Tekken Dark Resurrection (Psp Games) now in PC..

Tekken 5: Dark Resurrection (Tekken: Dark Resurrection on PSP) or referred to as Tekken 5.2/Tekken 5.5 is an update to Tekken 5 and the seventh game in the Tekken video game franchise. The game was first released as an Arcade game in Japan in 2005 and in North America in 2006, and was ported to the PlayStation Portable later that year. The game was also released as downloadable content on the PlayStation 3 via the PlayStation Network online service in 2007.

Story

Following the conclusion of the King of Iron Fist Tournament 4, Kazuya Mishima defeated Heihachi Mishima and led him to Honmaru Temple, planning to let both his son Kazuya and his grandson, Jin Kazama, battle and steal their respective Devil Genes. However, Jin defeats both of his predecessors and flies away, leaving the latter two unconscious. Shortly after, several Jack-4 robots invade the compound, programmed to take Heihachi's life. Initially, Kazuya and Heihachi fight the Jack-4s as a team, but eventually Kazuya throws Heihachi across the room as soon as he notices that Heihachi is getting tired. Then, Kazuya turns into Devil Kazuya and escapes, leaving Heihachi to deal with the Jack-4s by himself. They quickly overwhelm him and self-destruct, leaving Heihachi seemably dead. The explosion however, revives Heihachi's father Jinpachi Mishima from his 50 year slumber chained up beneath the Temple, and proceeds to reclaim the Mishima Zaibatsu. A few months later, the King of Iron Fist Tournament 5 is announced. It turns out that Heihachi in fact survived the expolsion, and now pledges to find out and destroy the new sponsor of the King of Iron Fist Tournament 5.

New Features

Over 35 stages are available in total, including new stages such as a redesigned forest stage from Tekken 3. Most of the existing stages from Tekken 5 have also been reworked, such as being set in different times of day, or with differing setpieces (The Burning Temple stage, for instance, is no longer burning, but is now an Autumn leaf showered arena) as well as remixed stage themes to match. The original versions of these stages are still available in the Arcade version and unlockable in the Playstation 3 version.

There are more customization items for each character, and for the first time Mokujin and Eddy Gordo can be customized as well. All characters are now available to begin with, rather than having to be unlocked by completing the game with each character. The default colors for all the characters have been changed (for instance, Kazuya's formal attire has been changed from white to purple and Jin Kazama's gym pants' flames are now red rather than white).

The player can customize the characters to don their original Tekken 5 colors. Hwoarang's footpads, which were previously unable to be customized, are now available to allow players to change their colours. All of the items from Tekken 5 are present, as well as a number of new items. These include auras which change colours depending how a player ranks their characters. All extra costumes from Tekken 5 are also present, and some have even been made customizable (such as Ling Xiaoyu and Asuka Kazama's school uniforms).

Many of the characters have new animations, which can be viewed before and after a battle. The three animal characters have had their custom color regions expanded/reworked, including color options for Roger Jr., Kuma and Panda's fur. These characters have more expressive facial animation (mouth movement for example).

Eddy is now a standard character, separate from Christie Monteiro for the first time since Tekken Tag Tournament (before Christie was introduced as a character in Tekken 4), with his own character select space and customization items. Armor King is a standard character with his own set of moves, sharing less of King's. All characters have new and balanced-out moves as well as some updated move commands. During battles and intermissions Jinpachi Mishima has an altered appearance, with a skin texture like veins of fire or flowing magma, and a glowing white horn protrudes from his forehead.

The selection screen and battle loading screen sport new CG renders of each character. Also, many of the characters have had the colors of their Tekken 5 outfits changed, and can subsequently be seen in the selection screen and the battle loading screen CG renders, as well as during gameplay.

Ports

The North American cover of the PSP version.

PSP version

The PSP version runs at full 60FPS during matches (although it reverts to around 30 fps for the pre-fight and post-fight cinematics). The game features game sharing, which means that only one copy of the game is needed to play over ad-hoc. The game runs on version 2.6 firmware for the North American version, and the European version requires version 2.71.

Other modes include Tekken Dojo, where the player fight ghosts of other players that can be uploaded and downloaded online. They can also download official ghost packs from arcades all over the world.

In Gold Rush mode, the player fights for in-game cash. New versions of Tekken Bowl and Command Attack; bonus games from Tekken Tag Tournament and Tekken 4, are also included.

Due to the PSP d-pad's lack of protrusion, Namco produced a special d-pad attachment that sits on top of the PSP's d-pad that came with early releases of the Japanese and Asian versions of the game, as well as pre-ordered copies of the US version. The European version did not include this accessory.

Tekken: Dark Resurrection for the PSP was one of the most successful games of Summer 2006. In the US game charts Dark Resurrection was 5th on the list of the best selling games for July-August. This game has also been confirmed to have sold over a million units worldwide^[1].

PS3 version

Although Tekken: Dark Resurrection had positive reviews and sales, it had disappointed many hardcore Tekken players that the game was not available on a PlayStation home console, as all other installments had been. As handhelds cannot be taken to a competitive level that home consoles can, Namco Bandai announced that the game would be ported to the PlayStation 3. The game retained the numeric title of the Arcade version, unlike the PSP version.

Tekken 5: Dark Resurrection was first made available on the Japanese PlayStation Store on December 12, 2006. At $16, it made Dark Resurrection the most expensive game available for download. The North American version was made available on March 1, 2007 for $19.99, while the European version was released on March 23, 2007 in conjunction with the PAL launch for GBP 6.99/EUR 9.99. It is also available at the Singapore PlayStation Store for S$24.99 (US$1 = approximately S$1.55).

While the PSP version is a visually scaled down version of the Arcade build, the PS3 version retains its upscaled graphical performance, running at 60 frames per second^[2], and supports full 1080p HD resolution. The game features the same modes as the Arcade version, including ghost battles and a gallery mode, while Jinpachi Mishima is playable for the first time. However, unlike its PSP couterpart, the PS3 version lacks additional gameplay modes, such as Story mode, Bonus mode, Practice mode, Survival mode. However, the latter two have been added in a recent downloadable patch.^[3] It is unknown if another patch, this time with the former two modes, will also be created to complete the amount of modes available.

The patch, which was released on the Japanese Store on August 1, 2007 ^[4] and on the North American Store on August 30, 2007, ^[5] contains an Online Versus mode, as well as Online rankings, a Practice mode and a Survival mode.^[6] The European version of the patch will be released sometime in November according to Official UK PlayStation Magazine.

Characters

• Heihachi Mishima
• Kazuya Mishima
• Steve Fox
• Jin Kazama
• Nina Williams
• Anna Williams
• Asuka Kazama
• Yoshimitsu
• Marshall Law
• Paul Phoenix
• King
• Roger Jr.
• Ling Xiaoyu
• Julia Chang
• Christie Monteiro
• Eddy Gordo (now has a separate character space from Christie)
• Lei Wulong
• Feng Wei
• Lee Chaolan
• Bryan Fury
• Hwoarang
• Kuma
• Panda
• Mokujin
• Baek Doo San
• Raven
• Wang Jinrei
• Bruce Irvin
• Ganryu
• Craig Marduk
• Jack-5
• Devil Jin

Additional Characters

As well as the returning playable characters from Tekken 5, a few new characters were added in Tekken 5: Dark Resurrection. Sergei Dragunov is a Russian SPETZNAZ operative who utilizes the Commando Sambo fighting style. Lili is a stereotypical rich girl trying to save her father's company, and uses a combination of ballet dancing and street fighting moves. The game also adds Armor King back to the character roster. Rather than using many of King's moves (like in Tekken and Tekken 2), Armor King's fighting style in Tekken 5: Dark Resurrection is a combination of some of King's moves and many of his own moves. Also, Jinpachi Mishima is playable on the PlayStation 3 version.

• Lili
• Sergei Dragunov
• Armor King
• Jinpachi Mishima (Playable in PS3 version but not in the PSP Tekken: Dark Resurrection)

Download this game: Tekken Dark Ressurection(psp games)

Credit: PspKings , Wikipedia 

Mozilla Firefox 2.0.0.7 Final

Mozilla Firefox 2.0.0.7 Final

Mozilla Firefox - faster, more secure, easier to use and sporting a new look, this latest Firefox release sets a new standard for web browser innovation. Mozilla Firefox project (formerly Firebird, which was formerly Phoenix) is a redesign of Mozilla's browser component, written using the XUL user interface language and designed to be cross-platform. It is small, fast and easy to use, and offers many advantages over other web browsers, such as the tabbed browsing and the ability to block pop-up windows.
Features in Firefox include:
- Easy migration: Switching to Firefox has never been easier now that Firefox imports data like Favorites, history, settings, cookies and passwords from Internet Explorer. Firefox can also import settings from Mozilla 1.x, Netscape and Opera.

- Smaller Download: Continuing efforts to make this the most efficient browser, the Windows version of Firefox is now only a 4.7 MB download, making downloading Firefox a breeze for dial-up and broadband users alike.

- New Default Theme: A new default theme provides a bright new look for Windows and Linux users.

- SmartUpdate: A new SmartUpdate feature notifies users of new versions of Firefox to ensure that the browser is always up to date.

- Help: A new online help system makes this one powerful, friendly browser.

- Extension/Theme Manager: New Extension and Theme Managers provide a convenient and secure way to manage and update the hundreds of add-ons that set Firefox apart from other browsers.
Mozilla Firefox also includes numerous bug fixes and incremental improvements, including faster page load speed.

- Popup Blocking: Stop annoying popup ads in their tracks with Firefox's built in popup blocker.

- Tabbed Browsing: View more than one web page in a single window with this time saving feature. Open links in the background so that they're ready for viewing when you're ready to read them.

- Smarter Search: Google Search is built right into the toolbar, and there are a plethora of other search tools including Keywords (type "dict " in the Location Bar), and FastFind (start typing the first few letters of some text in the page and Firefox takes you there).

- Privacy and Security: Built with your Security in mind, Firefox keeps your computer safe from malicious spyware by not loading harmful ActiveX controls. A comprehensive set of privacy tools keep your online activity your business.

- Hassle-Free Downloading: Files you download are automatically saved to your Desktop so they're easy to find. Fewer prompts mean files download quicker.

- Fits Like a Glove: Simple and intuitive, yet fully featured, Firefox has all the functions you're used to - Bookmarks, History, Full Screen, Text Zooming to make pages with small text easier to read, etc.

- S M L XL XXL XXXL: Firefox is the most customizable browser on the planet. Customize your toolbars to add additional buttons, install new Extensions that add new features, add new Themes to browse with style, and use the adaptive search system to allow you to search an infinite number of engines. Firefox is as big or small as you want.

- Setup's a Snap: At only 4.7MB (Windows), Firefox only takes minutes to download over a fast connection. The installer gets you set up quickly, and the new Easy Transition system imports all of your settings - Favorites, passwords and other data from Internet Explorer and other browsers - so you can start surfing right away.

- A Developer's Best Friend: Firefox comes with a standard set of developer tools including a powerful JavaScript and CSS error/warning console, and an optional Document Inspector that gives unheard of insight into how your pages work.

- Read Mail—Not Spam

Link: 5.7 MB
http://www.mozilla.com/en-US/firefox/

DFX for Windows Media Player v8.313

DFX enhances your music listening experience by improving the sound quality of MP3, Windows Media, Internet radio and other music files. With DFX you can transform the sound of your PC into that of an expensive stereo system placed in a perfectly designed listening environment. Renew stereo depth, boost your audio levels and produce a deep, rich bass sound.
New and improved features in DFX 8:
- Improved sound enhancement processing including full 5.1 and 7.1 Surround Sound support
- Enhanced stylish interface
- New vertical mini-mode which nicely integrates with media players
- Smart player snapping and auto-minimize
- Informative audio status display

Version DFX for Windows Media Player v8.313

http://rapidshare.com/files/55402225/DFX_for_Windows_Media_Player_v8.313.rar
Password:
www.ztforums.com

 Or

Version DFX for Windows Media Player v8.352 

http://www.midload.com/en/file/16618/dfxInstall-WMP-exe.html
Keymaker
http://www.midload.com/en/file/16617/DFX-for-Windows-Media-Player-v8-313-Incl-Keymaker-CORE-rar.html

Credit : FreshDl 

WinBoost 4.0(for windows xp/2000/98/95)

Use this powerful tool to boost your Windows performance and configure hundreds of its hidden settings. In addition you will get hundreds of selected Windows Tips & Tricks.
Optimize CD-ROM/DVD-ROM speed, speed up your internet connection, optimize your multimedia applications, change IE and OE logo animation, rename and hide all of Start Menu items such as Start button, Run menu, rename recycle bin, remove arrows in shortcut icons, change startup and shutdown screens, tweak and customize Windows Explorer, Taskbar, Control Panel and hundreds more!

Want this software, heres the link to download:

Winboost 4.0

Credit goes to:http://www.freshdl.com 

Internet Download Manager(idm) V5.11 Bulid_6 (new Version)

Internet Download Manager has a smart download logic accelerator that features intelligent dynamic file segmentation and safe multipart downloading technology to accelerate your downloads. Unlike other download accelerators and managers that segment files before downloading starts, Internet Download Manager segments downloaded
files dynamically during download process. Internet Download Manager reuses available connections without additional connect and login stages to achieve better acceleration performance.
Internet Download Manager supports proxy servers, ftp and http protocols, firewalls, redirects, cookies, directories with authorization, MP3 audio and MPEG video content processing, and a large number of directory listing formats. IDM integrates seamlessly into Microsoft Internet Explorer, Netscape, MSN Explorer, AOL, Opera, Mozilla, Mozilla Firefox, Mozilla Firebird, Avant Browser, MyIE2, and all other popular browsers to automatically handle your downloads. You can also drag and drop files, or use Internet Download Manager from command line. Internet Download Manager can dial your modem at the set time, download the files you want, then hang up or even shut down your computer when it's done.

Other features include multilingual support, zip preview, download categories, built-in download accelerator, scheduler pro, sounds on events, HTTPS support, queue processor, pipelining of ftp commands, html help and tutorial, enhanced virus protection on download completion, progressive downloading with quotas (useful for connections that use some kind of fair access policy or FAP like Direcway, Direct PC, Hughes, etc.), command line parameters, and many others.

Main Features:

- All popular browsers and applications are supported! Internet Download Manager supports all versions of popular browsers, and can be integrated into any 3rd party Internet applications.
- Download with one click. When you click on a download link in a browser, IDM will take over the download and accelerate it. IDM supports HTTP, FTP and HTTPS protocols.
- Download Speed. Internet Download Manager can accelerate downloads by up to 5 times due to its intelligent dynamic file segmentation technology.
- Download Resume. Internet Download Manager will resume unfinished download from the place where they left off.
- Simple installation wizard. Quick and easy installation program will make necessary settings for you, and check your connection at the end to ensure trouble free installation of Internet Download Manager
- Automatic Antivirus checking. Antivirus checking makes your downloads free from viruses and trojans.
- Advanced Browser Integration. When enabled, the feature can be used to catch any download from any application. None of download managers have this feature.
- Built-in Scheduler. Internet Download Manager can connect to the Internet at a set time, download the files you want, disconnect, or shut down your computer when it's done.
- IDM supports many types of proxy servers. For example, IDM works with Microsoft ISA, and FTP proxy servers.
- IDM supports main authentication protocols: Basic, Negotiate, NTLM, and Keberos. Thus IDM can access many Internet and proxy servers using login name and password.
- Download All feature. IDM can add all downloads linked to the current page. It's easy to download multiple files with this feature.
- Customizable Interface. You may choose the order, and what buttons and columns appear on the main IDM window.
- Download Categories. Internet Download Manager can be used to organize downloads automatically using defined download categories.
- Quick Update Feature. Quick update may check for new versions of IDM and update IDM once per week.
- Download limits. Progressive downloading with quotas feature. The feature is useful for connections that use some kind of fair access policy (or FAP) like Direcway, Direct PC, Hughes, etc.
- Drag and Drop. You may simply drag and drop links to IDM, and drag and drop complete files out of Internet Download Manager.
- IDM is multilingual. IDM is translated to Arabic, Bosnian, Bulgarian, Chinese, Croatian, Czech, Danish, Dutch, French, German, Hungarian, Italian, Japanese, Lithuanian, Macedonian, Polish, Portuguese, Romanian, Russian, Slovenian, Spanish, Thai languages.

New features in version v5.11 Build 6

# IDM checks and runs the installation process if necessary to re-install "IDM CC" extension for Firefox and other Mozilla based browsers
# Fixed several bugs
What is new in Build 6?

- Improved the interception of FLV video downloads from YouTube and other sites
- Fixed compatibility problems with several IE add-ons
- Fixed several bugs

(1). Install Program.
(2) Replace idman.exe use reg.key or keygen

Note : Use only one NOT both

Want to download:

Code: http://rapidshare.com/files/58442887/Internet_Download_Manager_5.11_Build_6___Crack_www.cyberwarez.info.rar

password:

 credit: th3zone

Themes for xp:

[RS.Com] - 70 Themes For XP

Here are some amazing Windows Vista themes for your Windows XP.

Customizing your Windows desktop is now more fun than ever with this packege. Delight your friends and family with this fun, new way to customize Windows XP.

Package contain 70 themes with a size of 63mb. The files name is windows visual style.

Code:

http://rapidshare.com/files/42995012/70_Themes_4_XP.rar

Credit:Mecho

Windows Xp Crystal Edition v3 2008

Features

1-All latest hotfixes integrated till this moment
2-More speed while browsing internet and network computers
3-New programs has been added with the latest versions
4-More useful registry tweaks
5-Faster connection speed has been unlocked
6-Annoying windows error message has been disabled
7-windows file protection has been disabled
8-New beautiful background wallpapers
9-New style icons and themes
10-Transparent glass aero
11-New boot screen and logon screen
and much more

Windows Crystal XP V3
————————————————————————–
Only install this edition of Windows onto a freshly formatted partition

First of all there is {no languages or drivers has been removed}
======================================

Removed

Help and support files
Wallpapers and backgrunds {Replaced}
Windows Sounds
Old Windows Themes {Replaced}
Wordpad
Movie Maker
Old Windows Cursures {Replaced}
Old screen savers
Image
Integrated

All latest microsoft sp2 hotfixes till july 2007
Internet Explorer 7

Media Player 11
Flash player 9
Direct x9
Control panel addons:
1-Boot safe
2-Boot Vis
3-Clear Type Tuning
4-Cpu-Z.CPL
5-Dial-a-fix
6-HD Tune
7-HostXpert
8-Mem Test
9-MS Autoplay Repair Wizard
10-MS Time Zone
11-MS Virtual cd-Rom
12-MS Config
13-Msi Cleanup Utility
14-Services and Devices
15-Startup Control Panel
16-Tweakui
17-User Accounts 2
18-Win Update List
19-Xp-Antispy

==================

Default Programs

1-Foxit pdf reader
2-K-Lite Mega codec pack
3-Node23 Antiviruse
4-Orbit Downloader
5-Tuneup Utilities
6-Winamp mp3 player
7-Windows Live Messenger
8-Winrar Corporat
9-Yahoo Messenger

Image

Optional Programs

1-Firefox Web Browser
2-Microsoft .NET Framework Version 2.0
3-Microsoft Java
4-Faststone Image Viewer
5-Nero Micro v7.7.5.1
6-UltraISO Premium Edition
7-Powertoy Image Resizer
8-Utorrent
9-Paint .Net
10-Flash Games

Download Links:

 Links Updated…………

Credited:Th3zone.com 

Firefox Speed Tweak

This is a more in depth guide to speeding up Mozilla Firefox than some other guides. This guide was made so that any computer could become faster, not just a fast computer with a fast connection.

First, install the ChromEdit Plus extension.(Get it here: http://webdesigns.ms11.net/chromeditp.html#top) It makes it easier to edit user files.
Now, run Firefox, go to Tools > Edit User Files, click user.js tab.
Insert the following texts based on your PC speed and internet connection.

Here’s a little key:
Fast Computer is greater than 1.5Ghz CPU and atleast 512MB RAM
Fast Connection is DSL or cable or better.

Common to all configurations

These are the settings that seem to be common to all configuration files regardless of connection speed or computer speed with a couple of additions - plugin paths can be found with about:plugins and the bookmark menu delay is turned off.

/* Speed Tweak - Common to all Configurations */
user_pref("network.http.pipelining", true);
user_pref("network.http.proxy.pipelining", true);
user_pref("network.http.pipelining.maxrequests", ;
user_pref("content.notify.backoffcount", 5);
user_pref("plugin.expose_full_path", true);
user_pref("ui.submenuDelay", 0);

Fast Computer Fast Connection

/* Speed Tweak - Fast Computer Fast Connection */
user_pref("content.interrupt.parsing", true);
user_pref("content.max.tokenizing.time", 2250000);
user_pref("content.notify.interval", 750000);
user_pref("content.notify.ontimer", true);
user_pref("content.switch.threshold", 750000);
user_pref("nglayout.initialpaint.delay", 0);
user_pref("network.http.max-connections", 48);
user_pref("network.http.max-connections-per-server", 16);
user_pref("network.http.max-persistent-connections-per-proxy", 16);
user_pref("network.http.max-persistent-connections-per-server", ;
user_pref("browser.cache.memory.capacity", 65536);

A couple settings of note - Firefox allocates 4096 KB of memory by default and in this configuration we give it roughly 65MB as denoted by the last line. This can be changed according to what is used.

Fast Computer, Slower Connection

This configuration is more suited to people without ultra fast connections. We are not talking about dial up connections but slower DSL / Cable connections.

/* Speed Tweak - Fast Computer, Slower Connection */
user_pref("content.max.tokenizing.time", 2250000);
user_pref("content.notify.interval", 750000);
user_pref("content.notify.ontimer", true);
user_pref("content.switch.threshold", 750000);
user_pref("network.http.max-connections", 48);
user_pref("network.http.max-connections-per-server", 16);
user_pref("network.http.max-persistent-connections-per-proxy", 16);
user_pref("network.http.max-persistent-connections-per-server", ;
user_pref("nglayout.initialpaint.delay", 0);
user_pref("browser.cache.memory.capacity", 65536);

Fast Computer, Slow Connection

/* Speed Tweak - Fast Computer, Slow Connection */
user_pref("browser.xul.error_pages.enabled", true);
user_pref("content.interrupt.parsing", true);
user_pref("content.max.tokenizing.time", 3000000);
user_pref("content.maxtextrun", 8191);
user_pref("content.notify.interval", 750000);
user_pref("content.notify.ontimer", true);
user_pref("content.switch.threshold", 750000);
user_pref("network.http.max-connections", 32);
user_pref("network.http.max-connections-per-server", ;
user_pref("network.http.max-persistent-connections-per-proxy", ;
user_pref("network.http.max-persistent-connections-per-server", 4);
user_pref("nglayout.initialpaint.delay", 0);
user_pref("browser.cache.memory.capacity", 65536);

Slow Computer, Fast Connection

/* Speed Tweak - Slow Computer, Fast Connection */
user_pref("content.max.tokenizing.time", 3000000);
user_pref("content.notify.backoffcount", 5);
user_pref("content.notify.interval", 1000000);
user_pref("content.notify.ontimer", true);
user_pref("content.switch.threshold", 1000000);
user_pref("content.maxtextrun", 4095);
user_pref("nglayout.initialpaint.delay", 1000);
user_pref("network.http.max-connections", 48);
user_pref("network.http.max-connections-per-server", 16);
user_pref("network.http.max-persistent-connections-per-proxy", 16);
user_pref("network.http.max-persistent-connections-per-server", ;
user_pref("dom.disable_window_status_change", true);

One of the changes made for this particular configuration is the final line where the status bar is disabled for changing web pages to save processor time.

Slow Computer, Slow Connection

We have entered the doldrums of the dial-up user

/* Speed Tweak - Slow Computer, Slow Connection */
user_pref("content.max.tokenizing.time", 2250000);
user_pref("content.notify.interval", 750000);
user_pref("content.notify.ontimer", true);
user_pref("content.switch.threshold", 750000);
user_pref("nglayout.initialpaint.delay", 750);
user_pref("network.http.max-connections", 32);
user_pref("network.http.max-connections-per-server", ;
user_pref("network.http.max-persistent-connections-per-proxy", ;
user_pref("network.http.max-persistent-connections-per-server", 4);
user_pref("dom.disable_window_status_change", true);

Another Tweak

/* Speed Tweak - Another Tweak */
user_pref("network.dns.disableIPv6", true);

This tweak deactivates IPv6 in Firefox, because most if not all of the web is still using IPv4. IPv4 and v6 are internet protocols… how the data is transferred… v4 is the standard now and v6 is slowly being implemented around the world… it wont come into full swing until 2008-2010 sadly… it’s a huge infrastructure change, but the benefits will be great.

 Credited:Th3zone

WORM_XPBAGUIO.A

Derived from Trend Micro.

http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM%5FXPBAGUIO%2EA&VSect=T

Technical Details

Arrival Details

This worm may arrive via network shares. It may also arrive via physical and removable drives.

Autostart Techniques

This worm creates the following registry entry(ies) to enable its automatic execution at every system startup:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\
Windows\CurrentVersion\Run
WindowNT = "%System%\exiplorer.exe"

(Note: %System% is the Windows system folder, which is usually C:\Windows\System on Windows 98 and ME, C:\WINNT\System32 on Windows NT and 2000, or C:\Windows\System32 on Windows XP and Server 2003.)

Other System Modifications

This worm creates the following registry key(s)/entry(ies) as part of its installation routine:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\
Windows NT\CurrentVersion\Winlogon
LegalNoticeCaption = "PROMISE???"

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\
Windows NT\CurrentVersion\Winlogon
LegalNoticeText = "I am still waiting for the strawberry coming from my Baguio! Pls.. Help!"

Propagation via Network Shares, Physical, and Removable Drives

This worm enumerates drives and drops copies of itself in all available network shares, physical, and removable drives.

It drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed. The said file contains the following strings:

[autorun]
shellexecute= {Malware file name}.exe

Other Details

This worm displays the following message box(es):

Platforms Affected

This worm runs on Windows 98, ME, NT, 2000, XP, and Server 2003.

Solution:

Identifying the Malware Program

To remove this malware, first identify the malware program.

1. Scan your computer with your Trend Micro antivirus product.
2. NOTE the path and file name of all files detected as WORM_XPBAGUIO.A.

Trend Micro customers need to download the latest virus pattern file before scanning their computer. Other users can use Housecall, the Trend Micro online virus scanner.

Terminating the Malware Program

This procedure terminates the running malware process. You will need the name(s) of the file(s) detected earlier.

If the process you are looking for is not in the list displayed by Task Manager, proceed to the succeeding solution set.

1. Open Windows Task Manager.
   • On Windows 98 and ME, press
   CTRL+ALT+DELETE
   • On Windows NT, 2000, XP, and Server 2003, press
   CTRL+SHIFT+ESC, then click the Processes tab.
2. In the list of running programs*, locate the malware file(s) detected earlier.
3. Select one of the detected files, then press either the End Task or the End Process button, depending on the version of Windows on your computer.
4. Do the same for all detected malware files in the list of running processes.
5. To check if the malware process has been terminated, close Task Manager, and then open it again.
6. Close Task Manager.

*NOTE: On computers running Windows 98 and ME, Windows Task Manager may not show certain processes. You can use a third party process viewer such as Process Explorer to terminate the malware process.

On computers running all Windows platforms, if the process you are looking for is not in the list displayed by Task Manager or Process Explorer, continue with the next solution procedure, noting additional instructions. If the malware process is in the list displayed by either Task Manager or Process Explorer, but you are unable to terminate it, restart your computer in safe mode.

Removing Autostart Entry from the Registry

Removing autostart entries from the registry prevents the malware from executing at startup.

If the registry entry below is not found, the malware may not have executed as of detection. If so, proceed to the succeeding solution set.

1. Open Registry Editor. Click Start>Run, type REGEDIT, then press Enter.
2. In the left panel, double-click the following:
   HKEY_LOCAL_MACHINE>SOFTWARE>Microsoft>
   Windows>CurrentVersion>Run
3. In the right panel, locate and delete the entry:
   WindowNT = "%System%\exiplorer.exe"
   (Note: %System% is the Windows system folder, which is usually C:\Windows\System on Windows 98 and ME, C:\WINNT\System32 on Windows NT and 2000, or C:\Windows\System32 on Windows XP and Server 2003.)

Removing Added Registry Entries

1. Still in the Registry Editor, in the left panel, double-click the following:
   HKEY_LOCAL_MACHINE>SOFTWARE>Microsoft>
   Windows NT>CurrentVersion>Winlogon
2. In the right panel, locate and delete the entry:
   LegalNoticeCaption = "PROMISE???"
3. In the left panel, double-click the following:
   HKEY_LOCAL_MACHINE>SOFTWARE>Microsoft>
   Windows NT>CurrentVersion>Winlogon
4. In the right panel, locate and delete the entry:
   LegalNoticeText = "I am still waiting for the strawberry coming from my Baguio! Pls.. Help!"
   
5. Close Registry Editor.

Restoring AUTORUN.INF

1. Right-click Start then click Search… or Find…, depending on the version of Windows you are running.
2. In the Named input box, type:
   AUTORUN.INF
3. In the Look In drop-down list, select a drive, then press Enter.
4. Select the file, then open using Notepad.
5. Check if the following lines are present in the file:
   [autorun]
   shellexecute= {Malware file name}.exe
6. If the lines are present, delete the file.
7. Repeat steps 3 to 6 for AUTORUN.INF files in the remaining removable drives.
8. Close Search Results.

Running Trend Micro Antivirus

If you are currently running in safe mode, please restart your computer normally before performing the following solution.

Scan your computer with Trend Micro antivirus and delete files detected as WORM_XPBAGUIO.A. To do this, Trend Micro customers must download the latest virus pattern file and scan their computer. Other Internet users can use HouseCall, the Trend Micro online virus scanner.

 credited by: Sir Billie

Removing Ravmone.exe in your PC and Flash Drive

Upon execution, it creates a copy of itself into the windows system directory:
%Windir%\RAVMON.EXE

Also create a non-malicious "RavMonLog" file that contains the
port number on which its backdoor component listens.

Adds the following values to the registry to auto start itself when Windows starts.

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
"RavAV" = "%Windir%\RAVMON.EXE"
Indications of Infection

Removing Ravmone.exe in your flash drive

1. CTRL-ALT-DEL
2. click task manager. click on processes tab.
3. end all processes named Ravmone.exe except for one.
(magtira ka ng isa. usually more than one ang nakarun)
4. Open your flash drive in explorer and look for the file
ravmone.exe (be sure that hidden files are viewable) .
In the task manager, end the remaining ravmone.exe process.
Quickly switch back to your flash drive and delete
the file ravmone.exe.
5. Delete the file autorun.inf in the flash drive.
search the net for any backup autorun.inf for flashdrive
and replace your infected autorun.inf file.

To remove ravmone in your pc.

Follow 1-3
4. Goto c:/windows in explorer and look for the file ravmone.exe
(be sure that hidden files are viewable) . In the task manager,
end the remaining ravmone.exe process. Quickly switch back to
c:/windows and delete the file ravmone.exe.

credited by : Sir Billie