[EMAIL PROTECTED] wrote: > I know we are not famous for being Windoze fans but this info may be > of use to you at some point.
Aye! > We have a number of computers infected with the boot.malmo virus aka > Junkie. It sits in the boot sector of both the floppies and Hard > drives and once it goes on the hard drive, it cannot be removed by > any of the existing anti-virus software we have. I don't think this is true - I've used DOS-based versions of Sophos Anti Virus, with a clean, bootable floppy. The idea is to boot a clean floppy so the boot sector of the hard drive isn't read. The DOS version of SAV also contains all known viruses as is in the Windows/UNIX versions. You may want to check Norton's policy is on DOS-based disinfection; but I've always found their software incompetent, and wouldn't recommend it to anyone. > The anti-virus just > reports its existance and thats it. Nothing more. > In case you come across an infection, to get rid of it do the > following. For Windoze 2000: 1) Shutdown the PC and restart it with > the Windoze 2000 installation CD in the drive. > 2) Go through all the steps of making an installation till you reach > that point of selecting whether you want to make a new installation or > repair an existing installation. > 3) Select repair using the console. In the console screen select the > installation you want to repair(in case you have more than 1) > 4) Type "fixmbr" without the quotes. Windoze will give you all threats > of what will happen in case you go ahead including the sky falling > down on your head. Be brave and proceed. No sky falls down on your > head. 5) After that, type exit and the machine will reboot. The > infection will have gone. This sounds like it should work - but only if you have the installation media, which should be easy to get. Things could also get quite interesting if you are booting a floppy off an NTFS-based Windows 2000 system. > For Windoze XP: > 1) Follow all the steps as above till step 3(of course with an XP > installation CD) > 2) In step 4, DON'T use "fixmbr"! The sky will indeed fall down on > your head!! Messed up someone's machine thoroughly well and still > haven't figured how to restore it to its former state(dual > boot,knoppix-XP, any ideas??). Why don't you setup LILO or GRUB to boot both OS's? Forget about the Windows boot-loader. > Please use "fixboot" instead. Some > warnings will appear but still do proceed. Things will be fine. > 3) Go to step 5 above. Good tips, though. > > Yours > > ************************************************************************ > Lule George William (Mr) > Network and Systems Administrator > Uganda Martyrs University, Nkozi > P.O. Box 5498 Kampala > Uganda > > > --------------------------------------------- > This service is hosted on the Infocom network http://www.infocom.co.ug Regards, Mark Tinka Technical Manager, Africa Online Swaziland --------------------------------------------- This service is hosted on the Infocom network http://www.infocom.co.ug
