Question

Situation: You suspect there is a virus on your computer.  However, you cannot seem to remove this virus using standard software tools.  During your analysis of the computer system, you find some interesting information in the Master Boot Record that does not appear to be part of the original boot loader process.

Question: If this is the case, what kind of virus might this be, where do you think it resides, and what steps could you take to erase the virus?

Answer 1

*****This requires some effort so please drop a like if you are satisfied with the solution****

Answer: The virus that modifies the Master Boot record is the Boot Sector Virus, it is a virus the infects or damages the storage device master boot record (MBR), the boot sector virus tries to copy the malicious code to the storage device like hard disk partition table, when the system boots it loads up into to main memory once it loads into the memory it damages the non-infected part of the other partitions of disks used by the system.

The boot sector virus resides on the storage devices boot sector when start up the hardware automatically detects the boot sector and loads it then remaining part of the OS is being loaded into the memory, this virus usually affects the boot sector program and modifies it.

Erasing boot sector virus might be a difficult task as it alters or encrypts the boot sector of the device so most of the times it needed to have a very good antivirus program which has quite a large registry of boot viruses and in some cases the hard disk needs to be formatted in order to eliminate the infection.