a windows explorer window
2. click on tools then click folder options
3. choose the view tab
4. on the hidden files and folders menu tick on show hidden files and folders.
5. uncheck hide extensions for known file types
6. uncheck hide protected operating system files (recommended)
7. click apply then ok

Next we will have to remove the jay.exe and mveo.exe files
1. Press ctrl+alt+del to open taask manager
2. In the processes tab look for the mveo.exe and end process.

To delete all the jay.exe and mveo files, search for it using the search for files and folder option in the start menu.
1. type jay.exe in the searchbar
2. click more advanced option
3. put a check on search hidden files and folders
4. then click on start search
5. delete all jay.exe entries
6. repeat steps 1-5 to search for mveo.exe
7. also delete autorun.inf file

To delete registry entries
1. click on start
2. click on run
3. in the run text box type regedit
4. press ctrl+f and type in the textbox jay.exe
5. delete all entires having jay.exe entries
6. press F3 to search the next entry.

note: if an entry is in c:\windows... edit the value and go to the end of the string and
delete only the jay.exe text on the end of the string

To edit the IE windows back to its original name:
1. open regedit
2. press ctrl+f
3. type in the searchbar window title
4. If the value that appears has the jaymyka.wen9.com value, change it to Internet Explorer
note: this would be the title bar of your Internet Explorer.

After all of these steps are done:
try to look again for the jay.exe and mveo.exe files using the search for files and folders application of windows.

after deleting all those files restart your computer.
Your Done

DESTRUKTO or Explorar.vbs Virus

2008-10-30T19:04:00.001+08:00

This is a very annoying virus. Got it from my flash drive. It spreads out in portable media drives so be very careful. My ultimate tip is before you open you're flash drives, scan it first with you're antivirus software or right click the removable drive icon and click "explore" rather than "open or autoplay". I have searched the internet and I havent found a newbie direction of removing this virus so I have made my own user friendly instruction so that people will not have to think for hours just to remove this virus.

Description:
1. Pop-ups Internet browser window with message:
”DESTRUKTO 10 uToS nG mAnGinGiNoM”

2. Disables Folder Options, Task Manager, Registry Editor, System Restore and Run.
3. Presence of the following files:

New Folder.bat\Start Explorar.Vbs

How to remove:
1. Download & install replacement software for Task Manager (since it is disabled) such as Process Explorer

2. Download & install an alternative software for Registry Editor (it is also diasbled by destrukto virus) such as mpam4_regedit_xp

3. Reboot computer in SafeMode
How to reboot in safe mode
a) During BootUp process Press F8 continuously until selection appears
b) Use Arrow Up+Down to select SafeMode on the selections menu.
c) Hit Enter to proceed.

4. Run the downloaded Process Manager and disable the WSCRIPT process. You may disable the processes by right clicking them and choose disable.

5. Using Command Prompt or File Manager go to C:\Windows\system32 and rename WSCRIPT.EXE to WSCRIPT.TMP

6. Run the downloaded mpam4_regedit_xp and do as follows:

Navigate to and delete the subkey:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Exlorer\wendows&\system32\explorar.vbs

As you run the program, folders can be seen in the left side of the dialog box, follow the registry path below and convert the values of the registries back to their original values before they were infected by destrukto.

Navigate to subkey and modify value:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFind
Data Value from 1 to 0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoRun
Data Value from 1 to 0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools
Data Value from 1 to 0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr
Data Value from 1 to 0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowSuperHidden
Data Value from 0 to 1

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\NoFolderOptions
Data Value from 1 to 0

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows NT\SystemRestore\DisableConfig
Data Value from 1 to 0

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows NT\SystemRestore\DisableSR
Data Value from 1 to 0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun
Data Value from 0 to 91 or 95

7. Exit registry editor and restart the computer.

8. By this time you have successfully removed the destrukto virus

Baca Bro Virus

2008-10-30T15:33:00.004+08:00

I would like to share with anyone have this virus.

Symptom
No able to launch TaskManager, as it will auto close (Not Disabled by administrator)
No able to launch Regedit.exe as disabled by administrator
You'll found a txt file at C:\Baca Bro !!!.txt
Unable to install any application/run setup bcoz it will auto close

P/S : You dun have to think you could google Antivirus or similar keyword on your browser, bcoz it will auto close your browser.

1st We need to get alternative 3rd party Task manager, i recommend Starter
http://www.snapfiles.com/opinions/Starter/Starter.html

2nd Replace your Task Manager with Process Explorer, which have more details compare with taskmgr.exe
http://www.microsoft.com/technet/sysintern...ssExplorer.mspx

3rd Enable to view SUPER HIDDEN FOLDER, Please download this regtick
http://www.snapfiles.com/get/regtick.html

4th Disable system restore, by follow these steps
- Right Click "My Computer" select System Restore tab and check the small box "Turn Off System Restore"

Lets Start....

Run Starter, kill these processes currently running, KILL THESE PROCESSES IF RUNS UNDER "YOUR USERNAME" NOT THE "SYSTEM". If you accidently kill any process under System, no worry.. Either your pc auto restart or just u need to reboot your pc.

j.exe
o.exe
b.exe
csrss.exe
lsass.exe
services.exe
smss.exe
sv.exe
winlogon.exe

Done, now you should able to run your task manager. Please user Process Explorer. Double check any of these process listed above still running. If yes, please kill it. Completed then now we'll remove the physical files used by this virus. Please access to these locationd and remove all the files

IMPORTANT : PLEASE USE "SHIFT+DELETE"

User>\Local Settings\Application Data\dv[random>\yesbron.com
User>\Local Settings\Application Data\jalak[random>.com
Windows>\_default[random>.pif
Windows>\j[random>.exe
Windows>\o[random>.exe
Windows>\sa[random>\ib[random>.exe
System>\c[random>.com
System>\n\b[random>.exe
System>\n[random>\csrss.exe
System>\n[random>\lsass.exe
System>\n[random>\services.exe
System>\n[random>\smss.exe
System>\n[random>\sv.exe
System>\n[random>\winlogon.exe
Windows>\Tasks\At1.job
Windows>\Tasks\At2.job
System>\n5817\c.bron.tok.txt
C:\Baca Bro !!!.txt <----- If your window installed on C drive,
if D it would be D:\Baca Bro !!!.txt and so on.

Once done, proceed to remove registry

Use regtick to enable your regedit.exe, done proceed to remove the registry entry

The following registry entries are created to run yesbron.com, _default[random>.pif, j[random>.exe and sv[random>.exe on startup:[/span>

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\run
[random characters>
User>\Local Settings\Application Data\dv[random>\yesbron.com

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run
[random characters>
Windows>\_default.pif

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
[random characters>
System>\n\sv[random>.exe

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
[random characters>
Windows>\j[random>.exe

The following registry entries are changed to run j.exe and o.exe on startup:

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Shell
Explorer.exe "[Windows>\o[random>.exe"

(the default value for this registry entry is "Explorer.exe" which causes the Microsoft file [Windows>\Explorer.exe to be run on startup).

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Userinit
System>\userinit.exe,[Windows>\j[random>.exe

(the default value for this registry entry is "[Windows>\System32\userinit.exe,").

The following registry entry is set, disabling the registry editor (regedit):

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System
DisableRegistryTools
1

Registry entries are set as follows:

HKCU\Software\Brontok
Message
Look @ "C:\Baca Bro !!!.txt"

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
Hidden
0

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
HideFileExt
1

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
ShowSuperHidden
0

Registry entries are created under:
HKCU\Software\Brontok\

That's all. Thanks

Credits to: MOFO

Media browser Try it!!

2008-03-08T12:07:00.000+08:00

I was looking for an internet media source were i can listen to music watch videos and play some games and i came across this website www.dizzler.com , just open the dizzler player and your on your way. you dont even have to register to use it. if you register you can use it on your friendster or myspace account to entertain yourself or others who views your profile it will be embeded as your media bar. Try it.. please comment if you like it : ). I myself Enjoyed it Cheers!!!!

Show Hidden Files Issue / Problem (due to Virus)

2008-01-31T01:11:00.000+08:00

The steps are :-

* Open registry( select run command from start menu and type regedit and then press enter)
Find this key in your registry:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden]

Modify the string value "Type" and enter "group" as value data.

After the edit is complete hit F5 to refresh, and go look in your Folder Options
step 2
* In the left pane goto path HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer
\Advanced\Folder\Hidden\SHOWALL

* Delete the value CheckedValue in the Right pane by right clicking it and selecting delete. (Its type should be REG_SZ and data should be 2.)

* Create a new DWORD value called CheckedValue by right clicking in the Right pane and then selecting new -> DWORD Value and then changing the name to CheckedValue. (same as above, except that the type is REG_DWORD). Modify the value data to 1 (0×00000001) by right clicking the CheckedValue in the Right pane and selecting modify and changing the value data to 1.

This should let you change the “Hidden Files and Folders” option.

Install NOD32 and update it Then Scan your PC for viruses, i think its the win32.QQrob-32 virus that disabled this option

hope this helps Darick

Internet Explorer Subtitute

2008-01-15T13:54:00.000+08:00

We have been using Microsoft Internet Explorer for a long time now and it has made its name in internet browsing. But now i came across a better browser and it is called Mozilla FireFox, why is it better? its faster, safer, and eats less system memory(less memory usage means faster Pc). I've been using it for about a year and wow, i think its the best. it has the feature of Microsoft internet explorer and it offers more, try it and compare the speed in browsing, and security(some viruses targets IE. so meaning firefox is safer). it also has lots of plugins and addons that will make your internet experience better, one example is the Download helper it helps download videos from youtube and other video streaming websites (you dont have to install a separate downloader that will eat memory). just go to tools and then addons, and another thing it has themes to make your browser look cool or fit your mood.. heres a link MozillaFireFox Enjoy!!!

hakaglan.worm

2008-01-02T15:26:00.000+08:00

other Names of the worm :Worm.Win32.AutoIt.e, W32/Cocung.worm,W32.Imaut.N, Worm/Hakaglan, W32/SillyFDC-G..

This worm may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.

It drops copies of itself. It creates registry entries to enable its automatic execution at every system startup. It modifies registry entries to enable its automatic execution at every system startup.

It creates registry key(s)/entry(ies). It drops copies of itself in all removable drives.

It disables Task Manager and registry tools. It connects to Web sites to download a file, As a result, routines of the downloaded worm are also exhibited on the affected system.

It creates a scheduled task.

Solution

Important Windows ME/XP Cleaning Instructions

Users running Windows ME and XP must disable System Restore to allow full scanning of infected computers.

Users running other Windows versions can proceed with the succeeding solution set(s).

Restarting in Safe Mode

This malware has characteristics that require the computer to be restarted in safe mode. Go to this page for instructions on how to restart your computer in safe mode.

Enabling The Registry Editor

This malware disables the Registry Editor. To restore the said system tool, perform the following instructions:
• On Windows 98 ME, NT, and 2000:

1. Open Notepad. Click Start>Run, type Notepad, then press Enter.
2. Copy and paste the following:

REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableRegistryTools" = dword:00000000

3. Save this file as C:\RESTORE.REG.
4. Click Start>Run, type C:\RESTORE.REG, then press Enter.
5. Click Yes at the prompt of the message box.

• On Windows XP and Server 2003:

1. Open the Run dialog box. Click Start>Run, type Notepad, then press Enter.
2. Copy and paste the following:

REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 0 /f

3. Save this file as C:\RESTORE.REG.
4. Click Start>Run, type C:\RESTORE.REG, then press Enter.
5. Click Yes at the prompt of the message box.

Removing/Restoring Autostart Entry from the Registry

This solution deletes/modifies registry keys/entries added/modified by this malware. Before performing the steps below, make sure you know how to back up the registry and how to restore it if a problem occurs. Refer to this Microsoft article for more information about modifying your computer's registry.

1. Open Registry Editor. Click Start>Run, type REGEDIT, then press Enter.
2. In the left panel, double-click the following:
HKEY_CURRENT_USER>Software>Microsoft>
Windows>CurrentVersion>Run
3. In the right panel, locate and delete the entry:
Yahoo Messengger = "%System%\RVHOST.EXE"
(Note: %System% is the Windows system folder, which is usually C:\Windows\System on Windows 98 and ME, C:\WINNT\System32 on Windows NT and 2000, and C:\Windows\System32 on Windows XP and Server 2003.)
4. In the left panel, double-click the following:
HKEY_LOCAL_MACHINE>SOFTWARE>Microsoft>
Windows NT>CurrentVersion>Winlogon
5. In the right panel, locate the entry:
Shell = "Explorer.exe RVHOST.exe"
6. Right-click on the value name and choose Modify. Change the value data of this entry to:
Explorer.exe

Removing Added Entries from the Registry

1. Still in Registry Editor, in the left panel, double-click the following:
HKEY_CURRENT_USER>Software>Microsoft>Windows>
CurrentVersion>Explorer>WorkgroupCrawler>Shares
2. In the right panel, locate and delete the entry:
shared = "\New Folder.exe"
3. In the left panel, double-click the following:
HKEY_CURRENT_USER>Software>Microsoft>Windows>
CurrentVersion>Policies>System
4. In the right panel, locate and delete the entry:
DisableTaskMgr = "1"

Deleting the Malware File(s)

1. Right-click Start then click Search... or Find..., depending on the version of Windows you are running.
2. In the Named input box, type:
%Windows%\tasks\AT1.JOB
(Note: %Windows% is the Windows folder, which is usually C:\Windows or C:\WINNT.)
3. In the Look In drop-down list, select My Computer, then press Enter.
4. Once located, select the file then press SHIFT+DELETE.

Restart your computer normally before performing the following solution.

Full Scan with nod32 with full updates or use Avira anti virus

Hope this helps yhanny

Prevent autorun.inf Viruses from Infecting Your Pc

2007-12-04T10:58:00.000+08:00

Prevention is better than cure.

Here are some examples of autorun viruses which rely on the autorun function of Windows to infect PC’s and flash drives.

Funny UST Scandal.avi.exe (latest one in the Philippines)
Autorun.vbs
win32.autorun.k
copy.exe
imgkulot
taga lipa are
autorun.vbs
recycler
FS6519.dll.vbs
strawberry from baguio
W32/Perlovga (copy.exe | host.exe)
VBS_RESULOWS.A (Hacked by Godzilla, Hacked by Moozilla)
Bha.dll.vbs
w32automa worm (Autorun.vbs)
Trojan.Win32.VB.atg | Win32/Dzan | Worm_vb.bnr (tel.xls.exe | mmc.exe)
W32/RJump.worm (RavMonE)
Worm.Win32.Delf.bf | W32.Fujacks (spoclsv.exe)
W32.Fujacks.BH (Fucker.vbs)
WORM_AGENT.PGV (soundmix.exe)
W32/Hakaglan.worm (RVHost.exe)
Trojan.Win32.VB.ayo [AVP] (Macromedia_Setup.exe)
Trojan.VBS.DeltreeY.b#1 (Destrukto!!! | destrukto.vbs)
etc.

To prevent these kinds of viruses on infecting your PC, you need to disable autorun function in your computer, unfortunately, just shutting down autoplay is not a fix. You might think that you could protect yourself from AutoRun by adding two (2) keys to your Registry (NoDriveAutoRun and NoDriveTypeAutoRun) but these keys can be overridden by some programs.

Solution is here:

1. Start Notepad [Start Menu-All Programs-Accessories-Notepad] or right-click any empty space in your desktop then select New-Text Document
2. Copy the following text. (note: Everything in between the square brackets should be in one line)

REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\Autorun.inf]
@="@SYS:DoesNotExist"

3. Save the file with a name (anything) like DisableAutoRun.reg (The extension .reg is the important part)
4. Double Click your newly created registry file. Choose yes or continue to the warning that will appear.

Credits goes to: OverBurned Thanx man

remover of the funny UST Scandal

2007-11-27T16:16:00.000+08:00

Im The Remover

Funny UST Scandal, smss Virus

2007-11-24T15:25:00.000+08:00

What a lame virus......peace...!!!!! MABUHAY ANG LIPA(Lipa City Public College)F.E.S
Before I teach you how to remove this... first... this is the information
of that virus....

Software used to build the virus= AutoIt V3
drop Files- killer.exe(4084 kb) in c:\windows\
lsass.exe(3920kb) in c:\documents and settings\all users\start menu\programs\startup
smss.exe(4088kb) in all root drives and in c:\windows
autorun.inf(1kb) in all root drives with a script

[autorun]
open=smss.exe
shell\Open\Command=smss.exe
shell\open\Default=1
shell\Explore\Command=smss.exe
shell\Autoplay\command=smss.exe

Funny UST Scandal.avi.exe(228kb) in all root drives

Registry Entries-HKLM\Software\Microsoft\WindowNT\CurrentVersion\Winlogon=shell(killer.exe)
HKCU\Software\Microsoft\windows\Currentversion\Run=runonce(c:\windows\smss.exe)

HOw to remove this lame virus????

-first download taskiller in http://www.rsdsoft.com/task_killer/index.php4 and install it to
your computer because you cant use taskmanager to terminate the virus(the virus automatically close taskmanager).

-run taskiller and left click it on the system tray(the one with a skull icon)

-click processes

-to close the virus, select process and click yes to the question

(process to close)
1.killer.exe
2.lsass.exe
3.smss.exe

note: close only file that have the same icon of Funny UST Scandal.avi.exe

CMD STEPS
1-now, click "start" then "run"
2-type "cmd" without quotes
3-type "cd\" without quotes
4-type "attrib -h -s smss.exe" without quotes
5-type "attrib -h -s autorun.inf" without quotes
6-type "start c:" without quotes(a new window will open)
7-select smss.exe,autorun.inf,Funny UST Scandal.avi.exe and delete it

-if theres any drive or a partition type "d:" in command prompt without quotes
"d" is the drive letter then repeat the CMD STEPS number 4-7 above.......

-now type this on the command prompt "cd windows" without quotes(na naman!)
-type "attrib -h -s smss.exe" without quotes(uli)
-type "start c:\windows" without quotes(hay naku!)
-delete the file smss.exe
-now, goto c:\documents and settings\all users\startmenu\programs\startup
-delete lsass.exe

-click "start" then "run"
-type "regedit" without quotes then delete the registry entries above....

-thats all!!!!!! MABUHAY ANG LIPA(6519)

Note:
Magtatagalog na ako.. hirap na akong mag english......
Kapag nagkaproblema kau sa pagoopen ng drives sa mycomputer open
nyo lang uli ang regedit tpos find nyo lang ang "smss.exe"
tpos burahin nyo ung mga value na katulad nito--->>"c:\smss.exe","d:\smss.exe" etc.....
ok?????

Credits to :fs6519 thanx Man

jaymyka.wen9.com new virus spread by usb Heres a way to remove it

2007-11-14T14:54:00.000+08:00

if you are infected by this virus just do the following to delete it manually;

1. open my computer then click tools, go to folder options, click view, select show hidden files and folders then uncheck "hide extensions for known file types" and uncheck also "hide protected operating system files" then click apply and ok.

2. now open your drive(s) using the address bar (you cannot double click your drives if you are infected) then click C: there you will see "jay.exe" and "autorun.inf", delete both of them, then go to address bar again and choose the other drives (depends on how many partition you have) TAKE NOTE: never click the "back" button, always go to address bar to select the drives,do the same procedure (like in Drive C:)

3. now go to registry editor, highlight my computer then click edit and search "jaymyka.wen9.com" also "jay.exe" and "mveo.exe", if you see them DELETE them all, be sure you deleted all of them then restart your pc.

4. after you restart, try to open my computer and double click your drive(s), check if "jay.exe" and "autorun.inf" totally gone, and you're done.

gud luck guys

Heres Something funny try it your self

2007-10-29T00:21:00.000+08:00

Face Morphing another very interesting face recognition feature of My Heritage website. Forgive me but i think its really close bwahahahahhah....

Who do you look like

2007-10-28T23:51:00.000+08:00

well it's been a long time since i last updated my blog, well it was a very busy week. what did i find from the net that i can share with you, a site that will try to recognize your face and match it up with celebrities. its fun and very entertaining, try it, its very simple just upload a picture and let the site match your face with other faces and get the result. Heres mine..hehehehe Dean Cain Eat your heart out!!!!

Find out yours at My Heritage

Ways to Entertain yourself Online

2007-10-20T09:32:00.000+08:00

i was bored while browsing the net, and i started looking for site to entertain me. i came upon free game site like miniclip, and albinoblacksheep they had games that would truly entertain you.try them their free, but don't over do it like what i did and forget things you would do for the day.

Free Music you can listen directly to music online just by going to Imeem, Esnips, and for OPM's Tristancafe. I'm sure you'll have your music fix Fast : )

For Clips, TV shows, Movies, & Funny Videos Try Stupidvideos, HolyLemon, Metacafe, Veoh, DAILYMOTION, and of course every ones favorite the Youtube. just one reminder some site may have adult contents so enjoy ; ) hehehehhe

Buying A Laptop

2007-10-17T00:06:00.000+08:00

i was looking for a laptop for my personal use and i didn't see anything close to my standards. i want my laptop to be top of the line at the same time the price must be right hehehhehe....
then i saw the laptop of my cousin and OMG!!! i was so stunned!! the looks, the power, and best of all the price. only one problem he bought it online. where did you buy it? i ask. and he told me to go to http://www.alienware.com/ and and look for your dream laptop. so my suggestion right now is don't buy your laptop here in stores but online and have it shipped, it cost less and it is very high in quality, and don't forget to ask for an international warranty, just in case something might happen alienware one day I'll order my own.... Try and customize you own laptop and check its price here <--------

Amzing French Beatboxer

2007-10-13T22:39:00.000+08:00

His name is Joseph and he is the best beatbox talent i have ever seen, try and listen as he tries to put 3 sounds at the same time with the song billy jeans, people watching him were amazed by this talented young man, hope i can do what he does and be famous lolz!! Enjoy: ) [How does he do it]

Philippines Beware of Dengue

2007-10-13T20:05:00.000+08:00

My aunt is a pediatrician and she told us that we should take cake of ourselves and our young ones cause dengue today is different from before, it is detected at a late stage and the symptoms start with fever, colds flu and coughing or pneumonia. Dengue is very dangerous at a late stage it causes internal bleeding and it is very painful (how painful? it had the name break-bone fever or bonecrusher disease). so if your having fever, flu, coughing for longer than 3 days have yourself or your children tested for this disease (Blood Test) its always good to be sure, remember regrets always happens at the end.

Granado Espada 2006 Game Of the Year

2007-10-12T00:30:00.000+08:00

I just recently played Granado Espada an MMORPG made By Koreans same Makers Of Ragnarok and i was amazed by the game! its like wow!!! a new feeling brought by an MMORPG a game worthy to call a WINNER, imagine controlling 3 character at once and not have a hard time. The AI of the game is so high and you can play solo, Healer, Front Warrior, and a nuker. If you tried the game you'll see what im saying so if your looking for a new MMORPG to try, try this one Its no game of the year for nothing

I now pronounce you chuck and larry

2007-10-10T13:25:00.000+08:00

hilarious movie I just watched it a while ago and i truly enjoyed it... its full of crazy stuff and my god jessica biel is so hot, truly one of a kind body. watch it....

Nhatquanglan & Pooh.vbs(W32/DKR.worm) Malwares virus spywares

2007-10-10T12:47:00.000+08:00

The Two spywares/malwares/virus i have stumbled upon. Nhatquanglan slows down your pc and disable some fuctions like folder option, taskmanager, regedit etc. while (W32/DKR.worm) pooh.vbs slow pc and spreads it self through USB Drives. i use nod32 anti virus and they by passed it, but i know nod32 will have an update soon to detect this 2 threats...

Ways to remove them you can use system restore and remove the 2 malwares or use a script command to clean them up. i have the script command for the nhatquanglan, but for the pooh.vbs i just used my system restore. here are some instructions and futher information about the 2 new malwares virus or spywares i encountered credit goes to the person who wrote it.

credit goes to: Shrinked Immaculate
Chandigarh, Punjab, India

Nhatquanglan

I recently noticed a spurt in the traffic to my blog which is apparently caused by people looking for answers to the Nhatquanghlan worm. Well, over here in Chandigarh, it seems that this virus is just about in all computers and is being spread by the ubiquitous pen/usb/zip/thumb drive. From my ruminations on the net and frequent tinkering around the ward computer that gets reinfected almost every day, I have made certain observations that seem to make some conclusions about this worm.

1. This worm spreads by USB drives though it is possible that other portable media may be involved too.

2. It causes the task manager, the folder options, registry files to be altered.

3. It can be diagnosed by the above symptoms.

4. There is a crappy looking folder icon that is seen (with same name as the original folder), the file size of which is 282 kb.

5. It makes the computer slow down, and no anti-virus as of now seems to catch hold of it.

6. Inability to stop the USB drive from remove hardware safely option.

7. Inability to format the USB drive.

8. The worm is an autorun .exe file and executes and infects every time a USB drive is plugged in.Cure:

1. Download Hijack this(free), and the task manager fix of the interra group (also free), and a program called spybot killer.

2. Run the hijack this (rename it first or it wont start), and fix all files with scvhost.exe (not svchost.exe), run spybot, and then task manager fix. This should cure it. As u learn more about viruses, hijack this is probably the most useful program to have.

3. Reboot, and should run ok.Prevention:

1. USB hygiene is paramount. Disable autorun (wont happen unless infection is cleared first) using administrative tools.

2. Do not run any program from the USB drive, copy paste on to computer first.

3. Scan USB drive all the times.

4. Format USB drive often.

5. Read about hakaglan on the web.

Pooh.vbs
W32/DKR.worm is a worm that spreads over network or removable drives. Earlier non-propagating variants may be be detected as Backdoor-DKR trojan.

This is a virus detection. Viruses are programs that self-replicate recursively, meaning that infecteWhile many viruses contain a destructive payload, it's quite common for viruses to do nothing more than spread from one system to another.d systems spread the virus to other systems, which then propagate the virus further.

Ways to remove it

Download startup control Panel at mlin.net (You're going to use this later)

Go to your Task Manager (Ctrl+Alt+Del)

Terminate the Wscipt.exe process

Terminate the Explorer.exe process

Click New Task and Type "cmd" (without the quotes)

type the following in your command prompt

del c:\pooh.vbs /f/s/q/a

del d:\pooh.vbs /f/s/q/a

(include your other drives and USB drives that have been infected)

del c:\windows\system32\kernell.dll.vbs

del c:\aikelyu.html /f/s/q/a

Use the start-up program from mlin.net to remove aikelyu.html on windows startup

Go to New Task and type "regedit" (without the quotes)

Go to

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

and modify it to make the value in Shell to only contain "explorer.exe"

your done

Credits tyo the one who wrote this Peace all

Remote control your pc

2007-10-08T20:28:00.000+08:00

Manage your computer when your away www.logmein.com the website helps you control your computer via another computer as long as both have internet connection, just by using a internet browser or explorer its safe fast and best of all they offer free service try it and monitor your computer even when your away...