Hey everyone! So, I've discovered that my laptop is infected with PowerShell malware after some unusual activity on my Facebook account. A sysadmin confirmed this, but I'm not quite sure how to deal with it. I want to save my files without transferring the malware to another device, and I need to ensure that the malware is completely wiped out. I don't have a lot of IT experience, so I'd really appreciate any guidance. Thanks a ton!
2 Answers
It sounds like you might have executed a sketchy command that allowed PowerShell to install the malware. PowerShell isn't the problem; it's just the tool that was used. I suggest running a full system scan using Windows Defender and Malwarebytes to check for threats. Keep in mind, though, that it might be hard to confirm that everything is completely clean without some advanced knowledge.
Honestly, the best approach is to wipe your laptop and start fresh. First, turn off your Wi-Fi and internet connection. Then, back up your important files to an external drive or another device. After that, create a bootable USB using another computer to reinstall Windows. This way, you're ensuring that the malware doesn't stick around.
Definitely reload your machine after the scans. I've seen that many PowerShell scripts can download some really nasty stuff. Just make sure to back up and scan your data before transferring it back!