Well doing something as simple as a netstat -a revealed that I'm listening to a Military of Defense server on port 139. That seems safe(sarcasm). I've looked into the UK MoD and supposedly they've had a history of being hacked. I wouldn't be surprised if someone is using their servers to host something like a botnet. Who knows?! I'll post up the IP at a later date. There was another IP from IANA too that was doing the same thing as the Military of Defense was(similar ports, except one UDP was different). I'm pretty spooked, you can imagine. Still backing up my files. I have TBs of stuff, lol.
None of the things you guys had me do detected this either, so I'm backdoored or a bot... great. This isn't a good day :[
I'm sorry. I thought you were safe no Linux. Also, just going to say this. And how do you KNOW it's a MoD server?