Jump to content
Sign in to follow this  
cili

Startup Windows Pening

Recommended Posts



ada computer sedara aku ni jadi pening sikit. boleh tolong analyze tak ?



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:25:02, on 01/01/2002
Platform: Windows XP SP2, v.2096 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2096)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
D:\Program Files\Common Files\GtFlashSwitch\GtFlashSwitch.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
D:\Program Files\ATI Technologies\ATI.ACE\cli.exe
D:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Nokia\Nokia PC Suite 6\pcsync2.exe
D:\Program Files\Microsoft ActiveSync\wcescomm.exe
D:\PROGRA~1\MICROS~4\rapimgr.exe
D:\Program Files\Orange\ICON2 USB Connect\ICON2 USB Connect.exe
D:\Program Files\PC Connectivity Solution\ServiceLayer.exe
D:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\ATI Technologies\ATI.ACE\cli.exe
D:\Program Files\ATI Technologies\ATI.ACE\cli.exe
D:\WINDOWS\explorer.exe
D:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = About:blank
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - D:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] D:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "D:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [ATICCC] "D:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [PCSuiteTrayApplication] D:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Easy-PrintToolBox] D:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avgnt] "D:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PcSync] D:\Program Files\Nokia\Nokia PC Suite 6\pcsync2.exe /NoDialog
O4 - HKCU\..\Run: [VMCL] H:\\VMC_PBStarter.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "D:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "D:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] D:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] D:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [yisoub.dll] Regsvr32.exe /s D:\PROGRA~1\YiSou\yisoub.dll (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ALUAlert] D:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [yisoub.dll] Regsvr32.exe /s D:\PROGRA~1\YiSou\yisoub.dll (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: ICON2 USB Connect.lnk = D:\Program Files\Orange\ICON2 USB Connect\ICON2 USB Connect.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~4\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - D:\Program Files\Yahoo!\Common\yinsthelper.dll
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - D:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - D:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: GtFlashSwitch - OptionNV - D:\Program Files\Common Files\GtFlashSwitch\GtFlashSwitch.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - D:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: ServiceLayer - Nokia. - D:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - D:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Speed Disk service - Symantec Corporation - D:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe

--
End of file - 7229 bytes

Share this post


Link to post
Share on other sites


bila dia start dia tak masuk windows tapi masuk bahagian yg tulis Pentium..... press F4 to enter setup. lepas tu bila aku betulkan time dia, bila restart dia akan jadi tahun 2002 balik.

Scan guna Avira takda virus detected. Spybot S&D pun clear.

Share this post


Link to post
Share on other sites
Kiriman #8


Ahli
*

Grup: Members
Kiriman: 49
Penyertaan: 13-June 08
Dari: Puchong
Ahli ke- 48,749




Format baru jer senang


--------------------
Windows XP Pro Sp2
MSI
MS-6714
Intel® Pentium® 4 CPU 2.66GHz
1016RAM
Intel® 82845G Graphics Controller
Realtek AC97 Audio

Share this post


Link to post
Share on other sites
QUOTE(cili @ Jan 10 2009, 08:01 AM) <{POST_SNAPBACK}>
mmm.. ni first time aku handle problem macam ni.

berapa harga cmos battery, mobo ?

tkasih

jangan format.jam sistem takde kaitan langsung dengan os,semua ni hardware level.(cmos batt/mainboard)
harga bateri tu sama dengan harga bateri jam tangan.bawak je bateri tu kat kedai,cakap nak bateri yang sama.

ps=kena rasional sikit la..pahamkan punca masalah..jangan problem sikit terus kata virus,pastu format,format dan format... Edited by razi_90@IBM thinkcentre

Share this post


Link to post
Share on other sites
biasa la, kalau member yang tak tahu jalan camnernak atasi problem ni, biasanya yang keluar ialah perkataan format la... biggrin.gif

Atau mungkin ada masalah dengan jumper? jumper dia dah tercabut? huhu~ laugh.gif

Share this post


Link to post
Share on other sites


tkasih.

dalam dunia ni memang penuh dengan org yg bagi nasihat tanpa ilmu.

Yang tak reti pasal agama nak cakap pasal agama. Yang jahil komputer nak bagi nasihat pasal komputer. Yang tak reti medik nak memandai bagi nasihat dlm bidang perubatan. Tikus membaiki labu jadinya.

Share this post


Link to post
Share on other sites
isk..tak elok cakap camtu,sama2 belajar ok.. happy.gif
benda camni sebenarnya bagus,sebab dari sinilah datangnya semangat ingin tahu.

Share this post


Link to post
Share on other sites
klu setiap kali msk windows tetiba sume time dia set default blk bermakna mmg battery cmos ko dah xleh pakai...ko cabut batery ko tuh, gi kedai jual jam atau kedai barangan elektrik tnjk kat dia battery tu...pastikan sebijik atau volt yg tertera kat battery tu sama...klu x slh biasanya 3 volt...aku slalu tukarkan battery pc customer aku...harga biasa below RM10.00 tgk tmpat gakla...mslh ko tuh x bsr sgt rsnyer...

Share this post


Link to post
Share on other sites

camna nak pastikan/bezakan problem motherboard ke problem cmos battery semata-mata ?

kang dah tukar battery tapi problem masih persist susah jugak.


Share this post


Link to post
Share on other sites
bro xleh tau melainkan bro mencubanye dahulu...try beli batteri CMOS pastu pasang...tgk ape result nye...kalo same jgak maknenye ade prob ngan motherboard bro...smile.gif

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
Sign in to follow this  

×
×
  • Create New...