[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 344
  • Last Modified:

My windows 7 PC was hacked and someone installed the Linux OS

Hi:

It appears that my desktop machine was somehow hacked last night.
It's a windows 7 machine.

I was working late last night. When I got up to work today, all that I saw
was the Linux Mint 16 desktop. I rebooted and it did not go through the
windows boot process.

A caveate here is that I did have the Linux Mint 16 iso in a folder on that machine.
In the last week, I was attempt to install a Linux VM through VirtualBox.

Was my entire windows data wiped out?
Trying to figure out how best to proceed here.


Thanks,
JohnB
0
jxbma
Asked:
jxbma
1 Solution
 
aadihCommented:
[In jest] A ghost, perhaps.  

Not even safe mode?

Do you see your files on the PC?
0
 
Emmanuel AdebayoCommented:
If you can log to the PC, check the boot.ini configuration and also you should see the windows direcory and you files on the hard disk.

You might just need to copy all your data if yu don't have the latest backup and reinstall Windows OS.

Regards
0
 
jxbmaSoftware ConsultantAuthor Commented:
I don't see anything at all referencing windows in the boot up process.
This logs me directly into the Linux desktop.
In the Linux file browser, all I see is "Linux folders".

Attempting to boot into safe mode brought me to the GNU GRUB  startup screen.
0
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

 
aadihCommented:
Could you post a screen shot of the file browser window showing the folders in the main drive?
0
 
jxbmaSoftware ConsultantAuthor Commented:
Can't get to internet from the Linux Box through browser.
As near as I can tell it looks like a standard Linux system.
0
 
jcimarronCommented:
jxbma--
Are you saying you cannot get to any Windows files, commands, etc?  
Can you get to a Windows command prompt?  If so type msconfig.exe. Enter.  Now you should be at System Configuration Utility.  The Boot tab may allow you to choose to make Windows the Default operating system assuming Windows is still on the PC.

If no help, do you have a backup of the system?
0
 
dbruntonCommented:
At this stage you need to take the hard disk out of your machine and attach it to another computer, via USB is satisfactory.  Just as long as your hard disk is not the first one to boot.

Boot the computer and use it's flle explorer to see if it can see any Windows file system on your disk.  If it can then pull all your data off it immediately.

If it can't then you are in trouble.  And I'll presume that this has happened.

In which case try GetDataBack http://www.runtime.org/data-recovery-software.htm  Get the NTFS version and make sure it is the demo one.  Install it on this computer and run it over your disk and see what it makes of it and whether it can recover any data.  If it can then pay the money for full functionality.

Also look at Active @ Partition Recovery software http://www.partition-recovery.com/  Again free to try.  If it sees stuff pay for full functionality.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now