I'm experiencing difficulties connecting to internet - not resolving pages. When I first connect I'm fine then I can't resolv any website. Also ACPI issues, battery not charging whereas on a wiped disk[dd if=/dev/zero of/dev/sda] and clean install this problem disappears. This last time I used hdparm etc to wipe drive and the battery problem did not disaappear.

I don't know how to provide evidence for this but on previous installation when disconnected from internet, but with wifi on, someone tried to mount the external backup drive I was using but failed as it is simply an extended drive with no /boot etc. I saw a terminal?? flash on screen and disappear. They were trying to copy games to the drive eg: World of warcraft.

I also saw dnsmasq listening on one of ports in gufw firewall yesterday. I'm having problems d/l security programs using synaptic and setting them up before experiencing issues eg: port sentry.

I will try to upload a complete tar of backup to dropbox if it helps.

Yesterday rkhunter found the following:

Warning: The following processes are using deleted files:

Process: /sbin/init PID: 1 File:/var/log/upstart/mountall.log.1

Process: /usr/sbin/cups-browsed PID: 1740 File /etc/passwd

Process: /usr/bin/caja PID 2446 File: /home/p359nt..../.local/share/gvfs-metadata/home

I'd appreciate input. My impression is someone is trying to setup a Man in the Middle attack hence can't resolve DNS. I still have the installation on my laptop
for forensic purposes. I'm using an Android tablet at the moment which apart from the FREAK incident does not appear to have issues.

Any advice appreciated. The hacking is non-stop and vindictive. I've had my Amazon account hacked but not my bank account. Zeroed drives hacked within hours.

I'm willing to try to use laptop and see what develops, saving backups of activity if it helps.

I honestly have no idea what is going on. But I am now using the same laptop with no issues, DNS resolves ok. Firewall seems ok. However, I did find under the Network Connection icon / VPN connections / Configure VPN connections that there was a recently used [~5mins ago] Wired Connection setup as well as the wireless one. I deleted the wired one. I only setup the wireless one.

Maybe I'm just a bit jumpy about security. So mark this 'SOLVED' though I have no idea why it appears to be the case.

Yes you are.

As I have been aware of your situation for the approximately past ten years I can safely say you know just enough to be dangerous (in your case only to yourself ;-p). What you should do - and I've said that before - is ditch stuff like Kali or Port Sentry (these aren't the tools you should choose to use), run a common Linux distribution and have fun. Most of the transient problems you seem to have experienced can most likely be attributed to hardware, configuration or temporary network or service outage conditions.