|
contributed by Prof J C Nash, University of Ottawa, Ottawa,
Canada
First get Knoppix,
which is a bootable liveCD linux. Free download from lots of
sites. It has great partition management in QTParted. Also has
good file checkers and testdisk, and lots more. Since it runs
off the CD, it does not affect the hard drive and will not be
affected by the virus on the infected machine.
Twice now I've rescued virus-infected machines.
Do this:
1. Boot Knoppix on the sick machine. It automatically finds
the network for most systems.
2. Create a directory on a portable external hard drive. There
are many available, and at very low cost. You can also use a
network drive. Mount and make the drive read/write (Knoppix does
this in right-click menus).
3. Using the Knoppix file manager, move whatever data you
want to keep from the infected machine to the external drive.
4. Trash the existing setup. Format the hard drive (C:\) on
the infected machine. This wipes everything clean, including
programs, your data, and the virus.
5. Remove the Knoppix CD, and then reinstall Windows.
6. Put in a good antivirus program. It's very important that
you do this BEFORE the next step.
7. Selectively recover the files you want from the external
hard drive; one or more of the EXE files, DLL, or whatever will
be infected. The anti-virus program will tell you which one and
what to do.
7 Nov 2007
|
