explorer.exe
Explorer.exe - 256 Color Tray Icon Patch (for Windows 98 Second Edition) 1.0
Patch your explorer.exe for can use 256 colors icons in your TrayBar. NOTE: For use on Windows 98 Second Edition (SE) ONLY. See website for installation .txt file. more>>
Explorestart 1.00
A very simple utility that simply restarts Explorer and Internet Explorer. more>>
When you run this tool, all instances of Explorer (explorer.exe) and Internet Explorer (iexplore.exe) are terminated instantly, and a new instance of Explorer is created after a few seconds.
You can use this utility when something goes wrong with Explorer or Internet Explorer. For example: when you fails to open a new window of Internet Explorer, when Internet Explorer crashes, when everything start to work too slowly, and so on...
FontNet Explorer 1.13.39
FontNet Explorer is an internet font browser specially esigned to ease your sear more>> FontNet Exploreris a software that specially designed to make this searching less painful. All relevant font sites and font search engines are included in program (list is always open - your suggestions about good font sites are welcomed).
Enter font name you want to find, press Search button and wait for results. Every explored site will be displayed in new tab. You can stop search whenever you want or skip particular site during the search process.
- FontNet Explorer hasnt got special hardware or software requirements, but good internet connection is preferable. Better connection - faster results. The program is tested on 53Kbps and 1,8Mbps speed connection and difference is quite obvious, but it works on slower connections. At lest, you dont have to browse manually each site.
- FontNet Explorer doesnt require installation. Unpack zip file and run FontNet Explorer.exe from your hard drive, CD, DVD or any other removable drive.<<less
Unpack zip file and run FontNet Explorer.exe from your hard drive, CD, DVD or any other removable driveLicense:Freeware
Main features: - FontNet Explorer doesnt write nothing in windows registry, system folderStart Menu Click History Viewer 1.0
The Start Menu Click History Viewer reads the Explorer UserAssist Data from the registry more>>
The Start Menu Click History Viewer reads the Explorer UserAssist Data from the registry and allows you to see exactly that information is stored in this location.
When first looking at the contents of this registry key one might think they have been infected by a trojan or something. But in fact, its EXPLORER.EXE, a Windows system program, that writes these keys.
Among the information stored you will find references to titles of web pages, .url files in favorites, local files and shortcuts.
There are entries for things accessed only when Windows was first installed (like drivers). This means that Windows logs this information and never deletes the log data.
In addition of being a very high security risk this also bloats the registry, which fragments it, slowing Windows down.
Mitglieder.FK Remover 3.5.1.11
A useful utility for erasing the Mitglieder.FK virus more>> A useful utility for erasing the Mitglieder.FK virus
Mitglieder.FK is a Trojan that attempts to download and run a file from different websites on the affected computer every four hours.
Mitglieder.FK injects the executable file HLEADER_DLL.DLL in the system process EXPLORER.EXE, in order to carry out its actions.
Mitglieder.FK has been massively sent via email in a message that contains an attached file.
Mitglieder.FK is easy to recognize, as it reaches the computer in an email with any of the following attached files:
- BUSINESS.ZIP
- BUSINESS_DEALING.ZIP
- HEALTH_AND_KNOWLEDGE.ZIP
- INFO_PRICES.ZIP
- MAX.ZIP
- TEXT_SMS.ZIP
- THE_NEW_PRICES.ZIP
The Mitglieder.FK Remover will help you clean the virus from your computer.
Red700 1.0.9.45
With Red700 users can shut down multiple unwanted applications or start programs more>> With Red700 users can shut down multiple unwanted applications or start a group of programs
at once which allows them to clean popup viruses, prepare for high resource programs, and get
to work quickly. It assists users in closing and restoring Explorer.exe and Disabling/Enabling the
screensaver to increase CPU, memory and mobile battery resources. Profiles help the user save
and organize lists of programs by subject. A retractable list and Google search makes sure the user
knows exactly what they are adding to the list. A system tray icon allows quick access to program
setting while it runs in the background.
Features:
-An easy way to shut down multiple unwanted applications.
-Batch run, which allows you to run a group of programs at once.
-The option to close and restore Explorer.exe, which runs the desktop and taskbar.
-Disable or enable screensaver instantly.
-Profiles to organize list of program by subject or shutdown.
-A retractable list that shows which programs are open.
-A handy search bar to search Google.com for more information on running programs.
-Easy variables to open profiles from Command Prompt without opening the program Graphical User Interface.
-A systray icon that allows background running of Profile timers and quick access to the
Red700 properties, main menu and a variety of other options.
-at just under 600KB, the installer is small enough to fit on a Keydisk or Floppy.<<less
The option to close and restore Explorer.exe, which runs the desktop and taskbar. Disable or enable screensaver instantly. Profiles to organize list of program by subject or shutdown. A retractableKazaa Cleaner 1.1
Kazaa Cleaner is a free , small and useful Adware / Spyware remover utility more>>
What makes Kazaa Cleaner special is that not only does it permanently removes every single component (including every files, registry keys, startup item, and more) of the various Scumwares that have been installed with Kazaa, but it does so without hindering KMD, and it bypasses Kazaas "Certified check".
Which Scumwares does Kazaa Cleaner removes?
If youre one of the 200 million people whove downloaded a copy of the Kazaa Media Desktop over the past few years, then your computer is probably infected with one of the following nasties, which coincidently Kazaa Cleaner removes:
1. Cydoor (Adware)
Always embedded with some host application. Cydoors Ads OnSoftware? embeds advertising in host software, converting it to "free" adware. Transmits email address and user-supplied demographic information (if supplied) to Cydoor. Demographic info is shared with third parties. Transmits advertising metrics such as ad displays and clicks.
2. The GAIN Network (Adware / Spyware)
The Gator Advertising Information Network (GAIN) is a network of advertisers who deliver ads thru the use of adware technology developed by The Gator Corporation. Installed on more than 8 million computers, Gator sends some info about you, including first name, country, and postal code, to the Gator web site. As you browse, it also tracks which Web sites you visit, products you may view, and your responses to Gator-launched ads.
3. Save Now (Adware / Spyware)
A single process run at startup which monitors open IE windows and opens adverts when it sees targeted URLs and terms entered into forms.
4. Hot Text, Top Text, Ezula, ContextPro (Adware)
When installed, eZula TopText will alter all pages viewed in IE, adding extra links to words and phrases targeted by advertisers. These links are unauthorised by the operators of the sites being viewed.
5. Dlder.exe (Spyware)
Noted as a Trojan by some antivirus programs (W32.DlDer.Trojan), this little nasty tracks your web surfing and uploads this information to a website (now apparently shut down). It can also download and activate executable files. You can expect to find a file called explorer.exe in your system directory (note that a legitimate Windows file is also called explorer.exe, but that is in main windows directory.
6. Brilliant Digital Entertainment (Adware)
A free viewer from BDE that plays rich media (audio and animation) and advertisements created with BDEs b3d Studio animation toolset. May track your browsing habits and report this info to a central ad server. Most commonly co-installed on computers through software programs such as music sharing or file sharing programs. Brilliant Digital is difficult to remove from a computer once installed because the components are actively running on the computer.
7. nCase (Adware / Spyware / Hijacker / BHO)
Loads at boot, and runs throughout your computing session, displaying advertising.
8. My Search (Adware / Spyware / BHO)
While browsing the web with the toolbar enabled, every 3-4th page viewed has its URL and page title sent to its central server on leaving the page. If there are any targeted terms in either the server returns a piece of JavaScript code to pop up an advertisement.
9. WUpdate (Spyware)
An unknown Spyware designed to download and install additional component from the Internet to your computer. Extremely dangerous since it can arbitrary install potentially dangerous code on your computer without any notice.
10. PerfectNAV (Hijacker / BHO)
PerfectNav is designed to redirect your URL typing errors to PerfectNavs web page.
11. P2P Networking (Resource Hog)
P2P Networking is a component that enables other applications to use Peer-to-Peer functionality. P2P Networking is bundled with Kazaa v2.5.2 but is not required for its operation. P2P Networking is a resource hog, stealing bandwidth, memory and hard disk space.
12. Altnet Peer Points Manager (Resource hog)
Peer Points Manager meters licensed files (Gold Icon) uploaded by users who have chosen to collect Peer Points for sharing content, and enables them to directly redeem points for content or enter sweepstakes for cash or prizes. Peer Points Manager is a resource hog, stealing bandwidth, memory, and hard disk space.
13. Altnet TopSearch (BHO)
Likely to slow performance of Internet Explorer.
Antz Technology 1.0
Antz Technology brings you a quick and durable operating system to replace windows rename antztech.exe to explorer.exe and copy files in Windows. more>>
Antz Technology 1.0 brings you a quick and durable operating system to replace windows rename antztech.exe to explorer.exe and copy files in Windows. The software requires you to copy some system files manually copy the system files in drive C:windowssystem. This should make it work.
Requirements: Windows 3.x/95/98/Me/NT/2000/XP
Brute Force Uninstaller (BFU) 1.11
BFU is a scripting program that can execute a series of preset commands like a Windows batch file, aimed at uninstalled programs that are hard to remove, uninstall improperly or simply unwanted more>>
BFU is a scripting program that can execute a series of preset commands like a Windows batch file, aimed at uninstalled programs that are hard to remove, uninstall improperly or simply unwanted.
There are available options to let the script execution manage files, folders, ini files, Registry keys and values, hosts file content, processes loaded in memory, dll files, NT services and Winsock components. Message boxes can be displayed, the system can be rebooted, the Recycle Bin can be used for delete operations and programs can be started.
Options for the script itself include unloading the shell (i.e. killing the Explorer.exe process), pausing between commands (or all commands) and setting a minimum required version number for BFU itself to be able to run the script. BFU itself does not store anything on the system and is uninstalled simply by deleting it.
Command syntax
The format of the command is very simple, but has a few notes:
||
The is one of the list below, the amount and format (text, number) of arguments depends on the command.
The pipes (|) between the arguments are needed, as they determine how BFU interprets which argument represents what.
For example, if the SystemRun command is used to launch a program without any parameters but it still needs to be hidden from the users view (default is 1, show it), the command would be: SystemRun c:windowsnotepad.exe||0
The second argument is empty, but the third is not. The second pipe must not be omitted, or the 0 would be interpreted as parameter for Notepad and the window would be shown.
Whenever brackets are used in the Syntax lines below, this means any of the items seperated by the pipes between them can be used. The brackets should not be used in scripts. For example, when the syntax for a command is DllRegister c:file.dll|[0|1], this means either DllRegister c:file.dll|0 or DllRegister c:file.dll|1 can be used.
Writing scripts
The open script dialog filters on *.bfu. A .bfu script file is plaintext, commands are not case-sensitive. The order of commands can be anything, but it is recommended to put script options at the top and a system restart at the end. Any lines that do not start with a recognized command are ignored, but for readability comments should be easily recognizable, for example by starting them with a certain character (, #, //, /*, whatever you like).
Options for the script itself include unloading the shell (i.e. killing the Explorer.exe process), pausing between commands (or all commands) and setting a minimum required version numberAuslogics Task Manager 1.5.5
Auslogics Task Manager shows how much CPU, RAM, Disk Usage or Internet bandwidth is used by the processes running on your computer more>>
Auslogics Task Manager shows how much CPU, RAM, Disk Usage or Internet bandwidth is used by the processes running on your computer. The program will also show you the services and open files; you will be able to see which programs keep which files open. It can also help you to find trojans hiding in the legitimate processes, such as explorer.exe. The standard Windows Task Manager displays only a few applications and processes running on your computer. And it doesnt show Windows services at all, despite the fact that services you never use take up a lot of RAM and can slow down your PC. Auslogics Task Managerlets you manage applications, processes, Windows services, disk activity, and Internet traffic usage. It also shows overall CPU usage and CPU usage by selected program or process. Managing Windows services has never been easier, as the program provides detailed information about each service. Auslogics Task Manager is feature rich and has an intuitive interface, which makes it ideal for both novice and experienced users.<<less
Resolve for Enfal 1.07
A tool that removes Enfal trojan more>> A tool that removes Enfal trojan
Resolve is the name for a set of small, downloadable Sophos utilities designed to remove and undo the changes made by certain viruses, Trojans and worms. They terminate any virus processes and reset any registry keys that the virus changed. Existing infections can be cleaned up quickly and easily, both on individual workstations and over networks with large numbers of computers.
Troj/Enfal-A is a Trojan for the Windows platform.
Troj/Enfal-A includes functionality to:
- inject multiple threads into the process EXPLORER.EXE
- download code from the internet
When run Troj/Enfal-A copies itself to dismgnt.exe and winkrnl.exe.
Troj/Enfal-A modifies the following registry entry to run itself on Windows Logon:
HKLMSOFTWAREMicrosoftWindows NTCurrentVersionWinlogon
Userinit
userinit.exe,DisMgnt.exe
Troj/Enfal-B is a backdoor Trojan for the Windows platform.
Troj/Enfal-B includes functionality to access the internet and communicate with a remote server via HTTP.
When Troj/Enfal-B is installed the following files are created:
DisMgnt.exe
NtApi.exe
Winkrnl.exe
acetempkb791024.l0g
where NtApi.exe is an archiver application.
Troj/Enfal-B injects multiple threads into the process EXPLORER.EXE.
The files DisMgnt.exe and Winkrnl.exe are detected as Troj/Enfal-A.
Registry entries are set as follows:
HKCUSoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced
ShowSuperHidden
0
HKLMSOFTWAREMicrosoftWindows NTCurrentVersionWinlogon
Shell
Explorer.exe,
Windows disinfector
BDLAAGUI is a disinfector for standalone Windows computers. To use it you have to do the following:
- Open BDLAAGUI.com file from your desktop after downloading it.
- Click on the Start Scan Button.
- Wait for the process to complete.
Command line disinfector
ENFALSFX.EXE is a self-extracting archive containing ENFALCLI, a Resolve command line disinfector for use by system administrators on Windows networks.
Logoff/Shutdown Text Remover 1.1
A small utility that will instantly remove the logoff/shutdown text from your Start Menu more>> A small utility that will instantly remove the logoff/shutdown text from your Start Menu
As you can see that many Vista fanboys want to make their desktop looks as close as Vista is. Modifying explorer.exe to suit Glass shutdown/logoff button without text theme.
But its so annoying to switch explorer.exe when you want to use another theme or it might be too hard to patch, right? Logoff/Shutdown Text Remover is a small tool that will help you make it with just a single click!
Main features:
- Simple and easy
- Support non-English OS (every language)
- Related strings in stringtable 439 wont be modified.
Enhancements:
- Preserve default text if resources extraction fails
- Revert explorer.exe back if patching fails
Resolve for Dloader 1.07
A tool that removes Dloader trojan more>> A tool that removes Dloader trojan
Resolve is the name for a set of small, downloadable Sophos utilities designed to remove and undo the changes made by certain viruses, Trojans and worms. They terminate any virus processes and reset any registry keys that the virus changed. Existing infections can be cleaned up quickly and easily, both on individual workstations and over networks with large numbers of computers.
Troj/Dloader-ML is a downloading Trojan for the Windows platform.
Once executed Troj/Dloader-ML copies itself to the Windows system folder with a random filename and runs the copy.
Troj/Dloader-ML injects code into new hidden instances of explorer.exe, winlogon.exe and packager.exe.
These processes prevent each other from being terminated.
Troj/Dloader can be removed from Windows computers automatically with the following Resolve tools:
Windows disinfector
DLOADGUI is a disinfector for standalone Windows computers. To use it you have to do the following:
- Open DLOADGUI.com file from your desktop after downloading it.
- Click on the Start Scan Button.
- Wait for the process to complete.
Command line disinfector
DLOADSFX.EXE is a self-extracting archive containing DLOADCLI, a Resolve command line disinfector for use by system administrators on Windows networks.
Advanced Process Manipulation 1.1
DiamondCS Advanced Process Manipulation (APM) is an advanced process/module viewer and manipulation utility that allows unique control over target processes by literally becoming a part of them. more>>
Take control of a process by becoming a part of it ...
Unlike conventional process viewers, DiamondCS APM doesnt control processes by remotely sending them instructions. Instead, APM safely attaches a part of itself to the target process, essentially becoming a part of that process. Once inside, APM is free to perform actions on behalf of the target process. For example, if it calls the ExitProcess API function, the target process terminates.
Control processes in ways that arent conventionally possible ...
Because of this insider nature, APM is able to do some remarkable things that arent otherwise possible. For example, it can unload and load DLLs into the target process (allowing you to make plugins for virtually any program). It can even determine which ports the target process is using. APM has even proven its unique anti-trojan capabilities here in our lab by disinfecting an explorer.exe-infecting usermode-rootkit trojan from a test machine. It also serves as a useful way to see which modules are loaded in each process!
Resolve for CodeRed-II 1.0
A tool that removes CodeRed-II trojan more>> A tool that removes CodeRed-II trojan
Resolve is the name for a set of small, downloadable Sophos utilities designed to remove and undo the changes made by certain viruses, Trojans and worms.
They terminate any virus processes and reset any registry keys that the virus changed. Existing infections can be cleaned up quickly and easily, both on individual workstations and over networks with large numbers of computers.
W32/CodeRed-II is a Trojan horse dropped by the CodeRed II worm. It affects
Windows NT and Windows 2000 computers running Microsoft Internet Information
Services (IIS) versions 4 and 5. IIS is installed by default on Windows 2000
Server and is easily installed on Windows 2000 Professional.
The files explorer.exe and root.exe take advantage of registry modifications
to allow remote access.
Troj/CodeRed-II can be removed from Windows computers automatically with the following tool:
rmred.bat is the name of the file users have to use in order to disinfect. After downloading this file please copy its content on a floppy disk and write-protect it.
Go to the infected computer. Log on as Administrator.
Close all programs leaving only the Windows Desktop. Place the floppy disk in
the A: drive.
At the Windows taskbar, select Start|Run. Type
A:RMRED and press .
Messages will tell you if your computer is infected, Infection Active! or if
there is a further problem. You will also be told if you need to install the
Microsoft security patch.
Press a key to close the program, then close the program box if necessary.
If your computer is uninfected but you have not got the patch, go here and install the patch.
If your computer is uninfected and you have got the patch, ensure that your
anti-virus software is up-to-date.
- Page: 1 of 2
- 1
- 2
