This topic might be for "Am I infected?" section but I think its better to Nuke it and start fresh.
If I made a mistake by posting in the wrong section feel free to transfer it.
I suspect that my computer might be infected with a malware and I was wondering what might be the safest way to transfer files to a clean computer?
I was thinking about transferring all my documents to Dropbox or Google Drive (docs and PDF files), create a bootable USB with Linux (possible with Gparted or Linux mint), boot it and transfer larger files (GoPro videos, pics etc) to an external hard drive. Later I would delete the partitions completely with Gparted and start over.
With a new, clean Linux Mint up and running I was planning to install Windows 10 in a Virtual box, transfer the files there, scan them with AVG and Malwarebytes before storing them on Linux again.
Or since I have dual boot with Win10 and Linux Mint 18 Cinnamon I can scan the files on Win10 but I would like to keep it clean.
I'm a curious guy... If I want to know how something works I try it myself, follow various guides and learn online. Recently, I was curious about malware and ransomware. How does it work and what happens "behind the scene"? So I did some research, found various documentation about it but that wasn't enough. Let's take a look at the deepweb, shall we? Bingo! Found a gold mine with PDFs. I was a fool not to install TorBrowser on a VM and browse/download.
There I also found that various documents can contain viruses and malware. Before I though only .exe files can be dangerous. Oh boy, was I wrong... Then my Linux started acting weird.
One night, while just browsing a news portal, my screen flashed. After reading about how an attacker can take a screenshot of a victims computer with just one command I got paranoid.
Fired up wireshark to check for any suspicious traffic and I found out that my computer was sending traffic to computers/servers located in Russia, Slovakia and Republic of Korea. Got a bit more paranoid but I realized that Transmission was running and seeding. I was downloading Antergos by the way (wanted to see how it works).
Transmission closed, everything looked OK. But you can never be too careful.
I ran chkrootkit and lynis - everything clear (I can post the results if you like)
Maybe it was nothing, I am just too paranoid, do not want to risk it and its better to start fresh.
I'm open to suggestions