I've been having some serious issues with my PC lately. A few days ago, I think I accidentally ran a Trojan executable. Since then, I've received emails indicating that my passwords for accounts like Epic Games, EA, and Ubisoft were changed. I installed MalwareBytes, which found and quarantined the Trojan, but I uninstalled it afterward. I've already changed my passwords for these accounts and added two-factor authentication for the ones that didn't have it, but it seems the intruder still has access to my accounts.
To make matters worse, they logged into my Steam account and bought items from the community marketplace using my account. This morning, my Instagram account was also compromised, and the hacker posted a cryptocurrency advertisement. Just now, they attempted to change my Steam password again, but I managed to stop it.
Looking through my browsing history, I found out that they're using my own Google account and my PC via a VPN. Right now, I've signed out of Gmail, disconnected my internet, and turned off my computer. I did a deep scan with MalwareBytes afterward, but it didn't find anything. What should my next steps be? Also, I've noticed that a lot of the emails the accounts were changed to end with either "rambler.ru" or ".ru". Has anyone else experienced this? How can I safely remove them from my PC?
3 Answers
If you're facing malware issues, a clean reinstall of Windows is honestly the safest route. I know it can be annoying, but it ensures all traces of the intruder are gone.
Just remember, if you use the 'Reset my PC' feature, make sure to choose the option that deletes all files. However, to be completely sure that nothing is left, the full wipe with a USB drive is definitely the way to go.
Yes, I agree with that. Just be ready to back up your important files first. To answer your question, if you do a full new installation via a USB drive, it should wipe everything from your PC, including any hidden backdoors the hacker might have left.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures