LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 08-31-2021, 12:13 PM   #31
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 17,755
Blog Entries: 11

Rep: Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366Reputation: 5366

I'm slightly amused that one very similar thread was just closed, and now this one being bumped.
I hope user A-Okay, who did the bumping, will look through all the output OP provided for them.

But, once again, stated many times in this thread now:
Look at the most likely explanations first, and only then go searching for unicorns.
 
1 members found this post helpful.
Old 08-31-2021, 02:31 PM   #32
A-Okay
LQ Newbie
 
Registered: Mar 2021
Posts: 22

Rep: Reputation: Disabled
Hi, you need to use parameters to localize it.

How at all are you thinking, you're the victim of a RAT?

The only thing I would check for is the "snpp" but i can't see anything unsual going on in your post.

If you already wiped your HD/SSD and reinstalled the OS, I think the RAT would be gone, unless some1 has access to your wlan,eth0 or router.

Correct me, if I'm wrong!

Edit: I did not check all of your logs. Since the commands I gave you where just ideas. You need to use parameters. You'll find a lot of information by googling the commands or just use: man <cmd>

Last edited by A-Okay; 08-31-2021 at 02:39 PM.
 
1 members found this post helpful.
Old 08-31-2021, 05:16 PM   #33
dugan
LQ Guru
 
Registered: Nov 2003
Location: Canada
Distribution: distro hopper
Posts: 10,104

Rep: Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669Reputation: 4669
Quote:
Originally Posted by whois1230 View Post
Is it possible for a RAT to hide in the BIOS
Nope

Last edited by dugan; 08-31-2021 at 05:20 PM.
 
1 members found this post helpful.
Old 09-14-2021, 02:14 PM   #34
SlowCoder
Member
 
Registered: Oct 2004
Location: Southeast, U.S.A.
Distribution: Ubuntu, Mint
Posts: 990

Rep: Reputation: 46
Some very good points here.

If I ever thought that my PC has malware, it would be an automatic wipe and reinstall of all OSs.

I'm hoping that the phish was a valuable learning experience for you (I mean that constructively). As a rule, if I ever suspect a phish attempt, I will contact the actual company by phone before clicking any link in the correspondence. As well, the SMS from your carrier that you'd been hacked was actually your carrier, and not another phish.

I'd like to add that if your hard drive has bad sectors, you'll probably be wanting to replace it. Usually once they start failing, they're untrustworthy and continue to get worse.
 
Old 09-14-2021, 02:41 PM   #35
maw_walker
Member
 
Registered: Jul 2021
Location: US
Distribution: FreeBSD, Kali
Posts: 68

Rep: Reputation: Disabled
So, the fact the phish was on the phone but the suspected trojan was on the PC is setting off red flags to me in terms of fake post, or lack of understanding how malware works. This thread, IMHO, falls into the controversial "I think I was hacked" category. Could be OP literally has no idea how malware works and is making the assumption that one affected device can infect others. That's plausible. Maybe I am being too harsh and need to go back to my corner...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
rat not working with etch miggins Debian 2 08-18-2005 02:14 AM
suse is kind of a rat foodhater SUSE / openSUSE 20 04-26-2005 01:56 AM
Rat Brain Pilot AvePtah General 9 11-05-2004 08:14 PM
Danger, Danger, Danger. Dead Rat Killed My Slack vdemuth General 2 07-12-2004 03:54 PM
Fedora(Dead Rat test) pains vs. Gentoo RacerD Linux - Newbie 14 04-18-2004 08:59 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:55 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration