by > My company PC with M$ OS was infected by CIH virus on 26th, I still trying
> to recover all those harddisk which lossing partition.
Second, if you got to the point where ndd does not help anymore, you probablyQuote:> I successfully recover a harddisk which 3 partitions with using fdisk (
> linux ) & ndd ( norton ) and get back the 3 partitions. but problem was
> happen on the first partition which have been recovered, I can see the
> directories and files inside this partition, and I try to copy all this
> files to other partition or floppy, I will get the all the files with
> 32,768k in size ( all the files with less than 32,768k was fine ), I did try
> using linux to copy ( cp ), the error " input/output error " appear.
> Firstly, I recover partition 2 & 3 with ndd or ndd /rebuild, and that time I
> couldn't get the first partition until I using linux fdisk to force created
> and new "dos >=32M" partition then I managed to recover it by using ndd to
> corrected the partition, but then the problem I mension above happen.
> Anybody, know how can it be recover ? because it really important for us.
have to inspect each file with the disk editor and determine which files belong
together. You get the 32k file size because that is the cluster size on your FAT
partition.
Third, if your data is really important, you should probably contact one of the
data recovery houses. They are very expensive, but sometimes the data is worth
it. Your call.
Fourth, if your data is important, you should have made backups.
Fifth, run a virus checker in the background, if you need to run Windoze at all.
Sixth, this is a Linux news group.
-Joe
--
-------------------------------------------------------------------
Joachim Feise Ph.D. Student, Information & Computer Science
-------------------------------------------------------------------
As a computer, I find your faith in technology amusing.