Earn Money!
Task Manager has been disabled
Dial a Fix (DAF) is fantastic nifty software. It was developed by DjLizard. The software helps you fixing some Windows problem gleaned info from MS Knowledgebase and other forums. It did helped me to fix some problem of my client's PCs and Laptops especially when their task manager is locked. Have you ever seen this - when you press Ctrl+Alt+DEL, the task manager won't show? it says "Task Manager has been disabled by your administrator" and in fact, you're logon is administrator mode. DAF will fix this in a single click, plus, it can do other useful fixes like Windows Installer, Window Update, SSL/HTTPS/Cryptography and Registration Center.
I have gleaned info of how to unlock the task manager on the Internet, and I found some other utilities that do about the same job. Task Manager Fix is another great freeware utility that could save your day.
Also, you can do this - click Start -> run -> type "regedit" press Enter. Search for
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System
look for DisableTaskMgr, delete it. Close the regedit window.
What is Autorun.inf?
Labels:
Malware,
Troubleshooting
Autorun.inf is a small configuration text file that runs when you insert flashdrive or CD/DVDROM into computer. Initially, it is used to automate CD software installation or presentation. The automation was good but hackers saw the potential to run malicious program into victim's computer. Autorun file is always stored in the root of media. If you browse the media, you will see the file autorun.inf. However, hacker will hide this program. If you want to check whether autorun.inf file is inside your flashdrive, you can do a few things:
- First, open Windows Explorer. Check the drive of your media (Flashdrive, CDROM).
- Click Start button -> run -> type "cmd" (without qoute) and press Enter.
- You will see Command line console. Now type "X:" (without qoute) and press Enter (assume X is your drive)
- Type "dir" (without quote) press Enter. Now, it lists all files on the drive. Do you see "autorun.inf"?
- If you can't see, it might be hidden. Now to see if it's there, type "dir /ah" (without quote) press Enter.
- This time it will show you the hidden files. "/ah" is attribute hidden.
- If autorun.inf is exist, you can unhide it by typing this command "attrib -h -r -s autorun.inf" (without quote) press Enter. This command tells you to -h (minus/remove hide), -r (remove readonly), and -s (remove system).
- The file shows up.
Why I use "-s" and "-r" in my attrib parameter? You can't delete system file. Hacker will set autorun.inf attribute to system. That's the reason we remove the system attribute.
or
Open Windows Explorer, Tools menu, Folder Options. From there choose View and choose Show hidden files and folders.
You will unhide the autorun.inf.
This technique will inform you the existence of the virus/malware by reading command in autorun.inf.
Warning: Do not double click inf file. It will run or install program behind our back. Open notepad (click start -> run -> type "notepad", then open autorun.inf from there) or if your command line console is running, type "notepad autorun.inf" press Enter.
This is the basic content of autorun.inf
[autorun]open=setup.exeicon=icon.ico
When user inserts the media into computer, it will open/run setup.exe. Icon.ico is the icon of your media.
Now, hacker will write autorun.inf like this:
(hacker named YaHaa)
[autorun]shellexecute=wscript.exe autoupdate.dll.vbsThis command will execute VBScript that contain malicious script.This is part of the script (autoupdate.dll.vbs)'VB Worm v1 By YaHaaon error resume nextdim mysource,winpath,flashdrive,fs,mf,atr,tf,rg,nt,check,sdatr = "[autorun]"&vbcrlf&"shellexecute=wscript.exe autoupdate.dll.vbs"set fs = createobject("Scripting.FileSystemObject")set mf = fs.getfile(Wscript.ScriptFullname)dim text,sizesize = mf.sizecheck = mf.drive.drivetypeset text=mf.openastextstream(1,-2)do while not text.atendofstreammysource=mysource&text.readlinemysource=mysource & vbcrlfloopdoSet winpath = fs.getspecialfolder(0)set tf = fs.getfile(winpath & "\autoupdate.dll.vbs")tf.attributes = 32.....
How to get rid of the malware. If it already in the system you can install a good antivirus like Avira. You can download it from www.free-av.com. Another good anti spyware that you can install is the Ad-Aware. You can download from www.lavasoft.com/products/ad_aware_free.php
One program dedicated to guard your flashdrive is called FlashGuard. It is developed by Davis Software and you can download it here http://www.davisr.com/cgi-bin/content/downloads.htm. This nifty software saves my laptop from malicious program that use autorun.inf. It removes the autorun.inf before it acts.
How to fix "Generic Host Process for Win32 Services" Problem
Labels:
Troubleshooting
I was having this problem while accessing the Internet for the past 3 days. After few minutes to hours connected to the Internet, the screen above will popped out. Clicking at "click here" will display the Error signature shown below. After clicking "Send Error Report" or "Don't Send", browsers could not display any page. Checked my Internet connection, everything look fine, it not disconnected or whatsoever.
I searched the net and found out that there were many computers affected or having the same problem as mine and it was happening 2 years ago and still happening!
What is happening here? It seems that some malware or anything related to it trying to exploit the open ports of your computer. Which ports to close? Port 135 and port 445. What is port 135 for? Well, this port should not exposed to the Internet. Hacker will use it to expoit DCOM-related server/service running on user's computer. Port 445 is about Microsoft Directory Services. Opening this port is vulnerable to hacker attack. They are able to upload their malicous files and execute it by using a program like psExec. The worst part are, they can do ANYTHING on your computer. It is very simple to solve this. You just close the door (port), that's it. I use Firewall Leak Tester (www.firewallleaktester.com/wwdc.htm) to close them. Pretty simple but it works, at least for me :)
Bonus:
Do you know what is registry? Find out and save your PC from calamity.
Google New Colors and Theme!
Labels:
Internet
Recently, Google adds new color and theme features to GMail. It spices up your dull GMail to more colorful and vibrant. GMail has not changed much since I first used it in 2005. However, Hotmail then was my first love, that was the email back in 1996(7). Then, I created my Yahoo Mail account in 1998 (if I not mistaken) because they offered bigger space. I am using that faithful email service until today.
Ok, how do I change my color and theme? It is very simple. Click settings on your google menu, choose Themes and then select theme that you prefer.
Blogger.com is down again?!
Labels:
Internet
Blogger server is down "again". This occured at 9PM and it was intermittently on-off till 11PM(+8). At first, I was blaming Celcom Broadband as the service was downed few times this week. I tried other site (Wordpress :)) and theirs is rendered so well on my Google Chrome. It is really annoying, isn't it? Yea, it makes me to think of changing to other weblog providers. However, blogger has been around for sometimes now and we hope for the best as Google will give their piece of "attention". As you know that Blogger was developed by Pyra Labs almost 9 years ago and eventually acquired by Google in 2003. Not until last year (2007) Blogger had move and operated entirely in Google server. Google should has the weight brand and technology to push Blogger better in comparison to other competitors.
Searching the net about bloggers dissatisfaction over the years is greatly noticeable. Although Blogger keeps inform of their server status but it is the maintenance schedule or apologies and not the random unforeseen downtime. Anyway it is a free service, we can only anticipate for the best.
Google Chrome Browser
Labels:
Internet
Google develops a Web Browser called Chrome. It definitely a new comer to web browsing things, however google is google (you know that). Their developers are extremely creative to come up with a cleaner interface but not lacking functionality. I have tried number of browsers and this one approaches the web in different way. Searching is a snap, you simply type your text on the URL, enter, and it search for you (of course they use Google Search). If you look at its interface, it's very neat. It doesn't have a toolbar like other browsers. It seems that Google company's concept always produce a simple design but powerful.
Incognito Window is a feature that allowing user to browse the Internet without a trace. It means no cookies, no passwords or no whatever stored in the host computer. This satisfy the users who're constantly browsing 18sx website (I am not encouraging that :)). It also shows the thumbnails of your recent visited websites.
Downloading file is quite simple, it does not show any dialog but it prompts something at the bottom of the page. It will ask you whether you want to save it or not. But I'd found, sometimes it not displaying the "Save" and "Discard" buttons properly. I hope Chrome developers could fix this littel bug.
Installation. Download this software at http://www.google.com/chrome. Once you download a small setup file, double click,it'll install straight from Google server. At the moment Chrome runs only on Windows XP SP2 and Vista.
EssentialPIM Free
Labels:
Free,
Productivity
PIM stands for Personal Information Management. EssentialPIM is free of its kind. Although it is not complete (as they do have the Pro version) but it is good and just enough. I have PIM that come with my PalmTreo smartphone but it is too small (my eyes getting bad nowadays). One problem that I am having is to sync this software to my trusted Palm (I don't know where on earth I'd kept the data cable!)
Some features of the software:
- Schedule
- To Do
- Notes
- Contacts
- Trash
You can download the free software here.
Subscribe to:
Posts (Atom)