What steps are required to re-install Knoppix/Debian and personal files WITHOUT transferring malware across?
Clash Royale CLAN TAG#URR8PPP
up vote
0
down vote
favorite
SUMMARY:
I believe that my system* may have been infected with malware, after an Internet
session (with Chromium browser). (*Knoppix installed on hard disc).
Please could you tell me what steps I need to carry out in order to start afresh
with a new installation of Knoppix or Debian, followed by putting back all my
personal and personalised files that were on the suspect system (eg bash
scripts, ordinary text files, videos, music, system configuration files
(modified by me) such as those in /etc.)
And which TYPES of file is it safe to transfer from the suspect system to the
new installation (for example, is it safe to transfer video files)?
FULL DETAILS:
The reason I think I've been infected with malware is because I saw suspicious
prolonged disc-light activity after visiting a couple of dodgey websites. Also
I've been experiencing unusual delays in response when using the Kate editor.
And in Chromium, the left part of the window sometimes becomes partly blank.
I initially considered using clamav and chkrootkit to look for malware, but
they can give false positives. Also malware might have been put on the hard
drive, to be accessed by direct addressing.
So I figured that it perhaps makes sense to re-install Knoppix (or put Debian 8
on), and then put back my personal and personalised files that were on the
suspect system.
On the suspect system, I have previously configured: a) several programs (eg
VLC, Chromium), and b) system configuration files such as those in /etc. Can I
safely copy those files from the suspect system to the new installation without
fear of transferring the malware over?
I've googled for information about how to carry out this kind of fresh start but
surprisingly have found little information. Hence my request for your help,
thanks.
security
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
asked Oct 3 '17 at 19:15
dave99
1
add a comment |Â
up vote
0
down vote
favorite
SUMMARY:
I believe that my system* may have been infected with malware, after an Internet
session (with Chromium browser). (*Knoppix installed on hard disc).
Please could you tell me what steps I need to carry out in order to start afresh
with a new installation of Knoppix or Debian, followed by putting back all my
personal and personalised files that were on the suspect system (eg bash
scripts, ordinary text files, videos, music, system configuration files
(modified by me) such as those in /etc.)
And which TYPES of file is it safe to transfer from the suspect system to the
new installation (for example, is it safe to transfer video files)?
FULL DETAILS:
The reason I think I've been infected with malware is because I saw suspicious
prolonged disc-light activity after visiting a couple of dodgey websites. Also
I've been experiencing unusual delays in response when using the Kate editor.
And in Chromium, the left part of the window sometimes becomes partly blank.
I initially considered using clamav and chkrootkit to look for malware, but
they can give false positives. Also malware might have been put on the hard
drive, to be accessed by direct addressing.
So I figured that it perhaps makes sense to re-install Knoppix (or put Debian 8
on), and then put back my personal and personalised files that were on the
suspect system.
On the suspect system, I have previously configured: a) several programs (eg
VLC, Chromium), and b) system configuration files such as those in /etc. Can I
safely copy those files from the suspect system to the new installation without
fear of transferring the malware over?
I've googled for information about how to carry out this kind of fresh start but
surprisingly have found little information. Hence my request for your help,
thanks.
security
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
asked Oct 3 '17 at 19:15
dave99
1
If you were using current chromium/chrome, that's generally the best in terms of security. If you were using an old version, then it's not as safe, of course. If a rootkit got installed, or a uefi hack, then fixing it is hard. However, you don't know if anything at all actually happened. Contrary to widespread and popular belief, the goal of professional malware is not to make your computer unusable, by visible symptoms, but to use it as a remote system. Extended disk writes can be coincidence, just the file system updating itself. Hint: don't reinstall knoppix, a fine live cd, install debian.
– Lizardx
Oct 9 '17 at 18:53
add a comment |Â
up vote
0
down vote
favorite
up vote
0
down vote
favorite
SUMMARY:
I believe that my system* may have been infected with malware, after an Internet
session (with Chromium browser). (*Knoppix installed on hard disc).
Please could you tell me what steps I need to carry out in order to start afresh
with a new installation of Knoppix or Debian, followed by putting back all my
personal and personalised files that were on the suspect system (eg bash
scripts, ordinary text files, videos, music, system configuration files
(modified by me) such as those in /etc.)
And which TYPES of file is it safe to transfer from the suspect system to the
new installation (for example, is it safe to transfer video files)?
FULL DETAILS:
The reason I think I've been infected with malware is because I saw suspicious
prolonged disc-light activity after visiting a couple of dodgey websites. Also
I've been experiencing unusual delays in response when using the Kate editor.
And in Chromium, the left part of the window sometimes becomes partly blank.
I initially considered using clamav and chkrootkit to look for malware, but
they can give false positives. Also malware might have been put on the hard
drive, to be accessed by direct addressing.
So I figured that it perhaps makes sense to re-install Knoppix (or put Debian 8
on), and then put back my personal and personalised files that were on the
suspect system.
On the suspect system, I have previously configured: a) several programs (eg
VLC, Chromium), and b) system configuration files such as those in /etc. Can I
safely copy those files from the suspect system to the new installation without
fear of transferring the malware over?
I've googled for information about how to carry out this kind of fresh start but
surprisingly have found little information. Hence my request for your help,
thanks.
security
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
asked Oct 3 '17 at 19:15
dave99
1
SUMMARY:
I believe that my system* may have been infected with malware, after an Internet
session (with Chromium browser). (*Knoppix installed on hard disc).
Please could you tell me what steps I need to carry out in order to start afresh
with a new installation of Knoppix or Debian, followed by putting back all my
personal and personalised files that were on the suspect system (eg bash
scripts, ordinary text files, videos, music, system configuration files
(modified by me) such as those in /etc.)
And which TYPES of file is it safe to transfer from the suspect system to the
new installation (for example, is it safe to transfer video files)?
FULL DETAILS:
The reason I think I've been infected with malware is because I saw suspicious
prolonged disc-light activity after visiting a couple of dodgey websites. Also
I've been experiencing unusual delays in response when using the Kate editor.
And in Chromium, the left part of the window sometimes becomes partly blank.
I initially considered using clamav and chkrootkit to look for malware, but
they can give false positives. Also malware might have been put on the hard
drive, to be accessed by direct addressing.
So I figured that it perhaps makes sense to re-install Knoppix (or put Debian 8
on), and then put back my personal and personalised files that were on the
suspect system.
On the suspect system, I have previously configured: a) several programs (eg
VLC, Chromium), and b) system configuration files such as those in /etc. Can I
safely copy those files from the suspect system to the new installation without
fear of transferring the malware over?
I've googled for information about how to carry out this kind of fresh start but
surprisingly have found little information. Hence my request for your help,
thanks.
security
security
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
asked Oct 3 '17 at 19:15
dave99
1
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
asked Oct 3 '17 at 19:15
dave99
1
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
edited Oct 9 '17 at 18:57
Hunter.S.Thompson
4,57431334
4,57431334
asked Oct 3 '17 at 19:15
dave99
1
asked Oct 3 '17 at 19:15
dave99
1
asked Oct 3 '17 at 19:15
dave99
1
1
If you were using current chromium/chrome, that's generally the best in terms of security. If you were using an old version, then it's not as safe, of course. If a rootkit got installed, or a uefi hack, then fixing it is hard. However, you don't know if anything at all actually happened. Contrary to widespread and popular belief, the goal of professional malware is not to make your computer unusable, by visible symptoms, but to use it as a remote system. Extended disk writes can be coincidence, just the file system updating itself. Hint: don't reinstall knoppix, a fine live cd, install debian.
– Lizardx
Oct 9 '17 at 18:53
add a comment |Â
If you were using current chromium/chrome, that's generally the best in terms of security. If you were using an old version, then it's not as safe, of course. If a rootkit got installed, or a uefi hack, then fixing it is hard. However, you don't know if anything at all actually happened. Contrary to widespread and popular belief, the goal of professional malware is not to make your computer unusable, by visible symptoms, but to use it as a remote system. Extended disk writes can be coincidence, just the file system updating itself. Hint: don't reinstall knoppix, a fine live cd, install debian.
– Lizardx
Oct 9 '17 at 18:53
If you were using current chromium/chrome, that's generally the best in terms of security. If you were using an old version, then it's not as safe, of course. If a rootkit got installed, or a uefi hack, then fixing it is hard. However, you don't know if anything at all actually happened. Contrary to widespread and popular belief, the goal of professional malware is not to make your computer unusable, by visible symptoms, but to use it as a remote system. Extended disk writes can be coincidence, just the file system updating itself. Hint: don't reinstall knoppix, a fine live cd, install debian.
– Lizardx
Oct 9 '17 at 18:53
If you were using current chromium/chrome, that's generally the best in terms of security. If you were using an old version, then it's not as safe, of course. If a rootkit got installed, or a uefi hack, then fixing it is hard. However, you don't know if anything at all actually happened. Contrary to widespread and popular belief, the goal of professional malware is not to make your computer unusable, by visible symptoms, but to use it as a remote system. Extended disk writes can be coincidence, just the file system updating itself. Hint: don't reinstall knoppix, a fine live cd, install debian.
– Lizardx
Oct 9 '17 at 18:53
add a comment |Â
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f395902%2fwhat-steps-are-required-to-re-install-knoppix-debian-and-personal-files-without%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
If you were using current chromium/chrome, that's generally the best in terms of security. If you were using an old version, then it's not as safe, of course. If a rootkit got installed, or a uefi hack, then fixing it is hard. However, you don't know if anything at all actually happened. Contrary to widespread and popular belief, the goal of professional malware is not to make your computer unusable, by visible symptoms, but to use it as a remote system. Extended disk writes can be coincidence, just the file system updating itself. Hint: don't reinstall knoppix, a fine live cd, install debian.
– Lizardx
Oct 9 '17 at 18:53