Categories > Exploiting > Tutorials >
I accidentally ran a malicious program, what do I do?
Posted
I accidentally ran a malicious program, what do I do?
So, you've ran a piece of malicious software and you don't know what to do. Your accounts, personal information and files are in danger and this thread is going to learn you how to go about securing everything after experiencing an attack on your computer. I am not going to recommend that you use any tools to scan your computer with as not all of them do a great job, files can be hidden very easily.
Table of Contents:
- Change passwords
- Backup files
- Go to a brand new installation of Windows
1. Change passwords
Like I mentioned in my most recent thread, you're going to want to create a brand new password for each online service/social media platform which you've signed into on your computer. It is important that you don't use the same exact password for everything, as you could be caught up in online data breaches and people will have access to your password(s). If you want the best possible advice on storing and retrieving the most secure passwords, you'll definitely want to check out that thread I've linked above.
2. Backup files
Assuming the malicious program you've ran isn't ransomware, you'll want to backup all of your important files to a USB device or an online file host which you can use later to retrieve your files again. If it is ransomware that you're facing, skip this step and move over to topic 3. There are three online file hosts which I personally recommend, I've had experience using all of them. Those of which are Mega, Mediafire and Google Drive. Unfortunately, all of these services require accounts to use, Mega has a user friendly interface but somewhat slow download speeds. I believe Google Drive offers the most storage space and is similar to Mediafire in terms of download speeds (fast).
3. Go to a brand new installation of Windows
Obtain a USB drive and download the Windows Media Creation Tool. Once you've done that, disable your internet connection and download an image file onto the USB that you're using and ensure that you choose not to keep any existing files. Wait for the process to complete and boot onto your new, clean installation of Windows. Now, if you were using a file host earlier, you're going to want to go back to that and obtain your old files. Also install any drivers if necessary.
Hope this thread helps!
Replied
with this information in my hands alongside with the other thread i finally deel confident enough to delete my av for higher performance!
Cancel
Post
Replied
@Shintayo, I'm glad to hear it :)
Cancel
Post
Replied
Generally you can stay pretty safe as long as you download software from trusted sources.
I'm going to add to this thread (for installing software):
- If your software is open-source, don't download the binaries unless it's on the software's official branch. If you want to be really safe, compile it on your own.
- Binary hashes are provided for a reason. Check the hashes, even if it may be a pain, it's better to be safe.
- If people submit a PGP signed file with the software, you better check it. That's even more secure than a hash.
- If your software came from a large corporation and the binary has an invalid digital signature, make sure it's legitimate as large companies will usually sign their software. Not all companies will do *cough* Synapse Softworks.
- If you don't trust software, run it in a sandbox without internet. Even better, run it in a virtual machine without internet capabilies and without guest tools installed.
- Don't download software that you are already skeptic about.
- Reverse engineer software you don't trust (if you have the skill).
I get by just fine without an antivirus, which you may say that's a weakness—the fact that I don't use any antivirus, not even Windows Defender—but common sense is much more powerful than any antivirus on the market.
Cancel
Post
Replied
thx i accidentally ran cracked synapse x
Cancel
Post
Replied
Vouch. Very helpful.
Cancel
Post
#RoadTo40Rep
https://media.discordapp.net/attachments/1110581420465848442/1110935583926276106/Comp_1_5.gif?width=1125&height=337
Replied
step 1: disconnect router
step 2: flash a usb with the windows 10 / 11 iso installer
step 3: get into the boot menu for the installer
step 4: get a whole new installation
step 5: change all passwords as soon as possible
step 6: invest into an external hard drive for your files
step 7: don't run unlicensed software again
Just a tldr
Also under certain circumstances the perpetrator will have access to your files if you backed them up using a cloud service from the same infected computer. Also under rare circumstances it's possible the malicious file can spread to your USB drive but thats under the circumstance it's a WORM.
Cancel
Post
https://cdn.discordapp.com/attachments/995469995742068832/1073019970012848228/Untitled39_20220604185345.png
#immuneformod
Replied
hey I'm supposed to be the nerd about cybersecurity here 😭😭
Cancel
Post
Users viewing this thread:
( Members: 0, Guests: 1, Total: 1 )
Cancel
Post