Change Office 16 Underlined Color

Hi, some people like to change the wrong grammar mistake line color from blue to red or any other color.

The solution is:

1- Enter Options

2- Move to the Advanced Tab

3- Check on Diacritics

4- Change the Fill Color to classic red or any other.

Remove Virus Link: http://www.myarabylinks.com/ 

This is a Visual Basic program called Easy Link

To Remove it

Just go to Program Files and uninstall the EasyLink.exe

Then delete the folder. There are some written helpful writings in my YouTube video from friends in case you are confused.

Thats it!

Remove Temp folder .dll Viruses

How to Remove instal.ico + temp folder + iintect.dll + Thread Timer.dll + System.dll + WixMedia

I start with the install.ico that is related to a folder near it having the contents "div6F45.tmp" and its files: "intect.dll + Thread Timer.dll + System.dll

These Trojan Spies files are related to a database program called  WixMedia that is active in Windows task manager as iexplorer_monitor.exe

The folder cannot be deleted, and each time the user deletes it in safe mode or using a boot program like Linux, it changes its name  to something like:

"nsf8AC2", "nspA1DA", "nsvA6DA", and as much as the user deltes it, it keeps changing automatically. In my case I reached the name "div6F45.tmp"

First Step:

To delete the Virus, and the only way I found which is not written on any place on the internet is this:
Click Ctrl + Alt + Del and End Process for iexplorer_monitor.exe
on Win 7 Click Ctrl + Alt + Del and choose from the blue screen (stand by screen) Start Task Manager and from the Processes tab choose iexplorer_monitor.exe, and End Process

The Second Step:

I go to C:\Users\Your Name\AppData\Local\WixMedia
in my case was C:\Users\Simon\AppData\Local\WixMedia

Note: You need sometimes to check on Show Hidden Files and folders only once to see AppData from Folder Options.

If you notice you will see an icon inside the folder having the same icon as the install.ico file that means we are on the correct track

Now delete this folder WixMedia, then restart your computer.

Then go to C:\Users\Your Name\AppData\Local\Temp
and delete everything in Temp folder except for the system file FXSAPIDebugLogFile

After that restart again and the virus is out, and the only remaining in the temp folder will be this folder "div6F45.tmp" that I could not delete, but don't worry, it is empty, and spy danger is over. That's it

If you want some info about the .dll files, you cannot find, because their origin is:

PE32 executable (DLL)
MIME Type: application/x-dosexec

File Type: MS Windows icon resource - 1 icon
MIME Type: application/octet-stream

Reference: The only reference I found after knowing the type of the virus that took a lot of   effort is this link: http://processchecker.com/file/iexplore_monitor.exe.html

Uploaded in  28/9/2013

500 Internal Server Error

How to remove 500 Internal Server Error, and fix your browser.

Step 1:
1) Empty Chrome Cache and Delete Internet Explorer Cookies
2) Refresh or Reload many times until YouTube home page Appear again YouTube
3)Scroll down on the YouTube home page and change the language from US English to UK English

Step 2:
In some cases search for a program in Control Panel called Microsoft Web Platform Installer, and uninstall it, since it is related to a PHP platform that corrupts windows files, and that problem appeared in Windows Vista and the only solution to get rid of it was to repair the windows from a bootable disk.

Finally, this is a temporal resolve for future attacks from unknown sources. Till now as I said, it is the only solution available on the net after weekly research efforts.


How to fix the problem from the main server. I need to create a file called .htaccess I open Notepad and Write these 2 lines only AddType x-mapp-php5 .php AddHandler x-mapp-php5 .php I save it as .htaccess, and I  upload it to the server that I have connection from, if he wants my help. But most servers do not ask for help, so do not trouble yourself and help them. Only solve your problem as I told you  above. If you have your own server try the same way above. Bye!

.tmp virus (initsrv.exe) (.netshrink)

A new virus is released that cannot be deleted and creates shortcuts,  which are not really shortcuts, and when the shortcuts are deleted, the original files will be deleted as well. This file is a fake seduction  from the internet having the name download.exe. 
What I mean is when the user is searching for certain software, sometimes he or she will find their search on a fake website having infected files.  The .tmp is a monitoring virus and will be duplicated automatically whenever the user deletes it, and when it stuck with his or her USB drive, it becomes very dangerous, and creates shortcuts for all kind of apps and software.  The text files will disappear, and the user cannot see them.  They appear and disappear accordingly.  To check the virus, Ctrl + Alt + Del to open Task Manager. The Task Manager differs from one Windows to another, and that will be the user experience to locate it. I am going to show you the Windows 8 way. So start by clicking on the keyboard on the keys Ctrl + Alt + Del together to open Task Manager, and then move to the Details Tab, and I End Task for Csrss.exe file. There are 2 or 3 csrss.exe files, and the one that needs to be stopped is the capital letter one (Csrss.exe), since the rest are windows files.  This is only a checkup for the virus, but it will not be removed unless the user uses  a trick that I discovered by myself, since I could not find a way to kill it on the net. The .exe file this time is a hash file, and people who work on Mac know what a hash is. The hash is a program that used to define the Linux Backtrack Versions, and all kinds of hash files. It is a very small app, but it is harmless, and creates a very long extension. This .tmp virus real name is "3ce3978f78e2110ed9959c4be04814bd.exe", so imagine how long this name is, and how you are going to search for a virus remover (antivirus) to kill it, and if you write this name on Google search engine, it will not recognize it.  The Adware Malware remover defines it as a Trojan called MiS or C.MiS. I forgot the middle letter because I deleted it, but the hash is the most important, and we need to find the hash.exe to delete the virus. Deleting the Virus: I open the folder that has the virus, and then I enter inside Win 7/8 My Computer, then I move to the upper toolbar Tools/Folder Options/View, then I scroll down to the area of Hidden Files and Folders, and I check on Show Hidden Files. Now I can see the hash '3ce3978f78e2110ed9959c4be04814bd.exe', but I need to select it, and I right click on it, and I uncheck Hidden from the General Tab. Here the virus appears quickly, and the malware catches it, and Quarantines it. If you want to know its real name go to your malware quarantine files, and you will see its name, whether MiS or C.MiS. That's is!

Regards
Simon G. Hadid
Tripoli - Lebanon

Fake USB Memory Compressors

Fake USB Memory Compressors

There are 2 fake USB Memory increase software,  one of them is called "SDATA" and the other is called "Driver Increase" and both are released  from a while that trick you by letting you think that you are converting your USB Memory from 2 GB up to 16 GB, step by step  beginning from 2-4-8-16, and  sometimes you can see 
on some videos that it converts up to 32 GB All this operation is a hoax and while trying to put data of 4 GB on a converted USB from 2 GB to 4 GB, you will notice errors while reaching the full capacity of 2 GB and your USB stops accepting more data. I will give you some names of other Software to not fall in this trick. The fake Software names are:
1- SDATA.exe 2- Driver Increase
Note: Do not use Command Prompt or any other Terminals

How to reset and fix your USB Stick - Open My Computer - Right click on your USB - Quick Format and check on Reset to Default

Using a Terminal to reset your USB Flash Drive, or any wrong attempt is deadly, and will wipe your Hard Disk or any External Drive you have. Be careful.


Simon Hadid