I'm looking for advice on how to handle an infected SSD after installing a suspicious program that compromised my Huawei MateBook D16 and drained a Metamask account. I've identified a svchost.bat process running in the System32 folder, which suggests a backdoor. I want to ensure a completely clean system while recovering my personal and professional files without risking reinfection. My plan is to remove the infected SSD, install a new 1 TB NVMe drive, and reinstall Windows along with security software. After that, I intend to connect the old SSD via a USB NVMe enclosure to recover only non-executable files like documents and images, and then fully wipe the old SSD. Is this procedure safe? Can I risk reinfection by plugging in the old SSD? Should I use read-only mode for mounting it? Also, could anyone recommend a reliable NVMe USB enclosure for this task?
0 Answers
There is no answer to this question yet. If you know the answer or can offer some help, please use the form below.
Related Questions
Lenovo Thinkpad Stuck In Update Loop Install FilterDriverU2_Reload