Dengar's Blog Logo

Dengar's blog...
We will see what I post, probably will be some random tutorials

Wednesday, 29 July 2009

Malware removal: PersonalAV

A friend of mine contacted me today with this issue:
PersonalAV - a malware programme she accidentally installed and can't get rid of.

Here are some instructions to get rid of the programme, but I don't know if it comes with any additional Trojans or something...

Step 1: Kill the running processes.

Go to the Task Manager:
right click on free space in the windows panel OR:
Press Ctrl + Alt + Del to get into a menu and choose the Task Manager

End the following processes:
PersonalAv.exe
services.exe
PerAvir.exe
winlogon.exe
services.exe
Step 2: Remove registry keys:
Start > Run > 'regedit' > Enter.
Search for the following keys and remove them:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Personal Antivirus_is1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ITGRDENGINE
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ITGrdEngine
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer "PrS"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Personal Antivirus"


Step 3: Remove the programme files:
I have written two scripts that will do this work for you. Use either Windoze XP or Windoze Vista...

You can also manually delete them:
PersonalAv.exe
c:\Documents and Settings\All Users\Desktop\Personal Antivirus.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\Personal Antivirus
c:\Documents and Settings\All Users\Start Menu\Programs\Personal Antivirus\Personal Antivirus Home Page.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\Personal Antivirus\Personal Antivirus.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\Personal Antivirus\Purchase License.lnk
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Personal Antivirus.lnk
%UserProfile%\Application Data\Personal Antivirus
%UserProfile%\Application Data\Personal Antivirus\settings.ini
%UserProfile%\Application Data\Personal Antivirus\uill.ini
%UserProfile%\Application Data\Personal Antivirus\unins000.exe
%UserProfile%\Application Data\Personal Antivirus\Uninstall Personal Antivirus.lnk
%UserProfile%\Application Data\Personal Antivirus\db
%UserProfile%\Application Data\Personal Antivirus\db\config.cfg
%UserProfile%\Application Data\Personal Antivirus\db\Timeout.inf
%UserProfile%\Application Data\Personal Antivirus\db\Urls.inf
%UserProfile%\Local Settings\Application Data\Microsoft\Windows\log.txt
%UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
%UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe
c:\Program Files\Personal Antivirus
c:\Program Files\Personal Antivirus\activate.ico
c:\Program Files\Personal Antivirus\Explorer.ico
c:\Program Files\Personal Antivirus\PerAvir.exe
c:\Program Files\Personal Antivirus\unins000.dat
c:\Program Files\Personal Antivirus\uninstall.ico
c:\Program Files\Personal Antivirus\working.log
c:\Program Files\Personal Antivirus\db
c:\Program Files\Personal Antivirus\db\DBInfo.ver
c:\Program Files\Personal Antivirus\db\ia080614.db
c:\Program Files\Personal Antivirus\db\ia080618x.db
c:\Program Files\Personal Antivirus\Languages
c:\Program Files\Personal Antivirus\Languages\IAEs.lng
c:\Program Files\Personal Antivirus\Languages\IAFr.lng
c:\Program Files\Personal Antivirus\Languages\IAGer.lng
c:\Program Files\Personal Antivirus\Languages\IAIt.lng
c:\WINDOWS\system32\log.txt
%UserProfile%\Application Data\Microsoft\Windows\winlogon.exe
%UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iGSh.png
%UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iMSh.png
%UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iPSh.png
%UserProfile%\Local Settings\Application Data\Microsoft\Internet Explorer\iv.exe
%UserProfile%\Local Settings\Application Data\Microsoft\Windows\log.txt
%UserProfile%\Local Settings\Application Data\Microsoft\Windows\pguard.ini
%UserProfile%\Local Settings\Application Data\Microsoft\Windows\services.exe
Good luck!

However, if you don't want to do all this and are contemplating reinstalling Windows anyways, make the right decision and install a different OS altogether...

Monday, 27 July 2009

URL for your Dynamic home IP

To be able to connect to computers or servers on the internet, you will have to be able to reach that computers IP address. You might want to connect to your home computer from anywhere in the world, but the IP your ISP gives you changes from time to time.

This is quite common and, unless you constantly carry a note with your IP, you won't be able to make use of your home computer.
I myself run various services that are remotely available from my home desktop computer: FTP server, VNC server, MySQL, Torrent interface and there are many more soon to come.

To bypass the problem of a variable IP, you will need to use a service like DynDNS. There are many other free service provider out there, I just happen to chose this one.
DynDNS is a free service that, upon updating through their API or interface, makes a record of your IP address and routes that to a URL that you can access through the internet.

Step 1: Simply create an account!

Firewalls and / or routers:
Most commonly people have a router these days. A router acts like a firewall and will not let incoming transfers through, unless it specifically has been set-up to do so and to a specific internal IP. In some cases you can also use the DMZ (DeMilitarised Zone) of the router / firewall. The DMZ will channel all incoming requests through to set IP as if the machine would be connected straight to your external IP. This is not recommended unless you use a software firewall in addition to protect yourself.

Use NAT (Network Address Translation) or how it is called in my router 'Application Sharing' to map the incoming requests from any port to a specific internal IP and port. In most cases FTP will run on 21, for example. VNC will run on 5901...
If you use a software firewall, open the same ports on your software firewall. In the Windoze firewall, you have to use 'Exceptions', I think (although I haven't done this in a while).

Step 2: Punch holes in your firewall

Now the last step: You will have to auto-update the DynDNS site from time to time. Most of the newer routers have a feature build in to update Dynamic DNS. You simply select your DynDNS service and add your username and password. Otherwise, you might need to install a programme that will make these updates for you.
There is a list of update tools on the DynDNS website here.

Step 3: Add service to auto update your IP with dynamic DNS host

Transdroid - Connect to your home computers torrent client

Hi,

This is a recommendation for those of you using an Google Android Phone, such as my HTC Magic:

I often find myself talking about a programme or tool or something that I want to get from torrents while I'm on the road or at friends places. Of course, so far, I wasn't able to download that then right away and once I got back home, I totally forgotten about said download.

But the solution is here: with Transdroid, a free and easy to use application you can now track the status of your torrents, search torrents while on the go and add torrents to the tracker while you are out and about.



How to get it? - Transdroid is available through the Android Market.

It works with the most commen torrent clients, I use Transdroid with Transmission, the standard Gnome / ubuntu torrent client.

Setup was easy and a guide can be found on the transdroid-blog. This will get you going while you are in the range of your local network (eg. you connect your android phone to your home wireless), but to truly use it on-the-go, you will have to have a web-URL or static URL for your machine that is available from the net.

Here is how you can get one if you are connect through a common ISP that provides dynamic IPs...

Tuesday, 7 July 2009

Linux, X11, how to reload the keyboard driver

Very simple:
# setxkbmap

eBay initiative: Demand an end to unfair trade practices

Hi,

I received an email from eBay this morning, informing me about a petition they want their users to sign.
I can only recommend everyone signs it as it is, in my opinion, a very important part of retaining your rights and a free market - it's about the sale of branded goods.

We all know that there are more counterfeit products on the markets than genuine ones. I myself tend to buy branded goods, although they have to be reasonably priced. I also buy 'counterfeit' products - or 'like' products - not because I want to damage the brand that's been copied, but because I like their product, but find that less quality at a much more affordable price is what I'm happy with.

Who expects to buy a genuine Armani jacket for £15? - Someone incredibly stupid! But if it's nice, I would buy it, well aware that it's fake, but I'm happy with purchasing it.
When Armani says that this damages their profits, they clearly do not understand that I would never pay £500 for the same item, no matter how wealthy I am. I am clearly not their target consumer. Nor would I go and claim that this is a genuine product or do I care what the label says.

While I do buy counterfeit and often prefer counterfeits to the real brand, I encourage the purchase of those products from countries that have ethical workplace policies: no child labour, fair wages...

There is another side to it. The bigger brands are trying to eliminate the re-sale of their products through eBay alltogether. This is not because they fear for their brand name, but simply because of their greed. If you really want Prada, but can't get it used, you will have to purchase it new.
This not only puts pressure on your wallet, it also infringes on your rights as owner of the products.
When you buy something it becomes rightfully yours... You should be allowed to wear, show off, sell or destroy the product as you please. It's yours.

Once authorities take away your rights to your own property, what could that mean? - You would own a watch, but will later be forbidden to look at it; you have dog food; but you aren't allowed to feed it to your dog, throw it away or consume it yourself; you have a bank account, but won't be allowed to get money off it; you have a house, but won't be allowed to live in it. The abstractions are endless, but it's important to understand the concept: if something is yours, you should have all rights to do with itas you please as long as you don't harm others...

For all these reasons, I encourage you to sign the eBay petition!

Friday, 3 July 2009

Trees that smell like semen

Hi,

As you may know, if you follow my Twitter updates, I recently complained that Hyde Park smells of semen all day, especially around the Serpentine. I cycle through there morning and evening and endure more or less endure the stench, but had very few people believe my plight.

For days I thought something perverted is happening near the serpentine, but thanks to a work colleague, I found out that it's actually true.

Apparently the Bradford Pear and a few varieties smell strongly like spunk when in bloom.
Here is a picture, unfortunately it's not the most brilliant quality:
Although the wikipedia article does not mention the smell, there are plenty of other sources on the net that do mention it, plus, it's on Y!Answers.

I read that this pear tree is preferred in urban areas, because it grows higher and not so wide as the average pear tree.
Publish Post

On the other hand, I wonder why the park authorities didn't plan ahead for this and chose to use other trees use that don't smell like the jizz?