Computer Troubleshooting

Repair Windows XP Without Formating

1. NTLDR Missing

Overcome NTLDR Missing trouble in Windows XP little bit easier because Windows XP has the repair option that include in bootable Installer CD, so it is no need to make bootable diskette. What you have to do are:

  • Set the BIOS first boot device on CD Drive
  • Run the Windows XP CD Installer into CD Rom
  • Restart/Reboot the Computer
  • When apear option "Press any key to boot from CD, please hit anykey
  • After entering setup menu, that would be option to press key "R" to repair, hit that key to enter Repair command line
  • Wait a momment, dont push enter or you will reboot again
  • If any question, which system that you would repair, usually there is option number 1 C:\Windows , chose that and enter.
  • Enter your password Administrator and enter
  • If the login succesfull, copy the NTLDR and NTDETECT.COM from your CD installer. But before that, make sure the name of your CD/DVD Drive. for example E:


copy E:\i386\ntldr C:\
copy E:\i386\ntdetect.com c:\
  • If you finished, please go out from editor and restart your computer.
  • Dont forget to set first boot device into Harddisk device
  • Finish

2. NTOSKRNL Missing or Corrupt

If you have error message that "NTOSKRNL not found". What you have to do are:
  • Run CD Windows XP and Boot from CD.
  • When appear option R=Repair, push "R"
  • Push number that match with location of the instalation of Windows, usually #1
  • Move into drive CD Drive where you are
  • Type in keayboard: CD i386
  • Type in keayboard: expand ntkrnlmp.ex_ C:\Windows\System32\ntoskrnl.exe
  • If your Windows XP Installed in the other place, so change match the location.
  • remove the CD and type EXIT
3. HAL.DLL Missing or Corrupt
It might couse of the missconfiguration of BOOT.INI file
  • Run the Windows XP CD installer and booting from CD
  • Push The R buttom
  • Push number that match with location of the instalation of Windows, usually #1
  • Type in keayboard: bootcfg /rebuild
  • Repair configuration from BOOT.INI file
  • Remove CD and type: EXIT
4. Directory \WINDOWS\SYSTEM32\CONFIG missing or corrupt
If you get error message like this: "Windows could not start because the following files is missing or corrupt
\WINDOWS\SYSTEM32\CONFIG\SYSTEM or \WINDOWS\SYSTEM32\CONFIG\SOFTWARE"
  • Run the Windows XP CD installer and booting from CD
  • Push The R buttom
  • Push number that match with location of the instalation of Windows, usually#1
  • Enter the password administrator if needed
  • Type in keyboard: cd \windows\system32\config
  • Next depend on which part the error caused:
  • Type: "ren software software.broke" or "ren system system.broke
  • Next again is depend on which part the error caused:
  • Type: copy \windows\repair\system
  • Type: copy \windows\repair\software
  • Remove your CD and type: EXIT
5. NTLDR or NTDETECT.COM not found
If you get error message like that when booting:
  1. For filetype: FAT
  • Boot from Win98 diskette startup and copy file NTLDR or NTDETECT.COM
  • From Directory i386 to drive root C:\
2. for filetype: NTFS
  • Run the Windows XP CD installer and booting from CD
  • Push The R buttom
  • Push number that match with location of the instalation of Windows, usually#1
  • Enter the password administrator if needed
  • Enter this command which X: address from your CD ROM.
  • Type: COPY X:\i386\NTLDR C:\
  • Type: COPY X:\i386\NTDETECT.COM C:\
  • Remove your CD and type: EXIT

Windows could not start because the following file is missing or corrupt"
system32\drivers\pci.sys

You can attempt to repair this file by starting windows setup using the original setup CD-ROM
Select 'r' at the first screen to start repair

anda tidak perlu panik karena harus install ulang, ikuti saja petunjuk di bawah ini:

Method 1: Restore the File by Using the Windows Recovery Console

Quote:
Use the Windows 2000 Recovery Console to expand Pci.sy_ from the I386 folder on the Windows 2000 CD-ROM to the \%SystemRoot%\System32\Drivers folder on the hard disk. To do this, follow these steps:

1. Start the computer to the Recovery Console.
a. Insert the Windows 2000 startup disk into the floppy disk drive, or insert the Windows 2000 CD-ROM into the CD-ROM drive. Restart the computer.
b. Click any options that you have to have to start the computer from the CD-ROM drive if you are prompted to do so. The "Welcome to Setup" page appears.
c. Press R to repair a Windows installation.
d. Press C to start the Recovery Console.
e. Type the number that corresponds to the Windows 2000 installation that you want, and then press ENTER.
f. Type the local administrator password, and then press ENTER.
NOTE: In some cases, the Administrator password is set to a blank password. In this case, press ENTER.

2. At the Recovery Console prompt, type map, and then press ENTER. Note the drive letter that is assigned to the CD-ROM drive.
3. Type the following at the command prompt, and then press ENTER
Code:
expand drive:\i386\pci.sy_ c:\winnt\system32\drivers /y


where drive is the drive letter of your CD-ROM or DVD-ROM drive, where c is the drive on which Windows is installed, and where winnt is the folder in which Windows is installed.

NOTE: In the preceding command, there is a space between pci.sy_ and c:\winnt

The following message is displayed:
Code:
pci.sys
1 file(s) expanded.


4. Type exit, and then press ENTER to quit the Recovery Console.
5. Restart Windows in the usual manner.



Method 2: Use In-Place Upgrade to Restore the File

Quote:
Replace all missing and corrupted files by following the steps for an in-place upgrade. This procedure is a last resort before you reinstall the operating system. The time it takes to complete the following procedure is equal to the time that it takes to reinstall the operating system. Also, you may lose some of your customized settings for the system files.

1. Insert the Windows 2000 Setup CD into the CD-ROM drive, start the computer, and then press ENTER on the first option screen to install a copy of Windows 2000.
2. Click Accept to accept the License Agreement. Setup should now detect your installation.

NOTE: If the Setup program does not detect a previous installation and instead continues to the partitioning page, there is a problem. An in-place upgrade may not be possible.

3. When you are prompted to repair the existing Windows 2000 installation, press R. Windows 2000 Setup performs an in-place upgrade of the existing installation.

Viruses are not Worm, What is the different?

The most common blunder people make when the topic of a computer virus arises is to refer to a worm or Trojan horse as a virus. While the words Trojan, worm and virus are often used interchangeably, they are not exactly the same. Viruses, worms and Trojan Horses are all malicious programs that can cause damage to your computer, but there are differences among the three, and knowing those differences can help you to better protect your computer from their often damaging effects.

What Is a Virus?

A computer virus attaches itself to a program or file enabling it to spread from one computer to another, leaving infections as it travels. Like a human virus, a computer virus can range in severity: some may cause only mildly annoying effects while others can damage your hardware, software or files.

Almost all viruses are attached to an executable file, which means the virus may exist on your computer but it actually cannot infect your computer unless you run or open the malicious program. It is important to note that a virus cannot be spread without a human action, (such as running an infected program) to keep it going.

People continue the spread of a computer virus, mostly unknowingly, by sharing infecting files or sending e-mails with viruses as attachments in the e-mail.

What Is a Worm?

A worm is similar to a virus by design and is considered to be a sub-class of a virus. Worms spread from computer to computer, but unlike a virus, it has the capability to travel without any human action. A worm takes advantage of file or information transport features on your system, which is what allows it to travel unaided.

The biggest danger with a worm is its capability to replicate itself on your system, so rather than your computer sending out a single worm, it could send out hundreds or thousands of copies of itself, creating a huge devastating effect. One example would be for a worm to send a copy of itself to everyone listed in your e-mail address book. Then, the worm replicates and sends itself out to everyone listed in each of the receiver's address book, and the manifest continues on down the line.

Due to the copying nature of a worm and its capability to travel across networks the end result in most cases is that the worm consumes too much system memory (or network bandwidth), causing Web servers, network servers and individual computers to stop responding. In recent worm attacks such as the much-talked-about Blaster Worm, the worm has been designed to tunnel into your system and allow malicious users to control your computer remotely.


What Is a Trojan horse?

A Trojan Horse is full of as much trickery as the mythological Trojan Horse it was named after. The Trojan Horse, at first glance will appear to be useful software but will actually do damage once installed or run on your computer. Those on the receiving end of a Trojan Horse are usually tricked into opening them because they appear to be receiving legitimate software or files from a legitimate source. When a Trojan is activated on your computer, the results can vary. Some Trojans are designed to be more annoying than malicious (like changing your desktop, adding silly active desktop icons) or they can cause serious damage by deleting files and destroying information on your system. Trojans are also known to create a backdoor on your computer that gives malicious users access to your system, possibly allowing confidential or personal information to be compromised. Unlike viruses and worms, Trojans do not reproduce by infecting other files nor do they self-replicate.

What Are Blended Threats?

Added into the mix, we also have what is called a blended threat. A blended threat is a more sophisticated attack that bundles some of the worst aspects of viruses, worms, Trojan horses and malicious code into one single threat. Blended threats can use server and Internet vulnerabilities to initiate, then transmit and also spread an attack. Characteristics of blended threats are that they cause harm to the infected system or network, they propagates using multiple methods, the attack can come from multiple points, and blended threats also exploit vulnerabilities.

To be considered a blended thread, the attack would normally serve to transport multiple attacks in one payload. For example it wouldn't just launch a DoS attack — it would also, for example, install a backdoor and maybe even damage a local system in one shot. Additionally, blended threats are designed to use multiple modes of transport. So, while a worm may travel and spread through e-mail, a single blended threat could use multiple routes including e-mail, IRC and file-sharing sharing networks.

Lastly, rather than a specific attack on predetermined .exe files, a blended thread could do multiple malicious acts, like modify your exe files, HTML files and registry keys at the same time — basically it can cause damage within several areas of your network at one time.

Blended threats are considered to be the worst risk to security since the inception of viruses, as most blended threats also require no human intervention to propagate.

Combating Viruses, Worms and Trojan Horses
The first step in protecting your computer from any malicious there is to ensure that your operating system (OS) is up-to-date. This is essential if you are running a Microsoft Windows OS. Secondly, you need to have anti-virus software installed on your system and ensure you download updates frequently to ensure your software has the latest fixes for new viruses, worms, and Trojan horses. Additionally, you want to make sure your anti-virus program has the capability to scan e-mail and files as they are downloaded from the Internet, and you also need to run full disk scans periodically. This will help prevent malicious programs from even reaching your computer. You should also install a firewall as well.

A firewall is a system that prevents unauthorized use and access to your computer. A firewall can be either hardware or software. Hardware firewalls provide a strong degree of protection from most forms of attack coming from the outside world and can be purchased as a stand-alone product or in broadband routers. Unfortunately, when battling viruses, worms and Trojans, a hardware firewall may be less effective than a software firewall, as it could possibly ignore embedded worms in out going e-mails and see this as regular network traffic.

For individual home users, the most popular firewall choice is a software firewall. A good software firewall will protect your computer from outside attempts to control or gain access your computer, and usually provides additional protection against the most common Trojan programs or e-mail worms. The downside to software firewalls is that they will only protect the computer they are installed on, not a network.

It is important to remember that on its own a firewall is not going to rid you of your computer virus problems, but when used in conjunction with regular operating system updates and a good anti-virus scanning software, it will add some extra security and protection for your computer or network.

Source:www.webopedia.com