On 2/14/21 12:59 PM, Carlos E.R. wrote:
On 14/02/2021 21.52, DennisG wrote:
On 2/14/21 2:40 PM, Doug McGarrett wrote: ...
What should I be doing to get all this done, neatly and cleanly?
Before you go: There MAY be a problem with the eset AV program. Is this something (which I paid for) that I have to eliminate, and if so, what can I replace it with? It seemed that before I went for eset I tried to install something free, but unsuccessfully.
Sorry for the long post, but you folks have been a big help to this newbie to OpenSUSE, and I hope you will do so again. Thank you! I agree with Lew, you don't need to reinstall just yet.
The first likelihood is a conflict arising from the ESET driver. Products like NOD32 use a low-level driver which not only interrogates new files/mail/etc. for viruses but also hooks into processes used by apps. The version you have may have been installed incorrectly (I suspect this is your problem, with preload - see links I sent previous), but it may also be a bug (as was the case in one of the links) or it may be an incompatibility causing a service like d-bus to choke.
If trying the preload fix is too challenging, then just uninstall and request a refund.
If you really feel you need an antivirus on openSUSE, you should take a look at clamav. It provides a scanning daemon for file checking but IIRC it doesn't have the low-level hooks. It definitely does not include intrusion detection.
Aide is for intrusion detection and IIRC is based on SELinux. Rkhunter I think is an on-demand scanner for rootkits and backdoors. These are fairly advanced tools. Before going down either path you probably should take a look at AppArmor first. Please have a look at the "attack" described at the link to previous conversations, and then recommend a course of action:
Archived-At: https://lists.opensuse.org/archives/list/support@lists.opensuse.org/message/...
Specifically: https://lists.opensuse.org/archives/list/support@lists.opensuse.org/message/...
and
https://lists.opensuse.org/archives/list/support@lists.opensuse.org/message/...
Has evidence of an intrusion been submitted, Carlos? Or is there some other reason for the bogus Amazon orders? For example, just yesterday I received a phone call from a recording claiming to be Amazon saying that I had ordered a $800 something that was being delivered to Texas and to press one to talk with someone to confirm the order. I pressed one and a woman with a slight accent answered, maybe Indian. She said she could help track down the order if I told her what kind of computer I was using. I told her "Linux", which seemed to confuse her a bit. She then asked if I had any other way to log into Amazon, I told her I also had a cell phone. She asked if it was Android or IOS. Android says I. She then asked me to go to a specific web site, I don't remember what it was. At that point I lost it and started to swear at her, telling her to perform an act on herself that would have been very difficult to perform. She was obviously trying to trick me into going to a malicious web site where malware would be installed on my phone to try to steal anything of value, including probably identity. Regards, Lew