The moment when you try to play the pirated game and you see the cmd for a split second and then tell yourself surely this is the part of installation and not info-stealer.
Sometimes I think those "trusted" piracy guides aren't to be trusted at all. Every time I fire up a game from any of the trusted sources, I get a firewall prompt, even for single player games. Edit: thanks for the clarity in the replies
This video should be standard for anyone who has to use a computer. It's ridiculous that people are expected to use computers for personal productivity without knowing the risks and how to remediate them.
I always compare malware to moldy bread when recommending that people reinstall windows. Sometimes, you can see the mold and know your bread is infected. Sometimes, you can't even see the mold and not know that the bread is not good to eat. You can try to rip off the moldy parts and eat the rest of the bread, but that is not advised because mold can bury its roots into the rest of the bread and be untraceable. Sometimes the best thing to do is to throw it out and get a fresh piece of bread.
Not everyone can get a new pc. And funnily enough not all people can just willy nilly buy a new bread. Sometimes that's all the money they have and can't afford a new fresh one. The things people endure and do just to survive.... D: That being said... That is a nice analogy.
don't. antivirus programs act like viruses. They're hard to kill and they never go away. Just don't download anything you're not supposed to. get a VPN, make sure you have good security setup with your internet, and you're set.
@@sw11500 I've used the same linux installation for almost 5 years without any boot issues, or issues in general. I use auto-update. Everything works fine. If you install some dumb meme distro instead of something stable then that's a self caused issue from following top 10 distro youtube videos.
I appreciate the honesty when you say the best thing you can do, once infected, is to wipe and reload your PC, as it’s the only way to know for sure you’re not still compromised in some way. I wipe and reload my PC about every 12 months, because it’s easier than doing system clean up and gives guaranteed results for restoring a PCs speed.
@LabibAhmed-b8g Root kits can only be detected with special tools. These types of scans must be conducted from a second computer hooked up to the infected computer so that the bios never loads. If you suspect your computer has been rooted, it's best to take it to a professional. There are also some types of malware which you cannot remove, such as the Windows TPM exploit that was patched in 2017 (which many people never installed because they forget to update their firmware), which once executed, is functionally impossible to remove and requires throwing out the hardware. Again, if your PC is that fkd, take it to a pro. But not even they could fix something like that.
So uh. That may not always work. I've had a RAT before. The hacker straight up controlled my mouse cursor and the RAT survived PC resets. I couldn't just stop using that laptop so I eventually tried to write a sticky note asking some questions and they never answered LOL
This video gives me nostalgia of not so old times, around 6 years ago when these kind of systems and equipment were considered modern and every single tutorial has this kind of quality, for me it's the peak of recording technology, nothing sounds better than this.
Not so old times. Despite Windows Implementing W11 Zero Trust Policy, I still believe they added 'more patches' vs solid rocking what should have been safe from predators when they knew it was happening.
Thank you for showing this, i have mental illnesses that make me paranoid/fearful and i have a deep fear of getting my pc compromosed after a trauma from a previous attack, these help to calm down
@Autism764 Yeah understandable, what caught me really off guard is that the guy who hacked me was talking to me on Discord and that really scared me cause he said that I should change my router and sent laughing emojis... Well, I'm glad now that it happened cause I got better with computers in general
@@effmereality No, you are not alone at all. I am paranoid of getting hacked as well. But to be honest, it gets better with time when you start to learn more about cyber security. Just give it a try ;)
I'm confused why companies haven't made it harder to steal session tokens. Hackers have been copying people's logins and stealing accounts that way for years and every company seems to be fine with it.
@@rainchopper898 If that person authenticated recently enough when the session token was copied, then they don't need 2fa to make changes to security settings. And TH-cam/Google accounts (and probably many other accounts) have been getting stolen for years with copied session tokens
@@rainchopper898 Two factor authentication also isn't good. You can do a lot of damage with a phone number. The only genuine way to protect logins is to not create one or delete accounts you don't use or need.
I remember sometime in 2012 I had a really nasty adware virus on my mom's laptop. Everytime I would delete it, it would re-install itself back up. Spent like an entire day figuring out the original installer, deleted it and never saw it again, that's the last time I've seen any malware
@@edwardmacnab354 tough to remember exactly after so many years but i think it was a .msi installer in C:/Windows folder somewhere. Either used Task Manager or search function to find it
My mom had an adware extension on her laptop a few months ago. Basically I happened to hear her fussing about how she couldn’t send an email because there would be a pop up telling her that she was required to get Norton internet security to do so. She was somehow dumb enough to do so, but thankfully she somehow didn’t go through the link the pop up gave her and installed the actual Norton antivirus. At the time I was convinced that she was tricked into downloading a malicious software disguising as Norton and I removed her bad browser extensions, but when I took it to the shop I found out it was the real deal antivirus lmao
It's important to keep an element of surprise in your retaliation. If you believe your PC is infected, change your passwords on a different pc before cleaning the infected one. This way you won't find yourself in a race to who changes passwords first (you or the hacker)
Lowkey alot of the times especially with RATs all they want is money, they don’t really care about your accounts except for your bank account, or theyll ask you for bitcoin to get off your computer. Thats what actually happened to me when I got ratted, mf asked for bitcoin 😂 He told me to message him on discord and he told me how he hacked me and that he was doing it as a “side hustle”. Kinda weird to say but I think I became friends with the hacker. 💀 Ofc I wiped my PC and reinstalled Windows and changed my password but he was lowkey chill. 🤣
There's malware that sits on your memory through restarts and will infect a new installation of windows. For those you have to clean your disks with a bootable thumb drive, turn off your computer including turning off your power supply, let it sit for a few minutes (it's less but to be sure a few minutes) and then perform a clean installation. Best way to avoid that is stay away from dodgy websites and never open something unless you actually know what it is, including emails.
@@TeaDrinkingDuck true but even if there are no detected hits, always look at the report to see the behavior for yourself. Lots of mods and freemium software for cheats literally behave AS malware but they aren't malicious. So if an .exe has those behaviors but you were expecting something completely different than those processes, even without any actual detection you know its sus
I've been suspecting my PC has been hacked, one day someone on Discord added me WITH the username being my Discord email and the PFP being from my mom's Google account and started telling me info about me that I told NO ONE.
reset your pc and dont keep anything the "app" you downloaded is a rat i would not use the google password manager, use bitwarden it is free and you can import all of your google passwords into to it and also please dont download anything that is too good to be real for example like a level 7 roblox executor
I wasn't thinking about malware 5 minutes ago. I am thinking about malware now. Great video, but man my anxiety riddled ass did not need this in my recommended.
I'm sorry to hear that, hun. A little tip that might help in the future: Clicking on the video and commenting on it might cause the algorithm to give you more of these things. I've been through the same thing before, I'm sorry you're going through this. Wish you all well!
7 years ago I downloaded a shit ton of malware trying to play "FREE MGSV PC OFFLINE CRACKED VERSION" My computer was so f*cked and I was so paranoid I destroyed the laptop & the hardrive.
That game is not even worth pirating, outside of the quiet's visuals which you can get a better view of in a breaking the quiet video, hl fk is that game really that old
Really great, very informative video. Simple enough for someone with less tech savyness to follow and understand, but more useful that the regular security slop around
Okay, so basically, if your computer's been hacked, it's like that one friend who always 'borrows' your stuff and never returns it... but instead of your favorite sweater, it's your entire identity and financial info. And the worst part? You might not even realize it until it's too late! So, yeah, just a casual Tuesday afternoon of checking for remote access Trojans and info Stealers... no big deal. Thanks for the anxiety, Eric!
Do you plan to make a video on using more advanced DFIR tools on samples like this? Probably too complicated for the average user but I'd love a video going through these samples, what traces they leave over Windows event logs and how accurate automated tools like Hayabusa are at marking them
I got a trojan horse info stealer on my pc earlier this year, had to completely re-install my pc and change every password, to this day i still recieve notifications that people are trying to log into my accounts, the hacker sold all the information
I once got a Trojan virus on my Mac just by accepting cookies on a website. I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
Nicely done. I still prefer a fresh installation, mainly for piece of mind and ease of execution. To that end, I have a external hard-drives with all noteworthy software, drivers, etc, that I might require.
As a person that downloads a lot of "this probably is not safe but whatever" stuff i was in shock that my laptop is CLEAN. Regardless, great video. This might come in handy in the future.
I need to make an important notice! Reinstalling from within Windows might not fully take care of it. Depending on the malware, it might be able to take advantage of the reset process to make itself persist! Use a second PC to create an install USB, then boot into it. Perhaps as another safety measure, boot into a non-windows (such as a Linux recovery USB) to backup then wipe everything from the affected PC before reinstalling.
I once got a Trojan virus on my Mac just by accepting cookies on a website. I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
popped up in my recommended videos, and you got me searching for anything possible on my pc even tho i haven't installed any pirate games or anything of that kind, i don't even install programs in need for College just to be safe
Just wanted to say, this video helped me immensely. Ran an antivirus scan. 60+ adware+some other incomprehensible malware. Scan+uninstalling a lot of "unverified" files from autorun+removing some Chinese software from bypassing windows firewall+finding some adware named "videoadsblocker" through "windows uninstall a program" and using safe mode to delete those because they refused to be uninstalled otherwise. Did all of that and now I feel mostly squeaky clean. Thanks!
This is mainly for people who use Windows Defender as their only antivirus, if you have a 3rd party antivirus then these settings would be in the antivirus program's settings instead
It should be noted that using another Antivirus than Windows Defender is a risk in itself. Windows Defender is pretty good these days, other antivirus programs may be worse and they seem to replace/disable Defender most of the time. But you're essentially giving Malware an easy entry point to system internals either way, especially if said program has exploits on its own.
@@Mimi.1001 I mean if you're rejecting 3rd party antivirus based on that logic, all programs including Windows itself have a backdoor because government forced them to include one. Nothing is happening because we're not a threat, not rich and not on anyone's crosshair yet. The safest way is to go Linux by building your own Distro.
@@bindogaming791 You can, but not every virus can be removed once infected. As every expert in the cybersecurity industry have said countless of times; 3rd party antiviruses are essentially a tank with a camera facing you(some antiviruses are paper tanks though) while Windows Defender is a riot shield with a Microsoft camera facing you, neither will protect you if you get hit by a missile. We have already reach an age where hackers can use HDMI radiation to monitor your screen(yes Google it), that doesn't mean you should shoot your computer. So pick your own poison, do your own research, and always double check links before you access it.
It's on mine bc I occasionally watch a tech video or two. If you've ever looked at a video for help with a minor computer problem, that's likely the reason you've gotten this suggestion
Yes it is! I once got a Trojan virus on my Mac just by accepting cookies on a website. I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
Idk if anyone has said this before, but the Logi Options+ the malware you ran created *is* a real executable that could be in someone's computer and not be malware. It's the software used to configure Logitech mouse that has macros built in with gestures. It IS malware in your case because you clearly do not have a logitech mouse and clearly didnt have that installed since you couldn't even tell it was a real software app that was being mimicked, but the program does exist and there is a legitimate executable and services for it. It would not say "(Not Verified)" if it was the real thing however.
thanks for commenting this actually. i know i installed it myself cause i got a new keyboard recently but still seeing it show up here had me warily eyeing my desktop icon like it was a bomb.
Few things: 1. Every serious rat uses a rootkit. You need to check kernel hooks first. Also if you've been hit by something advanced, it's probably FUD (fully undetected) so scanning isn't helping 2. Also you should boot with turned off internet. Or boot into safe mode. 3. Another way is booting into a live os like hirens boot then scan and remove the malware but you wont catch kernel hooks etc 4. Popping up cmd windows are often completely legitimate ways to execute pre and post install tasks 5. Use tinywall 6. Use a vm for keygens and patchers. Try out stuff first in the vm, but be aware most malware has vm detection and won't run the malware part 7. Best and most professional thing to do is using a write protected ssd/hdd adapter and use a safe system to analyze your infected system. 8. Use 2FA, use keepass, use cold storages for crypto
As an IT guy I always just reinstall due to the major time sink trying to fix the system. I never know how long it will take to fix but I know I can quickly reinstall windows 😅😎
Best practice is to install a virtual machine in your clean PC and use it to test any file or run any software. That way any malware will be restricted to the VM and prevent infecting the host
You mean i should download sketchy files or programs that I'm not familiar with in virtual program first and test if it's safe? Also is sand box(or what is it called that is already installed in windows) good virtual machine?
3:15 my only exclusion was one .dll located on the system32 folder. i kinda instinctively removed the exclusion without paying much attention to the name. should i be worried?
my autoruns also showed some suspicious stuff... plenty of unverified files were from software i trust, like k-lite codec, but some stuff (mainly some files located at syswow64, which are windows applications as far as i understand) and a bunch of files only labeled as EPP also appeared unverified. are they dangerous?
Windows defender is actually a great AV. Using anything else is not necessary. Lmfao.
2 หลายเดือนก่อน +1
@@NicholasAdamDemonte Then why is it that I used Win Defender and it said I have no viruses, then I used Malwarebytes and it said I had over 20 viruses and pup's?
thanks! ended up finding out my pc was indeed infected and exactly where i could find the files and so on. this helped immensely! i never downloaded anything off of sketchy sites or anything so ima have to figure out how this happened.
Used computers are cheap. Have a second "secure" computer used only for shopping, banking, and sensitive tasks with an up-to-date linux distro, and no pirated software
most families have an old pc or a laptop and don't know what to do with it. Great opportunity to get a secure system. Some lightweight linux distro will fly even on an old system (like windows 7/8 epoch and even older)
Sometimes after I turn my laptop on or after using it for a while, a cmd pop up often appears for a split second and then disappears. Do I have a virus or malware, or is that normal? But previously I had reinstalled/clean installed Windows, and I had installed Avast, but why does the cmd pop up still appear sometimes?
Avast antivirus? Isn't that thing hell to remove? Like the last time I got it from a PUP/Bundled. But I had to go to safe mode to delete avast fully. But until now there's still a .dll file of it I'm trying to remove.
yeah most solid advice, if you KNOW or heavily suspect you got a rat on your system, rootkit or whatever the hell, just wipe and reinstall. ive heard of people in IT going over how much shit they can infect and how deep they burrow, its really not something the average guy will know enough to rid of a friend in IT told me before that sometimes you gotta just toss the whole drive (or more if you have several) in really bad cases, idk how they survive a full drive wipe but im not the it guy so
What does reinstall do? Will it affect my current nvme driver? Will it affect my pc performance? And after i reinstall do i need to boot windows again or will it will automatically be there?
Good day Eric. I wanted to ask real quick, as this could be important for other people as well, but, if the infected user has more than one hard drive, should they completely wipe all of them? Plus to this is it impossible to backup the files on your pc after an attack? Is there any way to backup anything? Or should a person run an usb stick with linux and move things around on a fresh hard drive? Perhaps you have tips on this, as i have heard in rare occasions it could be possible for malware to jump ship and run on other parts of your computer, even after you format your main part of it. Thank you lots for your work, this was extremely informative. I really liked it.
If you have more than one drive connected and you don't know the details of your infection it is best to completely wipe all of the drives. If you need data off of an infected drive the best option is (IMO) to to mount it as a data-only drive from another system (such as a Linux distro) and copy files you need to a third drive. There they can be scanned. If at all possible wait a few weeks before using the files and perform more scans because that will give some time for the protection databases to catch up.
You are a great professional, I'm sure this video helped many people. Even though I'm here just out of curiosity, I was still impressed by your knowledge. If I ever need to use this knowledge (hopefully not xD), I can only thank you.
Great video! I think I am overall pretty hygienic with my windows install, but it was still nice to go through these steps to ensure my my system has not been compromised as it has been around 3 years since I last did a fresh install of windows.
Talking about the two Bluetooth related drivers that Autoruns flags as Not Verified, for some reason a clean install (and often a Windows Update) will install these two files. If you run sfc /scannow, it will flag these files and replace them with versions from Microsoft servers, which then don't appear in Autoruns anymore. This has been happening for years and I have no idea why Microsoft has two sets of Bluetooth drivers seemingly and can't agree with itself which ones are 'correct'
Thing is ive reset my pc 3 times but i still get email notification about somebody trying to access to my account until today (my pc got ratted 3 days ago). One of my Microsoft acc already got stolen and I don't receive the code to change my password 🤷 I don't know if there still malware inside my pc. All i did was reset my pc but keep files. Will that get rid of the malware? Im not much of a tech person. And whenever im playing a game or pressing the taskbar my pc just froze. I really dont know what cause it. My windows and driver already up-to-date
I back up a fresh install image with my standard desktop setup and save it for situations like you are describing. It’s saved my bacon many times. It’s good practice, even if you are not hacked, drives fail, get corrupted and sometimes they just stop working properly, glitches and so forth.
Hey bro, thanks for making this video. I can tell you are really skilled in IT stuff is there a way you can maybe create an abridged version for us laymen who arent so savvy with all the internal working of Operating Systems? I managed to get through the video with a lot of Google searches. Perhaps kindly point us to where or how(i.e. Courses or videos)we can hopefully get as savvy as you.
I deactivated Kaspersky automatic start on start up and went to check windows defender and i couldn't Activate none of The defender options for or a couple minutes as "windows administrator" disabled It, then after a while It was enabled again and i had to activate The other options manualy after Would this be a thing due tô Kaspersky being disabled previowsly on restart and defender ranking a while tô bem re-enabled or is there a malware that both arent detecting?
You should not run 2 antiviruses at the same time, they will clash with each other. Kaspersky, and any other antivirus, does disable Windows antivirus automatically.
this is the situation when you better give a hint or any other CLEAR sign about your intention: are you serious or are you joking. I tend to think it's a joke, but not 100% sure
Worst infection I ever had years back, which forced me to format the whole machine, was a rootkit and subsequent package of nasties that monitored what I was typing; the moment I tried to search for any antivirus stuff, it killed explorer. Ironically, if the infection had been a bit more subtle I wouldn't have known so promptly - I only became aware of it because my AV software started nuking the contents of a drive in alphabetical order and screaming at me.
@@british_penguin_gg Nice. I seem to hear a little bit of a British Accent, but I don't know if living in British Columbia gives you that accent or something. I like it though!
@@british_penguin_gg he klaims such however his vowels are inkosistant, most of the time he uses amerikan style vowels however sometimes (inkonsistantly) he uses british style vowes "sahmple" instead of "sample "rahn" instead of "run" (its hard to right out alot more of these phonetik diffrences without knowing ipa however u may onberve, as english natives, there are far more "brittishisms" in his english (extra emphisys on the final w in "window", ect.) that will be observable to u) and when he speeks quikly he dropps the final r found in amerikan (and for that matter kanadian) english. so its klear he has accidental selektive non rhoticity
an interesting video, though one point i saw and am curious about is windows defender, you said it in a way that seemed like you dont trust it, seeing some of the settings you had turned off and mentioned you keep them off, but watching any other person who i deem knowledgeable in it and computer stuff mentions that if you aren't too dumb, windows defender is enough (maybe download one antivirus software for a quick scan or smt)
I'm someone who definitely knows how to use a PC, but a while ago I have gotten viruses out of nowhere. I swear, I never downloaded any third-party stuff; I only accessed trustworthy websites. Somehow, a random malware still managed to get into my PC, and triggered the windows defender. I even checked to ensure it wasn’t a false positive, and it wasn’t. No one but me uses this PC, and there’s no other PC in the LAN, so how did it get on my computer? then i did an clean reinstallation, i couldn't keeping using it knowing it had some vulnerability and i would never be sure if it was safe. Then, imagine someone like our parents and grand parents on internet, how do we keep them safe?
How to check if your phone is hacked or not? Most of the important things are on the phone these days ( bank apps, social media, password screen shots )
I'm scared of downloading anything on my pc or even doing windows updates cause of precedent accidents i think, I don't know much so I'm here asking, is it normal that randomly in these days i got the vma video player on my desktop? I know it may sound dumb but I'm just paranoid about everything regarding my pc
10:18 I have bunch of "(Not Verified)" entries and some of are things I regularly use and update like 7-zip and K-lite codec pack + LAV Decoders that comes with codec pack and Open Office. By the way VirusTotal scans comes all clean (0/77 detection) for all these applications but there are some 1/77 and 3/77 detections from VirusTotal which are all "verified" Google LLC, ASUSTeK and MSI and Samsung update services.😂 So I don't know about being not verified. Even if I clean install Windows now, the first thing I would be installing the 7-zip, K-lite and Open Office and it will be the same. Don't you use 7-zip and others?
I have some garbage apps running that I never use: News and Interests, Microsoft Edge, and Search. WTF is up with Microsoft that "News and Interests" starts up even when you don't use it? Hubris coupled with stupidity.
Way too advanced for an old-timer like myself. I just follow the basic guidelines of installing an anti-virus program and never giving out any information or clicking on any links thru email, but instead going directly to the company's website itself to communicate. When setting passwords, I always use long, complicated mixtures of upper & lower case letters, numbers & characters. After 23 years of being a frequent PC user, I've never gotten hacked once.
you either never got hacked or never realized you got hacked remember we only see the Worst programmed malware the best virus is the one that does its job and deletes itself and you never find it
Another thing to lookout for if you use another antivirus/firewall instead of windows standard when you start up your computer if it is disabled or Not running automatically, and also if you clock isn’t correct, this can be used to hinder windows updating and some system functions as well
![[LIVE] : ONE ลุมพินี 91 | คู่เอก "คมอาวุธ vs อเล็กเซย์"](http://i.ytimg.com/vi/V0RkEfYFsgM/mqdefault.jpg)
When I started the video, suddenly a notepad popped up, and it wrote: "nah, you´re good. No need to watch this"
Edit: PLEASE MAKE IT STOP
I'm so glad that you read the note I left for you😂
ur good bro
You are successfully protected my man.
write something absolutely wild to em
A good samaritan is doing Lord's work
I don't know if I trust this guy, he's not a random Indian guy with a microphone from 2004
that's how you know hes trustworthy
@@manjorn589exactly, not all but MOST Indians are spreading misinformation
Pleas understand saar
DO NOT REDEEM!
@@xSinicle u old bish do not redeem
This video makes me paranoid as fuck, you got me searching through all my processes like I’m a crackhead looking out the window every few seconds
Couldn’t have said it any better lmaoo
dont watch outside the window get stuck on your cellphone like an android 24 7. Trust me your mental health's gonna expand that way.
@@heyokaoverdashelly2kangel945 I 100% agree with you wholeheartedly
meth heads do that primarily
@@heyokaoverdashelly2kangel945 I concur~
The hacker who got into my PC through RAT watching the video with me ☠
turn on your camera and give him a show
@@savagecorn1739 WILD
☠☠☠☠
plot twist the hacker made this TH-cam comment too
@@QuantumNaut Naaah that's me 💀I mean not the hacker, but it's hard to explain 😂
The moment when you try to play the pirated game and you see the cmd for a split second and then tell yourself surely this is the part of installation and not info-stealer.
Some games do use it legitly, like tmodloader
Sometimes I think those "trusted" piracy guides aren't to be trusted at all. Every time I fire up a game from any of the trusted sources, I get a firewall prompt, even for single player games.
Edit: thanks for the clarity in the replies
whats worse is NOT seeing the cmd pop up when youre supposed to
That's why i unpack it myself, it's usually isos, i dont trust installers from cracks at all, got ransomware once thanks to my naivety
@@scrittlesometimes legit games do it to me
hacker pov
objective: steal bitcoins.
reality: find terabytes of porn.
Thats been the reality for decades now though.
Conclusion: making porn games that make bitcoins on pc
Hacker: I see this as an absolute win!
Terabyte Fiends
😂
This video should be standard for anyone who has to use a computer. It's ridiculous that people are expected to use computers for personal productivity without knowing the risks and how to remediate them.
Sometimes it doesn't help, it seems like ignorance is rampant nowadays.
Its crazy people drive cars without knowing the risks and how to remediate them. I feel like you can say that about a lot of things the every man uses
Only unga bunga people get hacked. If you use your brain to a certain degree there's no way you'd get hacked.
I just have an anti-virus, and I look through my files for anything sus.
I mean, I got lost 5 minutes in and I use the pc daily, I'm not sure how you expect the ones that are not tech savy to follow all of this up.
I always compare malware to moldy bread when recommending that people reinstall windows. Sometimes, you can see the mold and know your bread is infected. Sometimes, you can't even see the mold and not know that the bread is not good to eat. You can try to rip off the moldy parts and eat the rest of the bread, but that is not advised because mold can bury its roots into the rest of the bread and be untraceable. Sometimes the best thing to do is to throw it out and get a fresh piece of bread.
Is your bread not sliced?
So would u rather reinstall windows or get a new pc?
Not everyone can get a new pc. And funnily enough not all people can just willy nilly buy a new bread. Sometimes that's all the money they have and can't afford a new fresh one. The things people endure and do just to survive.... D: That being said... That is a nice analogy.
Some of us can't afford the bread😅
@@solanaceous this one too 😅
I may have not worried 1 minute ago but i am now thank you random man on the internet
lmao same here
No antivirus has been working well on my PC lately and I don't know what to do now.
At BNH Software you can find Windows and I say this because you may have a bad version of Windows 11 and that is why this may be happening to you.
don't. antivirus programs act like viruses. They're hard to kill and they never go away. Just don't download anything you're not supposed to. get a VPN, make sure you have good security setup with your internet, and you're set.
@@kalebagraham vpn itself is useless..
Cracked software did in the meanwhile ^_^
Antiviruses destroy your pc's performance, just don't go to any fishy sites
Simple. If you see "Microsoft Windows" somewhere on the screen, just assume it's hacked and format your hard drive.
true, i got affected by this once
Not like I can get Linux hacked
It just stops working after 3 boots
…and install GNU/Linux
@@sw11500true af
@@sw11500 I've used the same linux installation for almost 5 years without any boot issues, or issues in general. I use auto-update. Everything works fine. If you install some dumb meme distro instead of something stable then that's a self caused issue from following top 10 distro youtube videos.
I appreciate the honesty when you say the best thing you can do, once infected, is to wipe and reload your PC, as it’s the only way to know for sure you’re not still compromised in some way. I wipe and reload my PC about every 12 months, because it’s easier than doing system clean up and gives guaranteed results for restoring a PCs speed.
There is such thing as firmware level hacking. After compromise you can never be sure.
@PeacefulRS some people say thats its overkill for hacking normal users.....but if its done how to overcome this?And how to even identify this???
Do you just reinstall the OS or is there some specific process for this where I can still keep my settings and apps intact after?
@LabibAhmed-b8g Root kits can only be detected with special tools. These types of scans must be conducted from a second computer hooked up to the infected computer so that the bios never loads. If you suspect your computer has been rooted, it's best to take it to a professional. There are also some types of malware which you cannot remove, such as the Windows TPM exploit that was patched in 2017 (which many people never installed because they forget to update their firmware), which once executed, is functionally impossible to remove and requires throwing out the hardware. Again, if your PC is that fkd, take it to a pro. But not even they could fix something like that.
So uh. That may not always work. I've had a RAT before. The hacker straight up controlled my mouse cursor and the RAT survived PC resets. I couldn't just stop using that laptop so I eventually tried to write a sticky note asking some questions and they never answered LOL
This video gives me nostalgia of not so old times, around 6 years ago when these kind of systems and equipment were considered modern and every single tutorial has this kind of quality, for me it's the peak of recording technology, nothing sounds better than this.
Its nostalgic to get infected with malware and to watch a tutorial video to get rid of it?
@@Skerp129 No, it's nostalgic to hear this quality of microphone on this looking windows 10 as tutorial on youtube.
@@Skerp129Yeah it very much is lol especially if you have siblings/kids that fuck with the home pc.
Fr. No dynamic "audience engaging" video editing, Mr Beast typa half-screaming, default trap music in the background
Not so old times. Despite Windows Implementing W11 Zero Trust Policy, I still believe they added 'more patches' vs solid rocking what should have been safe from predators when they knew it was happening.
Thank you for showing this, i have mental illnesses that make me paranoid/fearful and i have a deep fear of getting my pc compromosed after a trauma from a previous attack, these help to calm down
Geez, same with me here... Feels good to know that I'm not alone :)
@Autism764 Yeah understandable, what caught me really off guard is that the guy who hacked me was talking to me on Discord and that really scared me cause he said that I should change my router and sent laughing emojis... Well, I'm glad now that it happened cause I got better with computers in general
@Autism764 Yeah that. As for how did he, I'm not sure, I guess I was just careless
@@effmereality No, you are not alone at all. I am paranoid of getting hacked as well. But to be honest, it gets better with time when you start to learn more about cyber security. Just give it a try ;)
ААХХАХАХАХАХ я не один такой оказывается
I'm confused why companies haven't made it harder to steal session tokens. Hackers have been copying people's logins and stealing accounts that way for years and every company seems to be fine with it.
They can't change password or do many things without permission from 2fa, so a session token doesnt mean they "stealing accounts"
@@rainchopper898 If that person authenticated recently enough when the session token was copied, then they don't need 2fa to make changes to security settings.
And TH-cam/Google accounts (and probably many other accounts) have been getting stolen for years with copied session tokens
@@rainchopper898 evem 2fa is easy to steal....
@@rainchopper898 Two factor authentication also isn't good. You can do a lot of damage with a phone number. The only genuine way to protect logins is to not create one or delete accounts you don't use or need.
@@rainchopper898 chamachamachamachamachamachamacha
I remember sometime in 2012 I had a really nasty adware virus on my mom's laptop. Everytime I would delete it, it would re-install itself back up. Spent like an entire day figuring out the original installer, deleted it and never saw it again, that's the last time I've seen any malware
Ugh, yeah. I had one called Honey bee, real pain in the butt to get rid of.
@@Awsomemobs2000Theminecraftdudeo has the same, the only way to get rid of it is to reinstall windows
thanks for telling us how you did it ?
@@edwardmacnab354 tough to remember exactly after so many years but i think it was a .msi installer in C:/Windows folder somewhere.
Either used Task Manager or search function to find it
My mom had an adware extension on her laptop a few months ago. Basically I happened to hear her fussing about how she couldn’t send an email because there would be a pop up telling her that she was required to get Norton internet security to do so. She was somehow dumb enough to do so, but thankfully she somehow didn’t go through the link the pop up gave her and installed the actual Norton antivirus. At the time I was convinced that she was tricked into downloading a malicious software disguising as Norton and I removed her bad browser extensions, but when I took it to the shop I found out it was the real deal antivirus lmao
It's important to keep an element of surprise in your retaliation. If you believe your PC is infected, change your passwords on a different pc before cleaning the infected one. This way you won't find yourself in a race to who changes passwords first (you or the hacker)
Lowkey alot of the times especially with RATs all they want is money, they don’t really care about your accounts except for your bank account, or theyll ask you for bitcoin to get off your computer. Thats what actually happened to me when I got ratted, mf asked for bitcoin 😂 He told me to message him on discord and he told me how he hacked me and that he was doing it as a “side hustle”. Kinda weird to say but I think I became friends with the hacker. 💀 Ofc I wiped my PC and reinstalled Windows and changed my password but he was lowkey chill. 🤣
he is not watching you most of the time anyway so there would not be a race at all
Bold of you to assume most people have 2-3 PCs just lying around...
@@Мартичанbut what happens if the hacker is looking your computer when you're changing your passwords
@@heyjeySigma You can use a phone too
I feel my brain is getting malware reading your comments section
ong
Do not download sysinternals…
@@9kroi Why? Is it infected as well?
There's malware that sits on your memory through restarts and will infect a new installation of windows. For those you have to clean your disks with a bootable thumb drive, turn off your computer including turning off your power supply, let it sit for a few minutes (it's less but to be sure a few minutes) and then perform a clean installation.
Best way to avoid that is stay away from dodgy websites and never open something unless you actually know what it is, including emails.
Virus Total 🙏
@@dannyboots sometimes virus total fails to detect the threat
Something I’ve always wondered (and really should know), does the “don’t open any emails” apply to emails themselves or just the attachments?
@@Skidoodle18 attachments, mainly links
@@TeaDrinkingDuck true but even if there are no detected hits, always look at the report to see the behavior for yourself. Lots of mods and freemium software for cheats literally behave AS malware but they aren't malicious. So if an .exe has those behaviors but you were expecting something completely different than those processes, even without any actual detection you know its sus
The legend uploads again, love your vids, you inspired me to learn cybersecurity.
Now you got thinking about everything I’ve done on computer to think if I might have one
stop clicking all the links on shady porn sites.
@@Blowtorch2snowflakes Hot singles in your area
@@Blowtorch2snowflakes and pirated websites.
I've been suspecting my PC has been hacked, one day someone on Discord added me WITH the username being my Discord email and the PFP being from my mom's Google account and started telling me info about me that I told NO ONE.
delete your account, change your passwords and format your pc drives or something like that
you got ratted ):
reset your pc and dont keep anything the "app" you downloaded is a rat i would not use the google password manager, use bitwarden it is free and you can import all of your google passwords into to it and also please dont download anything that is too good to be real for example like a level 7 roblox executor
you are cooked buddy
if you dont wanna reset ur pc just change your passwords and format your drive also please use bitwarden
nice touch on Serial Experiments Lain
Was hoping someone else noticed.
I wasn't thinking about malware 5 minutes ago.
I am thinking about malware now.
Great video, but man my anxiety riddled ass did not need this in my recommended.
I'm sorry to hear that, hun. A little tip that might help in the future: Clicking on the video and commenting on it might cause the algorithm to give you more of these things.
I've been through the same thing before, I'm sorry you're going through this. Wish you all well!
what I took away from this, not knowing very much on the subject, is that if I am ever hacked, then I am screwed.
7 years ago I downloaded a shit ton of malware trying to play "FREE MGSV PC OFFLINE CRACKED VERSION" My computer was so f*cked and I was so paranoid I destroyed the laptop & the hardrive.
💀
Format next time ...
LMAOO dude wasn't playing around
@@Bongbongo
At least he's honest. He's dumb fr, but he's pretty good.
That game is not even worth pirating, outside of the quiet's visuals which you can get a better view of in a breaking the quiet video, hl fk is that game really that old
Really great, very informative video. Simple enough for someone with less tech savyness to follow and understand, but more useful that the regular security slop around
Okay, so basically, if your computer's been hacked, it's like that one friend who always 'borrows' your stuff and never returns it... but instead of your favorite sweater, it's your entire identity and financial info. And the worst part? You might not even realize it until it's too late! So, yeah, just a casual Tuesday afternoon of checking for remote access Trojans and info Stealers... no big deal. Thanks for the anxiety, Eric!
FYI not all malware will show up in autoruns or process explorer, such as rootkits.
Ive been using computers my whole life, learned a good chunk of new info from this. We are never done learning!
Do you plan to make a video on using more advanced DFIR tools on samples like this? Probably too complicated for the average user but I'd love a video going through these samples, what traces they leave over Windows event logs and how accurate automated tools like Hayabusa are at marking them
This is the kind of video I like to watch when I should be studying
Bro literally me rn, i have a french quiz tomorrow but instead of studying im watching this
Bonjour.
this IS studying dude
@n848h J'espère que ton quiz s'est bien passé !
Lol me right now
from like 10k subs to over 90k, damn that was fast
92.9k since you commented 5 hours ago
Sorting comments by recent is always an acid trip
I got a trojan horse info stealer on my pc earlier this year, had to completely re-install my pc and change every password, to this day i still recieve notifications that people are trying to log into my accounts, the hacker sold all the information
2fA can help nowadays so make sure that’s turned on as much as possible.
Damn that sucks dude... that's also one of the reasons i don't play online games anymore
@@isaiahwalkingoffline games still requiring an account to play: 💀💀💀💀💀💀
Those are still online games dude @@emma6648
I once got a Trojan virus on my Mac just by accepting cookies on a website.
I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
I managed to disinfect a malware-infected system but I still prefer re-installing everything
Nicely done. I still prefer a fresh installation, mainly for piece of mind and ease of execution. To that end, I have a external hard-drives with all noteworthy software, drivers, etc, that I might require.
Fresh and debloated with chris titus
@@lussor1Windows 10 Enterprise LTSC is debloated windows and official from microsoft..
Or at least that's what the malware led you to believe, bwahahaha.
reinstalling without wiping hard drive also does nothing
I love that you named your desktop Lain and we can see it when you have process explorer open haha
Like serial experiments lain?
@@wesleyeberly228 yes the malware url in the video is also iwakurasec. So it has to be lain iwakura
As a person that downloads a lot of "this probably is not safe but whatever" stuff i was in shock that my laptop is CLEAN.
Regardless, great video. This might come in handy in the future.
same i download cracked games but iam too precautious to have a malware
Recommended within 30 sec 🥳 keep up the good educational work 👍🏻
I need to make an important notice! Reinstalling from within Windows might not fully take care of it. Depending on the malware, it might be able to take advantage of the reset process to make itself persist! Use a second PC to create an install USB, then boot into it. Perhaps as another safety measure, boot into a non-windows (such as a Linux recovery USB) to backup then wipe everything from the affected PC before reinstalling.
I once got a Trojan virus on my Mac just by accepting cookies on a website.
I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
popped up in my recommended videos, and you got me searching for anything possible on my pc even tho i haven't installed any pirate games or anything of that kind, i don't even install programs in need for College just to be safe
Just wanted to say, this video helped me immensely. Ran an antivirus scan. 60+ adware+some other incomprehensible malware. Scan+uninstalling a lot of "unverified" files from autorun+removing some Chinese software from bypassing windows firewall+finding some adware named "videoadsblocker" through "windows uninstall a program" and using safe mode to delete those because they refused to be uninstalled otherwise. Did all of that and now I feel mostly squeaky clean. Thanks!
This is mainly for people who use Windows Defender as their only antivirus, if you have a 3rd party antivirus then these settings would be in the antivirus program's settings instead
It should be noted that using another Antivirus than Windows Defender is a risk in itself. Windows Defender is pretty good these days, other antivirus programs may be worse and they seem to replace/disable Defender most of the time. But you're essentially giving Malware an easy entry point to system internals either way, especially if said program has exploits on its own.
If I suspect a virus can’t I use do a full scan with windows security and remove any threats?
I have virus protection and firewall on
@@Mimi.1001 I mean if you're rejecting 3rd party antivirus based on that logic, all programs including Windows itself have a backdoor because government forced them to include one. Nothing is happening because we're not a threat, not rich and not on anyone's crosshair yet. The safest way is to go Linux by building your own Distro.
@@bindogaming791 You can, but not every virus can be removed once infected. As every expert in the cybersecurity industry have said countless of times; 3rd party antiviruses are essentially a tank with a camera facing you(some antiviruses are paper tanks though) while Windows Defender is a riot shield with a Microsoft camera facing you, neither will protect you if you get hit by a missile. We have already reach an age where hackers can use HDMI radiation to monitor your screen(yes Google it), that doesn't mean you should shoot your computer. So pick your own poison, do your own research, and always double check links before you access it.
For this to be on my FYP. Oh dear
It's on mine bc I occasionally watch a tech video or two. If you've ever looked at a video for help with a minor computer problem, that's likely the reason you've gotten this suggestion
FYP on TH-cam? Cool man.
anyone else get weirdly creeped out by malware? Like it feels actually scary for some reason, the thought of that stuff sends shivers down my spine
Yes it is! I once got a Trojan virus on my Mac just by accepting cookies on a website.
I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
Idk if anyone has said this before, but the Logi Options+ the malware you ran created *is* a real executable that could be in someone's computer and not be malware. It's the software used to configure Logitech mouse that has macros built in with gestures. It IS malware in your case because you clearly do not have a logitech mouse and clearly didnt have that installed since you couldn't even tell it was a real software app that was being mimicked, but the program does exist and there is a legitimate executable and services for it. It would not say "(Not Verified)" if it was the real thing however.
thanks for commenting this actually. i know i installed it myself cause i got a new keyboard recently but still seeing it show up here had me warily eyeing my desktop icon like it was a bomb.
I have a Logitech keyboard and the app installed
Thanks, TH-cam recommendations, but I'd like to go WITHOUT paranoia for today.
I’m always filled with anxiety watching videos like this cuz I’m just following along on my pc being like “PLEASE DONT SEE SOMETHING!”
Thanks for the useful video! I like how you go into detail and actually simulate what it would look like
I have Logi Options for my actual Logitech mouse… but now you’ve made me nervous.
Few things:
1. Every serious rat uses a rootkit. You need to check kernel hooks first. Also if you've been hit by something advanced, it's probably FUD (fully undetected) so scanning isn't helping
2. Also you should boot with turned off internet. Or boot into safe mode.
3. Another way is booting into a live os like hirens boot then scan and remove the malware but you wont catch kernel hooks etc
4. Popping up cmd windows are often completely legitimate ways to execute pre and post install tasks
5. Use tinywall
6. Use a vm for keygens and patchers. Try out stuff first in the vm, but be aware most malware has vm detection and won't run the malware part
7. Best and most professional thing to do is using a write protected ssd/hdd adapter and use a safe system to analyze your infected system.
8. Use 2FA, use keepass, use cold storages for crypto
I do most of my software tests thrown through virustotal than if i dont trust it ill either research the application more or just run it in a VM
As an IT guy I always just reinstall due to the major time sink trying to fix the system. I never know how long it will take to fix but I know I can quickly reinstall windows 😅😎
Easier done if you have been backing up your data. Even then, days to re-install all your apps and settings.
How do you actually reinstall windows as i haven,t got a clue.
@@GhostLead65there should be plenty of tutorials just search "how to reinstall windows"
Best practice is to install a virtual machine in your clean PC and use it to test any file or run any software. That way any malware will be restricted to the VM and prevent infecting the host
Hey that's a good tip. Thanks.
You mean i should download sketchy files or programs that I'm not familiar with in virtual program first and test if it's safe? Also is sand box(or what is it called that is already installed in windows) good virtual machine?
3:15 my only exclusion was one .dll located on the system32 folder. i kinda instinctively removed the exclusion without paying much attention to the name. should i be worried?
my autoruns also showed some suspicious stuff... plenty of unverified files were from software i trust, like k-lite codec, but some stuff (mainly some files located at syswow64, which are windows applications as far as i understand) and a bunch of files only labeled as EPP also appeared unverified. are they dangerous?
@@aronfeiminuanodid youdelete smthng from win32 bro 😭😭😭😭😭 lmmmaaLMMAAOO 😭😭😭😭
This is scary, more than horror. Hearing windows defender notification sound gives me PTSD.
Then you've had an easy life
To start off never use Win Defender as your main anti-virus, pretty much any other anti-virus will do.
Windows defender is actually a great AV. Using anything else is not necessary. Lmfao.
@@NicholasAdamDemonte Then why is it that I used Win Defender and it said I have no viruses, then I used Malwarebytes and it said I had over 20 viruses and pup's?
🤦♂️
thanks! ended up finding out my pc was indeed infected and exactly where i could find the files and so on. this helped immensely!
i never downloaded anything off of sketchy sites or anything so ima have to figure out how this happened.
Did you reinstall or somehow deleted it
@@fubkegt4964 ended up fully removing the virus.
Used computers are cheap. Have a second "secure" computer used only for shopping, banking, and sensitive tasks with an up-to-date linux distro, and no pirated software
most families have an old pc or a laptop and don't know what to do with it. Great opportunity to get a secure system. Some lightweight linux distro will fly even on an old system (like windows 7/8 epoch and even older)
great video eric!
Im just paranoid rats are inside my phone and will crawl inside my computer when im sleeping. What antivirus do you recommend
Awesome vid! I'm not worried about my system being hacked but a comprehensive tutorial like this is nice to do jsut to check anyways.
Sometimes after I turn my laptop on or after using it for a while, a cmd pop up often appears for a split second and then disappears. Do I have a virus or malware, or is that normal? But previously I had reinstalled/clean installed Windows, and I had installed Avast, but why does the cmd pop up still appear sometimes?
avast is garbage and actual malware
Avast antivirus? Isn't that thing hell to remove? Like the last time I got it from a PUP/Bundled. But I had to go to safe mode to delete avast fully. But until now there's still a .dll file of it I'm trying to remove.
yeah most solid advice, if you KNOW or heavily suspect you got a rat on your system, rootkit or whatever the hell, just wipe and reinstall. ive heard of people in IT going over how much shit they can infect and how deep they burrow, its really not something the average guy will know enough to rid of
a friend in IT told me before that sometimes you gotta just toss the whole drive (or more if you have several) in really bad cases, idk how they survive a full drive wipe but im not the it guy so
What does reinstall do? Will it affect my current nvme driver? Will it affect my pc performance? And after i reinstall do i need to boot windows again or will it will automatically be there?
Good day Eric.
I wanted to ask real quick, as this could be important for other people as well, but, if the infected user has more than one hard drive, should they completely wipe all of them?
Plus to this is it impossible to backup the files on your pc after an attack?
Is there any way to backup anything? Or should a person run an usb stick with linux and move things around on a fresh hard drive?
Perhaps you have tips on this, as i have heard in rare occasions it could be possible for malware to jump ship and run on other parts of your computer, even after you format your main part of it.
Thank you lots for your work, this was extremely informative. I really liked it.
If you have more than one drive connected and you don't know the details of your infection it is best to completely wipe all of the drives.
If you need data off of an infected drive the best option is (IMO) to to mount it as a data-only drive from another system (such as a Linux distro) and copy files you need to a third drive. There they can be scanned. If at all possible wait a few weeks before using the files and perform more scans because that will give some time for the protection databases to catch up.
@@eDoc2020what does driver wipe means? Do i need new driver or what
@@fubkegt4964 I think you misread me. I said it's safest to wipe the hard drive.
You are a great professional, I'm sure this video helped many people. Even though I'm here just out of curiosity, I was still impressed by your knowledge. If I ever need to use this knowledge (hopefully not xD), I can only thank you.
what about the kaspersky virus removal tool i've heard very much from it but dont know the actual effectiveness of it
Kaspersky removes even the windows spyware on windows 10 lol
They're very potent and it sometimes causes more problems than actually solving it
What a piece of education content man. Please just keep it up with the chanel!!
Welp I checked everything and found nothing, thank you for the video and keep them coming
Great video! I think I am overall pretty hygienic with my windows install, but it was still nice to go through these steps to ensure my my system has not been compromised as it has been around 3 years since I last did a fresh install of windows.
Hackers watching this to see what they have to fix about their attacks:
Talking about the two Bluetooth related drivers that Autoruns flags as Not Verified, for some reason a clean install (and often a Windows Update) will install these two files. If you run sfc /scannow, it will flag these files and replace them with versions from Microsoft servers, which then don't appear in Autoruns anymore. This has been happening for years and I have no idea why Microsoft has two sets of Bluetooth drivers seemingly and can't agree with itself which ones are 'correct'
Thing is ive reset my pc 3 times but i still get email notification about somebody trying to access to my account until today (my pc got ratted 3 days ago). One of my Microsoft acc already got stolen and I don't receive the code to change my password 🤷
I don't know if there still malware inside my pc. All i did was reset my pc but keep files. Will that get rid of the malware? Im not much of a tech person. And whenever im playing a game or pressing the taskbar my pc just froze. I really dont know what cause it. My windows and driver already up-to-date
Probably should do a fresh reinstall even though it'll be a pain. The malware probs stayed on the pc since you kept your files.
that's a bad side of online acc that it can be stolen
Do a Factory reset and New bootup
I back up a fresh install image with my standard desktop setup and save it for situations like you are describing. It’s saved my bacon many times. It’s good practice, even if you are not hacked, drives fail, get corrupted and sometimes they just stop working properly, glitches and so forth.
Your video was on my recommended home page, I think you'll be getting way more subs soon :)
Amazing! This is the knowledge I was looking for a long time, now right here on a platter in simple steps. You are a hero.
pretty good tbh, keep uploading
like, these vids are helpful, i love em.
Hey bro, thanks for making this video. I can tell you are really skilled in IT stuff is there a way you can maybe create an abridged version for us laymen who arent so savvy with all the internal working of Operating Systems? I managed to get through the video with a lot of Google searches. Perhaps kindly point us to where or how(i.e. Courses or videos)we can hopefully get as savvy as you.
I deactivated Kaspersky automatic start on start up and went to check windows defender and i couldn't Activate none of The defender options for or a couple minutes as "windows administrator" disabled It, then after a while It was enabled again and i had to activate The other options manualy after
Would this be a thing due tô Kaspersky being disabled previowsly on restart and defender ranking a while tô bem re-enabled or is there a malware that both arent detecting?
You should not run 2 antiviruses at the same time, they will clash with each other. Kaspersky, and any other antivirus, does disable Windows antivirus automatically.
this was very inciteful, as an emulation enthusiast I worry about viruses a lot, but thankfully I haven't encountered any.
ty once again bbg
bro tysm I found malware on my computer acting as lsass.exe.
Are you sure it was malware? At 4:43 you can see he also had Isass.exe running (the last red one), before he installed malware
If it's running from the System32 folder it's probably not actually malware. Possible but less likely. If it's running from anywhere else then yes.
it's not malware it's essential process to handle your credentials in windows
this is the situation when you better give a hint or any other CLEAR sign about your intention: are you serious or are you joking. I tend to think it's a joke, but not 100% sure
Guys the op said "acting"
Now you making a paranoid about me having malware too
Worst infection I ever had years back, which forced me to format the whole machine, was a rootkit and subsequent package of nasties that monitored what I was typing; the moment I tried to search for any antivirus stuff, it killed explorer. Ironically, if the infection had been a bit more subtle I wouldn't have known so promptly - I only became aware of it because my AV software started nuking the contents of a drive in alphabetical order and screaming at me.
Had my crypto stolen from a info stealer that uninstalled itself, can't find any traces of it in temp files or event manager
Ohh
Hey Eric, Where are you from? I can't quite pick up the accent as it sounds American and British at the same time. Have a nice day!
He's from British Columbia, Canada
@@british_penguin_gg Nice. I seem to hear a little bit of a British Accent, but I don't know if living in British Columbia gives you that accent or something. I like it though!
Hahaha thats what I was hearing too.
@@british_penguin_gg he klaims such however his vowels are inkosistant, most of the time he uses amerikan style vowels however sometimes (inkonsistantly) he uses british style vowes "sahmple" instead of "sample "rahn" instead of "run" (its hard to right out alot more of these phonetik diffrences without knowing ipa however u may onberve, as english natives, there are far more "brittishisms" in his english (extra emphisys on the final w in "window", ect.) that will be observable to u) and when he speeks quikly he dropps the final r found in amerikan (and for that matter kanadian) english. so its klear he has accidental selektive non rhoticity
@@creeperking0017bro hates the letter c
Got his with a “This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator”
an interesting video, though one point i saw and am curious about is windows defender, you said it in a way that seemed like you dont trust it, seeing some of the settings you had turned off and mentioned you keep them off, but watching any other person who i deem knowledgeable in it and computer stuff mentions that if you aren't too dumb, windows defender is enough (maybe download one antivirus software for a quick scan or smt)
At 9:20, when you talk about a command window that blinks for a few seconds, you don’t mean the red highlight, do you?
I'm someone who definitely knows how to use a PC, but a while ago I have gotten viruses out of nowhere. I swear, I never downloaded any third-party stuff; I only accessed trustworthy websites. Somehow, a random malware still managed to get into my PC, and triggered the windows defender. I even checked to ensure it wasn’t a false positive, and it wasn’t. No one but me uses this PC, and there’s no other PC in the LAN, so how did it get on my computer? then i did an clean reinstallation, i couldn't keeping using it knowing it had some vulnerability and i would never be sure if it was safe.
Then, imagine someone like our parents and grand parents on internet, how do we keep them safe?
How to check if your phone is hacked or not? Most of the important things are on the phone these days ( bank apps, social media, password screen shots )
I didn't need this video at all but it was still neat to watch and potentially helpful should something happen to my pc
That's what I get for clicking the "single moms in your area" ad lol
I HAVE Logi Options (not +) for my Logitech wireless keyboard
Holy f- that actually jumpscared me
Logi options+ is legit software though, they updated it last year and changed the name
First thing I did was look through these comments for that, because I was like "whhaaaaat, I have that for my mouse".
I have it because of my keysboard. Is it made for it though?
I'm scared of downloading anything on my pc or even doing windows updates cause of precedent accidents i think, I don't know much so I'm here asking, is it normal that randomly in these days i got the vma video player on my desktop? I know it may sound dumb but I'm just paranoid about everything regarding my pc
discord.exe showing up in process list? you've been hacked by chinese agents
10:18 I have bunch of "(Not Verified)" entries and some of are things I regularly use and update like 7-zip and K-lite codec pack + LAV Decoders that comes with codec pack and Open Office. By the way VirusTotal scans comes all clean (0/77 detection) for all these applications but there are some 1/77 and 3/77 detections from VirusTotal which are all "verified" Google LLC, ASUSTeK and MSI and Samsung update services.😂
So I don't know about being not verified. Even if I clean install Windows now, the first thing I would be installing the 7-zip, K-lite and Open Office and it will be the same. Don't you use 7-zip and others?
I have some garbage apps running that I never use: News and Interests, Microsoft Edge, and Search. WTF is up with Microsoft that "News and Interests" starts up even when you don't use it? Hubris coupled with stupidity.
interested. i’m sure i have malware that’s fucking up my stuff
Way too advanced for an old-timer like myself. I just follow the basic guidelines of installing an anti-virus program and never giving out any information or clicking on any links thru email, but instead going directly to the company's website itself to communicate. When setting passwords, I always use long, complicated mixtures of upper & lower case letters, numbers & characters. After 23 years of being a frequent PC user, I've never gotten hacked once.
you either never got hacked or never realized you got hacked
remember we only see the Worst programmed malware
the best virus is the one that does its job and deletes itself and you never find it
@@SToXC_. are you trying to help or just to make people who feel already left behind feel paranoia on top of that?
@@axureerheeid9136 just saying, in the broad meaning of the term, its unlikely he never got "hacked"
@@axureerheeid9136 hes trying both
Another thing to lookout for if you use another antivirus/firewall instead of windows standard when you start up your computer if it is disabled or
Not running automatically, and also if you clock isn’t correct, this can be used to hinder windows updating and some system functions as well
this didn't do much, but hey, helped stopped that random "this task cannot be run" popping up everytime I started up my computer, thanks mate 👍