So I think I might be a little paranoid, or maybe not. First a little background, going to college for computer networking majoring in network security. Not done otherwise I should be able to fix this myself right haha. I consider my self pretty computer savvy. I have RAT's installed on my family members computers to fix their problems when they call me, which is often. Easier than explaining how to download teamviewer. I have their permission so its all legal and shiz. I know how sneaky they can be and if you have a brain at all are undetectable. I am not sure if I am infected or not, I run AVG, did a scan just now and nothing.
So I was just sitting playing bloons td5 on my phone, my computer was on desktop, nothing open nothing going on at all when very loudly and distinctly I hear the quote from Jurassic Park, about the beta raptor and the alpha guy. The guy asks which one is the Alpha and the dude says your looking at him. I immediately freak out, wtf I deleted that movie long time ago not even on my harddrive anymore. I checked. This sounds like something I would do if I was a hacker wanting to brag or make somebody go wtf... so I opened smart sniff and left it open for a while. Normal stuff, until i get a couple of weird connections. Unfortunately I didn't have smart sniff open when the sound played. So I am going to post the suspicious TCP Streams in text and let somebody more experienced than me look at them. I did IP trace on some of the bleep and one was from Russia? nothing to do with any sort of company that I could find. To be honest I am about ready to just swap out hard drives because I handle a lot of PGP encrypted crap, but i do all that in linux on the same hard drive. Thanks for the help, any tips are appreciated!
Not to worried about the HTTPS stuff mainly the UDP from russia...
================================================== Index : 23 Protocol : UDP Local Address : 10.0.0.12 Remote Address : 184.108.40.206 Local Port : 31541 Remote Port : 50828 Local Host : Remote Host : 220.127.116.11.donpac.ru Service Name : Packets : 6 Data Size : 120 Bytes Total Size : 336 Bytes Data Speed : 0.0 KB/Sec Capture Time : 10/20/2015 12:00:08 AM:923 Last Packet Time : 10/20/2015 12:03:04 AM:392 Duration : 00:02:55.468 Local MAC Address : Remote MAC Address: Local IP Country : Remote IP Country : ================================================== 00000000 21 00 10 0A ED D9 0A AD 9F FE 9F DF 00 10 00 00 !...íÙ. ŸþŸß.... 00000010 9B 15 72 49 21 00 10 0A EF 96 89 69 9F FE 9F DF ›.rI!... ï–‰iŸþŸß 00000020 00 10 00 00 9B 15 72 49 21 00 10 0A F1 58 5E A9 ....›.rI !...ñX^© 00000030 9F FE 9F DF 00 10 00 00 9B 15 72 49 21 00 10 0A ŸþŸß.... ›.rI!... 00000040 F4 D3 06 2C 9F FE 9F DF 00 10 00 00 9B 15 72 49 ôÓ.,ŸþŸß ....›.rI 00000050 21 00 10 0A F6 90 30 0C 9F FE 9F DF 00 10 00 00 !...ö0. ŸþŸß.... 00000060 9B 15 72 49 21 00 10 0A F8 4E 91 D0 9F FE 9F DF ›.rI!... øN‘ÐŸþŸß 00000070 00 10 00 00 9B 15 72 49 ....›.rI