Raymond.CC Blog

Category: Computer

  • Run Program Only Once when Windows is Booted Up

    On earlier Windows version such as 95 and 98, there are only a few areas where it controls a program to auto startup when Windows is booted up. There are so many now startup methods on Windows 7 and is better to rely on a tool such as Autoruns by Sysinternals. One of the auto startup method that is still being used until today is the Software\Microsoft\Windows\CurrentVersion\Run path in Windows registry located at both HKEY_CURRENT_USER and HKEY_LOCAL_MACHINE. I am very familiar with this auto startup registry path because I already memorized it more than 10 years ago when I’ve helped many friends clean viruses and trojans such as NetBus and Back Orifice from their computer. Basically any values added to that Run key will be started when Windows is booted up.

    Now if you look at the next registry key after the Run key, you would find a RunOnce key. The Run and RunOnce does the same thing which is running the program when Windows is booted up but with one difference which is RunOnce only run the program once and it won’t run again at the next reboot. Usually the RunOnce key is being used to delete files that are being used by system services or locked by Explorer.


    Adding a program to RunOnce is very simple. All you need to do is create a new String Value and set the full path to the program that you want to run for the value. If you don’t know how to manually edit the Windows registry or don’t want to take the risk, you can easily do so by using the free and portable tool called RunItOnce.

    Simply run the RunItOnce tool and it will open a Window asking you to select the program to run once on next boot. After selecting the program, you can see that it is instantly added to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce. The only limitation on this tool is you can only add and cannot edit or delete the RunOnce keys. To edit or delete the RunOnce keys, you have to do it manually using the Windows Registry.

    RunItOnce

    There are a few rules to remember when using the RunOnce key. First you will need to run RunItOnce as administrator or else it wouldn’t be able to make changes on the Windows registry and giving you the error “RunItOnce Failed for: ProgramName”. Secondly, the RunOnce keys are only ran after the user successfully logs in to Windows and before the Windows Shell is fully functional and other programs will be starting up. Finally, these keys are ignored when the computer is started in Safe Mode.

    RunItOnce is a simple yet useful little tool to make our advanced computing life easier.

    [ Download RunItOnce ]

  • Improved Emsisoft Anti-Malware 6.0 Performance + Giveaway

    Emsisoft Anti-Malware may not be as popular as AVG, Avira or Avast but it is well known for its superb detection taking the lead in a couple of independent tests. The first thing I like about Emsisoft is that their company is not too big which made it possible for me to speak to Christian Mairoll, the CEO of Emsisoft a couple of times over Skype. Christian is definitely a very friendly and professional person. I got to know about the major update on Emsisoft Anti-Malware few weeks back and this version claims to have taken more than one year in development to completely rewrite for multi-core optimizations which makes it faster, safer and more resource-saving than ever.

    I was excited to review the new Emsisoft Anti-Malware 6.0 and finally I had the time to do it today. The current (6.0.0.46) setup installer file size is at 106MB while when I benchmark the performance was an older build at 96.5MB. The design remains familiar while there are dozens of technical improvements.


    Launching Emsisoft Anti-Malware 6.0 will bring you to the Security Status window showing you the status of File Guard, Behavior Blocker and Surf Protection. It also tells you the last time you performed a malware scan and also an update.

    Emsisoft Security Status

    Next at the menu is Scan PC where you can select four different type of scan profiles. Quick Scan is for scanning all active running programs which took merely 19 seconds on my test system. Smart Scan does the same as quick scan but includes programs and Windows files. The Deep Scan is the slowest because it thoroughly scans all files on all hard drives. Finally the last scan profile is Custom where you can select what type of objects to scan and also the settings. At the bottom you can add files to whitelist to prevent Emsisoft Anti-Malware from scanning the file and also action to automatically perform when scan has been completed.

    Emsisoft Scan Pc

    The Quarantine window simply lists all the files that Emsisoft Anti-Malware has been quarantined so you can easily submit file to Emsisoft for analysis, re-scan again on newer virus definitions, manually add, restore or delete the quarantined files.

    Logging is an important tool for tracing procedures but normally it is not easy to go through logs as they contain too much information. Emsisoft Anti-Malware made it clear and simple by dividing into 3 different log windows (Guard, Quarantine and Update).

    The Guard window allows easy fine tuning or removal of behavior rules. The Behavior Blocker is enabled by default and watches 19 different types of activities such as possible backdoor, spyware, hijacker, worm, dialer, keylogger, trojan, injection, patching, invisible installation, rootkit, mouse and keyboard simulation, modifying of HOSTS file and etc.

    Emsisoft Guard

    Finally, the Configuration area allows you to configure the antivirus’ global options such as the Guard Settings, Scheduled Scans, Updates, Automatic Update, Logging, Permission and License. From the License tab, you can opt to switch to Freeware mode where the real-time protection is disabled and you can only use Emsisoft Anti-Malware 6.0 for scanning and cleaning.

    Since the real-time guard is disabled for freeware mode, logically Emsisoft Anti-Malware 6.0 shouldn’t have any process running in background. I noticed that the a2service.exe process is still running even on freeware mode which may take up unnecessary memory usage. To disable the a2service.exe, click on the Windows Start button, type services.msc and hit enter. Look for Emsisoft Anti-Malware 6.0 – Service on the list and double click on it. At the Startup type drop down menu, select Manual and click Apply. This will prevent a2service.exe process from automatically starting whenever Windows is booted up.

    Disable a2service.exe

    Do note that manually running Emsisoft Anti-Malware 6.0 will trigger a2service.exe process and it remains active until you restart your computer. To manually terminate the a2service.exe process, either click the Stop button from the Services window, or run command prompt as administrator and type the command net stop a2AntiMalware. If UAC is enabled and you do not run command prompt as administrator, you will get “System error 5 has occurred. Access is denied” error.

    Comparing Emsisoft Anti-Malware v5 with v6, most of the benchmark numbers has improved tremendously. Only the time taken to boot up Windows and file compression has increased a bit.
    Emsisoft Anti-Malware v5 vs v6
    Numbers bolded in blue means improved while red is worsen

    Emsisoft Anti-Malware 6.0.0.46 also passed the most recent single product flash test performed by Malware Research Group detecting a perfect 50 out of 50 samples. False alerts has also been significantly reduced because of its internal analysis system. Emsisoft has recently revealed a creative referral rewards program where you can easily get a 1 month or 6 months extension of your license for free.

    Emsisoft is definitely heading the right direction with improved performance while maintaining its top notch detection. Christian Mairoll has generously sponsored 30 Emsisoft Anti-Malware 6.0 license valid for 1 year to be given away here. Visit our giveaway page to join the raffle.

    [ Download Emsisoft Anti-Malware 6.0 ]

  • HTTPNetworkSniffer a Portable Alternative to URL Snooper

    When you get online or in a network, network packets are being used to transfer data around. We don’t normally get to see them because they work secretly in background. In order to investigate the packets, we have to use packet sniffing tools and one of the most popular free software for that is WireShark. Seems like Nir Sofer, the author of Nirsoft.net has been playing around with network packets lately because most of his new release tools has got to do with packet sniffing. One of his latest new release is called HTTPNetworkSniffer which captures all HTTP requests/responses sent between the Web browser and the Web server and displays them in a simple table. Basically this is an alternative to URL Snooper.

    Tools such as HTTPNetworkSniffer are very useful when you want to find out the direct link to download a software when it uses web installer. One example is when you want to download and install AVG Anti-Virus Free 2012, you will have to first download a 3.7MB web installer, and the web installer will then download the latest necessary files to install on your computer. The web installer doesn’t show you where it is downloading from and HTTPNetworkSniffer solves this problem.


    As usual, what I like most about Nir Sofer tools are they are portable. HTTPNetworkSniffer is only a single 108KB file (HTTPNetworkSniffer.exe). Running it will first prompt you to select the sniffing engine driver. Unlike URL Snooper that only works with WinPcap, HTTPNetworkSniffer can support Raw sockets which you don’t need to install any third party driver for sniffing but required to run as administrator when UAC is enabled, WinPcap and Network Monitor Driver by Microsoft. Clicking the play icon at the menubar will start capturing the packets.

    HTTPNetworkSniffer

    HTTPNetworkSniffer shows a lot of information such as host name, method (POST, GET), path, user agent, response code & string, content type, referrer, content & transfer encoding, server, content length, connection, cache control, cookie, client & server address, and request time. That is A LOT of useful information that is being shown compared to URL Snooper. What I find missing from HTTPNetworkSniffer is the option to remove duplicates and also filtering so that it is easier for me to search the path that I am looking for. An option to copy the “full path” (host name + path) would also be very useful.

    Do note that HTTPNetworkSniffer only works on non-encrypted sessions. Meaning if the files are hosted at HTTPS, the packets are SSL encrypted and there is no way for HTTPNetworkSniffer to decode it. That is the whole point of SSL encryption to provide security for data sent to and from a web site.

    [ Download HTTPNetworkSniffer ]

  • Download Microsoft Windows Vista Final RTM + Activation Crack

    According to Microsoft, Windows Vista has hundreds of new features, the most significant of which include an updated graphical user interface and visual style dubbed Windows Aero, improved searching features, new multimedia creation tools such as Windows DVD Maker, and completely redesigned networking, audio, print, and display sub-systems.
    Windows Vista Final download Crack
    Vista also aims to increase the level of communication between machines on a home network using peer-to-peer technology, making it easier to share files, password settings, and digital media between computers and devices. For developers, Vista introduces version 3.0 of the .NET Framework, which aims to make it significantly easier for developers to write high-quality applications than with the traditional Windows API. The Windows Communication Foundation feature which supports web services is aimed at improving networking and application integration for business and corporate users.

    Microsoft haven’t even start selling their Windows Vista and pirates already managed to get the RTM (Release-To-Manufacturer) version of Windows Vista and released it out to the public. It’s final and no longer in Beta. Phew! I find it hard to believe as well!


    From what I’ve heard if you enter a key it will let you use vista for 3 days. To continue using after 3 days of entering a key, you’ll need to activate the product. If you don’t enter a key you get 30 days. I personally has not downloaded and tested it yet. But I get a lot of people saying that the crack worked and it is able to bypass the Windows Vista activation.

    Funny part is, no matter what Microsoft does to fight piracy, crackers WILL crack it.

    You can obtain the download link to download Microsoft Windows Vista final from the forum below.
    [ Download Microsoft Windows Vista Final ]

    ALL Windows Vista Crack Pack below contains activation cracks created by 4 different crackers.

  • Microsoft.Windows.Vista.RTM.PROPER.Activation.Crack-ReeBSaW.rar
  • Vista.Final.Activation.use.with.Microsoft.Windows.Vista.Final-BillGates.iNT-TD.rar
  • Windows.Vista.FINAL.Crack.raVen.rar
  • Windows.Vista.RTM.Activation.Crack-iND.rar

    • [ Download ALL Windows Vista Activation Crack Pack ]

    Important Note: None of the links and files are provided and uploaded by me nor it is hosted in this website. I only found the link and posted it out. Do buy the genuine version of Windows Vista for stability and free from cracking the activation problems.

  • Download Windows XP Pro SP2 + Integrated November Updates

    Windows XP ProfessionalI have an original Windows XP Professional CD with a genuine product key. However, I never like to use that CD to reinstall my operating system because Service Pack 2 and other updates is not integrated. Imagine I have to spend around 30 minutes to install Windows XP, then install Service Pack 2, then go to Windows Update, download hundreds megabytes of updates and install. It’ll take at least 2 hours to complete installing Windows XP with all the latest patches.

    What I do is, I always look out for an ISO image that ETH0 release. The ISO image contains Windows XP Professional + Service Pack 2 + Latest Windows Updates integrated. It has serial number in it’s .NFO but I never use that key. Why use a pirated product key when I have a genuine one? All I need to do is install using ETH0 Windows XP CD, input my genuine product key and my Windows XP is up to date once complete installing! What a time-saver!

    I manage to find the latest Microsoft Windows XP Professional Corporate with Service Pack 2 and up to November Windows Updates in ISO format.


    Follow the steps below to download and burn a copy of Windows XP Professional with SP2 and November updates.

    1. Download all 6 parts from RapidShare. Look for the 6 parts at the comment area posted by “Niksas” from this website.
    Download Windows XP Professional with Serial Number

    2. Once you have all 6 parts, place them all in the same folder. Extract ONLY MSWXP29112006.part1.rar file.

    3. You will now get a total of 40 files ranging from e-xp2no2k6.rar to e-xp2no2k6.r37. Again, extract ONLY e-xp2no2k6.rar file.

    4. Now you’ll get the ISO file with the file name e-xp2no2k6.iso

    5. Burn it with Nero or any other CD Burning software. You can also refer to this ARTICLE for help on how to burn ISO.

    6. After burning, just put in the CD and set your BIOS to boot from your CD/DVD drive. Windows XP Professional installation will start.

    That’s all! It’s tough to download all 6 parts from RapidShare but trust me, it’s worth it. The ISO even has the latest Windows Genuine Advantage Validation v1.5.716.0 Cracked by ETH0. If you’ve a genuine Windows XP product key, you won’t even need to use the cracked WGA and the pirated product key that’s included in the package.

  • Reset or Recover Firefox Master Password

    Firefox uses master password to provide enhanced security by protecting the stored sign-on information for various websites. By default Firefox does not set the master password. However once you have set the master password, you need to provide it every time to view sign-on credentials.
    Reset Firefox Master Password
    So if you have lost the master password, then you have lost all the stored credentials as well.

    After a little research on Firefox master password, I found a way to reset the password and also a way to crack the master password.


    There’s a simple way on how to reset the Firefox master password.

    1. Run Firefox browser.

    2. At the address bar, type the following link and hit Enter.

    3. You will be prompted “If you reset your master password, all your stored web and e-mail passwords, form data, personal certificates, and private keys will be forgotten. Are you sure you want to reset your master password?”.

    4. Click “Reset” button and it will reset all your stored credentials.
    Decrypt Firefox Master Password

    Resetting the master password is rather useless since you’ll be loosing all your saved login information. I can easily create a new profile that won’t have a master password.

    There’s another way you can recover Firefox master password but it requires time, a good dictionary file and also a little bit of luck. FireMaster is the Firefox master password recovery tool. It uses various methods such as dictionary, hybrid and brute force techniques to recover the master password from the Firefox key database file.
    Bruteforce Firefox master password

    FireMaster is DOS base. So you need to understand and know the commands to use FireMaster. FireMaster is designed with good intention to prevent any master password related problems faced by Firefox users.

    [ Download FireMaster | FireMaster Website ]

    Now you know that Firefox Master Password can’t be easily decrypted. If you have a lot of saved login information in your Firefox, make sure you set a Master Password! Don’t wait until someone set a master password on your Firefox browser and then you’ll searching for ways to decrypt it.

  • How To Install Latest ATI or NVIDIA Drivers on Laptop

    For people who has Acer, Asus, Dell, Toshiba laptops and it is using ATI Mobility RADEON graphics card, sorry to tell you that you can’t install the official ATI Mobility RADEON drivers. If you download the latest ATI Mobility RADEON drivers from ATI and try to install it on your laptop, you’ll get the error message “Thank you for your interest in CATALYST. Unfortunately, this software update cannot be installed on your system. Please contact your notebook manufacturer for driver updates.

    Unfortunately this software update cannot be installed on your system

    Official ATI website mentioned that only Alienware, Arima, Clevo, ECS, Eurocom, Falcon Northwest, FIC, Fujitsu Siemens, HyperSonic PC, Mitac, MSI, NEC-CI, Pro-Star, RockDirect, Sager and Uniwill can use their driver. Is downloading ATI drivers from the laptop manufacturer’s website the only way? No I don’t think so…


    Few days ago I wanted to reformat my hard drive to install a fresh copy of Windows XP on my Acer laptop using (Windows XP Professional Retail SP2 Integrated December 2007 ETH0) CD. After installation, I downloaded the ATI drivers and I wasn’t able to install it! This time I got a different error “Setup was unable to find components that can be installed on your current hardware or software configuration. Please make sure you have the required hardware or software.

    Setup was unable to find components that can be installed on your current hardware or software configuration

    I neither can’t install the official ATI driver nor the manufacturer’s ATI driver. At first I thought my graphics card on my laptop is faulty but I found out that the problem is on Windows XP Professional Retail SP2 Integrated December 2007 ETH0 CD. It uses RyanVM’s Update Pack and somehow it made my Windows unable to detect my graphics card.

    After a little searching, I found third party modified ATI and NVIDIA drivers from Omega Drivers. The purpose of the Omega Drivers is to provide gamers with an alternate set of drivers, ones that have more options and features than the original sets. The drivers contain optimizations, extra features (like OC capabilities), more resolutions and internal tweaks that can give them the edge in a gaming environment over the normal drivers, which are often tailored for synthetic benchmarks. All Omega driver sets are tested (unless noted) by the maker in his own PC or in an alternate PC (in the case of the Nvidia drivers) to ensure maximum compatibility and reliability.

    If your laptop is unable to install either official or manufacturer drivers, then use Omega Drivers.

    Another advantage of using Omega Drivers is you’ll get the latest driver. Newer drivers equals more functions, bug fixes and better performance. I checked Acer’s ATI Mobility RADEON drivers and the drivers are really outdated if compared with the latest version from official ATI website.
    download ATI driver
    As you can see, Acer is still using ATI display driver version 8.073 while in official ATI website is already 8.1! The ATI driver files from Acer also dated back to year 2004 which is nearly 4 years ago! Which would graphics driver you use? Manufacturer’s or Omega Drivers? I definitely would go for Omega Drivers if I can’t install the latest official ATI or NVIDIA drivers…

    [ Download ATI OmegaDrivers | NVIDIA OmegaDrivers ]

  • Delete a specific URL at the Internet Explorer Address Bar History

    When you use Internet Explorer to browse to a website and do so by directly typing the URL in the address bar, the URL you’ve typed will be saved. This is useful for your own use, but in case you’re using a computer of co-worker (or your wife, even nastier), and the URL you’ve typed is, hmmm… how should I say, a bit suspicious, then that URL could be viewed by the other user by pulling down the list.

    If you’ve logged on as your own user then that’s ok, but if you’ve temporarily used a different user’s account to “just check in your email” (wink wink…), then that might get you into trouble.
    That’s why you may want to remove, delete or clear the history of links from Internet Explorer address bar.

    Now here is the tricky part. We all know that you could simply clear your IE history (Internet Explorer > Tools >Internet Options > General tab > click Clear History), however that’ll clear ALL your history, including the address bar URL cache. That we do not want, because that’ll just signal the “other user” (e.g. wife) that you’ve done something you wanted to hide. And that my friend, is harder to explain.

    Please follow these steps in order to clear a specific URL from the history of the address bar in Internet Explorer.


    1. Start Registry Editor (Regedit.exe).
    Note: As always, before making changes to your registry you should always make sure you have a valid backup. In cases where you’re supposed to delete or modify keys or values from the registry it is possible to first export that key or value(s) to a .REG file before performing the changes.

    2. Locate the following key in the registry:
    HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TypedURLs

    3. Delete all the URLx (e.g. URL1, URL2 and so on) that you do not wish to be visible in the address bar drop down list.
    Note: If you delete only certain keys, make sure that the remaining keys are in renamed in sequential order start from url1. Otherwise you might corrupt your remaining keys.

    4. Close the registry editor.

    All Internet Explorer windows should have been closed before doing the above steps.

  • Stop Virus from Running Automatically When you Execute Files

    Many worms and trojans make changes to the registry to so that it can automatically start whenever you boot up your computer and also to avoid easy detection by disabling Windows Task Manager, Registry Editor and etc… You can easily restore all those tools by using Remove Restriction Tool (RRT).

    I just recently found out that a virus can actually make some changes on your registry so that the virus will run automatically whenever you execute a file. Imagine, the virus will be loaded each time you run an executable (EXE) or a batch (BAT) file. Just last week I was cleaning a computer that was infected by Brontok. After finished scanning, cleaning the virus and restoring the changes made by virus, the Symantec Antivirus Corporate Edition still pops up notification stating that Brontok virus is found and automatically deleted. This happens EVERY TIME I run an executable file.

    Now I found out how it works and also how to disable the virus from running automatically whenever I run any file.


    This happens when a virus change one or more of the shell\open\command keys. If these keys are changed, the worm or Trojan will run each time that you run certain files.

    For example, if the \exefile\shell\open\command key is changed, the threat will run each time that you run any .exe file. This may also stop you from running the Registry Editor to try to fix this. They may also change a registry value so that you cannot run the Registry Editor at all.

    I’ve done a test by adding Notepad.exe path in \exefile\shell\open\command key. Then I tried running any EXE file, it will launch the EXE file with notepad! For Brontok virus, it loads a backdoor file called “shell.exe”. You won’t even notice anything abnormal when you run an EXE file.
    Virus Shell Open Command

    Thanks to Symantec Security Response for creating a script that is able to easily reset these registry values to their default settings.

    What is inside the script:

    [Version]
    Signature=”$Chicago$”
    Provider=Symantec

    [DefaultInstall]
    AddReg=UnhookRegKey

    [UnhookRegKey]
    HKLM, Software\CLASSES\batfile\shell\open\command,,,”””%1″” %*”
    HKLM, Software\CLASSES\comfile\shell\open\command,,,”””%1″” %*”
    HKLM, Software\CLASSES\exefile\shell\open\command,,,”””%1″” %*”
    HKLM, Software\CLASSES\piffile\shell\open\command,,,”””%1″” %*”
    HKLM, Software\CLASSES\regfile\shell\open\command,,,”regedit.exe “”%1″””
    HKLM, Software\CLASSES\scrfile\shell\open\command,,,”””%1″” %*”
    HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System,DisableRegistryTools,0×00000020,0

    Of all the shell\open\command keys, the exefile key is being used most frequently. When your computer starts, it loads a lot of EXE files. When you start a program, it also loads EXE file. The rest are seldom used unless you’re a power user. To be on the safe side, it’s better for Symantec to restore all of the shell\open\keys to default values.

    Instructions to install the script:
    1. Download the script at the end of this post by right-clicking on the link and save it to your desktop.
    2. Right-click on the file and select “install
    Install UnHookExec.Inf

    A great tool to carry around with me all the time to combat against nasty virus such as Brontok.

    [ Download Symantec Reset Shell Open Command Script ]

  • Daily Premium Software Giveaways at Raymond.CC Forum

    Asking a few people I know about giveaways on websites and they instantly say that it is very common nowadays. Back in early 2008, free giveaways are very rare and you can only find competition that you must win in order to enter the raffle. If you don’t believe me, try searching in Google for “giveaways” from 2000 to 2008 at the custom range time and you will hardly find any giveaways. The first time I did a giveaway on early 2008 was because I was walking around in a computer mall and saw a lot of boxed Kaspersky and Bitdefender software being sold. So I thought why don’t I buy one each and give it away to my readers?

    My first giveaway was held on March 2008 which attracted over 500 participants for Kaspersky Anti-Virus 7.0 giveaway and the second one attracted less than 200 which is for BitDefender Antivirus 2008. The method to pick the winner is by extracting the names from the comments and run them under a list randomizer at random.org. The only requirement to participate in the giveaway is to subscribe the blog’s daily newsletter. Simple and fair.

    Giveaways that are held on a lot of websites today I think are pretty absurd. It doesn’t seem to be the joy of giving, but rather than asking their readers to do things for them. For example, you must tweet, share, like, digg, stumble, subscribe, do everything that benefits the website and THEN you gain a very tiny chance to win when there is only 1 prize up for grasp. Another question to think about is whether the prize is really there, if the winners are even real, the selection of winners are not rigged, or… whole giveaway is a scam? Other than that, there are cheaters that tries to increase their chance in winning by using multiple different identities.


    I have this dream where I’ve always wanted to do an improved daily premium software giveaway based on an automated system and I am happy to say that it has been implemented in our forums.

    Raymond's Daily Giveaway

    Currently, all you need to do is to register a one time free account in our forum, agree with the giveaway rules, and click the “Enter Me!” button at the giveaway page. The system will automatically and randomly pick winner(s) upon reaching the draw date and time (3PM Malaysian GMT+8 time or 12AM PST). The current active giveaway (Kaspersky Anti-Virus 2012) schedule is a bit too long because I made a mistake on the date and time. A giveaway cycle is only for 24 hours and a new giveaway will automatically be posted when one has just ended. So it means that there will be a never-ending giveaway on our forum!

    Raymond.CC Daily Giveaway

    Another annoying problem on giveaways are sending of the licenses to the winners via email. There are countless times when they don’t receive my email because of their super sensitive spam filters and they blame me for not sending it. So I always make sure that I resend again using another email address if I don’t hear from them after 48 hours. This giveaway system is way better because the licenses are sent using private message (PM) and the winners are sure to get it once they log in to the forum.

    Many improvements on this giveaway system are in schedule and will be implemented in the coming weeks. More exciting prizes will be made available for giveaways. If you have any request, you can do so at the Request forum.

    Link to current daily giveaways: http://www.raymond.cc/forum/draw-entry/

  • Free 50 1 Year Emsisoft Anti-Malware 5.0 Full License Worth $2000

    About 3 months ago, Emsisoft has released a major update on a-squared and renamed it as Anti-Malware. If you have not heard of it, Emsisoft Anti-Malware (previous a-squared) has been recently taking the top 3, if not the first spot in malware detection tests. However its great detection does come with a price which is Emsisoft Anti-Malware 5.0 slows down in most actions that is performed on your computer, for example, compressing and decompressing files, converting audio to mp3, boot time, writing of text files and etc. If you check the antivirus benchmark report, most of the time you will find that Emsisoft Anti-Malware 5.0 is at the bottom, taking the most time to complete the benchmark.
    Free Emsisoft Antimalware license
    Please don’t take it wrongly that antivirus slows down your computer are bad. Some people may have a very powerful computer and slowing down merely a few seconds doesn’t matter to them as long as they know they are getting one of the best protection for their computer. Some other people like me that are very particular in squeezing every ounce of speed and having some knowledge on how not to get infected in the first place would prefer something lighter. Antivirus are meant to protect your computer from virus and that is their first priority but able to do that without putting much toil on the computer is a bonus.

    Emsisoft had a few free 1 year license giveaway last year and they are either about to or already expired. If you liked Emsisoft Anti-Malware, then here’s your chance to win a 1 year Emsisoft Anti-Malware 5.0 full license worth $40 each.


    The graphical user interface has been simplified and easy to manage as they are very straight forward. However when you go to the Guard tab, you can define application rules to protect certain process or executable file from being manipulated. Some malwares has the ability to inject itself to legitimate process and you won’t find anything suspicious just by looking at Task Manager. There are more options for Behavior Blocker, File Guard, Surf Protection and Host Rules.

    Free Emsisoft Anti-Malware 5 full license

    Emsisoft Anti-Malware 5.0 has 2 scanners to clean infections which is its own anti-malware engine and Ikarus Anti-Virus engine. It also comes with a newly written file guard which has the ability to scan programs when they are executed, created/modified or read. By default the file guard scans all files when they are created or modified but that slows down many operations on your computer. In my opinion, scanning only programs when they are executed should be good enough so you can have both the best protection and performance at the same time.

    Emsisoft Anti-Malware File Guard

    Another huge improvement for Emsisoft Anti-Malware 5.0 is the full support for Windows 7 and also 100% compatibility with 64 bit Windows. Also if your full version license is expired, the software can still work by automatically reverting back to freeware license allowing you to clean malware but without the guard features.

    Emsisoft Anti-Malware 5.0 Freeware License

    Another feature that I like in Emsisoft Anti-Malware 5.0 is the ability to limit the allowed configuration actions for non-admin user accounts. The Guest or Standard User won’t be able to mess around with the configurations and cause your computer to get infected if your computer is used by your family members or friends. There are also hundreds of other small improvements made on Emsisoft Anti-Malware 5.0.

    If you are interested in the giveaway, please first make sure that you’ve already a subscriber of our newsletter and then leave a comment. The lucky winners will be announced 24 hours later and I will send the coupon code to convert it into full license. Thanks to Christian Mairoll for sponsoring a hundred license to Raymond.CC readers. We are splitting the giveaway into 2 times. I have no specific dates for the second giveaway but it would be probably on September.

    [ Visit Emsisoft | Download Emsisoft Anti-Malware 5.0 ]

  • Subscribe and Get 1 Year FREE RapidShare Premium Account

    I noticed that my RSS readers has been increasing slowly but steadily every week. Now it has reached over 4000 subscribers and I’ve decided to give out 1 year of RapidShare Premium account when it reaches “5000” subscribers. So subscribe now and get daily computer articles delivered to your email address. Rest assured that your email will NOT be shared nor sold to anyone.
    FREE RapidShare Premium account

    It’s very easy to subscribe. You can either enter your email at the “Subscribe” box and click the Subscribe Me button on the right hand side of this page or you can also do the same on this page.


    I give out 1 year of RapidShare Premium account because I find that there are a LOT of things to download from RapidShare if you know how and where to find the links. I’ll even throw in a guide together with the RapidShare Premium account so that you can fully utilize your RapidShare Premium. Please see the table below on the benefits of RapidShare Premium account.
    RapidShare Premium giveaways
    Although it says “No Limits” for download limit, but in fact there is. You may download 25 GB within five days. This means in other words that you can download 5 GB every day. You can also “burst” and download 15 GB today and 10 GB tomorrow, but this means that you will not be able to download anything the following three days because we check how much you have downloaded in the last five days.

    5GB per day is quite a lot. Most of the ripped movies are only 600-700MB. So imagine you can download 6-7 movies per day! You’ll be watching 6-7 movies per day for a year! This is only an example of what you can download with RapidShare Premium account. Of course there are so many other things to download from RapidShare. RapidShare Premium account cost 54.99 EUR for a year and I’ll fully absorb that cost. You’ll also get free 8000 points. You can accumulate more points to extend your RapidShare premium account.

    Well if you are the lucky winner and for “some” reason you don’t want the FREE 1 year RapidShare Premium account, you can have anything you want that cost 54.99 EUR or less. I’ll just pay for it and have it shipped to your address. Since I think most of my readers are computer people, you’ll benefit a lot from the free 1 year RapidShare Premium account.

    So what are you waiting for? Subscribe to Raymond.CC Blog’s and stand a chance to win a free 1 year RapidShare Premium account!

    [ Subscribe Raymond.CC Blog For FREE ]

  • How To Send Files when Instant Messenger File Transfer is Blocked

    Sending files through instant messaging is convenient. Just drag the file that I want to send to the chat window and it’ll start transferring once the other party accepts it. Many times I can get quite annoyed when I am unable to send a file to someone through instant messenger such as Windows Live Messenger or Yahoo Messenger. This problem usually happens when they are in college or office, because very likely there is a firewall blocking it. I notice that even some people at home couldn’t send or receive files from Windows Live Messenger due to a bad configured router…

    Usually if the receiver is in office and everything is blocked except web browsing, the only way I can send the files over is to send it to his webmail or upload it to RapidShare. Other than this 2 method, I recently discovered another method to send files directly to the receiver.


    PipeBytes is a simple service which allows you to send a file to a friend.
    Free File Hosting With Expiration
    The unique benefits of this service are:
    * No software to install.
    * All you need is web browser.
    * Send files of any size!
    * Your buddy could start downloading file as you upload it. (That makes the file exchange process up to two times faster than other web-based file exhange services!)
    * It’s private unlike BitTorrent or other P2P techologies. The file is not shared on Internet – it is sent directly to your recipient.
    * You can watch YouTube videos while file is being transferred!

    If you want to send a file to your friend, click the “Send File” button, browse the file that you want to send and click “Start Upload“. You will then get a pick up code to send it to your friend. Your friend will then need to visit PipeBytes website, click the “Pickup File” button and enter the code. The only catch to use this service is the sender mustn’t close the browser window because PipeBytes is pretty much the same as sending a file to your friend using instant messenger. If the sender close the browser window, it will immediately cancel the transfer.

    Another thing that you should know is the file could be picked up only once! Once the transfer has started, you or anybody else will not be able to pick it up again without re-sending it.

    One huge advantage of PipeBytes service is it uses port 80 which is very rarely being blocked. If you ever encounter any problems sending or receiving files through instant messenger, you can use PipeBytes.

    [ Visit PipeBytes ]

  • Easily Access to Nearly 100 Hidden Utilities in Windows XP

    How many utilities do you know that is built-in Windows XP? Notepad, Wordpad, Character Map, Calculator, Microsoft Paint, these are the few utilities that I usually use. There are more at the Start Menu Accessories group but I seldom use it. Do you know that there are actually nearly 100 utilities in Windows XP which some of them are hidden and seldom accessed by a basic or normal computer users?

    If you arrange the icons by Type in Windows System32 folder, you’ll find many executable (.exe) files. A lot of hidden Windows XP utilities are actually placed in that folder. I just checked mine and it contains 357 exe files. However, not all executable file can be used. For example, I ran conime.exe which has the description Console IME but nothing appears. To make things easy, here is a small program that lets you easily access to nearly 100 hidden utilities in Windows XP.


    Hidden Utilities XP allows access to nearly 100 hidden utilities that are not normally accessible to the average user. System information, diagnostics, repair tools and more in both Windows and Command Line utilities are now easily opened. Hidden Utilities XP includes easy access to 53 Windows tools and 43 Command Line utilities.

    Windows XP hidden program

    Very useful and simple tool for people like me who can’t remember the command to run all utilities in Windows XP. Simple double click on the Windows or Command Line utilities that you want to open.

    This tool would be better if it includes a description of all the utilities and also letting us know what are the files that we are running. If you would like to know what file is being ran, you can simply open up Windows Task Manager and monitor for new processes. Alternatively, Process Explorer also able to tell you the command line location of an open Window. This tool is actually portable and it’s not necessary for the author to create an installer for it. You can browse to C:\Program Files\Camtech\Hidden Utilities XP and copy HTXP.exe to use another computer.

    Windows XP has been around for so many years and I don’t even know all of the utilities listed in this tool. What about you?

    [ Download Hidden Utilities XP ]

  • Neo’s SafeKeys v3 On-Screen Keyboard VS 12 Keyloggers

    The word “anti keylogger” today seems to be a universal meaning of keeping you safe against Keyloggers and not necessarily mean that it can detect and block keyloggers. Detecting, blocking and neutralizing keyloggers is one method normally used by traditional antivirus/antimalware but there a couple of ways that can also protect you against keyloggers such as using KeyScrambler to encrypt keystrokes so that keyloggers only captures random letters. Another method is to detect the keylogger “activities” such as taking screenshots, webcam logging, keyboard logging by using application such as Zemana AntiLogger. Each has their own unique way in keeping you safe against keyloggers and cannot be compared.

    Ever since I started testing a few security applications against keyloggers, Lunarwolf has been bugging me to test Neo’s SafeKeys v3. Moreover there are also some of you would prefer a portable software that could keep you safe against keyloggers. The official Neo’s SafeKeys v3 website claims that “Neo’s SafeKeys v3 provides 100% keylogger protection” and let us see if that is true…


    When you run Neo’s SafeKeys v3, it presents you with an on-screen keyboard. Basically you use your mouse to click on the characters to make up your password, then click twice on the asterisks (*) which will highlight all of it and drag-drop it onto the password box at the web browser or application.

    Neo's SafeKeys v3

    Logically not using your keyboard to type at all should prevent keyloggers from capturing what you have typed but that is not true if you look at the results below. 12 keyloggers has been tested against Neo’s SafeKeys v3 with Injection mode enabled and 3 keyloggers managed to capture the password after dragging and dropping it to the recipient password box.

    All In One Keylogger – PASS
    Ardamax Keylogger – PASS
    Refog Keylogger – PASS
    Revealer Keylogger Pro – PASS
    Ecodsoft Keylogger – PASS
    WebWATCHER – PASS
    BlackShades RAT – PASS
    CyberGate RAT – PASS
    DarkComet RAT – PASS

    Advanced Keylogger – FAIL
    Neo's SafeKeys fails in Advanced Keylogger
    Award Keylogger – FAIL
    Neo's SafeKeys fails in Award Keylogger
    Elite Keylogger – FAIL
    Neo's SafeKeys fails in Elite Keylogger

    Neo’s SafeKeys v3 is able to beat a lot of keyloggers but definitely not 100% especially when it comes to low-level kernel keyloggers. Nevertheless, it is free, has a portable version and comes with a few useful techniques in combating against keyloggers to attempt to protect your password. The latest version 3 comes with the “injection mode” which is enabled by default so you can drag and drop on programs such as KeePass, Roboform and etc.

    I understand that a lot of time and efforts are put into coding a software but claiming that it can provide 100% protection is just wrong unless it is proven. I personally feel sorry for those innocent and amateur computer users that put their 100% trust on a software when it cannot protect them 100%, risking their password being captured by keyloggers.

    [ Visit Neo’s SafeKeys Website ]

    UPDATE 14/June/2011: After reading the open letter that Neo has posted on his forum, I have decided to test the drag-drop method on Advanced Keylogger, Award Keylogger, Elite Keylogger, and Invisible KeyLogger Stealth. All 4 keyloggers failed to capture the password which I have dragged and dropped using the “Drag and Drop Mode”. The “drag and drop mode” is the safest method which you should use on all web forms, even on cybercafe. As for the “injection mode”, you should only use it on programs that does not work with drag and drop mode. If you don’t have LastPass to automate login for you on public computers, Neo’s SafeKeys with “drag and drop mode” is considered to be the next best option.