any idea what type of virus this is or what i can do besides tossing the HDD's

Discussion in 'malware problems & news' started by winterlord, Dec 1, 2009.

Thread Status:
Not open for further replies.
  1. winterlord

    winterlord Registered Member

    Joined:
    Aug 23, 2009
    Posts:
    175
    i was wondering , i tried to install windows xp on one of my hard drives seperated not in raid even though they where. i initialy was only using the windows xp disk to do a full format of my hard driver however when trying to install it said for one of the hard drives, it said it coul;d not format for the partition was not in a reconizable fat or ntfc partition.

    iv had plenty of things that leads me to believe a virus but this one takes the cake.

    western digital tools, seatools... cannot format it ..... those disk work fine, but in fact when i try to boot off either seatools or wd tools while that hard drive is plugged in it wont format anything.

    so what do i do? windows 7 installs just fine on either of these disks and raid0 runs fine , but the one disk cannot be formatted? the drives are 2x raptors 10krpm 36gb. does this sound like a familiar strong virus like red or blue pill? or could there be a hidden true crypt linux volume controling my pc? blocking format access through bootup?

    thanks
    winter
     
  2. subhrobhandari

    subhrobhandari Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    708
    Did you try to delete the partition and then create a new one from that space?
     
  3. winterlord

    winterlord Registered Member

    Joined:
    Aug 23, 2009
    Posts:
    175
    i tried formating the entire drive outside of windows cant format it. or see a partition to delete
     
  4. chronomatic

    chronomatic Registered Member

    Joined:
    Apr 9, 2009
    Posts:
    1,343
    Try downloading a Linux liveCD like GParted. Burn it to disk and boot from it. Once booted, it will take you directly to a formatting tool (that's what this liveCD is used for). It allows you to create NTFS and FAT partitions. It is easy to use with the little slider graphic, etc.. Should be self-explanatory.

    If that doesn't work, then boot back into the liveCD again. In the main window, look and see what your disk is named (Linux does not use drive letters. Instead, it will be something like "sda"). Once you get that info, open a terminal and type the following:
    Code:
    shred -vfz /dev/sda
    Where "sda" matches the name of your disk.

    This will completely overwrite the disk with zeroes, effectively blanking it and any possible virus on it. After that, try installing Windows again.
     
  5. Searching_ _ _

    Searching_ _ _ Registered Member

    Joined:
    Jan 2, 2008
    Posts:
    1,988
    Location:
    iAnywhere
    If you do try to use Linux, give this command a try:
    Code:
    sfdisk -LuS
    Will show you the partitions and what file systems and size is on them.

    If trying Linux; also try hdparm command to wipe, shred is quite slow.
    hdparm can access the secure erase function if supported by hardware.

    Code:
    hdparm -I /dev/(your drive)
    Will give drive information available at boot time. Capital I gives more detail.

    -g
    Displays the drive geometry (cylinders, heads, sectors), the size (in sectors) of the device, and the starting offset (in sectors) of the device from the beginning of the drive.

    hdparm also has some crazy reset functions for confused drives.
    Research your problem thoroughly before you use such a command!

    More info on wiping fast using Linux:
    http://ata.wiki.kernel.org/index.php/ATA_Secure_Erase
     
  6. DasFox

    DasFox Registered Member

    Joined:
    May 5, 2006
    Posts:
    1,825
    I've seen things like this before, where you have a Dynamic Disk with no boot volume.

    Try to load as a secondary drive, storage and see what it is listed as basic or dynamic...

    You most likely have a partition table you need to remove and make it bootable...
     
Loading...
Thread Status:
Not open for further replies.