LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Hardware
User Name
Password
Linux - Hardware This forum is for Hardware issues.
Having trouble installing a piece of hardware? Want to know if that peripheral is compatible with Linux?

Notices

Reply
 
Search this Thread
Old 07-07-2013, 12:48 AM   #1
textillis
Member
 
Registered: May 2013
Location: Northern Rivers, NSW, Australia
Distribution: Slackware64-current, Mint Nadya
Posts: 299

Rep: Reputation: 2
machine salvage after cyber-attack


I have a machine on which I was running slackware, mint and archbang when I foolishly strayed into a den of online modern-day ali babas, one of whom shafted me with some kind of virus because of a dispute.

Symptoms:
  1. constant beeping noise;
  2. as i typed text, it was converted into meaningless code;
  3. when i inserted partition magic into drive and loaded it, it too was scrambled (the program itself loads into ram; so it is uneffected, being "ro";
  4. any attempt to kernel fails
  5. any attempt to get to bios fails

    Anyone able to help: I just want to fdisk -z it back to basic usability,
    not at all necessary to save or retrieve data!

    Thanks in advance to anyone who can offer suggestions
    regs,

Last edited by textillis; 07-07-2013 at 12:50 AM.
 
Old 07-07-2013, 01:28 AM   #2
Z038
Member
 
Registered: Jan 2006
Distribution: Slackware
Posts: 804

Rep: Reputation: 157Reputation: 157
A Linux virus? That's rare. How was it introduced? It's seldom worth venturing into a den of thieves. Ali Baba wan't a thief, btw.

What do you mean by "any attempt to kernel"? Is kernel a verb?

fdisk doesn't have a -z option.

Why not just boot a live CD and use parted or fdisk to repartiton the drive?
 
Old 07-07-2013, 01:44 AM   #3
textillis
Member
 
Registered: May 2013
Location: Northern Rivers, NSW, Australia
Distribution: Slackware64-current, Mint Nadya
Posts: 299

Original Poster
Rep: Reputation: 2
Quote:
Originally Posted by Z038 View Post
A Linux virus? That's rare. How was it introduced? It's seldom worth venturing into a den of thieves. Ali Baba wan't a thief, btw.

What do you mean by "any attempt to kernel"? Is kernel a verb?

fdisk doesn't have a -z option.

Why not just boot a live CD and use parted or fdisk to repartiton the drive?
  1. which ali baba are _you_ referring to? how do you know that I am not referring to a story from 1001 nights or some other source; but more importantly, unless you are just "point-scoring", which I think you are, why knit-pick (verbal form) over something so peripheral to my question/problem?
  2. "to boot a kernel" is what I meant, but the smart-arse tone of your question about "a verb" makes me want to just ignore you; and I probably know more about syntax and language morphology than you anyway;
  3. well, again, leaving your point-scoring, and one-upmanship (noun) aside for a second, which package does contain a -z option?
  4. "why not just boot in live CD ..." because, as i mentioned, when I enter live CD, "partition magic" (its "live" status refered to with "loaded in ram"), this too, gets scrambled; ie; all its objects get converted/overrun by raw code of some sort

    unimpressed

Last edited by textillis; 07-07-2013 at 01:47 AM.
 
Old 07-07-2013, 02:13 AM   #4
astrogeek
Senior Member
 
Registered: Oct 2008
Distribution: Slackware: 12.1, 13.1, 14.1, 64-14.1, -current, FreeBSD-10
Posts: 2,031

Rep: Reputation: 804Reputation: 804Reputation: 804Reputation: 804Reputation: 804Reputation: 804Reputation: 804
Quote:
Originally Posted by textillis View Post
... which package does contain a -z option?
...when I enter live CD, "partition magic" (its "live" status refered to with "loaded in ram"), this too, gets scrambled; ie; all its objects get converted/overrun by raw code of some sort
Well, I am sure quite a few packages include some kind of -z option, so there is not a good answer for that.

But if you boot to a live CD/DVD then nothing on the hard drive should be affecting it - it is entirely in RAM.

So my guess would be that maybe you have bad RAM or other hardware problem.

I think the gparted live CD included memtest86 - try running that.
 
1 members found this post helpful.
Old 07-07-2013, 02:18 AM   #5
m_kane
Member
 
Registered: Jan 2009
Posts: 30

Rep: Reputation: 2
Quote:
Originally Posted by textillis View Post
  1. any attempt to get to bios fails


I think this is hardware failure, maybe keyboard or it's io.


I have never heard about virus that affects bios code.
 
1 members found this post helpful.
Old 07-07-2013, 03:10 AM   #6
textillis
Member
 
Registered: May 2013
Location: Northern Rivers, NSW, Australia
Distribution: Slackware64-current, Mint Nadya
Posts: 299

Original Poster
Rep: Reputation: 2
Quote:
Originally Posted by m_kane View Post
[/LIST]

I think this is hardware failure, maybe keyboard or it's io.


I have never heard about virus that affects bios code.
thanks;
IO = ?
 
Old 07-07-2013, 03:13 AM   #7
textillis
Member
 
Registered: May 2013
Location: Northern Rivers, NSW, Australia
Distribution: Slackware64-current, Mint Nadya
Posts: 299

Original Poster
Rep: Reputation: 2
Quote:
Originally Posted by astrogeek View Post
Well, I am sure quite a few packages include some kind of -z option, so there is not a good answer for that.

But if you boot to a live CD/DVD then nothing on the hard drive should be affecting it - it is entirely in RAM.

So my guess would be that maybe you have bad RAM or other hardware problem.

I think the gparted live CD included memtest86 - try running that.
thanks Astrogeek: I have gparted and memtest apps on a live CD tool collection called partition magic, but as I say in my original post, when I boot to that, it goes crazy.
Perhaps needs to go to disc doctor or rubbish heap....
 
Old 07-07-2013, 03:16 AM   #8
astrogeek
Senior Member
 
Registered: Oct 2008
Distribution: Slackware: 12.1, 13.1, 14.1, 64-14.1, -current, FreeBSD-10
Posts: 2,031

Rep: Reputation: 804Reputation: 804Reputation: 804Reputation: 804Reputation: 804Reputation: 804Reputation: 804
Quote:
Originally Posted by textillis View Post
thanks Astrogeek: I have gparted and memtest apps on a live CD tool collection called partition magic, but as I say in my original post, when I boot to that, it goes crazy.
Perhaps needs to go to disc doctor or rubbish heap....
Yea, it really does sound like a hardware failure if you can't even load memtest.

If you have access to something with the same kind of memory modules, that would be my first guess and just try swapping them out.

IO = Input/Output, that is the 'IO' in BIOS.
 
Old 07-07-2013, 06:54 AM   #9
Z038
Member
 
Registered: Jan 2006
Distribution: Slackware
Posts: 804

Rep: Reputation: 157Reputation: 157
Quote:
Originally Posted by textillis View Post
  1. which ali baba are _you_ referring to? how do you know that I am not referring to a story from 1001 nights or some other source; but more importantly, unless you are just "point-scoring", which I think you are, why knit-pick (verbal form) over something so peripheral to my question/problem?
  2. "to boot a kernel" is what I meant, but the smart-arse tone of your question about "a verb" makes me want to just ignore you; and I probably know more about syntax and language morphology than you anyway;
  3. well, again, leaving your point-scoring, and one-upmanship (noun) aside for a second, which package does contain a -z option?
  4. "why not just boot in live CD ..." because, as i mentioned, when I enter live CD, "partition magic" (its "live" status refered to with "loaded in ram"), this too, gets scrambled; ie; all its objects get converted/overrun by raw code of some sort

    unimpressed
I apologize, Tex. I simply didn't understand anything you wrote in your initial post. It was my fault. I was a little drunk at the time.

Again, I beg your pardon for the unhelpful post.
 
Old 07-07-2013, 07:32 AM   #10
textillis
Member
 
Registered: May 2013
Location: Northern Rivers, NSW, Australia
Distribution: Slackware64-current, Mint Nadya
Posts: 299

Original Poster
Rep: Reputation: 2
Quote:
Originally Posted by Z038 View Post
I apologize, Tex. I simply didn't understand anything you wrote in your initial post. It was my fault. I was a little drunk at the time.

Again, I beg your pardon for the unhelpful post.
Don't mention it Z. If anything, I should be apologizing for my immoderate response: it was overly acerbic and touchy by a long shot.

I have had a frustrating and harrowing week bedding in a new system (finally succeeded with a lot of help from Allend and others: yea!!) with Slackware -current; on top of which I've had a hard time trying to work out what to do with my old machine which I had thought had been the subject of an attack, but which, after reading your post and those of others, may well be down to a simple, and fixable, hardware problem.

Anyway, great if we can both put it behind us.

Cheers
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
IMF hit by 'very major' cyber security attack Jeebizz Linux - News 0 06-12-2011 12:17 PM
'Serious' cyber attack on EU bodies before summit Jeebizz Linux - News 0 03-23-2011 03:03 PM
Cyber attack on France targeted Paris G20 files Jeebizz Linux - News 0 03-07-2011 10:56 AM
Hague: UK is under cyber-attack Jeebizz Linux - News 3 02-06-2011 07:01 AM


All times are GMT -5. The time now is 02:46 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration