About Search Settings. Search Settings is an application that protects your browser search settings and prevents programs from altering them without your knowledge and this cause of  www.api.mybrowser.com redirection. You may remove Search Settings from your system at any time using the standard Windows methods.

For Windows XP and 2000:

• Click on your Windows Start button
• Click “Control Panel“
• Click “Add or Remove Programs“
• From the dialog box that appears, choose “Search Settings” and click “Remove“

For Vista users:

• Click on your Windows Start button
• Click “Control Panel”
• Click “Uninstall a Program”
• From the dialog box that appears, choose “Search Settings” and click “Uninstall”

The drivers below are for Lenovo Y310 Windows XP Driver version only.

• Intel Chipset driver
• Realtek High Definition Audio Driver
• Intel Graphics Driver
• Broadcom NetXtreme Gigabit Ethernet Driver
• Intel Wireless LAN Driver
• Motorola Modem Driver
• Broadcom Bluetooth Driver
• RICOH R5C83x/84x Flash Media Controller Driver
• Lenovo Energy Management Driver
• Intel Matrix Storage Manager Driver
• ITECIR Driver
• Synaptics Pointing Device Driver
• EQI Utility
• Microsoft .NET Framework 3.5

For the Gods of Google to accept your site, you must do more than offer up a golden cow. Here are the Ten Commandments to follow. Sinners will face purgatory with a penalty or be sent to hell with a lifetime ban.

The First Commandment – Thou Shalt Have Fresh Content

The easiest way to accomplish this is with a daily blog. One to three paragraphs of original content related to your site.

The Second Commandment – Thou Shalt Do Keyword Research

For each of your daily blogs, go to the Google Keyword Tool page and identify a keyword string of 2-4 words long to title your blog. Use the Keyword string in your blog content 1-3 times.

The Third Commandment – Thou Shalt Submit Daily Blog to Social Bookmarks

The exact keyword string that you identify for you blog’s title will be used in each submission. Change up the description for each submission.Here are the angels of Google that will help you ascend in the rankings and find a home in Google Heaven:

http://bibsonomy.org
http://bringr.com
http://buddymarks.com/
http://clipclip.org/
http://clipfire.com/
http://del.icio.us/
http://faves.com/home
http://folkd.com/
http://linkagogo.com/
http://mixx.com
http://multiply.com
http://myweb.yahoo.com/
http://netvouz.com/
http://newsvine.com/
http://panamanewsblog.com/
http://pixelgroovy.com
http://reddit.com/
http://searchles.com/
http://shoutwire.com
http://slashdot.org/bookmark.pl
http://sphinn.com/
http://spurl.net/
http://startaid.com/
http://theoryoffun.com/
http://wikio.com/
http://www.a1-webmarks.com/
http://www.blinklist.com/

For the complete list of Social Bookmark Sites go here.

The Fourth Commandment – Thou Shalt Use the Site Name in the Title

The Google Gods want you to be true to yourself and not try to trick your fellow man. The best way to accomplish this is to use it in the second half of the title. Ex: The Ten Commandments of Search : Sta.rtUp.biz

The Fifth Commandment – Though Shalt Have Links from Directories

Identify the keyword string that you want your index page to rank for and use it in the title of your submissions. Also, only do a couple of submissions each day.

Here is a list of PR4+ directories that have free submission. The $299 Yahoo directory submission is also a good move.

http://www.dmoz.org/ 8
http://www.la-ma.org/ 6
http://www.mxdu.com/ 6
http://www.jayde.com/ 6
http://www.mygreencorner.com/ 6
http://www.ghinmeca.com/ 5
http://directory.classifieds1000.com/ 5
http://www.concensus.org/ 5
http://www.directorydice.com/ 5
http://www.domaining.in/ 5
http://www.freewebsitedirectory.com/ 5
http://www.illumirate.com/ 5
http://www.info-listings.com/ 5
http://www.publimix.net/ 5
http://searchsight.com/Directory.htm 5
http://www.uc33.com/ 5
http://www.amray.com/ 4
http://www.a1webdirectory.org/ 4
http://www.boshuda.com 4
http://www.businesspagesupdate.co.uk/ 4

For the complete list of Free Directories go here.

The Sixth Commandment – Thou Shalt Post Comments on Blogs with Do-Follow

Do-Follow simply means that a link on a page is valued by the Google Gods. Be sure to post a good comment and use the keyword string that you are focusing on as your name.

Here is a list of Do-Follow Blogs:

http://brownsista.com 6
http://foolswisdom.com 6
http://www.billhartzer.com 5
http://howtosplitanatom.com 5
http://andybeard.eu 5
http://engineering.curiouscatblog.net 5
http://www.davidairey.com 5
http://www.fastlanetransport.ca/blog 5
http://lifelearningtoday.com 5
http://www.pixelheadonline.com/blog 4
http://www.logon.ie 4
http://www.howtowakeupearly.com 4
http://www.joebartender.com 4
http://jakeldaily.com 4
http://tallfreak.com 4
http://blog.achille.name 4
…and more here http://courtneytuttle.com/blogs-that-follow/
The Seventh Commandment – Thou Shalt Use Signatures in Forums with Do-Follow

Focus your signature around the main keyword string for your home page. Try to be the first response to new posts and participate on long discussion threads that will consistently be pushed to the top of the main discussion page.

Here is a list of major forums with Do-Follow signatures:

http://www.sitepoint.com/forums/- SEO
http://acapella.harmony-central.com/forums/ – music
http://forums.seroundtable.com/ – seo
http://www.submitexpress.com/bbs/
http://www.startups.co.uk/ – business
http://www.v7n.com/forums/ – seo, webmaster
http://www.webmaster-talk.com/ – webmaster
http://www.webicy.com/ – Webmaster, seo
http://forums.comicbookresources.com/ – comic books
http://bzimage.org/ – photo
http://www.earnersforum.com/forumsindex.php – ecommerce, advertising
http://www.acorndomains.co.uk/ – domains
http://forums.onlinebookclub.org/ – books

The Eighth Commandment – Thou Shalt Use Free Classified Ads

This is an easy way to get a little push and some customers at the same time.

Here is a list of some of the large free online classified sites:

http://www.craigslist.org/
http://www.thefreeadforum.com/vbull/
http://www.adlandpro.com/
http://www.gumtree.com/
http://classifieds.yahoo.com/
http://www.google.com/base
http://caklassifieds.com/
http://classifieds.myspace.com/
http://expo.live.com/default.aspx
http://www.kijiji.com/
http://www.adlandpro.com/
http://www.backpage.com/classifieds/
http://www.usfreeads.com/
http://www.oodle.com/
http://www.adpost.com/

The Ninth Commandment – Thou Shalt Create and Submit RSS Feeds

Here is a list of free RSS feed directories that will get your feed slurped up by Google:

http://www.aspin.com/
http://www.bloogz.com/
http://www.daypop.com/
http://www.daytimenews.com/
http://www.devasp.com/
http://www.dummysoftware.com/
http://www.feed24.com/
http://www.feedage.com/
http://www.feedbomb.com
http://www.feedcat.net/
http://www.feed-directory.com/
http://www.feedfury.com
http://www.feedooyoo.com/
http://www.feeds2read.net
http://www.feedsee.com/
http://www.feedsfarm.com/

The Tenth Commandment – Thou Shalt Not Forget about Google Images

Google images accounts for a large amount of traffic and should not be ignored. On each daily blog, you should have an image that is clickable. Remember that Google images shows a bunch of thumbnails and not your blog content. Then use the keyword string to name the image, alt tag, and caption.

What is bandwidth leeching or hotlinking?

People who display your images or movies on their site by linking directly to your site are engaging in “hotlinking” or “bandwidth leeching.”

What’s the harm?

Is it the end of the world? Probably not. Heck, I’m flattered that anyone might be interested in a photo I have taken. But, this practice can consume your bandwidth and slow down your web server. If it is excessive, you might even end up footing an extra bill from your hosting provider.

How do I know if it is happening to me?

One tell-tale sign of hot linking is the appearance of strange web sites in your referer logs. I first became aware that this was happening on my site when I started seeing myspace.com and other similar URLs showing up in my logs. These sites wouldn’t normally be interested in my site, so I knew something was up. Upon visiting some of these pages, I noticed my photos were posted there. And sure enough, they hadn’t made a copy of my photo. There were linking directly to the photo hosted on my web site.

Another sign of hot linking might be a higher than normal amount of bandwidth consumption. Your log analysis tools might even show a higher number of hits for an image than for the page that displays it.

How can I stop it?

The only 100% fool-proof way to stop hot linking is to turn off your web site. But, that’s a little extreme.

One way to slow down hotlinking is to redirect these requests to another image of your choosing. For example, let’s say crazyaboutcats.com is hot linking to your prized photo of your cat Max. By implementing a redirect on your site, crazyaboutcats will now see an image that says, “Please stop hotlinking to my photos” (or something more devious.)

Some people recommend a white list approach. That is, to block all referers except for those that come from sites that you allow. I think that’s a little extreme.

It is hard enough to get people to come to my site. I don’t want to accidentally block legitimate requests from search engines, feed readers, etc.

So we’re going to take a black list approach and block some specific sites that are the worst offenders.

You will need:

• an Apache web server with…
• mod_rewrite enabled
• support for .htaccess
• and about 30 minutes to setup and test.

Ask your web hosting provider if you are not sure about any of this.

Create a stop image

Create a friendly image that you would like to show to the hotlinkers and upload it to your web server.

Here is the one I’m currently using.

Create a .htaccess file

Create a text file called .htaccess that contains the following:
(without the leading line numbers of course)

RewriteEngine on

# Attempt to stop hot linking from these specific sites

RewriteCond %{HTTP_REFERER} ^(.+\.)?xanga.com/  [OR]

RewriteCond %{HTTP_REFERER} ^(.+\.)?livejournal.com/  [OR]

RewriteCond %{HTTP_REFERER} ^(.+\.)?myspace.com/

RewriteCond %{REQUEST_URI} !/path/to/your/stop.png

RewriteRule .*\.(gif|jpg|png|avi)$ http://yoursite.com/path/to/your/stop.png

Let’s look at what each one of these lines does.

1. Tell Apache to turn on the rewrite engine.
2. Lines that start with # are comments and are ignored.
3. Match any request where the HTTP_REFERER starts with *.xanga.com OR…
4. *.livejournal.com OR…
5. *.myspace.com.
6. Do not match any requests to the stop sign image. (Without this, you would go into an infinite redirect loop.)
7. If you matched any of the above referers, and they are requesting a .gif, .jpg, .png or .avi file, redirect them to my friendly stop sign.

Of course, you should replace lines 3-5 with the sites that you want to block and update lines 6 & 7 with the appropriate paths.

Upload your .htaccess file

This .htaccess file should go in your web site’s root directory on your web server.

Verify that everything is working properly.

Make sure everything is working properly on your site. Mod_rewrite is very powerful, but one typo and all hell can break loose.

Check out a site that you have blacklisted and see if your stop image is now being shown where your cat Max used to be.

What other approaches have you used for fighting hotlinking and bandwidth leeches?

1. go to control pannel and then admin tools. chose local security policy.
2. click on software restriction policy and then on the top menu chose action and create new (if there is one yet).
3. click security levels and then right click disallowed and then make default and click yes to the message.
4. double click enforcment and chose all saoftware files and all users except admins. under additional rules create a new path rule from action menu. there browse for the internet icon that is in the guest account. the path should be something similar to: C:\Program Files\Internet Explorer\iexplore.exe then security to disallow.

Thats it! try to use the internet now from your account and then from the guest account. You will be able to use it but guest wont! Heheheh enjoy….

On my visit through sites and forums, I daily notice several instances of misuse of Adsense ads. So here a few helpful Google Adsense tips, probably many you already know, and few you might gain by knowing now. These adsense faq are all picked from the Program Policies, Terms and Conditions and FAQ itself and presented in a simplified manner.

1. Never click your own adsense ads or get them clicked for whatever reason. You know this one very well. This is a surefire way to close you Adsense account. Never tell your office associates or friends to click on them. Keep a check if your family or children are busy increasing your income by clicking your ads and indirectly trying to stop your income. Dont even think of offering incentives for clicks, using automated clicking tools, or other deceptive software. Adsense is very smart to detect fraudulent clicks. Check the ads which appear on your pages by the Google Preview tool if required.

2. Never change the Adsense code. There are enough means of adsense optimization & customizations available to change the colour, background or border to suit your needs. Do whatever you want to do outside the code, never fiddle within the ad or the search code. They know it when you do. The search code has more limitations to colour and placement, but you should adhere to the rules. The code may stop working and violates the TOS.

3. Do not place more than 3 ad units and 3 ad links or 2 adsense search boxes on any web page. Anyway, ads will not appear in those units even if you place more ad units. But this is the limit they set, so it is better to stick to it.

4. Do not run competitive contextual text ad or search services on the same site which offer Google Adsense competition in their field. Never try to create link structures resembling the adsense ads. Never use other competitive search tools on the same pages which have Adsense powered Google search. They do allow affiliate or limited-text links. Update: Google has allowed you to run contextual advertising like Yahoo ads, Chitika etc provided the ads do not resemble Adsense ads.

5. Do not disclose confidential information about your account like the CTR, CPM and income derived via individual ad units or any other confidential information they may reveal to you. However, you may reveal the total money you make as per recent updates to the TOS.

6. Label headings as “sponsored links” or “advertisements” only. Other labels are not allowed. I have seen many sites label ads with other titles. Dont make your site a target in a few seconds gaze.

7. Never launch a New Page for clicked ads by default. Adsense ads should open on the same page. You may be using a base target tag to open all links in a new window or frame by default. Correct it now as they do not want new pages opening from clicked ads.

8. One Account suffices for Multiple websites. You do not need to create 5 accounts for 5 different websites. One account will do. If you live in the fear that if one account is closed down for violation of TOS, believe me they will close all accounts when they find out. You can keep track of clicks by using channels with real time statistics. They will automatically detect the new site and display relevant ads.

9. Place ads only on Content Pages. Advertisers pay only for content based ads. Content drives relevant ads. Although you might manage some clicks from error, login, registration, “thank you” or welcome pages, parking pages or pop ups, it will get you out of the program.

10. Do not mask ad elements. Alteration of colours and border is a facility to blend or contrast ads as per your site requirements. I have seen many sites where the url part is of the same colour as the background. While blending the ad with your site is a good idea, hiding relevant components of the ads is not allowed. Also do not block the visibility of ads by overlapping images, pop ups, tables etc.

11. Do not send your ads by email. Html formatted emails look good and allow placement of these javascript ads. But it is not allowed as per TOS. You do not want impressions registering on their logs from any email even once. They are watching!

12. Keep track of your content. So Adsense is not allowed on several non content pages. But it is also not allowed on several content pages too. Do not add it on web pages with MP3, Video, News Groups, and Image Results. Also exclude any pornographic, hate-related, violent, or illegal content.

13. Do not alter the results after ad clicks or searches – Ensure you are not in any way altering the site which the user reaches to after clicking the ads. Do not frame, minimize, remove, redirect or otherwise inhibit the full and complete display of any Advertiser Page or Search Results Page after the user clicks on any Ad or Search results.

14. Avoid excessive advertising and keyword stuffing – Although the definition of ‘excessive’ is a gray area and is subject to discretion, yet Google adsense with correct placement, focused content and high traffic will get you much more income than other programs, so excessive advertising is not required. Keyword stuffing does target better focused ads, but overdoing it is not required.

15. Ensure you Language is Supported – Adsense supports “Chinese (simplified), Japanese, Danish, Korean, Dutch, Norwegian, English, Polish, Finnish, Portuguese, French, Russian, German, Spanish, Hungarian, Swedish, Italian and Turkish”. In addition, AdSense for search is available in Czech, Slovak, and Traditional Chinese. If your web pages language is not supported, do not use the code on such pages.

Update:
16. Maximum 2 referral button per product per page – With the launch of the google adsense referral program, you are allowed to put only 2 referral buttons for adsense referral, adwords referral, Google pack and Firefox with google toolbar referral.

17. Do not specify Google ads as your alternate ads. – Several services like Chitika eminimalls allow you to place alternate urls, when a targeted paying ad cannot be displayed. This involved creating an simple html page and putting the ad to be displayed instead. Even Adsense allows an alternate url feature instead of displaying public service ads. But never use Adsense ads as alternate urls.

18. Do not confuse with adjacent images – It was a common policy to increase CTR by placing same number of images as the number of text ads, which falsely gave the impression that the text ads represented an explanation to these images. Inserting a small space or a line between the images and ads is not allowed. Make sure that the ads and images are not arranged in a way that could easily mislead or confuse your visitors. More.

Whenever in doubt, it is better to ask for adsense help from the learned staff of Google Adsense. They are very helpful!

The Method
We discovered that a lot of the blogs that use a relatively static “alt” text. Now, while most search engines themselves do not search alt text in their standard results, image searches are entirely different matter.
By searching Google Image Search (or other image searches) for “U Comment I Follow” (with quotes is more accurate, but without quotes gives more results), we can pull a substantial list of do-follow blogs. By appending your given keyword(like “seo”), you can get more targeted blogs.
In addition, searching for “U Comment” or “I Follow” separately bring up a lot more results.

It’s More Accurate Than You Think
For whatever reason, most of the images Google returns for the above searches are not the images of the “U Comment, I Follow” project. However if you visit most of the sites listed, they actually DO have the image showing they’re a part of the project, Google just doesn’t return that as the search result. Odd, I know

Other Variations on the Method
Alt tags are not the only footprint available for this. It also uses relatively predictable image names.
You can search for these either using the inurl: command, or searching for the filename itself.

• ifollowblue.gif, ifollowgreen.gif, ifollowpink.gif, ifollowpurple.gif, ifollowltgreen.gif, ifolloworange.gif, ifollowwhite.gif,
• ifollowmagenta.gif
• ifollow.(gif/png/jpg, take your pick)
• utrackback_ifollow.gif
• ifollow-red.png
• inurl:ucomment
• inurl:ifollow

There’s a million more, so try and find them. They’re worthwhile if found within your niche. This entry is more of a tip than a complete guide.

source: slightlyshadyseo.com

Link Farms
When I say link farms, I dont mean web directories, but what I mean are pages that consist bunch of links. 100s of links that have no bearing to the content what so ever. Alot of people would make a page in their inner directories full with links and make multiple pages to boost rankings of their other sites. This technique was used once by alot of old schoolers until Search Engines figured out the issue, and start BANNING the sites, yup not penaltising, you will be banned. Meaning no page left in Google… so when you hit site:xxx.com you won’t see anything.

Embedding Invisible Text links

Yeah this is a sneaky way also called black hat. In this technique users actually embed text links on their page by making them the same color, so users don’t see them while they are there. This technique is old. As time goes, users were getting smart, so they would just select all and eventually find the text links. Then these black hatters came up with a technique to add their link in the content by having a display:none; css tag. This technique is a BIG NO NO, and google has even said it. Be very careful when you use free templates on your website because some cheap designers will sell out and put links in your website and you won’t even know it. I remember reading about a year ago, Jeff of Aviva had this one designer who did alot of free templates for him. In each template he added his own links and other websites and set them there. Someone found it and reported it to Jeff. Jeff immidiately released a note to everyone, but this designer’s reputation went down. (I can’t find the article otherwise I would’ve showed you). But the bottom line is this method is unacceptable, and you shouldn’t do it because this can lead to a ban as well.

Using Irrelevant Keywords

Alot of webmasters just want to rank high for every keyword, so they will put tons of keywords on their website even though when the keywords are not even related to the site’s content. When a bot spiders your website they will see the keywords, and when they try to match your site’s with related sites they will have tons of different sort of sites which will cause you to rank high temporarily until the Search Engines catches you and penaltize you. I haven’t heard of anyone getting banned by just using this technique, but I know people who have been penaltised by doing this.

Cloaking (BIG NO NO)

Cloaking is the worst thing you can do to your website because not only it will get your website banned, but it will get you a bad reputation. How? Did you ever hear of Fake PR? Cloaking is the way to obtain fake pagerank. Cloaking is basically when a webmaster places a code in their header which distinguishes the users and search engines. So if the visitor is a user they will see the visible page, but if the user is a search engine than the server will show them something else. Black Hatters who use this technique tend to show the search engine some really high pr site which leads the black hatters to get a high pagerank, but not for long because usually within one – two pr updates they get caught and banned from google and pagerank (GREY). Also people can see it if they know what they are looking for in your website’s code.

Overuse of a keyword / Keyword Repitition

This technique can get you penaltise, I haven’t seen anyone getting banned from this technique. Basically this is when a webmaster uses the keyword improperly in their website. Such as an over use of a certain keyword to rank high for that website. Example: Myspace proxy is a myspace proxy that allows proxified pages to proxy users who uses proxy etc etc. As you see the keyword doesn’t make sense and it is just a repetition of one keyword.

I just want to give this as a headsup to the beginners, so they don’t start doing this type of techniques because people who do these preach them also. They say this works, and it does work for short term, but you get banned for long term !!! I don’t think it is worth it.

Just enter the URL where your link is at, how many of your links you expect to find at the URL and the LinkAdage Link Checker will do the rest. You can then save you results as a project and rerun the link check as often as you like. This way, if one of your ‘money’ text links disappears, you can contact the webmaster and resolve the issue almost immediately.

You can search the internet for something better, but we believe our link checker is about as good as it gets and the best part is that it is free.

Download the LinkAdage Link Checker Now

“Tha nguoi dung noi se yeu minh toi mai thoi thi gio day toi se vui hon. Gio nguoi lac loi buoc chan ve noi xa xoi, cay dang chi rieng minh toi…“

Trojan Information Pages: AutoIt.X
Name : AutoIt.X
Alias: W32.Yautoit, Troj/Tiotua-A, W32/YahLover.worm, Trojan.Win32.Autoit.x
Size: 184,830 bytes
Type: Trojan
Category: Trojan
Platform: Win32
Date of Discovery: September 18, 2006

Summary
AutoIt.X, a variant of AutoIt, is a Trojan. AutoIt.X attempts to hiddenly download and run other files from remote web and ftp sites and changes startup and search pages of Internet Explorer.

The following instructions pertain to all current and recent Symantec antivirus products, including the Symantec AntiVirus and Norton AntiVirus product lines.

1. Disable System Restore (Windows Me/XP).
2. Update the virus definitions.
3. Run a full system scan.
4. Delete any values added to the registry.

For specific details on each of these steps, read the following instructions.

1. To disable System Restore (Windows Me/XP)
If you are running Windows Me or Windows XP, we recommend that you temporarily turn off System Restore. Windows Me/XP uses this feature, which is enabled by default, to restore the files on your computer in case they become damaged. If a virus, worm, or Trojan infects a computer, System Restore may back up the virus, worm, or Trojan on the computer.

Windows prevents outside programs, including antivirus programs, from modifying System Restore. Therefore, antivirus programs or tools cannot remove threats in the System Restore folder. As a result, System Restore has the potential of restoring an infected file on your computer, even after you have cleaned the infected files from all the other locations.

Also, a virus scan may detect a threat in the System Restore folder even though you have removed the threat.

For instructions on how to turn off System Restore, read your Windows documentation, or one of the following articles:

• How to disable or enable Windows Me System Restore
• How to turn off or turn on Windows XP System Restore

Note: When you are completely finished with the removal procedure and are satisfied that the threat has been removed, reenable System Restore by following the instructions in the aforementioned documents.

For additional information, and an alternative to disabling Windows Me System Restore, see the Microsoft Knowledge Base article: Antivirus Tools Cannot Clean Infected Files in the _Restore Folder (Article ID: Q263455).

2. To update the virus definitions
Symantec Security Response fully tests all the virus definitions for quality assurance before they are posted to our servers. There are two ways to obtain the most recent virus definitions:

• Running LiveUpdate, which is the easiest way to obtain virus definitions.If you use Norton AntiVirus 2006, Symantec AntiVirus Corporate Edition 10.0, or newer products, LiveUpdate definitions are updated daily. These products include newer technology.If you use Norton AntiVirus 2005, Symantec AntiVirus Corporate Edition 9.0, or earlier products, LiveUpdate definitions are updated weekly. The exception is major outbreaks, when definitions are updated more often.
• Downloading the definitions using the Intelligent Updater: The Intelligent Updater virus definitions are posted daily. You should download the definitions from the Symantec Security Response Web site and manually install them.

The latest Intelligent Updater virus definitions can be obtained here: Intelligent Updater virus definitions. For detailed instructions read the document: How to update virus definition files using the Intelligent Updater.

3. To run a full system scan

1. Start your Symantec antivirus program and make sure that it is configured to scan all the files.For Norton AntiVirus consumer products: Read the document: How to configure Norton AntiVirus to scan all files.For Symantec AntiVirus Enterprise products: Read the document: How to verify that a Symantec Corporate antivirus product is set to scan all files.
2. Run a full system scan.
3. If any files are detected, follow the instructions displayed by your antivirus program.

Important: If you are unable to start your Symantec antivirus product or the product reports that it cannot delete a detected file, you may need to stop the risk from running in order to remove it. To do this, run the scan in Safe mode. For instructions, read the document, How to start the computer in Safe Mode. Once you have restarted in Safe mode, run the scan again.

After the files are deleted, restart the computer in Normal mode and proceed with the next section.

Warning messages may be displayed when the computer is restarted, since the threat may not be fully removed at this point. You can ignore these messages and click OK. These messages will not appear when the computer is restarted after the removal instructions have been fully completed. The messages displayed may be similar to the following:

Title: [FILE PATH]
Message body: Windows cannot find [FILE NAME]. Make sure you typed the name correctly, and then try again. To search for a file, click the Start button, and then click Search.

4. To delete the value from the registry
Important: Symantec strongly recommends that you back up the registry before making any changes to it. Incorrect changes to the registry can result in permanent data loss or corrupted files. Modify the specified subkeys only. For instructions refer to the document: How to make a backup of the Windows registry.

1. Click Start > Run.
2. Type regedit
3. Click OK.Note: If the registry editor fails to open the threat may have modified the registry to prevent access to the registry editor. Security Response has developed a tool to resolve this problem. Download and run this tool, and then continue with the removal.
4. Navigate to and delete the following entries:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\”Yahoo Messengger” = “%System%\SSVICSSHOST.exe”
   HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\”Shell” = “Explorer.exe SSVICSHOSST.exe”
   HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\WorkgroupCrawler\Shares\”shared” = “[DRIVE LETTER]\New Folder.exe”
5. Restore the following registry entries to their original values, if required:HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\”NofolderOptions” = “1″
   HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\”DisableTaskMgr” = “1″
   HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System\”DisableRegistryTools” = “1″
   HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Schedule\”AtTaskMaxHours” = “0″
   HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\”IEProtection” = “[Firelion]”
   HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\”BkavFw” = “BKav2006″
6. Exit the Registry Editor.