LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Hardware (https://www.linuxquestions.org/questions/linux-hardware-18/)
-   -   machine salvage after cyber-attack (https://www.linuxquestions.org/questions/linux-hardware-18/machine-salvage-after-cyber-attack-4175468741/)

textillis 07-06-2013 11:48 PM
machine salvage after cyber-attack
 
I have a machine on which I was running slackware, mint and archbang when I foolishly strayed into a den of online modern-day ali babas, one of whom shafted me with some kind of virus because of a dispute.

Symptoms:
  1. constant beeping noise;
  2. as i typed text, it was converted into meaningless code;
  3. when i inserted partition magic into drive and loaded it, it too was scrambled (the program itself loads into ram; so it is uneffected, being "ro";
  4. any attempt to kernel fails
  5. any attempt to get to bios fails

    Anyone able to help: I just want to fdisk -z it back to basic usability,
    not at all necessary to save or retrieve data!

    Thanks in advance to anyone who can offer suggestions
    regs,

Z038 07-07-2013 12:28 AM
A Linux virus? That's rare. How was it introduced? It's seldom worth venturing into a den of thieves. Ali Baba wan't a thief, btw.

What do you mean by "any attempt to kernel"? Is kernel a verb?

fdisk doesn't have a -z option.

Why not just boot a live CD and use parted or fdisk to repartiton the drive?

textillis 07-07-2013 12:44 AM
Quote:
Originally Posted by Z038 (Post 4985511)
A Linux virus? That's rare. How was it introduced? It's seldom worth venturing into a den of thieves. Ali Baba wan't a thief, btw.

What do you mean by "any attempt to kernel"? Is kernel a verb?

fdisk doesn't have a -z option.

Why not just boot a live CD and use parted or fdisk to repartiton the drive?
  1. which ali baba are _you_ referring to? how do you know that I am not referring to a story from 1001 nights or some other source; but more importantly, unless you are just "point-scoring", which I think you are, why knit-pick (verbal form) over something so peripheral to my question/problem?
  2. "to boot a kernel" is what I meant, but the smart-arse tone of your question about "a verb" makes me want to just ignore you; and I probably know more about syntax and language morphology than you anyway;
  3. well, again, leaving your point-scoring, and one-upmanship (noun) aside for a second, which package does contain a -z option?
  4. "why not just boot in live CD ..." because, as i mentioned, when I enter live CD, "partition magic" (its "live" status refered to with "loaded in ram"), this too, gets scrambled; ie; all its objects get converted/overrun by raw code of some sort

    unimpressed

astrogeek 07-07-2013 01:13 AM
Quote:
Originally Posted by textillis (Post 4985514)
... which package does contain a -z option?
...when I enter live CD, "partition magic" (its "live" status refered to with "loaded in ram"), this too, gets scrambled; ie; all its objects get converted/overrun by raw code of some sort
Well, I am sure quite a few packages include some kind of -z option, so there is not a good answer for that.

But if you boot to a live CD/DVD then nothing on the hard drive should be affecting it - it is entirely in RAM.

So my guess would be that maybe you have bad RAM or other hardware problem.

I think the gparted live CD included memtest86 - try running that.

m_kane 07-07-2013 01:18 AM
Quote:
Originally Posted by textillis (Post 4985500)
  1. any attempt to get to bios fails


I think this is hardware failure, maybe keyboard or it's io.


I have never heard about virus that affects bios code.

textillis 07-07-2013 02:10 AM
Quote:
Originally Posted by m_kane (Post 4985522)
[/LIST]

I think this is hardware failure, maybe keyboard or it's io.


I have never heard about virus that affects bios code.
thanks;
IO = ?

textillis 07-07-2013 02:13 AM
Quote:
Originally Posted by astrogeek (Post 4985521)
Well, I am sure quite a few packages include some kind of -z option, so there is not a good answer for that.

But if you boot to a live CD/DVD then nothing on the hard drive should be affecting it - it is entirely in RAM.

So my guess would be that maybe you have bad RAM or other hardware problem.

I think the gparted live CD included memtest86 - try running that.
thanks Astrogeek: I have gparted and memtest apps on a live CD tool collection called partition magic, but as I say in my original post, when I boot to that, it goes crazy.
Perhaps needs to go to disc doctor or rubbish heap....:(

astrogeek 07-07-2013 02:16 AM
Quote:
Originally Posted by textillis (Post 4985542)
thanks Astrogeek: I have gparted and memtest apps on a live CD tool collection called partition magic, but as I say in my original post, when I boot to that, it goes crazy.
Perhaps needs to go to disc doctor or rubbish heap....:(
Yea, it really does sound like a hardware failure if you can't even load memtest.

If you have access to something with the same kind of memory modules, that would be my first guess and just try swapping them out.

IO = Input/Output, that is the 'IO' in BIOS.

Z038 07-07-2013 05:54 AM
Quote:
Originally Posted by textillis (Post 4985514)
  1. which ali baba are _you_ referring to? how do you know that I am not referring to a story from 1001 nights or some other source; but more importantly, unless you are just "point-scoring", which I think you are, why knit-pick (verbal form) over something so peripheral to my question/problem?
  2. "to boot a kernel" is what I meant, but the smart-arse tone of your question about "a verb" makes me want to just ignore you; and I probably know more about syntax and language morphology than you anyway;
  3. well, again, leaving your point-scoring, and one-upmanship (noun) aside for a second, which package does contain a -z option?
  4. "why not just boot in live CD ..." because, as i mentioned, when I enter live CD, "partition magic" (its "live" status refered to with "loaded in ram"), this too, gets scrambled; ie; all its objects get converted/overrun by raw code of some sort

    unimpressed
I apologize, Tex. I simply didn't understand anything you wrote in your initial post. It was my fault. I was a little drunk at the time.

Again, I beg your pardon for the unhelpful post.

textillis 07-07-2013 06:32 AM
Quote:
Originally Posted by Z038 (Post 4985622)
I apologize, Tex. I simply didn't understand anything you wrote in your initial post. It was my fault. I was a little drunk at the time.

Again, I beg your pardon for the unhelpful post.
Don't mention it Z. If anything, I should be apologizing for my immoderate response: it was overly acerbic and touchy by a long shot.

I have had a frustrating and harrowing week bedding in a new system (finally succeeded with a lot of help from Allend and others: yea!!) with Slackware -current; on top of which I've had a hard time trying to work out what to do with my old machine which I had thought had been the subject of an attack, but which, after reading your post and those of others, may well be down to a simple, and fixable, hardware problem.

Anyway, great if we can both put it behind us.

Cheers


All times are GMT -5. The time now is 04:55 AM.