Author Topic: Files vanishing (Read 15593 times)

Sorunome · « **on:** November 09, 2013, 06:10:11 pm »

Ok, what the hell did just happen, i was chatting on skype and suddenly the whole content of my desktop folder was....GONE! It isn't even in the trash bin or anywhere i can think of!
I am running an HDD recovery program atm, but HOW THE HELL can that happen!

I am using archlinux, yes, i am updating it on a regular basis!

I just hope i manage to recover my programming projects.......

Should I change my comp password/other passwords/whatever? Did i get hacked?

AssemblyBandit · « **Reply #1 on:** November 09, 2013, 06:21:59 pm »

Were you skyping with a russian hacker/spy? It happens to me all the time.

Sorunome · « **Reply #2 on:** November 09, 2013, 06:27:18 pm »

no, i was skyping, text only i should add, with a friend in the netherlands

DJ Omnimaga · « **Reply #3 on:** November 09, 2013, 06:30:06 pm »

This sucks. I wonder if it's possible to get a virus or get hacked in Linux? If it's possible to access someone's computer remotely, maybe someone had your login info? Else, I can't think of anything, especially if just the desktop folder vanished. If it was many files, I would suspect hard drive-related issues.

Or maybe a security exploit in one of the software you used?

Sorunome · « **Reply #4 on:** November 09, 2013, 06:31:46 pm »

well, i have ssh running and a webserver (nginx), but both are actually secure. And my password is also a secure password, plus my router doesn't redirect port 22 to my comp.

SpiroH · « **Reply #5 on:** November 09, 2013, 06:41:21 pm »

This is really very annoying! You need to make sure you are not using a hacked-skype version. I've heard of similar problems happening before, for instance here: http://community.skype.com/t5/Mac/Skype-on-Linux-hacked-major-security-flaw/td-p/1562675 .
Good luck with your hard drive recovery.

DJ Omnimaga · « **Reply #6 on:** November 09, 2013, 06:47:02 pm »

Quote from: Sorunome on November 09, 2013, 06:31:46 pm

well, i have ssh running and a webserver (nginx), but both are actually secure. And my password is also a secure password, plus my router doesn't redirect port 22 to my comp.

Do you use this password elsewhere, though? A SMF admin's password was guessed on a different forum that was filled with exploits and since that admin used the same password on SMF too, the hacker followed him then stole a copy of the database and passwords.

Sorunome · « **Reply #7 on:** November 09, 2013, 06:52:00 pm »

Quote from: DJ Omnimaga on November 09, 2013, 06:47:02 pm

Quote from: Sorunome on November 09, 2013, 06:31:46 pm
well, i have ssh running and a webserver (nginx), but both are actually secure. And my password is also a secure password, plus my router doesn't redirect port 22 to my comp.
Do you use this password elsewhere, though? A SMF admin's password was guessed on a different forum that was filled with exploits and since that admin used the same password on SMF too, the hacker followed him then stole a copy of the database and passwords.

No, that is the only instant of that password.

Sorunome · « **Reply #8 on:** November 10, 2013, 08:22:46 am »

Ok, so I ran now file recovery, i still have to look through all the recovered files though, tones of them are trash anyways, like old browser cache etc.
EDIT: does somebody have/want to make such a prog?
Display all txt and h files in a folder after another, if i hit r it deletes it and if i hit n it keeps it? That way it would be far easier to look those files through

SpiroH · « **Reply #9 on:** November 10, 2013, 09:25:23 am »

well, i'm afraid there aren't, unfortunately, any free lunches out there! you'll need to either google for it or write your own (probably faster, i dunno). It may take a while but it may be worth it. keep being resilient and eventually you'll manage to recover the important stuff. I been there too (sort of, my brand new HD simply crashed - but only some of the disk sectors were damaged). i went 'crazy' for a couple of days. After the disaster i keep backing-up the important (programming) stuff much more often.

Legimet · « **Reply #10 on:** November 10, 2013, 10:27:01 am »

Sorunome, check the log file auth.log for anything suspicious.

Sorunome · « **Reply #11 on:** November 10, 2013, 11:11:01 am »

Quote from: SpiroH on November 10, 2013, 09:25:23 am

well, i'm afraid there aren't, unfortunately, any free lunches out there! you'll need to either google for it or write your own (probably faster, i dunno). It may take a while but it may be worth it. keep being resilient and eventually you'll manage to recover the important stuff. I been there too (sort of, my brand new HD simply crashed - but only some of the disk sectors were damaged). i went 'crazy' for a couple of days. After the disaster i keep backing-up the important (programming) stuff much more often.

nuuu, somebody want to make one for me as i already have like almost no time on the comp recently due to IRL stuff? (it'll be better in december)

Quote from: Legimet on November 10, 2013, 10:27:01 am

Sorunome, check the log file auth.log for anything suspicious.

Doesn't exist over here

Darl181 · « **Reply #12 on:** November 10, 2013, 02:00:22 pm »

If someone finds or ends up making that kind of program, I wouldn't mind giving it a shot.
I had a 32gb drive (more than halfway full) corrupt on me about a year ago and there's still a huge "recovery" folder on my windows partition

ben_g · « **Reply #13 on:** November 10, 2013, 02:09:26 pm »

I'll try to write a simple program like that, but I don't know yet if it'll work.

EDIT: I attached the program to my post. It is tested and worked, but as I wrote it as fast as possible, it could be a bit unstable, use at your own risk.

How to use it: First, fill in the extensions of the files you want to view in the textboxes (you can use up to 10 extensions, leave the ones you aren't using blank).
Then, use the file shooser to select the directory in which you want to look for files.
When you click open on the file shooser, the window will close and a new window will open, which displays the name of the first file with a correct extension, with the options to keep or delete it. Keep moves on to the next file, delete deletes it and moves on to the next one after that. Once it has reached the last file, the program will exit.

EDIT2: I have updated the program. It now looks trough 1 level of subfolders and it prints the first 50 lines of each file in the console.

ruler501 · « **Reply #14 on:** November 10, 2013, 03:35:03 pm »

would something like this work

Code: [Select]

import os, sys, glob, shutil

dest='/home/'#leave trailing / or it will break

for f in glob.glob("*.h"):
	keep=input("Do you want to keep "+f)
	if keep=='r' or keep=='n':
		os.remove(f)
	else if keep='k' or keep=='y':
		shutil.copy(f,dest+f)
	else:
		print("You need to use a valid command y/k keep or r/n remove")

I haven't tested it yet so I make no promise about it working

Author Topic: Files vanishing (Read 15593 times)

Sorunome

Files vanishing

AssemblyBandit

Re: Files vanishing

Sorunome

Re: Files vanishing

DJ Omnimaga

Re: Files vanishing

Sorunome

Re: Files vanishing

SpiroH

Re: Files vanishing

DJ Omnimaga

Re: Files vanishing

Sorunome

Re: Files vanishing

Sorunome

Re: Files vanishing

SpiroH

Re: Files vanishing

Legimet

Re: Files vanishing

Sorunome

Re: Files vanishing

Darl181

Re: Files vanishing

ben_g

Re: Files vanishing

ruler501

Re: Files vanishing