I have a PC attached with virus(unknown), I formatted the C drive, but cannot delete the Primary Partition, a message shows that a virus in the BootSector, but how can I clean it?
do I need to replace a new HDD?
After I replace a new HDD, does the virus stay in the BootSector?
Please help.........


---------------------------------------------


Thank you for all your ideas, but I cannot delete the primary partition and clean the BootSector.

After I deleted the primary partition, hit"ESG" to exit "Fdisk", a mesage says:"Error writing fixed disk...."
then goes back to A prompt, I typed "Fdisk" again, check on partition, the primary partition still staying there....

Also I did more than 3 times Fdisk/mbr, it doesn't help.

[This message has been edited by EzLam (edited November 09, 1999).]

--------------------------------------------

Student2's idea I want to try it, but how can I make FAT32 to FAT16 over the A Prompt?

[This message has been edited by EzLam (edited November 09, 1999).]
---------------------------------------------


This morning I tried to clone the disk, found out that there's no virus in the HDD,
I put a new HDD, it acts the same like the old one, so now, what is wrong there?
mother board? IDE controller? or ......... ???
do you have any clue for that?



[This message has been edited by EzLam (edited November 09, 1999).]

Make sure you boot from a non-infected floppy and run fdisk. If the drive was FAT32, make it FAT16. Reboot, format, and do it again, this time in FAT32. That should get it. BTW, if you can't remove the primary partition (I don't know why you couldn't) create a new partition, then do as above.

------------------
Time is a great teacher,
but unfortunately it kills all its pupils.

Fdisk /mbr and/or

A good antivirus emergency startup disk.

Try doing the fdisk /mbr about 3 times in a row. It's supposed to clean the older copies of it too.

try a low-level format like drive-pro or some HD manufacturers have one at their web sites.
But I would get a good virus scan too. Also write-protect the boot floppies you use or they will be (or are already) infected too probably

i dont know ?but i would do the low level omly as a last resort...
i would push the fdisk(i really hate typing tha on my system =P )

Try F-prot you can get a bootable virus checker at "bootdisk.com" last i checked
they had version 3.06 with defs from oct 25th
I have seen a virus move around to different
mbrs f-prot will also check memory too
in case the virus moves there

------------------
I don't know what I am doing, I just look like I know what I am doing

Hey, why go to all that trouble...I have a neat little progie that will cure your blues,assuming it's not a physical problem with the h.d.d.
i have a program called zap disk, and does it ever work! it tottaly wipes your h.d.d. of all partitions, and info, and of course viruses.I reccomend that you have a friend find it, or i can email it to him. then, if he is running the same o.s., make a simple boot disk and copy the progie over, or put on another disk. Pull the cmos battery for 10 min, then reconfigure the cmos. DON"T boot to your h.d.d. at all. boot the p.c. with a known ..NOT infected boot disk(the one your friend made.) and then run zapdisk.

using a known not infected disks or media, reinstall the o.s., and then immediatly install norton 2000, works like a damn, there may be other software that works well, but i like nortons.
could be hardware too though.
and no, if you install a new h.d.d the virus won't follow IF you remove the cmos battery for around 10 min,(i know you shouldn't have to wait that long but hey, cmos can take some time to discharge)I say this because some viruses write themselves into the cmos,
and it's hard to know off hand, a 10 minute wait is a small price to be sure.
good luck and if you want that proggie, let me know. i will e-mail it to anyone that wants it.(no i don't know if it's a registered or freeware or what.)

another note here, after running zapdisk you will have to then re-fdisk, re-format and then re-install the o.s., sorry if i didn't make that clear, it was late when i wrote my last reply.

1.Run diskedit.exe c:/m (Norton Utils 4.0)and do w/HDD all you want, (writing 00 to phis.sector 0-0-1 will erase partition table)
2.It's better to copy old MBR (phis.sector 0-0-1) to sector 0-0-63 then copy MBR sector from any PC with your OS version to 0-0-1 and correct lines 1B0-1FD (partitions' descriptors) like ones in 0-0-63.

Regards

From your last note about changing hard drives and still having the same error, it sounds as if either the virii has written itself to the bios or you have a bad controller cable or controller. Go to MB website and get a bios flash from a friends computer. make sure and create a backup disk. (in case it works you can forward it to Norton or NA to get a fix and an alert out for it.) If that doesn't work and you are sure check cables. Still nada, attempt to plugg hard drive into secondary controller with new cable. Most new bios' support booting to secondary controllers. If that still doesn't work replace MB witha risc capable motherboard and processor. Run your favorite version of linux and forever forget about x86 virii.

------------------
Why does Excel need a flight simulator? So I can see the Blue Screen of Death in 3D