If you can’t enable Show Hidden Files from folder options (due to virus attack or for any other reason), you can do it by editing the registry. Just follow the following steps:
Start --> Run , type regedit then press OK. The registry editor will open. Go to the following key:
HKEY_LOLCAL_MACHINE\SOFTWARE\MICROSOFT\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden.
Expand Hidden and select NOHIDDEN. In the right hand pane, see if there is a value called: CheckedValue and delete it. Right click in the right side pane and select New--> DWORD VALUE. Name it exactly as CheckedValue. Double click on it and put 2 as its value data.
Again at the left panel select SHOWALL, look for the key: CheckedValue and delete it also. Like the previous make a new DWORD, Name: CheckedValue . Double click on it and put 1 as its value data.
After doing these steps Open My Computer and from the upper panel and choose Tools>Folder Options. Then put a mark on Show Hidden Files.
Hopefully you will see your Hidden Files.
But you have to remember one thing. If you have virus running in your system then you should remove them first. Otherwise there is every chance that after restarting your system the virus will Hide your Hidden Files again.
Related Posts:
Restore Missing Folder Options.
Manually remove ckvo.exe virus.
Disable "Registry Editing Has Been Disabled By Your Administrator" Message
Enable Show Hidden Files Option
Restore Missing Folder Options.
Folder options missing is a common phenomenon due to virus attack. It is really annoying when the folder option is missing. But we can very easily get this missing folder option back.
Go to Start --> Run type gpedit.msc then press OK. The Group Policy Editor window will open.
Navigate to:
User Configuration --> Administrative Templates --> Windows Components-->Windows Explorer
In the right hand pane Double click on “Removes Folder Options menu from Tools menu” and select the Disabled option.
Close all windows explorer windows and then open again. Your Folder Options should back.
If the method does not work then you can enable the folder options by editing the Registry.
[You have to be careful and precise while editing the registry]
Start --> Run type regedit then press OK. The registry editor will open. Go to the following key:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
In the right hand pane, see if there is a value called NoFolderOptions
If yes then double click on it and change its value data to 0.
If you don’t see any NoFolderOptions then Right click in the right side pane and select New--> DWORD VALUE. Name it as NoFolderOptions. Double click on it and put 0 as its value data. That means you’re forcing the explorer to show folder options.
I think by this time you have got your missing folder options back. And also in future you will not face any problem regarding missing folder options.
But you have to remember one thing. If you have virus running in your system then you should remove them first. Otherwise there is every chance that after restarting your system the virus will disable your Folder Options again.
Related Topics:
1.Disable "Registry Editing Has Been Disabled By Your Administrator" Message
2.Enable Show Hidden Files Option
3.Enable Task Manager
4.Manually remove Funny Ust Scandal Virus
Disable "Registry Editing Has Been Disabled By Your Administrator" Message
In case of virus attack, if you want to run the Registry editor you may see the message:
Registry Editing Has Been Disabled By Your Administrator
If you can't open Registry editor, removing virus become more difficult as you will not be able to delete the Registry Keys created by the virus. Here are some simple methods which will help you to enable Registry Editing again.
1st Method: Using the Group Policy Editor
* Start >Run type gpedit.msc and click OK.
* Navigate to: User Configuration > Administrative Templates> System
* In the right-hand pane, find Prevent Acess to Registry editing Tools and double click on it
* Choose the option “Disabled” and click Ok.
* Close the Group Policy Window
2nd Method: Using Run Command
1. Start >Run and type the following command exactly and press Enter
REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 0 /f
I think you have got rid of Freaking Registry Editing Has Been Disabled By Your Administrator message.
Manually Remove Safemass.exe Virus.
A recent addition in the virus world is Safemass.exe virus. Most of the Anti virus programs failed to detect or remove Safemass.exe as it exists in limited subcontinental areas, mainly in Bangladesh. But you can easily remove Safemass.exe from your PC manually.
To remove safemass.exe manually, you have to follow the following procedure:
1. At first restart the Computer in safe mode. You can do so by repeatedly pressing F8 in the boot menu. There will be an screen with various Boot options. Choose "Safe Mode".
2. If the virus is still active, then it will stay on the system tray. Right click on it and select close or exit.(If the virus is not active,skip this step )
3. Now from Start menu, select Search.Type "safemass.exe" in the search box and start search. You will find the file in all of your drives. Delete all of them.
4. You have to clean the registry entries created by the Safemass.exe To do so, go to Start menu and select Run. Type Regedit. Registry editor will open. navigate to the following branch:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
In the right pane you will see Safemass.exe. Delete the entry.
5. Now check the root of all your drives for any autorun.ini files created by safemass.exe. If you find any, just delete them.
6. Restart your Computer.
I think you have got rid of Safemass.exe virus.
Enable Task Manager
In case of virus attack, this message is quite common: Task Manager has been disabled by your administrator.
If you can't open Task Manager, removing virus becomes more difficult as you will not be able to stop the process run by the virus. Here are some simple methods which will help you enable the task manager again.
1st Method: Using the Group Policy Editor
* Start -->Run type gpedit.msc and click OK.
* Navigate to: User Configuration --> Administrative Templates--> System--> Ctrl+Alt+Delete Options
* In the right-hand pane, find “Remove Task Manager” and double click on it
* Choose the option “Disabled” and click Ok.
* Close the Group Policy Window
2nd Method: Using Run Command
1. Start -->Run and type the following command exactly(or Just Copy-Paste) and press Enter
REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Pol icies\System /v DisableTaskMgr /t REG_DWORD /d 0 /f
3rd Method: Creating a Registry REG file
* Open Notepad
* Copy and paste the command between the lines into Notepad and save as taskmanager.reg
————————————
Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\System] “DisableTaskMgr”=dword:00000000
————————————-
* Double click on the taskmanager.reg file to enter the information into the Windows registry
4th Method: Editing the registry manually
* Start >Run , type REGEDIT and press Enter
* Navigate to the following branch
HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies\ System
* In the right pane, find and delete the value named DisableTaskMgr
* Close the registry editor
I think you have got rid of Freaking Task Manager has been disabled by your Administrator message.
Related Posts:
Restore Missing Folder Options.
Manually remove Funny Ust Scandal Virus
Funny ust scandal is the most common Virus I have ever seen. I found many of my friends'
computers affected by Funny ust scandal virus. This Funny ust scandal is also a really dangerous virus . It creates Funny ust scandal.avi.exe, SMSS.exe and Killer.exe - these three files,
disables folder options, starts new processes, task Manager automatically disappears after few seconds and system becomes deadly slow. If a Funny ust scandal virus is active in your system and your anti virus does not detect or delete it, then you have to manually remove it.
To Remove Funny ust scandal.avi.exe, SMSS.exe and Killer.exe virus, follow the following process
1. Start --> Run and type cmd
2.In the Command Prompt Window Type
taskkill /f /im smss.exe
taskkill /f /im killer.exe
3. The virus placed some files at the root of every drive so you need to clean them.
del /a:h /f c:\autorun.inf
del /a:h /f c:\smss.exe
del /a:h /f c:\funny ust scandal.avi.exe
Repeat the above commands on the Command Prompt Window for all your drives (Just replace C with the drive letter.)
4. Now you need to delete files in windows folder. So type:
del /a:h /f c:\windows\killer.exe
del /a:h /f c:\windows\autorun.inf
del /a:h /f c:\windows\smss.exe
del /a:h /f c:\windows\funny ust scandal.exe
5. Now you need to delete one more file :
del /a:h /f %userprofile%\Start Menu\Programs\Startup\lsass.exe
I think you will be able to remove Funny ust scandal , SMSS.exe and Killer.exe virus from your system successfully.
Caution: While the manual process is going on, do not open any My Computer drive.
Related Posts:
Enable Task Manager
Restore Missing Folder Options.
Manually remove ckvo.exe virus.
Enable Show Hidden Files Option
Disable "Registry Editing Has Been Disabled By Your Administrator" Message
Manually remove ckvo.exe virus.
Ckvo.exe (or Kxvo.exe, kcvo, xkvo) is one of the most common Virus/Trojan. When a Ckvo.exe virus gets active in a system, most likely your antivirus will not detect or delete it. Then you have to manually remove it. Don’t think manually remove ckvo is a very tough task. You have to just follow some manual removal procedures.
Start the computer in safe mode (Repeatedly press F8 during booting)
1.Now you have to enable “Show hidden Files”. BUT you can’t do it from folder options as the virus will not allow you to do so. What you have to do is editing the registry and manually enable it.
Start --> Run type regedit then press OK. The registry editor will open. Go to the following key:
HKEY_LOLCAL_MACHINE\SOFTWARE\MICROSOFT\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden.
Expand Hidden and select NOHIDDEN. In the right hand pane, see if there is a value called: CheckedValue Double click on it and put 2 as its value data.
Again at the left panel select SHOWALL, look for the key: CheckedValue Double click on it and put 1 as its value data.
2. Its very important that you don’t double click on any drive now. Open My Computer and from the upper panel choose Tools>Folder Options. Then put a mark on Show Hidden Files and remove the check from Hide Protected Operating System Files.
3. In My Computer from the upper panel choose Folders. In the Left pan Expand My Computer and Click on C: In the C drive delete autorun.inf File. Again using the left panel, go to every drive and delete the autorun.inf file.
4. After that, go to Start Menu-->Search and Select All Files and Folders. Click More Advance options and check all the boxes. Then search once for each of these files
ckvo.exe, ckvo.dll, ckvo0.dll, ckvo1.dll, kava.exe, kxvo.exe, kxvo0.dll.
Delete all the files you found. Then delete them permanently from recycle bin.
5. Now Open Registry Editor again
Delete the value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"Kamsoft"=C:\windows\system32\ckvo.exe
Then Go to
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\
delete all the keys starting with {--------}
Example:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{05ef6149-5e60-11dd-8a88-0003254ecf1b}
In the above key delete {05ef6149-5e60-11dd-8a88-0003254ecf1b}
Finally turnoff the SystemRestore and turn it on again so the previous restore points will be deleted.
I think this manually removal procedure will help you get rid of the ckvo.exe virus.