{"id":1397,"date":"2022-12-10T07:00:00","date_gmt":"2022-12-10T15:00:00","guid":{"rendered":"https:\/\/gmr.dev\/blog\/?p=1397"},"modified":"2023-12-10T15:40:41","modified_gmt":"2023-12-10T23:40:41","slug":"help-ive-been-infected","status":"publish","type":"post","link":"https:\/\/rose.dev\/blog\/2022\/12\/10\/help-ive-been-infected\/","title":{"rendered":"Help! I’ve been hacked! What do I do?! My PC Has a Virus or is Infected Recovery Guide"},"content":{"rendered":"\n

This is a guide for virus removal for Windows PCs. If you have a computer\/computers that you believe have a virus or have been hacked, here are the steps you must take to protect yourself.<\/p>\n\n\n\n

Isolate from the internet<\/h2>\n\n\n\n

This is the most important step. A lot of functionality is limited if they don’t have a connection.<\/p>\n\n\n\n

Make sure the device you believe has been compromised is disconnected from all forms of connectivity. Bluetooth should be off, airplane mode should be on, Ethernet should be unplugged. WiFi should be turned off, and device should be powered down until ready to perform other necessary recovery steps. This will prevent any malware from getting worse, ransomware from progressing, or hackers from sending remote instructions to your computer. <\/p>\n\n\n\n

Additionally, immediately<\/em> boot your computer into Safe Mode (as fast as possible), to prevent malware processes like ransomware from progressing further.<\/p>\n\n\n\n

Booting into safe mode (with networking)<\/h2>\n\n\n\n
\n

Safe Mode is a diagnostic operating mode, used mainly to troubleshoot problems affecting the normal operation of Windows. Such problems range from conflicting drivers to viruses preventing Windows from starting normally. In Safe Mode, only a few applications work and Windows loads just the basic drivers and a minimum of operating system components. This is why most viruses are inactive when using Windows in Safe Mode<\/mark>, and they can be easily removed.<\/p>\nbitdefender.com<\/cite><\/blockquote>\n\n\n\n

From Settings app<\/h4>\n\n\n\n
    \n
  1. Press the Windows logo key windows key + I on your keyboard to open Settings. If that doesn\u2019t work, click the Start windows key button in the lower-left corner of your screen, then select Settings Settings icon.<\/li>\n\n\n\n
  2. Select Update & security Update and security icon, then click on Recovery Recovery icon.<\/li>\n\n\n\n
  3. Under Advanced startup, select Restart now.<\/li>\n\n\n\n
  4. After your PC restarts to the Choose an option screen, go to Troubleshoot > Advanced options > Startup Settings > Restart.<\/li>\n\n\n\n
  5. After your PC restarts, you\u2019ll see a list of options. Press 4 or F4 to start your PC in Safe Mode. Or if you\u2019ll need to use the Internet, select 5 or F5 for Safe Mode with Networking.<\/li>\n<\/ol>\n\n\n\n

    From sign in screen<\/h4>\n\n\n\n

    1. Restart your PC. When you get to the Windows sign-in (login) screen, hold the Shift<\/strong> key down while you click the Power <\/strong> icon in the lower-right corner of the screen then select Restart<\/strong>.
    2. After your PC restarts to the Choose an option<\/strong> screen, go to Troubleshoot<\/strong> > Advanced options<\/strong> > Startup Settings<\/strong> > Restart<\/strong>.
    3. After your PC restarts, you\u2019ll see a list of options. Press 4<\/strong> or F4<\/strong> to start your PC in Safe Mode<\/strong>. Or if you\u2019ll need to use the Internet, select 5<\/strong> or F5<\/strong> for Safe Mode<\/strong> with Networking<\/strong>.<\/p>\n\n\n\n

    From system configuration<\/h4>\n\n\n\n

    1. Launch System Configuration in Windows by simultaneously pressing the Windows<\/strong> \"windows + R <\/strong>keys on your keyboard. Then write msconfig<\/strong> in the text field and press OK<\/strong>.
    2. Switch to Boot <\/strong>tab and, in the Boot options <\/strong>section, select the Safe Boot <\/strong>with Network. <\/strong>Then click OK<\/strong>.<\/p>\n\n\n\n

    \n\n\n\n

    If you have an Ethernet cable, plug the computer in directly. <\/p>\n\n\n\n

    NOTE<\/em><\/strong>: After you finished your work in Safe Mode, please open System Configuration<\/strong> again (step 1) and uncheck<\/strong> the Safe Boot <\/strong>option (step 2). Click OK and restart your machine. Your computer will now boot normally.
    \"safe<\/p>\n\n\n\n

    3. Windows will tell you that you need to reboot your computer in order for the new setting to take effect. After the reboot, your computer will automatically boot into Safe Mode.<\/strong><\/p>\n\n\n\n

    IMPORTANT: You may not have internet because of drivers and Safe Mode<\/h3>\n\n\n\n

    Safe Mode doesn’t load most third party drivers as a precaution. This could<\/em> lead to the scenario where you can’t access the internet. In this instance, you can use another computer to download the .exe setup file and transfer it with a USB drive. You could even use your phone to download and transfer from your phone with a hard wire. <\/p>\n\n\n\n

    Use Virus removal tools<\/h2>\n\n\n\n

    AFTER YOU HAVE REBOOTED INTO SAFE MODE<\/mark><\/strong> I recommend:<\/p>\n\n\n\n

      \n
    1. Download Malwarebytes<\/a> FREE, install and run
      (they will push you to buy the premium version, it is unneeded for our usage) \n