Complete Guide On Virus Removal

This post contains link for the post which are based on Virus Removal The basic thing to protect your computer from virus is you need to have an AntiVirus with full updates.
Do a complete scan in safemode if the virus still exists then go for following links.

• Most common computer problems and their solution(Part1)
• Most common computer problems and their solutions(Part 2)
• How to remove virus from usb drives
• How to remove RAVMON virus from your pc ?
• "STOP" error message at shutdown

Show Hidden Files and Folders not working?

Show Hidden Files and Folders not working?..... If we selecte the radio button “Show hidden files and folders” and then press Ok.. the changes would just disappear upon opening the dialog again. It was probably some virus attack after which the Windows registry was not being updated properly. So here is what methods to restore it back. There are so many methods to restore back the registry. If one method is not working, please try another one.

Method 1:

Go to registry editor by running regedit in the run box.
Go to this key:
HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Explorer\Advanced

In the right hand area, double click hidden and change the value to 1.

Now you’re all set to go. Check it in your tools menu if the changes have taken effect.

Method 2:

1. Click “Start” -> “Run…” (or press Windows key + R)
2. Type “regedit” and click “Ok”.
3. Find the key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\
Advanced\Folder\Hidden\SHOWALL
4. Look at the “CheckedValue” key… This should be a DWORD key. If it isn’t, delete the key.
5. Create a new key called “CheckedValue” as a DWORD (hexadecimal) with a value of 1.
6. The “Show hidden files & folders” check box should now work normally. Enjoy!

Method 3:

1- Click Start –> Run –> regsvr32 /i browseui.dll –> enter

A confirmation message will appear like given below

2- Click Start –> Run –> regsvr32 /i shell32.dll

Wait for the confirmation and click OK.

regsvr32-shell.dll.png

Method 4:

If none of the above methods work, please download our Smart Virus Remover from here:

Smart Virus Remover (652.8 KiB, 346,268 hits)

Using this Virus Remover please restore your Windows settings and your show hidden files and folders will be set to default.

Please spare a few moments from your precious time and tell us about your experiences.

"STOP" Error Message At Shutdown

Some users have gotten an error message similar to the following when attempting either to shutdown or restart Win XP:

STOP 0000009F, DRIVER_POWER_STATE_FAILURE
STOP 0x0000001E: KMODE_EXCEPTION_NOT_HANDLED
STOP 0x000000D1: DRIVER_IRQL_NOT_LESS_OR_EQUAL

TechNet and the Microsoft Knowledge Base have numerous articles discussing this type of error condition; for example, these. As a review of these articles will show, these are commonly device driver problems, but may also be caused by troublesome software (such as the notorious CrashGuard), or a problem in a system service. MSKB article Q262575 discusses a shutdown problem of this type, known to exist in Windows 2000 due to a resource (IRQ) conflict, if you have PACE Interlok anti-piracy software installed. This problem may occur in Windows XP as well.
Microsoft advises the following as one approach to these problems: Restart the computer. Press F8 during the restart and select “Last Known Good Configuration.” If you catch the problem when it first occurs (meaning you likely have installed only one or two drivers or new service), this will return you to a previous working condition. (Would System Restore accomplish the same thing? I don’t know, and don’t have a broken system to test it on.)

Microsoft reported similarly that these STOP code error message occur when Windows XP is trying to shut down devices. He says that he has seen this twice: once with Logitech Quickcam installed (with an unsupported driver), and once with a USB DSL modem that would hang if it wasn’t disconnected before shutdown.

How to remove RAVMON Virus from your PC ? Show hidden files and folders not working ? Computer shuts down automatically ?

Is your right click context menu showing some Chinese scripts ? Is your show hidden files and folders not working ? Is your command prompt , Registry Editor and task manager disabled ??
If all these things are happening to your Computer , the reason is that it has got infected by a virus named " RAVMON " .What can this Virus do ??

• Disables task manager , Registry Editor and Command prompt .
• Right click menu shows some Chinese scripts as shown in the figure.
• Computer shutdown automatically and slogs a lot.
• Folder Options disappear
• Show hidden files and folders Option won't work.

With all these things not working , I can understand what can go with you !! I saw this thing on my friends PC . Then only I decided to write the solution for this.So how are you going to remove this ?

Download it and remove the Virus.

Download the RAVMON virus removal Tool
Note : Wait for the page to load and then click start download

One you download the tool , you can see the menu as shown in the figure.Click on the three of them.and press OK.If you are not infected with RAVMON then the tool automatically shows the error message.So download it and enjoy using your PC.

How to remove Virus from USB Drives

One of the ways by which a virus can infect your PC is through USB/Pen drives. Common viruses such as ’Ravmon’ , ‘New Folder.exe’, ‘Orkut is banned’ etc are spreading through USB drives. Most anti virus programs are unable to detect them and even if they do, in most cases they are unable to delete the file, only quarantine it. Here are the things which you can do if you want to remove such viruses from your USB Drive

Whenever you plug a USB drive in your system, a window will appear similar to the one shown below

Don’t click on Ok , just choose ‘Cancel’. Open the Command Prompt by typing ‘cmd‘ in the run box. In the command prompt type the drive letter: and press enter . Now type dir /w/a and press enter.

This will display a list of the files in the pen drive. Check whether the following files are there or not

• Autorun.inf
• Ravmon.exe
• New Folder.exe
• svchost.exe
• Heap41a
• or any other exe file which may be suspicious.

If any of the above files are there, then probably the USB drive is infected. In command prompt type attrib -r -a -s -h *.* and press enter. This will remove the Read Only, Archive, System and hidden file attribute from all the files. Now just delete the files using the command del filename. example del Ravmon.exe. Delete all the files that are suspicious. To be on a safer side, just scan the USB drive with an anti virus program to check whether it is free of virus or not. Now remove the drive and plug it again. In most of the cases, the real culprit turns out to be the “Autorun.inf” file which mostly gets executed when someone clicks Ok in the dialog window which appears above. Thus the infections can spread

Security Tip

Disable the Autoplay feature of USB drives. If you disable the Autoplay feature of USB drives, then there are lesser chances of the virus spreading. A tool which can perform such a function is Tweak UI. Download it from here install it.

Run the program. Now you can disable the Autoplay feature of the removable drives as shown above. By following the above steps, you can keep your USB drives clean.

Update: Tweak UI is a freeware software you can download it here: http://www.filehippo.com/download_tweakui/

Most Common Computer Problems and Their Solution (Part-II)

 Previos... Part-II
 

1. Task Manager Disabled:

If you are working on Windows XP pro, following steps will help u to enable Task Manager

SOLUTION 1:
Click Start --> Run
Enter gpedit.msc in the Open box and click OK
In the Group Policy settings window, select User Configuration
Select Administrative Templates
Select System
Select Ctrl+Alt+Delete options
Select Remove Task Manager
Double-click the Remove Task Manager option
Disable that option

SOLUTION 2:
Click on Start >> Run and in the Open box type:

REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 0 /f

Click OK.


2. Double-clicking any drive opens search option:

Solution 1:
That's a virus named as ravmon.exe and autorun.inf
Scan first with a good antivirus [Nod32 Recommanded]
then try this trick.

First show the hidden files and folders options then try this method

1. Go to Start-->run and type cmd then click ok

2. If u want to remove the infected file from c drive then type C: in command prompt and press enter

3. Type autorun.inf and press enter
autorun.inf file is opened

4. Now type "attrib autorun.inf -s -h -r" and press enter

5. Now delete the file by typing
"del autorun.inf" and press enter

6.Now type autorun.inf and press enter now, u will find no infected autorun.inf file.

7. same way do for all other drives then restart ur pc


3. I accidentally deleted my "mspaint.exe"/"notepad.exe"/etc. file, how can I get it back?


Solution::

You can use any of following methods:

A. Goto "%windir%\System32\DLLCache" folder and look for the file, if its there then copy it to "%windir%\System32\" folder.

B. Insert your Windows Setup CD and goto "I386" folder. Now look for the same file, it'll present there but the last letter of extension will be "_". e.g., u'll get "mspaint.ex_"/"notepad.ex_"/etc. Now open Command Prompt and goto "I386" folder and give following command:

expand mspaint.ex_ mspaint.exe
expand notepad.ex_ notepad.exe
etc.

Now u can copy the file to "%windir%\System32" folder.

C. Give following command in Command Prompt:

sfc /SCANNOW

It'll automatically restore the files.


4. When I right-click on Start button and select "Open", a "Copy To" or "Move To" dialog box opens automatically.
Solution:
Open regedit and goto:
Code:
HKEY_CLASSES_ROOT\AllFilesystemObjects\shellex\ContextMenuHandlers\

Now under this key, delete following 2 keys:
Copy To
Move To


5. Windows is showing some wrong icons of files. How can I reset the corrupted icons?
Solution:

You can use any of following methods:

A. Download TweakUI and then click on "Repair Icons" in "Repair" section.

B. Open My Computer and goto:
C:\Documents and Settings\User_Name\Local Settings\Application Data

Replace C:\ with your system drive and "user_Name" with your username.
Now there'll be a HIDDEN file "iconcache.db", delete it and restart your system.


6. A strange process "ctfmon.exe" always runs in background and if I click on "End Process" button, it restarts automatically.

Solution:
Open Control Panel and goto Add/Remove Programs list. Now click on the Microsoft Office entry and then click on "Change" button. Now select "Add/Remove Features" and click on "Next". Now expand "Office Shared Features" and click on "Alternative User Input" and then select "Not Available" and finally click on Update. It'll permanently remove that ctfmon.exe and your problem will be solved.


7. My Windows Login Screen has changed to "Classic Logon Box". I want the new Welcome Screen back.

Solution:
Type "control userpasswords" in RUN dialog box or Open "User Accounts" in Control Panel. Then click on "Change the way Users log on and off". Now check the option "Use Welcome Screen". If you get following error:

Uninstall client services for netware.

Then Open "Network Connections" and open Properties of your Internet Connection. Now goto "Networking" tab and select "Client services on Netware" option and click on the"Uninstall" button.


8. Whenever I start my computer, Scandisk starts running even I proper shut down the PC last time.

Solution:
Do as following:

A. Open regedit and goto:

Code:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager

In right-side pane, change the value of BootExecute to:

autocheck autochk *

B. If the above trick doesnt help then give following commands in Command Prompt:

chkntfs /x drive_name

for e.g., if ScanDisk runs automatically for C: and D: drives, then give following commands one by one:

chkntfs /x C:
chkntfs /x D:


9. When I start my computer, I get error message:

"Windows\System32\config\system" file missing or corrupt

Solution::
Boot using Windows Setup CD and enter into "Recovery Console" by pressing "R". Now Log into windows installation and enter admin password. Now give following commands at prompt:

copy %windir%\Repair\system %windir%\System32\Config

If it doesnt work, then again boot into "Recovery Console" and give following commands:

fixmbr
bootcfg /scan
bootcfg /rebuild
fixboot


Win XP Tweaks

STARTUP

Most Common Computer Problems and Their Solution (Part-1)

Note: All the information here is collected form various sites and forums.

1. I can't see Hidden files/folders in my computer. Even I enable the option "Show hidden files/folders" in "Tools -> Folder Options", its automatically disabled again.

Solution1: Go to your Start menu, click on Run and open up your Registry Editor by typing "regedit" without the quotes and pressing OK.

Once there go to: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folde r\Hidden\SHOWALL

Delete the value CheckedValue. (Its type should be REG_SZ and data should be 0 or 1.)

Create a new DWORD value called CheckedValue (same as above, except that the type is REG_DWORD) by right clicking on the right pane->New->DWORD Value. Modify the value data to 1 (0x00000001).
Solution 2: Open regedit and goto:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
In right-side pane, change value of "Hidden" to as following:

1 - To show hidden file
2 - To not show hidden files

If it doesn't work, then scan your computer with an anti-virus software.


2. Task Manager Disabled:

Using Group Policy Editor - for Windows XP Professional to Enable Task Manager.

* Click Start, Run, type gpedit.msc and click OK.
* Navigate to this branch:

User Configuration / Administrative Templates / System / Ctrl+Alt+Delete Options / Remove Task Manager

* Double-click the Remove Task Manager option.
* Set the policy to Not Configured.

Enable RegEdit [It is not tested]

REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersio
n\Policies\System]
"DisableRegistryTools"=dword:00000000

Save the text file as any name u with extension .reg
example:- "enable.reg"
After that double click to run the file.

Note:DO SCAN YOUR MACHINE WITH A GOOD ANTIVIRUS. BECAUSE THIS PROGRAMS DON'T TURNED OFF BY HIMSELF OR AUTOMATICALLY. IT HAS TO A VIRUS EFFECT OR A ADMINISTRATOR HAS TO MANUALLY DISABLE THIS PROGRAMS.


3. Restore Deleted Recycle Bin Icon from Desktop:

Method #1:
1. Right-click an empty area of your desktop
2. Select Properties
3. Click the Desktop tab
4. Click the Customize button
5. Click Restore Default
6. Exit all windows and restart your computer

Method #2:
Note: Be sure to make a backup copy of your registry prior to making any changes.

Go to Start>> Run. Type in: regedit [Enter]

Navigate to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Desktop\NameSpace

Hold the mouse on NameSpace and right-click once. From the resulting menu, select Edit>> New>> Key

Copy and Paste the following Key code (including the brackets):

{645FF040-5081-101B-9F08-00AA002F954E}

Press Enter on your keyboard, exit the registry editor and restart your system.



4. Blank User Accounts Applet :

Problem:
When you double-click User Accounts applet in the Control Panel, the User Accounts applet opens, but it may be completely blank.

The buttons Back | Forward | Home are displayed in the dialog.

Resolution:
To resolve the problem, type these commands from Start, Run dialog:

regsvr32 jscript.dll

If that does not help, execute the following commands as well.

regsvr32 nusrmgr.cpl
regsvr32 /i mshtml.dll


5. Force windows XP to reboot upon crashing:

This registry edit will cause your system to reboot itself automatically upon crashing. This can be useful if you have a reason for keeping your system on 24/7:


Open REGEDIT

Navigate to 'HKEY_LOCAL_MACHINE\SYSTEM
\CurrentControlSet\Control\CrashControl'

Edit the 'AutoReboot' value to '1'


6. Stand By Icon Disabled:

Problem:
I reinstalled my windows and now "Stand By" option is Grey out in shutdown dialog box and I can't use it.

Sol: Install VGA drivers from your motherboard CD and the option will be enabled. If you don't have the motherboard CD, then go to the manufacturer site and download the required drivers.

7. Improving the Slow Boot up time:

There are a variety of reasons why your windows XP system would boot slowly. Most of the times it this has to do with the startup applications. If you would like to speed up the bootup sequence, consider removing some of the startup applications that you do not need. Easiest way to remove startup apps is through System Configuration Utility. Go to Start then Run and enter MSCONFIG and go to the Startup tab. Deselect/UnCheck application(s) that you do not want to startup at boot time.


8. Regedit Disabled By Admin:

Open Notepad pad, copy paste the following text to the note pad::

REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersio
n\Policies\System]
"DisableRegistryTools"=dword:00000000

Save the text file as any name u with extension .reg

example:- "enable.reg"

After that double click to run the file.

cont.....Next(Part 2)

Download complete websites to your desktop and surf them offline.

Website eXtractor saves you time and effort by downloading entire Internet sites (or the sections you stipulate) to your hard drive.

Whether you browse the web for research, work, or fun, there's nothing worse than having to wait for page after page to load in Internet Explorer or Netscape Navigator (or in other popular browsers). The problem is they will only load one page at a time. So if you are viewing a large website with a thousand pages, you'd have to click the mouse a thousand times ... and ... choose a directory/folder a thousands times when you want to save each file. You end up spending a lot of time waiting around and not enough time reading or viewing pages on the Internet.
Note: Using a regular browser to surf large websites or photo galleries takes the fun out of web browsing and makes research a real chore.
But now, with WebSite eXtractor, you can download whole websites (or parts of them) in one go to your computer. You can then view the whole site offline at your leisure - and you can whiz through the saved pages at lightning speed.
WebSite eXtractor is a great tool for researchers, journalists, students, equity analysts, business and marketing executives - as well as for those who want to browse family websites containing digital photo albums.

Advantages :

• Transfer whole websites to CD-ROM or floppy
• Another big benefit of the program is it changes html-links to relative names. In other words, it turns web addresses (URLs) into addresses that work on your computer.
• Researchers, writers, and journalists can easily archive reference material from the Internet.
• The program can download up to 100 files at a time, which saves you a huge amount of time compared to ordinary browsers.
• Website eXtractor automatically lets you download any files that were not copied due to transfer errors or bad connections.

To download the full version use the given torrent : http://torrents.thepiratebay.org/3655896/Website_eXtractor_9.52_Retail.3655896.TPB.torrent

If you dont have torrent client download from here : http://www.internet-soft.com/DEMO/webextrasetup.exe