Im happy now,,,Because I have A own domain...and I select DBESWEBDEVELOPER.com..
visit my portfolio website: www.dbestwebdeveloper.com
Monday, June 8, 2009
What will I do.....?
1. I need to know design in photoshop..
2. Enroll again and back to school.
3. going to seminar.
4. Need more knowledge and improving my skills.
5. I will take exam in TESDA and Civil service.
6. Attend in Boot Camp
2. Enroll again and back to school.
3. going to seminar.
4. Need more knowledge and improving my skills.
5. I will take exam in TESDA and Civil service.
6. Attend in Boot Camp
Wednesday, October 29, 2008
Add to Google Top Free Social Networking Software
Do you want to have or start your own Social Networking Site? The pictures below are some of the famous Social Networks today. If you are keen to start your own one, choose from the list below that suits you and download the Social Networking Software and upload it in your domain server.
These are free open Source Social Networking Software. And do let us know when you start one.
Social Networking Softwares
PHPizabi
PHPizabi is one of the most powerful social networking platforms on the planet. With literally thousands of websites powered by PHPizabi including everything from simple friends sites to the most complex networking super sites out there. Easy to install, use, and raising the bar on what it is to provide a reliable, fast, social networking package to raise your business to the next level.
Akarru
Akarru is a social bookmarking engine, is used to build social bookmarkings sites, like www.blogmemes.com. Users posts links and promote links to front page using voting system.
Spree
Spree is an expert search engine where users ask questions to find other participating users, who are knowledgeable in that area and willing to help.
iSocial
iSocial is a free social networking CMS software that allows you to create your own Friendster and Orkut like sites. Use bookmarks, dating and create groups with just one mouse click.
Mahara
Mahara is fully featured electronic portfolio, weblog, resume builder, and social networking system for connecting users and creating online communities.
Yogurt
This is a Social Network module for xoops CMS. You have seen Facebook, Orkut, Myspace , try Yogurt for Xoops!
VMukti
VMukti is a Unified Social Collaborative conferencing engine. Allows access through personalized, mashable web-interface. Core features:- Video conferencing, Audio conferencing, IP Telephony, Desktop sharing, Chat, Whiteboard, Presentation & More.
SNOSS
Social Networking Open Source Software, an open source social networking framework, written in PHP, Javascript and MySQL with an AJAX UI.
OpenSocialNetwork
OpenSocialNetwork is a social network of open source. Its main task is to create a social network releasing the source code.
S3B
S3B - Social Semantic Search and Browsing - is a middleware that delivers a set of search and browsing components that can be used in J2EE web applications to deliver user-oriented features based on semantic descriptions and social networking.
Facelift
Facelift is a visualization and analysis software for online social networking services. It displays a given community as a node-link diagram and provides several search / filtering functions as well as cluster analysis features.
The PeopleAggregator
The PeopleAggregator is a next-generation social networking system that goes beyond the idea of social networks as mating games, and attempts to use open standards, network inter-connectivity and massive flexibility.
Appleseed
Appleseed is (augmented) social networking software, ie Friendster, only distributed. Sites running Appleseed will interoperate, and form the ‘Appleseed Social Network.’ Development is focused on privacy and security, as well as ease of configuration.
Mugshot Project
The Mugshot site lets you track what your friends are doing online across a variety of popular web sites � music, photos, blog posts, and more.
GetBoo
Web 2.0 bookmarking system, both social (with tags) and private (with folders). Import and export your bookmarks from Firefox, IE, Mozilla, Netscape. Admin management section, translations, groups, bookmarklets, Firefox extension, RSS feeds, and more!
Scuttle
Web-based social bookmarking system. Allows multiple users to store, share and tag their favourite links online.
SemanticScuttle
SemanticScuttle is a social bookmarking tool (based on Scuttle) experimenting new features as hierarchical tags, collaborative descriptions or OpenID authentification.
AROUNDMe
Create collaborative social websites (like Ning, Myspace, Yahoo or Google groups). Each group can create a multiple web pages. They get a drop in guestbook, blog, forum and wiki. Each group is fully customizable using xHTML, CSS, Javascript and PHP.
Clonesumating
Clonesumating is the open source version of the code that runs consumating.com. It features many state of the art social networking functions including user profiles, user tagging, matching and discovery based on quirky tag combinations, group activities such as weekly photo contests and blog questions, an event calendar, RSS feeds for everything, etc. It is written primarily in mod_perl.
BeWelcome Rox
Get to know the global village and other cultures, share your place. BW Rox is the platform driving www.bewelcome.org and other social networks, aiming to bring people together in real life. Organize your travel or stay abroad, travelblog, meetings, …
ICEcore
ICEcore open team collaboration software uses social networking to unify team workspaces w/ real-time web conferencing. Collaboration for knowledge networking, program management, communities-of-practice, telework, …
Memephage
Memephage is an automated web log (blog). It passively gathers and summarizes links from various places. Currently: IRC, social MUDs, e-mail, and web browsers. Uses the POE multitasking and networking framework for Perl.
InteractOLE
A platform for the delivery and support of online learning. It differs from many other elearning platforms in that its aim is to concentrate on the social/interactive aspects of teaching and learning rather than the delivery of content to students.
Elgg
Elgg is an open source social networking platform developed for LAMP (Linux, Apache, MySQL, PHP) which encompasses weblogging, file storage, RSS aggregation, personal profiles, FOAF functionality and more.
CommunityNews
CommunityNews uses social bookmarking and bayesian techinques to provide periodic postings to blogs. Users can vote for or against RSS sources ti increase the chances that the source is used again. Spam filtering (bayesian) is provided by spam bayes.
OpenPNE
OpenPNE is a Social Networking Service Engine written in PHP. It has many features(friend control,friend invitation,diary,blog feeds,message box,etc).
MonkeyChow
Feed Aggregator Reader (branched from FeedOnFeeds) with Social Bookmarks (del.icio.us, Blogger, Newsvine, Technorati, mailto), Article Starring, Feed Tagging, OPML, Article Search, Reblogging and Refeeding, Aging, and Edit feed attributes.
NewsCloud
NewsCloud is an open source media platform for citizen journalism and the social news network hosted at NewsCloud.com.
Feed Me Links
Feed Me Links stores your bookmarks online so you can get to them anywhere. Import your favorites and share your links with friends. Add tags to organize your links. Discover new things.
WorldSpace
WorldSpace is a user-extensible shared virtual environment, aimed at being a next-generation social networking system.
Social Networking POC
A networking site on the lines of Orkut.Right now we plan to build it on Jboss seam and use a Java content management system like apache Jackrabbit as the backend. It would be more of a POC than an actual commercial app.
Zoints
Zoints is intimately aware that online communities are the most important aspect of the internet. Our free software solutions are designed to help solve the three major problems forum owners face: Member acquisition, Member retention and Profitability.
earth-life-simulation
A simulation of the world, there will be a global map representation and players can choose a country or civilization and develop it’s social, political and military existence.
Ozcode
Ozcode is the source code behind Ozmozr.com, a microformat-aware RSS aggregator, social networking, resource sharing, identity aggregation and presentation site.
TallStreet
TallStreet.com is a new search engine concept where users make investments, with fictional money, in their favourite websites and the rankings are determined entirely by the users.
Jamss
Jamss is a social news site based off of Digg.com. Jamss allows for peer submission and review of web articles and can be adapted to fit a variety of themes. Jamss runs on PHP/MySQL.
Dolphin
Dolphin is open-source and free, although there is a cost associated with removing the company�s links from your site.
Ospo
Ospo is an opensource social portal project. It use standard function (add, remove friends, top10), forums integration, music module (artists directory with albums, songs), shoutcast integration, blog (add, delete, modify, view) and so on.
AstroSPACES
AstroSPACES is the world’s first open source social networking solution. Coded from scratch, it is highly efficient and very easy to use.
FlightFeather
FlightFeather’s goal is "social networking for everyone". This means that anyone should have a chance to run a popular social networking site — on minimal hardware, and without wasting bandwidth.
These are free open Source Social Networking Software. And do let us know when you start one.
Social Networking Softwares
PHPizabi
PHPizabi is one of the most powerful social networking platforms on the planet. With literally thousands of websites powered by PHPizabi including everything from simple friends sites to the most complex networking super sites out there. Easy to install, use, and raising the bar on what it is to provide a reliable, fast, social networking package to raise your business to the next level.
Akarru
Akarru is a social bookmarking engine, is used to build social bookmarkings sites, like www.blogmemes.com. Users posts links and promote links to front page using voting system.
Spree
Spree is an expert search engine where users ask questions to find other participating users, who are knowledgeable in that area and willing to help.
iSocial
iSocial is a free social networking CMS software that allows you to create your own Friendster and Orkut like sites. Use bookmarks, dating and create groups with just one mouse click.
Mahara
Mahara is fully featured electronic portfolio, weblog, resume builder, and social networking system for connecting users and creating online communities.
Yogurt
This is a Social Network module for xoops CMS. You have seen Facebook, Orkut, Myspace , try Yogurt for Xoops!
VMukti
VMukti is a Unified Social Collaborative conferencing engine. Allows access through personalized, mashable web-interface. Core features:- Video conferencing, Audio conferencing, IP Telephony, Desktop sharing, Chat, Whiteboard, Presentation & More.
SNOSS
Social Networking Open Source Software, an open source social networking framework, written in PHP, Javascript and MySQL with an AJAX UI.
OpenSocialNetwork
OpenSocialNetwork is a social network of open source. Its main task is to create a social network releasing the source code.
S3B
S3B - Social Semantic Search and Browsing - is a middleware that delivers a set of search and browsing components that can be used in J2EE web applications to deliver user-oriented features based on semantic descriptions and social networking.
Facelift
Facelift is a visualization and analysis software for online social networking services. It displays a given community as a node-link diagram and provides several search / filtering functions as well as cluster analysis features.
The PeopleAggregator
The PeopleAggregator is a next-generation social networking system that goes beyond the idea of social networks as mating games, and attempts to use open standards, network inter-connectivity and massive flexibility.
Appleseed
Appleseed is (augmented) social networking software, ie Friendster, only distributed. Sites running Appleseed will interoperate, and form the ‘Appleseed Social Network.’ Development is focused on privacy and security, as well as ease of configuration.
Mugshot Project
The Mugshot site lets you track what your friends are doing online across a variety of popular web sites � music, photos, blog posts, and more.
GetBoo
Web 2.0 bookmarking system, both social (with tags) and private (with folders). Import and export your bookmarks from Firefox, IE, Mozilla, Netscape. Admin management section, translations, groups, bookmarklets, Firefox extension, RSS feeds, and more!
Scuttle
Web-based social bookmarking system. Allows multiple users to store, share and tag their favourite links online.
SemanticScuttle
SemanticScuttle is a social bookmarking tool (based on Scuttle) experimenting new features as hierarchical tags, collaborative descriptions or OpenID authentification.
AROUNDMe
Create collaborative social websites (like Ning, Myspace, Yahoo or Google groups). Each group can create a multiple web pages. They get a drop in guestbook, blog, forum and wiki. Each group is fully customizable using xHTML, CSS, Javascript and PHP.
Clonesumating
Clonesumating is the open source version of the code that runs consumating.com. It features many state of the art social networking functions including user profiles, user tagging, matching and discovery based on quirky tag combinations, group activities such as weekly photo contests and blog questions, an event calendar, RSS feeds for everything, etc. It is written primarily in mod_perl.
BeWelcome Rox
Get to know the global village and other cultures, share your place. BW Rox is the platform driving www.bewelcome.org and other social networks, aiming to bring people together in real life. Organize your travel or stay abroad, travelblog, meetings, …
ICEcore
ICEcore open team collaboration software uses social networking to unify team workspaces w/ real-time web conferencing. Collaboration for knowledge networking, program management, communities-of-practice, telework, …
Memephage
Memephage is an automated web log (blog). It passively gathers and summarizes links from various places. Currently: IRC, social MUDs, e-mail, and web browsers. Uses the POE multitasking and networking framework for Perl.
InteractOLE
A platform for the delivery and support of online learning. It differs from many other elearning platforms in that its aim is to concentrate on the social/interactive aspects of teaching and learning rather than the delivery of content to students.
Elgg
Elgg is an open source social networking platform developed for LAMP (Linux, Apache, MySQL, PHP) which encompasses weblogging, file storage, RSS aggregation, personal profiles, FOAF functionality and more.
CommunityNews
CommunityNews uses social bookmarking and bayesian techinques to provide periodic postings to blogs. Users can vote for or against RSS sources ti increase the chances that the source is used again. Spam filtering (bayesian) is provided by spam bayes.
OpenPNE
OpenPNE is a Social Networking Service Engine written in PHP. It has many features(friend control,friend invitation,diary,blog feeds,message box,etc).
MonkeyChow
Feed Aggregator Reader (branched from FeedOnFeeds) with Social Bookmarks (del.icio.us, Blogger, Newsvine, Technorati, mailto), Article Starring, Feed Tagging, OPML, Article Search, Reblogging and Refeeding, Aging, and Edit feed attributes.
NewsCloud
NewsCloud is an open source media platform for citizen journalism and the social news network hosted at NewsCloud.com.
Feed Me Links
Feed Me Links stores your bookmarks online so you can get to them anywhere. Import your favorites and share your links with friends. Add tags to organize your links. Discover new things.
WorldSpace
WorldSpace is a user-extensible shared virtual environment, aimed at being a next-generation social networking system.
Social Networking POC
A networking site on the lines of Orkut.Right now we plan to build it on Jboss seam and use a Java content management system like apache Jackrabbit as the backend. It would be more of a POC than an actual commercial app.
Zoints
Zoints is intimately aware that online communities are the most important aspect of the internet. Our free software solutions are designed to help solve the three major problems forum owners face: Member acquisition, Member retention and Profitability.
earth-life-simulation
A simulation of the world, there will be a global map representation and players can choose a country or civilization and develop it’s social, political and military existence.
Ozcode
Ozcode is the source code behind Ozmozr.com, a microformat-aware RSS aggregator, social networking, resource sharing, identity aggregation and presentation site.
TallStreet
TallStreet.com is a new search engine concept where users make investments, with fictional money, in their favourite websites and the rankings are determined entirely by the users.
Jamss
Jamss is a social news site based off of Digg.com. Jamss allows for peer submission and review of web articles and can be adapted to fit a variety of themes. Jamss runs on PHP/MySQL.
Dolphin
Dolphin is open-source and free, although there is a cost associated with removing the company�s links from your site.
Ospo
Ospo is an opensource social portal project. It use standard function (add, remove friends, top10), forums integration, music module (artists directory with albums, songs), shoutcast integration, blog (add, delete, modify, view) and so on.
AstroSPACES
AstroSPACES is the world’s first open source social networking solution. Coded from scratch, it is highly efficient and very easy to use.
FlightFeather
FlightFeather’s goal is "social networking for everyone". This means that anyone should have a chance to run a popular social networking site — on minimal hardware, and without wasting bandwidth.
Tuesday, October 28, 2008
Earn Money with your friendster account!
How It Works
1. You Paste Ad Code On Your App.
Displaying Cubics ads on your application is as easy as adding a small piece of code on your application.
2. Targeted Ads Are Displayed.
Cubics immediately begins displaying highly-targetted ads on your application. Each ad is specifically targetted based upon each users demographic information and location.
3. Users View Ads - You Get Paid.
You get paid for every ad shown!
Getting Paid
Check or Paypal -- You Decide
You can get paid via check or via paypal, whichever you prefer. You can also set the minimum amount that you would like to be paid out and your prefered payment frequency.
How Much You Get Paid
The amount that you are paid depends on a number of factors including the type of ad you display and the quantity and quality of the clicks on your ads. Cubics is a CPM network, meaning that you get paid for every ad shown -- not just for clicks.
Advantages
Flexibility
Cubics allows you to rotate in your own ads or ads from another network along-with Cubics ads. For example, you can specify that you would like to show Cubics ads 80% of the time and another ad networks ads 20% of the time.
User-Level Targeting
Cubics targets ads based upon the individual details of each of your application's users. This results in individually targeted ads instead of ads just targeted by content.
Frequent, Quick Payments.
Get paid as often as once a week via Paypal. No need to wait forever to get paid.
What do I need to get started?
The sign-up process is relatively simple.
Go to the Publisher Account Creation page, fill in your information and hit the Create Account button. Cubics will require an e-mail, a name, a phone number and a mailing address.
You'll be logged into the system and sent a confirmation e-mail. From here you can select a platform (Facebook, Bebo, Myspace, etc.) and an ad size. Your code will be in the box at the bottom of the screen, just copy-paste into your app.
For more customization, you can select display colors for the ad. Changing these colors will update the code at the bottom of the screent.
Is there anything else?
By default, you'll be paid weekly via Paypal, but only for balances above $50. To change your payment schedule or to get paid by check, click on My Account and then Payment Settings.
If you are located in the US, you will also be required to fill out your tax information on the appropriate tab. Cubics (by Adknowledge) requires this information (equivalent to submitting a W9) to provide you with a 1099 form at the end of the year.
Click here to register!http://cubics.com/
1. You Paste Ad Code On Your App.
Displaying Cubics ads on your application is as easy as adding a small piece of code on your application.
2. Targeted Ads Are Displayed.
Cubics immediately begins displaying highly-targetted ads on your application. Each ad is specifically targetted based upon each users demographic information and location.
3. Users View Ads - You Get Paid.
You get paid for every ad shown!
Getting Paid
Check or Paypal -- You Decide
You can get paid via check or via paypal, whichever you prefer. You can also set the minimum amount that you would like to be paid out and your prefered payment frequency.
How Much You Get Paid
The amount that you are paid depends on a number of factors including the type of ad you display and the quantity and quality of the clicks on your ads. Cubics is a CPM network, meaning that you get paid for every ad shown -- not just for clicks.
Advantages
Flexibility
Cubics allows you to rotate in your own ads or ads from another network along-with Cubics ads. For example, you can specify that you would like to show Cubics ads 80% of the time and another ad networks ads 20% of the time.
User-Level Targeting
Cubics targets ads based upon the individual details of each of your application's users. This results in individually targeted ads instead of ads just targeted by content.
Frequent, Quick Payments.
Get paid as often as once a week via Paypal. No need to wait forever to get paid.
What do I need to get started?
The sign-up process is relatively simple.
Go to the Publisher Account Creation page, fill in your information and hit the Create Account button. Cubics will require an e-mail, a name, a phone number and a mailing address.
You'll be logged into the system and sent a confirmation e-mail. From here you can select a platform (Facebook, Bebo, Myspace, etc.) and an ad size. Your code will be in the box at the bottom of the screen, just copy-paste into your app.
For more customization, you can select display colors for the ad. Changing these colors will update the code at the bottom of the screent.
Is there anything else?
By default, you'll be paid weekly via Paypal, but only for balances above $50. To change your payment schedule or to get paid by check, click on My Account and then Payment Settings.
If you are located in the US, you will also be required to fill out your tax information on the appropriate tab. Cubics (by Adknowledge) requires this information (equivalent to submitting a W9) to provide you with a 1099 form at the end of the year.
Click here to register!http://cubics.com/
Thursday, July 31, 2008
Windows XP - Create one click shutdown shortcut
Let’s go for XP tip for today. But before that, as you can see, I have used a custom domain for my blog. I’ve moved my blog from http://dx-xel.blogspot.com/ to http://dx-xel.net/. All of my previous blog URLs will be redirect to my brand new domain. It was pretty cool. Hehe.. Next time, I will show you step by step on how I move my blog to my own domain.
Ok, back to the topic. This is how you can create a shortcut on your desktop and when ever you click at it, your Windows will be shutdown.
Step 1
Right click on your desktop > New > Shortcut
Step 2
You will see a pop-up window. Enter SHUTDOWN -s -t 01
Note: Enter c:\windows\rundll.exe user.exe,exitwindows (if you’re using Windows95, Windows98 or ME)
Click the Next button and name the shortcut as Shutdown, Turn Off, Stop or whatever. Then click Finish. DONE.
Optional:
1. You can make a keyboard shortcut for that icon and by pressing them, you will be able to shutdown Windows. Right click to that shortcut icon > Properties. Click the Shortcut key’s textbox and press the combination of keys that you prefer (e.g. Ctrl-Alt-Q)
Click the Apply button and then OK.
2. You also can change the shortcut icon. (Image at the top). Right click to the shortcut > Properties and click the Change Icon… button. Select any icon you prefer, click OK. Then, click the Apply and OK button.
By now, you should be able to shutdown Windows with a single click. That’s all for today…Yeahh!!!
HijackThis Tutorial Essential program to help remove spyware
What is HijackThis?
HijackThis is a program originally developed by Merijn Bellekom, a Dutch student studying chemistry and computer science. One of Merijn's programs, Hijackthis, is an essential utility to help find and remove spyware, viruses, worms, trojans and other pests.
This is a basic guide to understanding the HijackThis logs, what specific sections mean and some tips on reading it yourself. Although its best to have a knowledgeable person help you examine the Hijackthis log and decide what to remove, its helpful to have a basic understanding of what the different sections mean and how they work.
In March 2007, Merijn sold Hijackthis to TrendMicro because he didnt have the time and energy to update it and support it. Trend Micro has incorporated many of Merijn's changes, updates, and fixes and released a version 2 of Hijackthis.
Download HijackThis
To Download the original Hijackthis, click on the following link.
http://www.pchell.com/downloads/HijackThis.exe
To Download the NEW HijackThis 2.0, click below
http://www.trendsecure.com/portal/en-US/threat_analytics/hijackthis.php
New Features
The newest feature of HijackThis 2.0 is a button called AnalyzeThis that will upload your HijackThis log to the TrendSecure website and compare it to other uploaded log files. You can see a sample screenshot by clicking here. Unfortunately I was hoping for more from this feature, although it does give you a rough estimate of the number of users that have a particular file in their logs as well. For the novice user however this doesnt explain WHAT the file does and if its really a threat or not. A better online tool to analyze the Hijackthis logs is found at http://www.hijackthis.de. There you can either cut and paste a copy of your HijackThis log or upload a log file from your computer to analyze. This information returned from the HijackThis.DE site is much more helpful in determining good and bad items in the log. For a screenshot of the Hijackthis.de analysis click here.
There appear to be other minor modifications as well.
Overview of items in the HijackThis logs
Each line in a HijackThis log starts with a section name. (For technical information on this, click 'Info' in the main window and scroll down. Highlight a line and click 'More info on this item'.)
R0, R1, R2, R3 - IE Start & Search page
R0 - Changed registry value
R1 - Created registry value
R2 - Created registry key
R3 - Created extra registry value where only one should be
What it looks like:
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page=http://www.google.com/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL=http://www.google.com/
R3 - Default URLSearchHook is missing
What to do:
If you recognize the URL at the end as your homepage or search engine, it's OK. If you don't, check it and have HijackThis fix it. In cases like a hijacker you may want to leave them til later but in general if you dont recognize it, fix it.
For the R3 items, always fix them unless it mentions a program you recognize.
F0, F1, F2, F3 - Autoloading programs
F0 - Changed inifile value
F1 - Created inifile value
F2 - Changed inifile value, mapped to Registry
F3 - Created inifile value, mapped to Registry
What it looks like:
F0 - system.ini: Shell=Explorer.exe Openme.exe
F1 - win.ini: run=hpfsched
What to do:
The F0 items are always bad, so fix them.
The F1 items are usually very old programs that are safe, so you should find some more info on the filename to see if it's good or bad.
N1, N2, N3, N4 - Netscape/Mozilla Start & Search page
N1 - Change in prefs.js of Netscape 4.x
N2 - Change in prefs.js of Netscape 6
N3 - Change in prefs.js of Netscape 7
N4 - Change in prefs.js of Mozilla
What it looks like:
N1 - Netscape 4: user_pref("browser.startup.homepage", "www.google.com"); (C:Program FilesNetscapeUsersdefaultprefs.js)
N2 - Netscape 6: user_pref("browser.startup.homepage", "http://www.google.com"); (C:Documents and SettingsUserApplication DataMozillaProfilesdefaulto9t1tfl.sltprefs.js)
N2 - Netscape 6: user_pref("browser.search.defaultengine", "engine://C%3A%5CProgram%20Files%5CNetscape%206%5Csearchplugins%5CSBWeb_02.src"); (C:Documents and SettingsUserApplication DataMozillaProfilesdefaulto9t1tfl.sltprefs.js)
What to do:
Usually the Netscape and Mozilla homepage and search page are safe. They rarely get hijacked. Should you see an URL you don't recognize as your homepage or search page, have HijackThis fix it.
O1 - Hosts file redirection
What it looks like:
O1 - Hosts: 216.177.73.139 auto.search.msn.com
O1 - Hosts: 216.177.73.139 search.netscape.com
O1 - Hosts: 216.177.73.139 ieautosearch
What to do:
This hijack will redirect the address to the right to the IP address to the left. If the IP does not belong to the address, you will be redirected to a wrong site everytime you enter the address. You can always have HijackThis fix these, unless you knowingly put those lines in your Hosts file.
O2 - Browser Helper Objects
What it looks like:
O2 - BHO: Yahoo! Companion BHO - {13F537F0-AF09-11d6-9029-0002B31F9E59} - C:PROGRAM FILESYAHOO!COMPANIONYCOMP5_0_2_4.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll
What to do:
If you don't directly recognize a Browser Helper Object's name, use TonyK's BHO List to find it by the class ID (CLSID, the number between curly brackets) and see if it's good or bad. In the BHO List, 'X' means spyware and 'L' means safe. Or Upload your Hijackthis log to the Online HijackThis Analyzer and see if its safe.
O3 - IE toolbars
What it looks like:
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:PROGRAM FILES\YAHOO!COMPANION\YCOMP5_0_2_4.DLL
O3 - Toolbar: Popup Eliminator - {86BCA93E-457B-4054-AFB0-E428DA1563E1} - C:PROGRAM FILES\POPUP ELIMINATOR\PETOOLBAR401.DLL (file missing)
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll
What to do:
If you don't directly recognize a toolbar's name, use TonyK's Toolbar List to find it by the class ID (CLSID, the number between curly brackets) and see if it's good or bad. In the Toolbar List, 'X' means spyware and 'L' means safe.
If it's not on the list and the name seems a random string of characters and the file is somewhere in a folder named 'Application Data', it's definitely bad, and you should have HijackThis fix it. Or Upload your Hijackthis log to the Online HijackThis Analyzer and see if its safe.
O4 - Autoloading programs from Registry
What it looks like:
O4 - HKLM..Run: [ScanRegistry] C:WINDOWSscanregw.exe /autorun
O4 - HKLM..Run: [SystemTray] SysTray.Exe
O4 - HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"
O4 - Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOfficeOSA9.EXE
What to do:
Use PacMan's Startup List to find the entry and see if it's good or bad.
O5 - IE Options not visible in Control Panel
What it looks like:
O5 - control.ini: inetcpl.cpl=no
What to do:
Unless you've knowingly hidden the icon from Control Panel, have HijackThis fix it.
O6 - IE Options access restricted by Administrator
What it looks like:
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present
What to do:
Unless you have the Spybot S&D option 'Lock homepage from changes' active, have HijackThis fix this.
O7 - Regedit access restricted by Administrator
What it looks like:
O7 - HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem, DisableRegedit=1
What to do:
Always have HijackThis fix this.
O8 - Extra items in IE right-click menu
What it looks like:
O8 - Extra context menu item: &Google Search - res://C:WINDOWSDOWNLOADED PROGRAM FILESGOOGLETOOLBAR_EN_1.1.68-DELEON.DLL/cmsearch.html
O8 - Extra context menu item: Yahoo! Search - file:///C:Program FilesYahoo!Common/ycsrch.htm
What to do:
If you don't recognize the name of the item in the right-click menu in IE, have HijackThis fix it.
O9 - Extra buttons on main IE toolbar, or extra items in IE 'Tools' menu
What it looks like:
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Messenger (HKLM)
O9 - Extra button: AIM (HKLM)
What to do:
If you don't recognize the name of the button or menuitem, have HijackThis fix it.
O10 - Winsock hijackers
What it looks like:
O10 - Hijacked Internet access by New.Net
O10 - Broken Internet access because of LSP provider 'c:progra~1\common~2\toolbarcnmib.dll' missing
O10 - Unknown file in Winsock LSP: c:program files\newton knows\vmain.dll
What to do:
It's best to fix these using LSPFix from Cexx.org or WinsockXPFix
O11 - Extra group in IE 'Advanced Options' window
What it looks like:
O11 - Options group: [CommonName] CommonName
What to do:
The only hijacker as of now that adds its own options group to the IE Advanced Options window is CommonName. So you can always have HijackThis fix this.
O12 - IE plugins
What it looks like:
O12 - Plugin for .spop: C:Program Files\Internet Explorer\Plugins\NPDocBox.dll
O12 - Plugin for .PDF: C:Program Files\Internet Explorer\PLUGINS\ppdf32.dll
What to do:
Most of the time these are safe. Only OnFlow adds a plugin here that you don't want (.ofb).
O13 - IE DefaultPrefix hijack
What it looks like:
O13 - DefaultPrefix: http://www.pixpox.com/cgi-bin/click.pl?url=
O13 - WWW Prefix: http://prolivation.com/cgi-bin/r.cgi?
What to do:
These are always bad. Have HijackThis fix them.
O14 - 'Reset Web Settings' hijack
What it looks like:
O14 - IERESET.INF: START_PAGE_URL=http://www.searchalot.com
What to do:
If the URL is not the provider of your computer or your ISP, have HijackThis fix it.
O15 - Unwanted site in Trusted Zone
What it looks like:
O15 - Trusted Zone: http://www.badspyware.com
What to do:
Many different spyware and adware programs will add items to the Tursted Zone. In most cases, you'll want to remove these with HijackThis.
O16 - ActiveX Objects (aka Downloaded Program Files)
What it looks like:
O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
What to do:
If you don't recognize the name of the object, or the URL it was downloaded from, have HijackThis fix it. If the name or URL contains words like 'dialer', 'casino', 'free_plugin' etc, definitely fix it.
O17 - Lop.com domain hijacks
What it looks like:
O17 - HKLMSystemCCSServicesVxDMSTCP: Domain = aoldsl.net
O17 - HKLMSystemCCSServicesTcpipParameters: Domain = W21944.find-quick.com
O17 - HKLMSoftware..Telephony: DomainName = W21944.find-quick.com
O17 - HKLMSystemCCSServicesTcpip..{D196AB38-4D1F-45C1-9108-46D367F19F7E}: Domain = W21944.find-quick.com
What to do:
If the domain is not from your ISP or company network, have HijackThis fix it. You may want to run the Lop.com uninstaller as well to clean up misc Lop problems.
O18 - Extra protocols and protocol hijackers
What it looks like:
O18 - Protocol: relatedlinks - {5AB65DD4-01FB-44D5-9537-3767AB80F790} - C:PROGRA~1\COMMON~1\MSIETS\msielink.dll
O18 - Protocol: mctp - {d7b95390-b1c5-11d0-b111-0080c712fe82}
O18 - Protocol hijack: http - {66993893-61B8-47DC-B10D-21E0C86DD9C8}
What to do:
Only a few hijackers show up here. The known baddies are 'cn' (CommonName), 'ayb' (Lop.com) and 'relatedlinks' (Huntbar), you should have HijackThis fix those. Other things that show up are either not confirmed safe yet, or are hijacked by spyware. In the last case, have HijackThis fix it.
O19 - User style sheet hijack
What it looks like:
O19 - User style sheet: c:WINDOWS\Java\my.css
What to do:
In the case of a browser slowdown and frequent popups, have HijackThis fix this item if it shows up in the log.
O20 - AppInit_DLLs autorun Registry value, Winlogon Notify Registry keys
What it looks like:
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O20 - Winlogon Notify: msupdate - C:\WINDOWS\SYSTEM32\msupdate32.dll
O20 - Winlogon Notify: dvd4free - C:\WINDOWS\SYSTEM32\dvd4free.dll
What to do:
Although some of these files are legitimate, many are spyware/adware hijacks that need to be removed. You can research files in this list by visiting CastleCops 020 List or upload your log to the Hijackthis.de Online Analyzer
O21 - ShellServiceObjectDelayLoad (SSODL) autorun Registry key
What it looks like:
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: Trayz - {F5B7D0BE-5f02-4211-96DB-386DFA244900} - C:\WINDOWS\lghngdne.dll
What to do:
Not all entries are bad, but you should check CastleCops 021 List and the Online Hijackthis Analyzer to verify before deleting an entry.
O22 - SharedTaskScheduler autorun Registry key
What it looks like:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
What to do:
Again, many of these entries are good. The old version of Hijackthis 1.99 didnt check this section, while Hijack version 2 does. SmitFraud attacks usually hide here. Check the CastleCops 022 List and Online Hijackthis Analyzer if you are unsure before deleting.
O23 - Enumeration of NT Services
What it looks like:
O23 - Service: AlfaCleanerService - AlfaCleaner.com - C:\Program Files\AlfaCleaner\ACServer.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - D:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Remote Procedure Call (RPC) Helper - Unknown - C:\WINDOWS\system32\sdkkv32.exe
What to do:
These are services which are loaded by the Service Control Manager in Windows 2000, XP, and Vista. They are generally loaded at bootup, before a user logs in. Firewalls and other important programs but rogue cleaning programs like AlfaCleaner may also load here. Check the CastleCops 023 List and Online Hijackthis Analyzer if you are unsure before deleting.
O24 - Enumeration of ActiveX Desktop Components
What it looks like:
What to do:
HijackThis is a program originally developed by Merijn Bellekom, a Dutch student studying chemistry and computer science. One of Merijn's programs, Hijackthis, is an essential utility to help find and remove spyware, viruses, worms, trojans and other pests.
This is a basic guide to understanding the HijackThis logs, what specific sections mean and some tips on reading it yourself. Although its best to have a knowledgeable person help you examine the Hijackthis log and decide what to remove, its helpful to have a basic understanding of what the different sections mean and how they work.
In March 2007, Merijn sold Hijackthis to TrendMicro because he didnt have the time and energy to update it and support it. Trend Micro has incorporated many of Merijn's changes, updates, and fixes and released a version 2 of Hijackthis.
Download HijackThis
To Download the original Hijackthis, click on the following link.
http://www.pchell.com/downloads/HijackThis.exe
To Download the NEW HijackThis 2.0, click below
http://www.trendsecure.com/portal/en-US/threat_analytics/hijackthis.php
New Features
The newest feature of HijackThis 2.0 is a button called AnalyzeThis that will upload your HijackThis log to the TrendSecure website and compare it to other uploaded log files. You can see a sample screenshot by clicking here. Unfortunately I was hoping for more from this feature, although it does give you a rough estimate of the number of users that have a particular file in their logs as well. For the novice user however this doesnt explain WHAT the file does and if its really a threat or not. A better online tool to analyze the Hijackthis logs is found at http://www.hijackthis.de. There you can either cut and paste a copy of your HijackThis log or upload a log file from your computer to analyze. This information returned from the HijackThis.DE site is much more helpful in determining good and bad items in the log. For a screenshot of the Hijackthis.de analysis click here.
There appear to be other minor modifications as well.
Overview of items in the HijackThis logs
Each line in a HijackThis log starts with a section name. (For technical information on this, click 'Info' in the main window and scroll down. Highlight a line and click 'More info on this item'.)
R0, R1, R2, R3 - IE Start & Search page
R0 - Changed registry value
R1 - Created registry value
R2 - Created registry key
R3 - Created extra registry value where only one should be
What it looks like:
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page=http://www.google.com/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL=http://www.google.com/
R3 - Default URLSearchHook is missing
What to do:
If you recognize the URL at the end as your homepage or search engine, it's OK. If you don't, check it and have HijackThis fix it. In cases like a hijacker you may want to leave them til later but in general if you dont recognize it, fix it.
For the R3 items, always fix them unless it mentions a program you recognize.
F0, F1, F2, F3 - Autoloading programs
F0 - Changed inifile value
F1 - Created inifile value
F2 - Changed inifile value, mapped to Registry
F3 - Created inifile value, mapped to Registry
What it looks like:
F0 - system.ini: Shell=Explorer.exe Openme.exe
F1 - win.ini: run=hpfsched
What to do:
The F0 items are always bad, so fix them.
The F1 items are usually very old programs that are safe, so you should find some more info on the filename to see if it's good or bad.
N1, N2, N3, N4 - Netscape/Mozilla Start & Search page
N1 - Change in prefs.js of Netscape 4.x
N2 - Change in prefs.js of Netscape 6
N3 - Change in prefs.js of Netscape 7
N4 - Change in prefs.js of Mozilla
What it looks like:
N1 - Netscape 4: user_pref("browser.startup.homepage", "www.google.com"); (C:Program FilesNetscapeUsersdefaultprefs.js)
N2 - Netscape 6: user_pref("browser.startup.homepage", "http://www.google.com"); (C:Documents and SettingsUserApplication DataMozillaProfilesdefaulto9t1tfl.sltprefs.js)
N2 - Netscape 6: user_pref("browser.search.defaultengine", "engine://C%3A%5CProgram%20Files%5CNetscape%206%5Csearchplugins%5CSBWeb_02.src"); (C:Documents and SettingsUserApplication DataMozillaProfilesdefaulto9t1tfl.sltprefs.js)
What to do:
Usually the Netscape and Mozilla homepage and search page are safe. They rarely get hijacked. Should you see an URL you don't recognize as your homepage or search page, have HijackThis fix it.
O1 - Hosts file redirection
What it looks like:
O1 - Hosts: 216.177.73.139 auto.search.msn.com
O1 - Hosts: 216.177.73.139 search.netscape.com
O1 - Hosts: 216.177.73.139 ieautosearch
What to do:
This hijack will redirect the address to the right to the IP address to the left. If the IP does not belong to the address, you will be redirected to a wrong site everytime you enter the address. You can always have HijackThis fix these, unless you knowingly put those lines in your Hosts file.
O2 - Browser Helper Objects
What it looks like:
O2 - BHO: Yahoo! Companion BHO - {13F537F0-AF09-11d6-9029-0002B31F9E59} - C:PROGRAM FILESYAHOO!COMPANIONYCOMP5_0_2_4.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Adobe\Acrobat 5.0\Acrobat\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll
What to do:
If you don't directly recognize a Browser Helper Object's name, use TonyK's BHO List to find it by the class ID (CLSID, the number between curly brackets) and see if it's good or bad. In the BHO List, 'X' means spyware and 'L' means safe. Or Upload your Hijackthis log to the Online HijackThis Analyzer and see if its safe.
O3 - IE toolbars
What it looks like:
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:PROGRAM FILES\YAHOO!COMPANION\YCOMP5_0_2_4.DLL
O3 - Toolbar: Popup Eliminator - {86BCA93E-457B-4054-AFB0-E428DA1563E1} - C:PROGRAM FILES\POPUP ELIMINATOR\PETOOLBAR401.DLL (file missing)
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll
What to do:
If you don't directly recognize a toolbar's name, use TonyK's Toolbar List to find it by the class ID (CLSID, the number between curly brackets) and see if it's good or bad. In the Toolbar List, 'X' means spyware and 'L' means safe.
If it's not on the list and the name seems a random string of characters and the file is somewhere in a folder named 'Application Data', it's definitely bad, and you should have HijackThis fix it. Or Upload your Hijackthis log to the Online HijackThis Analyzer and see if its safe.
O4 - Autoloading programs from Registry
What it looks like:
O4 - HKLM..Run: [ScanRegistry] C:WINDOWSscanregw.exe /autorun
O4 - HKLM..Run: [SystemTray] SysTray.Exe
O4 - HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"
O4 - Startup: Microsoft Office.lnk = C:Program FilesMicrosoft OfficeOfficeOSA9.EXE
What to do:
Use PacMan's Startup List to find the entry and see if it's good or bad.
O5 - IE Options not visible in Control Panel
What it looks like:
O5 - control.ini: inetcpl.cpl=no
What to do:
Unless you've knowingly hidden the icon from Control Panel, have HijackThis fix it.
O6 - IE Options access restricted by Administrator
What it looks like:
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present
What to do:
Unless you have the Spybot S&D option 'Lock homepage from changes' active, have HijackThis fix this.
O7 - Regedit access restricted by Administrator
What it looks like:
O7 - HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem, DisableRegedit=1
What to do:
Always have HijackThis fix this.
O8 - Extra items in IE right-click menu
What it looks like:
O8 - Extra context menu item: &Google Search - res://C:WINDOWSDOWNLOADED PROGRAM FILESGOOGLETOOLBAR_EN_1.1.68-DELEON.DLL/cmsearch.html
O8 - Extra context menu item: Yahoo! Search - file:///C:Program FilesYahoo!Common/ycsrch.htm
What to do:
If you don't recognize the name of the item in the right-click menu in IE, have HijackThis fix it.
O9 - Extra buttons on main IE toolbar, or extra items in IE 'Tools' menu
What it looks like:
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Messenger (HKLM)
O9 - Extra button: AIM (HKLM)
What to do:
If you don't recognize the name of the button or menuitem, have HijackThis fix it.
O10 - Winsock hijackers
What it looks like:
O10 - Hijacked Internet access by New.Net
O10 - Broken Internet access because of LSP provider 'c:progra~1\common~2\toolbarcnmib.dll' missing
O10 - Unknown file in Winsock LSP: c:program files\newton knows\vmain.dll
What to do:
It's best to fix these using LSPFix from Cexx.org or WinsockXPFix
O11 - Extra group in IE 'Advanced Options' window
What it looks like:
O11 - Options group: [CommonName] CommonName
What to do:
The only hijacker as of now that adds its own options group to the IE Advanced Options window is CommonName. So you can always have HijackThis fix this.
O12 - IE plugins
What it looks like:
O12 - Plugin for .spop: C:Program Files\Internet Explorer\Plugins\NPDocBox.dll
O12 - Plugin for .PDF: C:Program Files\Internet Explorer\PLUGINS\ppdf32.dll
What to do:
Most of the time these are safe. Only OnFlow adds a plugin here that you don't want (.ofb).
O13 - IE DefaultPrefix hijack
What it looks like:
O13 - DefaultPrefix: http://www.pixpox.com/cgi-bin/click.pl?url=
O13 - WWW Prefix: http://prolivation.com/cgi-bin/r.cgi?
What to do:
These are always bad. Have HijackThis fix them.
O14 - 'Reset Web Settings' hijack
What it looks like:
O14 - IERESET.INF: START_PAGE_URL=http://www.searchalot.com
What to do:
If the URL is not the provider of your computer or your ISP, have HijackThis fix it.
O15 - Unwanted site in Trusted Zone
What it looks like:
O15 - Trusted Zone: http://www.badspyware.com
What to do:
Many different spyware and adware programs will add items to the Tursted Zone. In most cases, you'll want to remove these with HijackThis.
O16 - ActiveX Objects (aka Downloaded Program Files)
What it looks like:
O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
What to do:
If you don't recognize the name of the object, or the URL it was downloaded from, have HijackThis fix it. If the name or URL contains words like 'dialer', 'casino', 'free_plugin' etc, definitely fix it.
O17 - Lop.com domain hijacks
What it looks like:
O17 - HKLMSystemCCSServicesVxDMSTCP: Domain = aoldsl.net
O17 - HKLMSystemCCSServicesTcpipParameters: Domain = W21944.find-quick.com
O17 - HKLMSoftware..Telephony: DomainName = W21944.find-quick.com
O17 - HKLMSystemCCSServicesTcpip..{D196AB38-4D1F-45C1-9108-46D367F19F7E}: Domain = W21944.find-quick.com
What to do:
If the domain is not from your ISP or company network, have HijackThis fix it. You may want to run the Lop.com uninstaller as well to clean up misc Lop problems.
O18 - Extra protocols and protocol hijackers
What it looks like:
O18 - Protocol: relatedlinks - {5AB65DD4-01FB-44D5-9537-3767AB80F790} - C:PROGRA~1\COMMON~1\MSIETS\msielink.dll
O18 - Protocol: mctp - {d7b95390-b1c5-11d0-b111-0080c712fe82}
O18 - Protocol hijack: http - {66993893-61B8-47DC-B10D-21E0C86DD9C8}
What to do:
Only a few hijackers show up here. The known baddies are 'cn' (CommonName), 'ayb' (Lop.com) and 'relatedlinks' (Huntbar), you should have HijackThis fix those. Other things that show up are either not confirmed safe yet, or are hijacked by spyware. In the last case, have HijackThis fix it.
O19 - User style sheet hijack
What it looks like:
O19 - User style sheet: c:WINDOWS\Java\my.css
What to do:
In the case of a browser slowdown and frequent popups, have HijackThis fix this item if it shows up in the log.
O20 - AppInit_DLLs autorun Registry value, Winlogon Notify Registry keys
What it looks like:
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O20 - Winlogon Notify: msupdate - C:\WINDOWS\SYSTEM32\msupdate32.dll
O20 - Winlogon Notify: dvd4free - C:\WINDOWS\SYSTEM32\dvd4free.dll
What to do:
Although some of these files are legitimate, many are spyware/adware hijacks that need to be removed. You can research files in this list by visiting CastleCops 020 List or upload your log to the Hijackthis.de Online Analyzer
O21 - ShellServiceObjectDelayLoad (SSODL) autorun Registry key
What it looks like:
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: Trayz - {F5B7D0BE-5f02-4211-96DB-386DFA244900} - C:\WINDOWS\lghngdne.dll
What to do:
Not all entries are bad, but you should check CastleCops 021 List and the Online Hijackthis Analyzer to verify before deleting an entry.
O22 - SharedTaskScheduler autorun Registry key
What it looks like:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
What to do:
Again, many of these entries are good. The old version of Hijackthis 1.99 didnt check this section, while Hijack version 2 does. SmitFraud attacks usually hide here. Check the CastleCops 022 List and Online Hijackthis Analyzer if you are unsure before deleting.
O23 - Enumeration of NT Services
What it looks like:
O23 - Service: AlfaCleanerService - AlfaCleaner.com - C:\Program Files\AlfaCleaner\ACServer.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - D:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Remote Procedure Call (RPC) Helper - Unknown - C:\WINDOWS\system32\sdkkv32.exe
What to do:
These are services which are loaded by the Service Control Manager in Windows 2000, XP, and Vista. They are generally loaded at bootup, before a user logs in. Firewalls and other important programs but rogue cleaning programs like AlfaCleaner may also load here. Check the CastleCops 023 List and Online Hijackthis Analyzer if you are unsure before deleting.
O24 - Enumeration of ActiveX Desktop Components
What it looks like:
What to do:
Magic in Microsoft,?
Try these!!!
MAGIC #1
An Indian discovered that nobody can create a FOLDER anywhere on the Computer which can be named as “CON”. This is something pretty Cool…and Unbelievable…. At Microsoft the whole Team, couldn’t answer why this happened! TRY IT NOW, IT WILL NOT CREATE “CON” FOLDER
MAGIC #2
For those of you using Windows, do the following:
1.) Open an empty notepad file
2.) Type “Bush hid the facts” (without the quotes)
3.) Save it as whatever you want.
4.) Close it, and re-open it.
is it just a really weird bug? :-??
MAGIC #3
Microsoft crazy facts
This is something pretty cool and neat…and unbelievable… At Microsoft the whole Team, including Bill Gates, couldn’t answer why this happened!
It was discovered by a Brazilian. Try it out yourself…
Open Microsoft Word and type
=rand (200, 99)
And then press ENTER
Then see the magic………………………….
MAGIC #1
An Indian discovered that nobody can create a FOLDER anywhere on the Computer which can be named as “CON”. This is something pretty Cool…and Unbelievable…. At Microsoft the whole Team, couldn’t answer why this happened! TRY IT NOW, IT WILL NOT CREATE “CON” FOLDER
MAGIC #2
For those of you using Windows, do the following:
1.) Open an empty notepad file
2.) Type “Bush hid the facts” (without the quotes)
3.) Save it as whatever you want.
4.) Close it, and re-open it.
is it just a really weird bug? :-??
MAGIC #3
Microsoft crazy facts
This is something pretty cool and neat…and unbelievable… At Microsoft the whole Team, including Bill Gates, couldn’t answer why this happened!
It was discovered by a Brazilian. Try it out yourself…
Open Microsoft Word and type
=rand (200, 99)
And then press ENTER
Then see the magic………………………….
Subscribe to:
Posts (Atom)
