Remove REGSVR.EXE and New Folder.exe viruses

Plug a pendrive into a public computer and you will be pesked by the continuously replicating “New Folder.exe” virus or the “regsvr.exe” virus. Hear my story, while I transferred my notes last night (around 600 folders) and I was surprised to  see that around 450 MB of space was eaten by these self replicating space eaters ! I was running Linux so these were not a concern for me, but when I plugged my pendrive into my virtual machine (windows xp sp3), it caused multiple problems of explorer corruption and disabling registry tools.
Time for some virus busting I guess..here is how you can remove “regsvr.exe” and “new folder.exe” from your computer.

Step 1 - Some Startup Repairs
First of all, boot into safe mode.After you get to your desktop,press F3 or Ctrl + F and search for “autorun.inf” file in your computer and delete all the subsequent files. I case you are no able to delete them, select all the files and uncheck the”Read Only” option. If you are still not able to delete them , you might want to try out Unlocker tool to delete the files.
Now go to

start – > run –> type ”msconfig”
and press enter

Go to startup tab and uncheck “regsvr”, click ok and then click on “Exit without restart”.
Now go to

control panel –> scheduled tasks and delete “At1” task listed there.

Once done, close all windows.

Step 2 - Changing Configurations
Your registry might be disabled,and you need to activate it back to undo all the malicious changes done by worm.In order to do that, you need to go to

start – > run –> type ”gpedit.msc”
and press enter

then navigate to

users configuration –> Administrative templates –> systems

Find “prevent access to registry editing tools” , double click it and change the option to disable.

Once done, your Regedit will be enabled. In case your task manager is disabled, you need to enable it.

Step 3 - Registry Edits
Now we have to perform some registry edits to enable our explorer and to remove all instances of worm from the registry. Go to

start – > run –> type ”regedit”
and press enter

Click on Edit –> Find and search for regsvr.exe . Find and delete all the occurrences of regsvr.exe virus (don't delete  regsvr32.exe as its not a virus).
then navigate to entry

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

and modify the entry

Shell = “Explorer.exe regsvr.exe”

to delete the regsvr.exe from it,so that it becomes

Shell = “Explorer.exe”

Once done, close all windows and get ready to delete all virus files.

Step 4 - Deleting Virus Files
The final step is to delete all the virus files in your computer. To do this, Press F3 or Ctrl + F and search for regsvr.exe (make sure to search in hidden folders ) and delete all “regsvr.exe” “svchost .exe” files (notice the gap between ‘svchost’ and ‘.exe’, keep in mind you don't delete the legitimate file.).
Clean your recycle bin and restart your PC (perform a cold boot).
Volia..you have cleaned your computer from regsvr..just make sure to scan your pendrive the next time you plug in :)

Hide files using Winrar and an JPG image

By using this trick, you can hide your files in a rar file, but it looks like a picture.

For this you need Winrar and a Picture to show instead the hidden file.


Steps:

1. Make a New Folder in any one drive, rename it to HIDDEN (you can put name of your wish).
Let it be in C drive, so that its address is C:\HIDDEN\

2. Copy all your secret files to that folder.
Select all the files.
Right click and select "Add to HIDDEN.rar" , here HIDDEN is the name that you gave to that folder created in first step.

3. Delete all files, except the created HIDDEN.rar file.

4. Copy an image to that folder. Let its name be taken as pic.jpg. This picture is used to hide the Winrar file that we made.

5. Now open Command Prompt. (Start > Run > cmd )

6. Change the prompt to C:\HIDDEN\ .
To do that, in cmd, first type cd c:\HIDDEN\ (works only if that folder is in windows (C:) drive).
If that folder is created in other drive like D:, then firts type D: ad press enter, then type cd D:\HIDDEN\.

7. Now type the following:
COPY /b pic.jpg + hidden.rar picture.jpg


8. That creates a picture that looks same as pic.jpg in HIDDEN folder.
This picture.jpg contains all your files.

To get your rar file, just change the extension .jpg of picture.jpg to .rar , and open it.
To hide, change the extension back to .jpg

Make batteries last longer of your laptop computer (by Hibernating)

Windows XP include an ultimate feature Hibernate in the power management features.Hibernate saves an image of your desktop with all open files and documents, and then it powers down your computer and When you turn on power, your files and documents are open on your desktop exactly as you left them.
If you want to leave your computer urgently then you can just leave it,Windows XP automatically put your computer into Hibernate mode after particular period of inactivity or Windows XP can detect that when your batteries are running low then it automatically put your computer in Hibernate mode to save your work before the battery fails.

If you want to do Hibernate then

1. Go to Control Panel then open Power Options.
2. Click on Hibernate tab,then select enable Hibernate and then click OK.
(Note : If you didn’t find Hibernate tab then that means your computer does not support this feature.)
3. Now it works automatically when Windows XP can detect that when your batteries are running low but if you want to do it then when you are going to turn off your computer then it shows you three button Standby,Turnoff and restart. At that time just press Shift key ( When you press shift key then it show you hibernate button) and then select hibernate by pointer.You will see your PC will shut down and when you turn on power of your computer you documnets,files are open on your desktop exactly as you left them.

Lock Folder (Folder Lock Without Using any Software)

Hello Friends,Sometimes you want to lock folder to hide your personal files and personal data from other users of computer. You will find many Softwares in market for folder lock but it will not working properly or if it works properly then it wants Registration or want crack to use it for longer time.

So now i am telling you one way by which you can hide your personal files or lock your folder without any software.It is very easy to use and very safe.

How to Lock Folder without any Software :

1. code to lock folder.

**********************************************************
cls
@ECHO OFF
title Folder Locker
if EXIST "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}" goto UNLOCK
if NOT EXIST Locker goto MDLOCKER
:CONFIRM
echo Are you sure u want to Lock the folder(Y/N)
set/p "cho=>"
if %cho%==Y goto LOCK
if %cho%==y goto LOCK
if %cho%==n goto END
if %cho%==N goto END
echo Invalid choice.
goto CONFIRM
:LOCK
ren Locker "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
attrib +h +s "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
echo Folder locked
goto End
:UNLOCK
echo Enter password to Unlock folder
set/p "pass=>"
if NOT %pass%== type your password here goto FAIL
attrib -h -s "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
ren "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}" Locker
echo Folder Unlocked successfully
goto End
:FAIL
echo Invalid password
goto end
:MDLOCKER
md Locker
echo Locker created successfully
goto End
:End

2. Firstly open a notepad and then put code in notepad.
3. You will find “type your password here” in that code (Without quotes) so just write your password in place of “type your password here” (Without quotes)
4. Save this notepad as Locker.bat anywhere you wish
5. Then double click on Locker.bat.
6. when you double click on this it will create ‘Locker’ folder automatically, After creating of this folder place the contents you want to lock inside the Locker Folder and run locker.bat again, So it will ask to lock this folder… So just type “y” (without quotes) then press enter. Your folder get dissappered that means you locked your folder.No one can see your files of your locked folder.
7. Now if you want to unlock folder then again double click on Locker.bat, It will ask your password so just enter password and then press enter, Your folder get appeared.

Trojan Horse,BackDoor virus Remover (New Folder.exe Virus remove)

Hello Friends, We all know about viruses.Virus is a computer program that can copy itself and infect a computer without permission or knowledge of the user. Trojan Horse, Backdoor are very harmful viruses which affect your computer as well as your important data in drives.It creates New Folder.exe or New Folder in every drive and in Every Folder, It disables Command prompt and also disable FOLDER OPTION from “My Computer” and sometimes it restarts your Computer automatically.So if you want to remove Trojan Horse,Backdoor or New Folder or New Folder.exe virus from my computer then there is one anti virus called Dr. Web which removes this all viruses easily. This is ultimate anti virus for Trojan Horse,Backdoor (New Folder or New Folder.exe) Viruses.

Click Here to Download Dr.Web.

Open this link and download this anti virus for Xp or for your operating system then there is some steps to use it. First restart your PC in Safe Mode by tapping F8 key when your PC restarts.

1. Double click on Dr. Web exe.

2. When it opens then ask to you for “Express Scan of your PC”,Then Click Ok.

3. It start a scan of your PC. It is a short scan which scan your Boot Sectors,Random Access Memory,Startup Objects,Boot Disk Root Directory,Root Directory of Windows Installation Disk,Windows System Folder,My Documents,My Documents,System Temporary Folder, User Temporary Folder.

4. If any virus found then it ask you for “Cure It” then click on Yes.

5. When Express scan is completed, select Custom scan and then select drive from right side, When you select drive then there shows one RED dot on drive.

6. After that click on Play type button on right side.When you click on this Play type button, It start to scan your selected drive and when it founds virus then ask you for Cure It. This type you can scan all your drive of your computer.

7. When all drive scanning are completed then exit from Dr. Web and then restart your PC.

When you restart your PC you will see there no one virus remaining.

How to defragment a single file and not the entire disk

Sysinternals provides the Contig utility, which you can use to defragment individual files or folders.


You can download the tool at

http://www.sysinternals.com/Utilities/Contig.html

To defragment a single file, use this format:

contig [filename]

To analyze the fragmentation status, add the -a switch, for example:

X: emp>contig -a en_whatchmacallit.iso

Alternatively, you can use wild cards in addition to the -s switch to search through the path given and any child folders and perform degragmentation on files matching the given file name criteria. The Contig tool is a great utility to keep important files defragmented without having to worry about the entire disk.