I am a networking neophyte. Though I bought a Netgate 1100 appliance (pfSense supported). I want to get it up and running, just want to solve the PC problem first.
I've done a few nMaps and saw lots of connections I didn't recognize. I had a large WireShark pcap I was ferreting around in, but like I said, I don't know enough to do it justice. I went downthre rabbit hole and before long I was considering Suricata as an IDS/IPS. I felt like I was reachjng a bit far, when up till now it's localized to the PC and maybe (idk) the ISP router.
I've just got the one PC. E-recycled all my Thinkpads, I'm now running an AMD Ryzen 9 16-core CPU, 64GB CL14 RAM (1:1 IF) full-ATX rig. And I love her.
No ideer. And no ideer. I'm finally trying to do some serious damage control, but it's been a real headscratcher. I was amused at first, I have a good sense of humor. Until they started with "long dash- dot dot... dot dot... dot". I'll save you looking it up, they told me to off myself. That's not funny anymore. Thus Lemmy post.
I have an A/V Receiver that goes out to a 6.3mm/half-inch jack headphones, and I mostly listen through the 2-channel phones out. But sometimes I run my 5.1 surround sound. Does not happen when the PC is off. I checked all cables, everything seems in order. No tap.
Guilty of reusing credentials. Strong password, but reused.
I use my ISP's router and their built-in firewall is saying Enabled on the page.
Then I run UFW on my PC denying all incoming. It's one of two rules (the other is port forwarding for CS:CZ server).
I thought running Mullvad VPN would be another good layer of obscurity, but whatever drive-by malware got through something somewhere. ClamAV reported no infections. No SSH and no RDP. I really am at a loss on how I got compromised.
Thanks for spitballing with me! I look forward to further insight.
So the pulseaudio package wasn't installed. Installed it, ran the command, and it reports, "No PulseAudio daemon running, or not running as session daemon."
I also lost sound. Checked into it, the Output switched from my HDMI to my USB Audio Interface. Switched it back to HDMI 5.1 and I've got audio back. If PulseAudio wasn't in use, should we consider another one-liner?
I have a friend that struggles with delusional disorder, so I'm no stranger to such disorders. But I assure you, having had to listen to these 7-10s soundbytes, find out the sources (Karma Factory/South Park/Morse Code) for weeks now... of sound mind (didja see what I did there lol), it's real and it sucks.
Still hoping someone can point me to a log file I can grep against for sounds.
Or... ya know... not. Hence me wanting to track this down. Hence this post. Mental health is very important though. Everyone agree to take care of themselves, mkthanks.
QubesOS is looking mighty nice, if only I wasn't a gamer and had another GPU to dedicate to the VM's/qubes (dom0 is the baseline qube/VM, and it hijacks the GPU for itself).
I redownloaded Debian Bookworm and checked the hash, it validated. So I reinstalled with that iso from the official website.
I swapped hardware, figuring it stemmed from a SecureBoot Key ransom against MSI not too long ago. So I swapped out an MSI X570s Edge Max mobo for an Asus ROG Crosshair VIII Dark Hero. Issues came back.
Oh. I know I've been compromised. It's beyond reasonable doubt.
I run cabled headphones, no BT love.
I get triplicate of my user account.
Did not run any scripts post-install.
Can't find auth.log in /var/log
One time I went down for a reboot, there was an SSH process hanging up the reboot, so I CTRL-C'd and the system successfully rebooted.
Since then I disabled SSHD.
Think StackExchange, but a Debian-centered forum instead. And I didn't expect the link to appear, as I didn't give it an explicit https://www/. In the comment. For others, do not click that link. The site's long dead.
I am a networking neophyte. Though I bought a Netgate 1100 appliance (pfSense supported). I want to get it up and running, just want to solve the PC problem first.
I've done a few nMaps and saw lots of connections I didn't recognize. I had a large WireShark pcap I was ferreting around in, but like I said, I don't know enough to do it justice. I went downthre rabbit hole and before long I was considering Suricata as an IDS/IPS. I felt like I was reachjng a bit far, when up till now it's localized to the PC and maybe (idk) the ISP router.