I'm really in a tough spot here and could use some guidance. It seems like I've been hacked, but I have no idea what's causing it. My security software shows a ton of suspicious connections outside the US, and even when I block them, more pop up. I usually run Malwarebytes and Windows Defender to check any programs but I'm still stumped. A lot of these connections are from Windows system processes like svchost, and some were flagged on Chrome as well, coming from various countries like South Africa and India. I can't even turn my computer on right now to gather any evidence. I've saved all my Chrome passwords offline, but I'm feeling really anxious about this situation. What steps do I need to take to fix this?
3 Answers
Just a heads up, running a full scan with the Windows virus removal tool is a good step, but it can be a bit hit or miss. In your case, if it didn’t find anything, it might be a sign that the malware is hidden pretty deep. Sometimes formatting and reinstalling is the only sure way to clean up.
It sounds like you might have a Remote Access Trojan (RAT) on your hands, which gives someone unauthorized access to your computer. I'd suggest formatting your hard drive and starting fresh with a new installation of Windows. After that, getting some professional help to set up multi-factor authentication and a solid firewall would be a smart move!
The first thing you should do is change your passwords—especially for any accounts that might be sensitive. Be sure to enable two-factor authentication wherever you can for added security. If you're not connected to the internet, you can look into doing a system restore or even a complete reinstall of Windows to ensure you wipe any potential threats from your hard drive.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures