On of my machines here is a windows NT which got the stoned.monk.empire virus. Unfortunately it was not discovered until after the computer was rebooted and now all i get is a blue screen with hex numbers on start up and it is unbootable from disk. any advice would be greatly appreciated. thanks in advance..........dsawyer.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
stoned.monk.empire 1
- Thread starter dsawyer
- Start date
-
1
- #2
KimberTech
MIS
It is unbootable from floppy?
Is the floppy clean?
Is it set to boot from floppy first in the BIOS?
This is one nasty virus.....it relocates the boot sector and is memory resident.
The best way to get rid of it is to FDISK from a clean floppy and then format.
I am looking around to see if I can find a removal util...there used to be add ons for this virus to go with certain antivirus programs.
Good Luck! Kimber
The more I learn,I realize how much more there is to know!
Is the floppy clean?
Is it set to boot from floppy first in the BIOS?
This is one nasty virus.....it relocates the boot sector and is memory resident.
The best way to get rid of it is to FDISK from a clean floppy and then format.
I am looking around to see if I can find a removal util...there used to be add ons for this virus to go with certain antivirus programs.
Good Luck! Kimber
The more I learn,I realize how much more there is to know!
KimberTech
MIS
Not great news, but informative. Kimber
The more I learn,I realize how much more there is to know!
KimberTech
MIS
Sorry for the repeated posts, but I found the removal utility.
READ the page first...and GOOD LUCK!!!! Kimber
The more I learn,I realize how much more there is to know!
- Thread starter
- #5
- Thread starter
- #6
first how do i access the c drive and second how can i boot to an msdos prompt because right now it appears that my only options are to power cycle the machine which eventually leads me back to the previously mentioned screen of hex numbers? the reason i ask is because the killmonk utility forementioned needs to be executed from the c drive of the infected pc. thanks....dsawyer.
KimberTech
MIS
Do you have a copy of you Emergency Repair Disk from when you installed NT?
This virus is a pain because NT doesnt do dos...unless you use a utility.
Is there any way you can put the drive into something else to scan it?
It would have to be NTFS if you have formatted it that way..
Post back and let us know. Kimber
The more I learn,I realize how much more there is to know!
This virus is a pain because NT doesnt do dos...unless you use a utility.
Is there any way you can put the drive into something else to scan it?
It would have to be NTFS if you have formatted it that way..
Post back and let us know. Kimber
The more I learn,I realize how much more there is to know!
- Thread starter
- #8
- Status