How to check Windows MBR code from Linux?

[rcrsn51]

Then you need a hex editor. I'm sure there is one available for Puppy.

[Edit] Or you could just use

Code: Select all

hexdump mbr.bin

[Bruce B]

I want to add, if anyone what to have a base MBR file to test against, the base file needs updating every time one repartitions his hard disk.

~

[DPUP5520]

Then you need a hex editor. I'm sure there is one available for Puppy.

[Edit] Or you could just use

Code: Select all

hexdump mbr.bin

This is a nice easy/small hex editor

[Sylvander]

1. "Then you need a hex editor. I'm sure there is one available for Puppy."
(a) Ended up using wishbinvu-2009.pet [wishbinvu was recommended by Bugman], then installing tk-8.5.6.pet & tcl-8.5.6-v1.pet linked HERE.

(b) So now the program runs OK from the installed entry in the "Menu->Utility->General Utilities->Wish Binary Viewer".
Has a rather nice colorful [Orange] GUI!
Used it to "Open" the mbr.bin file and was given the kind of display I want [the code content as seen in the screenshots below].
Was then able to save a copy with a name specified by me.
Would it be possible to use a file-content-comparison program to display differences?

[d4p]

If you get "Trojan:Win32/Popureb.E"

http://blogs.technet.com/b/mmpc/archive ... stead.aspx

fix the MBR first, and then restore/reinstall the system

[piratesmack]

If run without options, ms-sys will inspect your current boot record

e.g.

Code: Select all

# ms-sys mbr.bin 
mbr.bin has an x86 boot sector,
it is a Microsoft 2000/XP/2003 master boot record, like the one this
program creates with the switch -m on a hard disk device.

Note: Last time I checked Puppy came with an old version of ms-sys, so it might not recognize the boot record for newer versions of Windows.

[Flash]

ms-sys --help gives a list of options and arguments.

ms-sys --version gives the version in Puppy.

[Lobster]

thought this might be of interest . . .
http://www.ntfs.com/mbr-damaged.htm