The moment when you try to play the pirated game and you see the cmd for a split second and then tell yourself surely this is the part of installation and not info-stealer.
Sometimes I think those "trusted" piracy guides aren't to be trusted at all. Every time I fire up a game from any of the trusted sources, I get a firewall prompt, even for single player games. Edit: thanks for the clarity in the replies
This video should be standard for anyone who has to use a computer. It's ridiculous that people are expected to use computers for personal productivity without knowing the risks and how to remediate them.
This video gives me nostalgia of not so old times, around 6 years ago when these kind of systems and equipment were considered modern and every single tutorial has this kind of quality, for me it's the peak of recording technology, nothing sounds better than this.
@@sw11500 I've used the same linux installation for almost 5 years without any boot issues, or issues in general. I use auto-update. Everything works fine. If you install some dumb meme distro instead of something stable then that's a self caused issue from following top 10 distro youtube videos.
I appreciate the honesty when you say the best thing you can do, once infected, is to wipe and reload your PC, as it’s the only way to know for sure you’re not still compromised in some way. I wipe and reload my PC about every 12 months, because it’s easier than doing system clean up and gives guaranteed results for restoring a PCs speed.
@LabibAhmed-b8g Root kits can only be detected with special tools. These types of scans must be conducted from a second computer hooked up to the infected computer so that the bios never loads. If you suspect your computer has been rooted, it's best to take it to a professional. There are also some types of malware which you cannot remove, such as the Windows TPM exploit that was patched in 2017 (which many people never installed because they forget to update their firmware), which once executed, is functionally impossible to remove and requires throwing out the hardware. Again, if your PC is that fkd, take it to a pro. But not even they could fix something like that.
So uh. That may not always work. I've had a RAT before. The hacker straight up controlled my mouse cursor and the RAT survived PC resets. I couldn't just stop using that laptop so I eventually tried to write a sticky note asking some questions and they never answered LOL
Thank you for showing this, i have mental illnesses that make me paranoid/fearful and i have a deep fear of getting my pc compromosed after a trauma from a previous attack, these help to calm down
@Autism764 Yeah understandable, what caught me really off guard is that the guy who hacked me was talking to me on Discord and that really scared me cause he said that I should change my router and sent laughing emojis... Well, I'm glad now that it happened cause I got better with computers in general
@@effmereality No, you are not alone at all. I am paranoid of getting hacked as well. But to be honest, it gets better with time when you start to learn more about cyber security. Just give it a try ;)
I always compare malware to moldy bread when recommending that people reinstall windows. Sometimes, you can see the mold and know your bread is infected. Sometimes, you can't even see the mold and not know that the bread is not good to eat. You can try to rip off the moldy parts and eat the rest of the bread, but that is not advised because mold can bury its roots into the rest of the bread and be untraceable. Sometimes the best thing to do is to throw it out and get a fresh piece of bread.
Not everyone can get a new pc. And funnily enough not all people can just willy nilly buy a new bread. Sometimes that's all the money they have and can't afford a new fresh one. The things people endure and do just to survive.... D: That being said... That is a nice analogy.
It's important to keep an element of surprise in your retaliation. If you believe your PC is infected, change your passwords on a different pc before cleaning the infected one. This way you won't find yourself in a race to who changes passwords first (you or the hacker)
Lowkey alot of the times especially with RATs all they want is money, they don’t really care about your accounts except for your bank account, or theyll ask you for bitcoin to get off your computer. Thats what actually happened to me when I got ratted, mf asked for bitcoin 😂 He told me to message him on discord and he told me how he hacked me and that he was doing it as a “side hustle”. Kinda weird to say but I think I became friends with the hacker. 💀 Ofc I wiped my PC and reinstalled Windows and changed my password but he was lowkey chill. 🤣
I wasn't thinking about malware 5 minutes ago. I am thinking about malware now. Great video, but man my anxiety riddled ass did not need this in my recommended.
I'm sorry to hear that, hun. A little tip that might help in the future: Clicking on the video and commenting on it might cause the algorithm to give you more of these things. I've been through the same thing before, I'm sorry you're going through this. Wish you all well!
I'm confused why companies haven't made it harder to steal session tokens. Hackers have been copying people's logins and stealing accounts that way for years and every company seems to be fine with it.
@@rainchopper898 If that person authenticated recently enough when the session token was copied, then they don't need 2fa to make changes to security settings. And UA-cam/Google accounts (and probably many other accounts) have been getting stolen for years with copied session tokens
@@rainchopper898 Two factor authentication also isn't good. You can do a lot of damage with a phone number. The only genuine way to protect logins is to not create one or delete accounts you don't use or need.
There's malware that sits on your memory through restarts and will infect a new installation of windows. For those you have to clean your disks with a bootable thumb drive, turn off your computer including turning off your power supply, let it sit for a few minutes (it's less but to be sure a few minutes) and then perform a clean installation. Best way to avoid that is stay away from dodgy websites and never open something unless you actually know what it is, including emails.
@@TeaDrinkingDuck true but even if there are no detected hits, always look at the report to see the behavior for yourself. Lots of mods and freemium software for cheats literally behave AS malware but they aren't malicious. So if an .exe has those behaviors but you were expecting something completely different than those processes, even without any actual detection you know its sus
I remember sometime in 2012 I had a really nasty adware virus on my mom's laptop. Everytime I would delete it, it would re-install itself back up. Spent like an entire day figuring out the original installer, deleted it and never saw it again, that's the last time I've seen any malware
@@edwardmacnab354 tough to remember exactly after so many years but i think it was a .msi installer in C:/Windows folder somewhere. Either used Task Manager or search function to find it
My mom had an adware extension on her laptop a few months ago. Basically I happened to hear her fussing about how she couldn’t send an email because there would be a pop up telling her that she was required to get Norton internet security to do so. She was somehow dumb enough to do so, but thankfully she somehow didn’t go through the link the pop up gave her and installed the actual Norton antivirus. At the time I was convinced that she was tricked into downloading a malicious software disguising as Norton and I removed her bad browser extensions, but when I took it to the shop I found out it was the real deal antivirus lmao
don't. antivirus programs act like viruses. They're hard to kill and they never go away. Just don't download anything you're not supposed to. get a VPN, make sure you have good security setup with your internet, and you're set.
I've been suspecting my PC has been hacked, one day someone on Discord added me WITH the username being my Discord email and the PFP being from my mom's Google account and started telling me info about me that I told NO ONE.
reset your pc and dont keep anything the "app" you downloaded is a rat i would not use the google password manager, use bitwarden it is free and you can import all of your google passwords into to it and also please dont download anything that is too good to be real for example like a level 7 roblox executor
Really great, very informative video. Simple enough for someone with less tech savyness to follow and understand, but more useful that the regular security slop around
7 years ago I downloaded a shit ton of malware trying to play "FREE MGSV PC OFFLINE CRACKED VERSION" My computer was so f*cked and I was so paranoid I destroyed the laptop & the hardrive.
That game is not even worth pirating, outside of the quiet's visuals which you can get a better view of in a breaking the quiet video, hl fk is that game really that old
It's on mine bc I occasionally watch a tech video or two. If you've ever looked at a video for help with a minor computer problem, that's likely the reason you've gotten this suggestion
As a person that downloads a lot of "this probably is not safe but whatever" stuff i was in shock that my laptop is CLEAN. Regardless, great video. This might come in handy in the future.
Few things: 1. Every serious rat uses a rootkit. You need to check kernel hooks first. Also if you've been hit by something advanced, it's probably FUD (fully undetected) so scanning isn't helping 2. Also you should boot with turned off internet. Or boot into safe mode. 3. Another way is booting into a live os like hirens boot then scan and remove the malware but you wont catch kernel hooks etc 4. Popping up cmd windows are often completely legitimate ways to execute pre and post install tasks 5. Use tinywall 6. Use a vm for keygens and patchers. Try out stuff first in the vm, but be aware most malware has vm detection and won't run the malware part 7. Best and most professional thing to do is using a write protected ssd/hdd adapter and use a safe system to analyze your infected system. 8. Use 2FA, use keepass, use cold storages for crypto
popped up in my recommended videos, and you got me searching for anything possible on my pc even tho i haven't installed any pirate games or anything of that kind, i don't even install programs in need for College just to be safe
I need to make an important notice! Reinstalling from within Windows might not fully take care of it. Depending on the malware, it might be able to take advantage of the reset process to make itself persist! Use a second PC to create an install USB, then boot into it. Perhaps as another safety measure, boot into a non-windows (such as a Linux recovery USB) to backup then wipe everything from the affected PC before reinstalling.
I once got a Trojan virus on my Mac just by accepting cookies on a website. I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
Idk if anyone has said this before, but the Logi Options+ the malware you ran created *is* a real executable that could be in someone's computer and not be malware. It's the software used to configure Logitech mouse that has macros built in with gestures. It IS malware in your case because you clearly do not have a logitech mouse and clearly didnt have that installed since you couldn't even tell it was a real software app that was being mimicked, but the program does exist and there is a legitimate executable and services for it. It would not say "(Not Verified)" if it was the real thing however.
thanks for commenting this actually. i know i installed it myself cause i got a new keyboard recently but still seeing it show up here had me warily eyeing my desktop icon like it was a bomb.
As an IT guy I always just reinstall due to the major time sink trying to fix the system. I never know how long it will take to fix but I know I can quickly reinstall windows 😅😎
Nicely done. I still prefer a fresh installation, mainly for piece of mind and ease of execution. To that end, I have a external hard-drives with all noteworthy software, drivers, etc, that I might require.
Best practice is to install a virtual machine in your clean PC and use it to test any file or run any software. That way any malware will be restricted to the VM and prevent infecting the host
Windows defender is actually a great AV. Using anything else is not necessary. Lmfao.
Місяць тому+1
@@NicholasAdamDemonte Then why is it that I used Win Defender and it said I have no viruses, then I used Malwarebytes and it said I had over 20 viruses and pup's?
thanks! ended up finding out my pc was indeed infected and exactly where i could find the files and so on. this helped immensely! i never downloaded anything off of sketchy sites or anything so ima have to figure out how this happened.
Do you plan to make a video on using more advanced DFIR tools on samples like this? Probably too complicated for the average user but I'd love a video going through these samples, what traces they leave over Windows event logs and how accurate automated tools like Hayabusa are at marking them
Yes it is! I once got a Trojan virus on my Mac just by accepting cookies on a website. I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
Okay, so basically, if your computer's been hacked, it's like that one friend who always 'borrows' your stuff and never returns it... but instead of your favorite sweater, it's your entire identity and financial info. And the worst part? You might not even realize it until it's too late! So, yeah, just a casual Tuesday afternoon of checking for remote access Trojans and info Stealers... no big deal. Thanks for the anxiety, Eric!
This is mainly for people who use Windows Defender as their only antivirus, if you have a 3rd party antivirus then these settings would be in the antivirus program's settings instead
It should be noted that using another Antivirus than Windows Defender is a risk in itself. Windows Defender is pretty good these days, other antivirus programs may be worse and they seem to replace/disable Defender most of the time. But you're essentially giving Malware an easy entry point to system internals either way, especially if said program has exploits on its own.
@@Mimi.1001 I mean if you're rejecting 3rd party antivirus based on that logic, all programs including Windows itself have a backdoor because government forced them to include one. Nothing is happening because we're not a threat, not rich and not on anyone's crosshair yet. The safest way is to go Linux by building your own Distro.
@@bindogaming791 You can, but not every virus can be removed once infected. As every expert in the cybersecurity industry have said countless of times; 3rd party antiviruses are essentially a tank with a camera facing you(some antiviruses are paper tanks though) while Windows Defender is a riot shield with a Microsoft camera facing you, neither will protect you if you get hit by a missile. We have already reach an age where hackers can use HDMI radiation to monitor your screen(yes Google it), that doesn't mean you should shoot your computer. So pick your own poison, do your own research, and always double check links before you access it.
Used computers are cheap. Have a second "secure" computer used only for shopping, banking, and sensitive tasks with an up-to-date linux distro, and no pirated software
most families have an old pc or a laptop and don't know what to do with it. Great opportunity to get a secure system. Some lightweight linux distro will fly even on an old system (like windows 7/8 epoch and even older)
yeah most solid advice, if you KNOW or heavily suspect you got a rat on your system, rootkit or whatever the hell, just wipe and reinstall. ive heard of people in IT going over how much shit they can infect and how deep they burrow, its really not something the average guy will know enough to rid of a friend in IT told me before that sometimes you gotta just toss the whole drive (or more if you have several) in really bad cases, idk how they survive a full drive wipe but im not the it guy so
Good day Eric. I wanted to ask real quick, as this could be important for other people as well, but, if the infected user has more than one hard drive, should they completely wipe all of them? Plus to this is it impossible to backup the files on your pc after an attack? Is there any way to backup anything? Or should a person run an usb stick with linux and move things around on a fresh hard drive? Perhaps you have tips on this, as i have heard in rare occasions it could be possible for malware to jump ship and run on other parts of your computer, even after you format your main part of it. Thank you lots for your work, this was extremely informative. I really liked it.
If you have more than one drive connected and you don't know the details of your infection it is best to completely wipe all of the drives. If you need data off of an infected drive the best option is (IMO) to to mount it as a data-only drive from another system (such as a Linux distro) and copy files you need to a third drive. There they can be scanned. If at all possible wait a few weeks before using the files and perform more scans because that will give some time for the protection databases to catch up.
Way too advanced for an old-timer like myself. I just follow the basic guidelines of installing an anti-virus program and never giving out any information or clicking on any links thru email, but instead going directly to the company's website itself to communicate. When setting passwords, I always use long, complicated mixtures of upper & lower case letters, numbers & characters. After 23 years of being a frequent PC user, I've never gotten hacked once.
you either never got hacked or never realized you got hacked remember we only see the Worst programmed malware the best virus is the one that does its job and deletes itself and you never find it
I got a trojan horse info stealer on my pc earlier this year, had to completely re-install my pc and change every password, to this day i still recieve notifications that people are trying to log into my accounts, the hacker sold all the information
I once got a Trojan virus on my Mac just by accepting cookies on a website. I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
You are a great professional, I'm sure this video helped many people. Even though I'm here just out of curiosity, I was still impressed by your knowledge. If I ever need to use this knowledge (hopefully not xD), I can only thank you.
Great video! I think I am overall pretty hygienic with my windows install, but it was still nice to go through these steps to ensure my my system has not been compromised as it has been around 3 years since I last did a fresh install of windows.
this is the situation when you better give a hint or any other CLEAR sign about your intention: are you serious or are you joking. I tend to think it's a joke, but not 100% sure
I back up a fresh install image with my standard desktop setup and save it for situations like you are describing. It’s saved my bacon many times. It’s good practice, even if you are not hacked, drives fail, get corrupted and sometimes they just stop working properly, glitches and so forth.
@@british_penguin_gg Nice. I seem to hear a little bit of a British Accent, but I don't know if living in British Columbia gives you that accent or something. I like it though!
@@british_penguin_gg he klaims such however his vowels are inkosistant, most of the time he uses amerikan style vowels however sometimes (inkonsistantly) he uses british style vowes "sahmple" instead of "sample "rahn" instead of "run" (its hard to right out alot more of these phonetik diffrences without knowing ipa however u may onberve, as english natives, there are far more "brittishisms" in his english (extra emphisys on the final w in "window", ect.) that will be observable to u) and when he speeks quikly he dropps the final r found in amerikan (and for that matter kanadian) english. so its klear he has accidental selektive non rhoticity
Hey bro, thanks for making this video. I can tell you are really skilled in IT stuff is there a way you can maybe create an abridged version for us laymen who arent so savvy with all the internal working of Operating Systems? I managed to get through the video with a lot of Google searches. Perhaps kindly point us to where or how(i.e. Courses or videos)we can hopefully get as savvy as you.
Ideally with a flash drive on a separate computer yes. If you're tech savvy you can also attempt to manually remove files. I plan on making a separate video on doing this with a linux live USB. Basically the idea is you would find the files and remove via linux, but 99% of the time backing up the files and resetting is better.
once a hacker got access to my pc when i was young, and he jumpscared me on april fools day with homosexual videos (we'll just say that to keep the filter happy)
a good IT user carries everything on a USB just in case every computer has tools to let you access your files, format your USB and keep the cycle going
I have some garbage apps running that I never use: News and Interests, Microsoft Edge, and Search. WTF is up with Microsoft that "News and Interests" starts up even when you don't use it? Hubris coupled with stupidity.
An under rated way to prevent that API nonsense in recent times is to wipe out cookies and cache every time you log out or exit a browser application, seriously lads 2FA is not as secure as you think.
When I started the video, suddenly a notepad popped up, and it wrote: "nah, you´re good. No need to watch this"
Edit: PLEASE MAKE IT STOP
I'm so glad that you read the note I left for you😂
ur good bro
You are successfully protected my man.
write something absolutely wild to em
A good samaritan is doing Lord's work
I don't know if I trust this guy, he's not a random Indian guy with a microphone from 2004
that's how you know hes trustworthy
@@manjorn589exactly, not all but MOST Indians are spreading misinformation
Pleas understand saar
DO NOT REDEEM!
@@xSinicle u old bish do not redeem
The hacker who got into my PC through RAT watching the video with me ☠
turn on your camera and give him a show
@@savagecorn1739 WILD
☠☠☠☠
plot twist the hacker made this UA-cam comment too
@@QuantumNaut Naaah that's me 💀I mean not the hacker, but it's hard to explain 😂
This video makes me paranoid as fuck, you got me searching through all my processes like I’m a crackhead looking out the window every few seconds
Couldn’t have said it any better lmaoo
dont watch outside the window get stuck on your cellphone like an android 24 7. Trust me your mental health's gonna expand that way.
@@heyokaoverdashelly2kangel945 I 100% agree with you wholeheartedly
meth heads do that primarily
@@heyokaoverdashelly2kangel945 I concur~
The moment when you try to play the pirated game and you see the cmd for a split second and then tell yourself surely this is the part of installation and not info-stealer.
Some games do use it legitly, like tmodloader
Sometimes I think those "trusted" piracy guides aren't to be trusted at all. Every time I fire up a game from any of the trusted sources, I get a firewall prompt, even for single player games.
Edit: thanks for the clarity in the replies
whats worse is NOT seeing the cmd pop up when youre supposed to
That's why i unpack it myself, it's usually isos, i dont trust installers from cracks at all, got ransomware once thanks to my naivety
@@scrittlesometimes legit games do it to me
This video should be standard for anyone who has to use a computer. It's ridiculous that people are expected to use computers for personal productivity without knowing the risks and how to remediate them.
Sometimes it doesn't help, it seems like ignorance is rampant nowadays.
Its crazy people drive cars without knowing the risks and how to remediate them. I feel like you can say that about a lot of things the every man uses
Only unga bunga people get hacked. If you use your brain to a certain degree there's no way you'd get hacked.
I just have an anti-virus, and I look through my files for anything sus.
I mean, I got lost 5 minutes in and I use the pc daily, I'm not sure how you expect the ones that are not tech savy to follow all of this up.
hacker pov
objective: steal bitcoins.
reality: find terabytes of porn.
Thats been the reality for decades now though.
Conclusion: making porn games that make bitcoins on pc
Hacker: I see this as an absolute win!
Terabyte Fiends
😂
I may have not worried 1 minute ago but i am now thank you random man on the internet
lmao same here
This video gives me nostalgia of not so old times, around 6 years ago when these kind of systems and equipment were considered modern and every single tutorial has this kind of quality, for me it's the peak of recording technology, nothing sounds better than this.
Its nostalgic to get infected with malware and to watch a tutorial video to get rid of it?
@@Skerp129 No, it's nostalgic to hear this quality of microphone on this looking windows 10 as tutorial on youtube.
@@Skerp129Yeah it very much is lol especially if you have siblings/kids that fuck with the home pc.
Fr. No dynamic "audience engaging" video editing, Mr Beast typa half-screaming, default trap music in the background
Simple. If you see "Microsoft Windows" somewhere on the screen, just assume it's hacked and format your hard drive.
true, i got affected by this once
Not like I can get Linux hacked
It just stops working after 3 boots
…and install GNU/Linux
@@sw11500true af
@@sw11500 I've used the same linux installation for almost 5 years without any boot issues, or issues in general. I use auto-update. Everything works fine. If you install some dumb meme distro instead of something stable then that's a self caused issue from following top 10 distro youtube videos.
I appreciate the honesty when you say the best thing you can do, once infected, is to wipe and reload your PC, as it’s the only way to know for sure you’re not still compromised in some way. I wipe and reload my PC about every 12 months, because it’s easier than doing system clean up and gives guaranteed results for restoring a PCs speed.
There is such thing as firmware level hacking. After compromise you can never be sure.
@PeacefulRS some people say thats its overkill for hacking normal users.....but if its done how to overcome this?And how to even identify this???
Do you just reinstall the OS or is there some specific process for this where I can still keep my settings and apps intact after?
@LabibAhmed-b8g Root kits can only be detected with special tools. These types of scans must be conducted from a second computer hooked up to the infected computer so that the bios never loads. If you suspect your computer has been rooted, it's best to take it to a professional. There are also some types of malware which you cannot remove, such as the Windows TPM exploit that was patched in 2017 (which many people never installed because they forget to update their firmware), which once executed, is functionally impossible to remove and requires throwing out the hardware. Again, if your PC is that fkd, take it to a pro. But not even they could fix something like that.
So uh. That may not always work. I've had a RAT before. The hacker straight up controlled my mouse cursor and the RAT survived PC resets. I couldn't just stop using that laptop so I eventually tried to write a sticky note asking some questions and they never answered LOL
Thank you for showing this, i have mental illnesses that make me paranoid/fearful and i have a deep fear of getting my pc compromosed after a trauma from a previous attack, these help to calm down
Geez, same with me here... Feels good to know that I'm not alone :)
@Autism764 Yeah understandable, what caught me really off guard is that the guy who hacked me was talking to me on Discord and that really scared me cause he said that I should change my router and sent laughing emojis... Well, I'm glad now that it happened cause I got better with computers in general
@Autism764 Yeah that. As for how did he, I'm not sure, I guess I was just careless
@@effmereality No, you are not alone at all. I am paranoid of getting hacked as well. But to be honest, it gets better with time when you start to learn more about cyber security. Just give it a try ;)
ААХХАХАХАХАХ я не один такой оказывается
I always compare malware to moldy bread when recommending that people reinstall windows. Sometimes, you can see the mold and know your bread is infected. Sometimes, you can't even see the mold and not know that the bread is not good to eat. You can try to rip off the moldy parts and eat the rest of the bread, but that is not advised because mold can bury its roots into the rest of the bread and be untraceable. Sometimes the best thing to do is to throw it out and get a fresh piece of bread.
Is your bread not sliced?
So would u rather reinstall windows or get a new pc?
Not everyone can get a new pc. And funnily enough not all people can just willy nilly buy a new bread. Sometimes that's all the money they have and can't afford a new fresh one. The things people endure and do just to survive.... D: That being said... That is a nice analogy.
Some of us can't afford the bread😅
@@solanaceous this one too 😅
It's important to keep an element of surprise in your retaliation. If you believe your PC is infected, change your passwords on a different pc before cleaning the infected one. This way you won't find yourself in a race to who changes passwords first (you or the hacker)
Lowkey alot of the times especially with RATs all they want is money, they don’t really care about your accounts except for your bank account, or theyll ask you for bitcoin to get off your computer. Thats what actually happened to me when I got ratted, mf asked for bitcoin 😂 He told me to message him on discord and he told me how he hacked me and that he was doing it as a “side hustle”. Kinda weird to say but I think I became friends with the hacker. 💀 Ofc I wiped my PC and reinstalled Windows and changed my password but he was lowkey chill. 🤣
he is not watching you most of the time anyway so there would not be a race at all
Bold of you to assume most people have 2-3 PCs just lying around...
@@maki3904but what happens if the hacker is looking your computer when you're changing your passwords
@@heyjeySigma You can use a phone too
I wasn't thinking about malware 5 minutes ago.
I am thinking about malware now.
Great video, but man my anxiety riddled ass did not need this in my recommended.
I'm sorry to hear that, hun. A little tip that might help in the future: Clicking on the video and commenting on it might cause the algorithm to give you more of these things.
I've been through the same thing before, I'm sorry you're going through this. Wish you all well!
Now you got thinking about everything I’ve done on computer to think if I might have one
stop clicking all the links on shady porn sites.
@@senordataanalyst460 Hot singles in your area
I'm confused why companies haven't made it harder to steal session tokens. Hackers have been copying people's logins and stealing accounts that way for years and every company seems to be fine with it.
They can't change password or do many things without permission from 2fa, so a session token doesnt mean they "stealing accounts"
@@rainchopper898 If that person authenticated recently enough when the session token was copied, then they don't need 2fa to make changes to security settings.
And UA-cam/Google accounts (and probably many other accounts) have been getting stolen for years with copied session tokens
@@rainchopper898 evem 2fa is easy to steal....
@@rainchopper898 Two factor authentication also isn't good. You can do a lot of damage with a phone number. The only genuine way to protect logins is to not create one or delete accounts you don't use or need.
@@rainchopper898 chamachamachamachamachamachamacha
There's malware that sits on your memory through restarts and will infect a new installation of windows. For those you have to clean your disks with a bootable thumb drive, turn off your computer including turning off your power supply, let it sit for a few minutes (it's less but to be sure a few minutes) and then perform a clean installation.
Best way to avoid that is stay away from dodgy websites and never open something unless you actually know what it is, including emails.
Virus Total 🙏
@@dannyboots sometimes virus total fails to detect the threat
Something I’ve always wondered (and really should know), does the “don’t open any emails” apply to emails themselves or just the attachments?
@@Skidoodle18 attachments, mainly links
@@TeaDrinkingDuck true but even if there are no detected hits, always look at the report to see the behavior for yourself. Lots of mods and freemium software for cheats literally behave AS malware but they aren't malicious. So if an .exe has those behaviors but you were expecting something completely different than those processes, even without any actual detection you know its sus
I remember sometime in 2012 I had a really nasty adware virus on my mom's laptop. Everytime I would delete it, it would re-install itself back up. Spent like an entire day figuring out the original installer, deleted it and never saw it again, that's the last time I've seen any malware
Ugh, yeah. I had one called Honey bee, real pain in the butt to get rid of.
@@Awsomemobs2000Theminecraftdudeo has the same, the only way to get rid of it is to reinstall windows
thanks for telling us how you did it ?
@@edwardmacnab354 tough to remember exactly after so many years but i think it was a .msi installer in C:/Windows folder somewhere.
Either used Task Manager or search function to find it
My mom had an adware extension on her laptop a few months ago. Basically I happened to hear her fussing about how she couldn’t send an email because there would be a pop up telling her that she was required to get Norton internet security to do so. She was somehow dumb enough to do so, but thankfully she somehow didn’t go through the link the pop up gave her and installed the actual Norton antivirus. At the time I was convinced that she was tricked into downloading a malicious software disguising as Norton and I removed her bad browser extensions, but when I took it to the shop I found out it was the real deal antivirus lmao
No antivirus has been working well on my PC lately and I don't know what to do now.
At BNH Software you can find Windows and I say this because you may have a bad version of Windows 11 and that is why this may be happening to you.
don't. antivirus programs act like viruses. They're hard to kill and they never go away. Just don't download anything you're not supposed to. get a VPN, make sure you have good security setup with your internet, and you're set.
@@kalebagraham vpn itself is useless..
Cracked software did in the meanwhile ^_^
Antiviruses destroy your pc's performance, just don't go to any fishy sites
The legend uploads again, love your vids, you inspired me to learn cybersecurity.
I feel my brain is getting malware reading your comments section
ong
Do not download sysinternals…
This is the kind of video I like to watch when I should be studying
Bro literally me rn, i have a french quiz tomorrow but instead of studying im watching this
Bonjour.
this IS studying dude
@n848h J'espère que ton quiz s'est bien passé !
Lol me right now
what I took away from this, not knowing very much on the subject, is that if I am ever hacked, then I am screwed.
I've been suspecting my PC has been hacked, one day someone on Discord added me WITH the username being my Discord email and the PFP being from my mom's Google account and started telling me info about me that I told NO ONE.
delete your account, change your passwords and format your pc drives or something like that
you got ratted ):
reset your pc and dont keep anything the "app" you downloaded is a rat i would not use the google password manager, use bitwarden it is free and you can import all of your google passwords into to it and also please dont download anything that is too good to be real for example like a level 7 roblox executor
you are cooked buddy
if you dont wanna reset ur pc just change your passwords and format your drive also please use bitwarden
Really great, very informative video. Simple enough for someone with less tech savyness to follow and understand, but more useful that the regular security slop around
Ive been using computers my whole life, learned a good chunk of new info from this. We are never done learning!
from like 10k subs to over 90k, damn that was fast
92.9k since you commented 5 hours ago
Recommended within 30 sec 🥳 keep up the good educational work 👍🏻
7 years ago I downloaded a shit ton of malware trying to play "FREE MGSV PC OFFLINE CRACKED VERSION" My computer was so f*cked and I was so paranoid I destroyed the laptop & the hardrive.
💀
Format next time ...
LMAOO dude wasn't playing around
@@Bongbongo
At least he's honest. He's dumb fr, but he's pretty good.
That game is not even worth pirating, outside of the quiet's visuals which you can get a better view of in a breaking the quiet video, hl fk is that game really that old
Sorting comments by recent is always an acid trip
I’m always filled with anxiety watching videos like this cuz I’m just following along on my pc being like “PLEASE DONT SEE SOMETHING!”
For this to be on my FYP. Oh dear
It's on mine bc I occasionally watch a tech video or two. If you've ever looked at a video for help with a minor computer problem, that's likely the reason you've gotten this suggestion
FYP on UA-cam? Cool man.
As a person that downloads a lot of "this probably is not safe but whatever" stuff i was in shock that my laptop is CLEAN.
Regardless, great video. This might come in handy in the future.
same i download cracked games but iam too precautious to have a malware
Few things:
1. Every serious rat uses a rootkit. You need to check kernel hooks first. Also if you've been hit by something advanced, it's probably FUD (fully undetected) so scanning isn't helping
2. Also you should boot with turned off internet. Or boot into safe mode.
3. Another way is booting into a live os like hirens boot then scan and remove the malware but you wont catch kernel hooks etc
4. Popping up cmd windows are often completely legitimate ways to execute pre and post install tasks
5. Use tinywall
6. Use a vm for keygens and patchers. Try out stuff first in the vm, but be aware most malware has vm detection and won't run the malware part
7. Best and most professional thing to do is using a write protected ssd/hdd adapter and use a safe system to analyze your infected system.
8. Use 2FA, use keepass, use cold storages for crypto
I do most of my software tests thrown through virustotal than if i dont trust it ill either research the application more or just run it in a VM
I love that you named your desktop Lain and we can see it when you have process explorer open haha
Like serial experiments lain?
@@wesleyeberly228 yes the malware url in the video is also iwakurasec. So it has to be lain iwakura
popped up in my recommended videos, and you got me searching for anything possible on my pc even tho i haven't installed any pirate games or anything of that kind, i don't even install programs in need for College just to be safe
I need to make an important notice! Reinstalling from within Windows might not fully take care of it. Depending on the malware, it might be able to take advantage of the reset process to make itself persist! Use a second PC to create an install USB, then boot into it. Perhaps as another safety measure, boot into a non-windows (such as a Linux recovery USB) to backup then wipe everything from the affected PC before reinstalling.
I once got a Trojan virus on my Mac just by accepting cookies on a website.
I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
FYI not all malware will show up in autoruns or process explorer, such as rootkits.
Idk if anyone has said this before, but the Logi Options+ the malware you ran created *is* a real executable that could be in someone's computer and not be malware. It's the software used to configure Logitech mouse that has macros built in with gestures. It IS malware in your case because you clearly do not have a logitech mouse and clearly didnt have that installed since you couldn't even tell it was a real software app that was being mimicked, but the program does exist and there is a legitimate executable and services for it. It would not say "(Not Verified)" if it was the real thing however.
thanks for commenting this actually. i know i installed it myself cause i got a new keyboard recently but still seeing it show up here had me warily eyeing my desktop icon like it was a bomb.
I have a Logitech keyboard and the app installed
As an IT guy I always just reinstall due to the major time sink trying to fix the system. I never know how long it will take to fix but I know I can quickly reinstall windows 😅😎
Easier done if you have been backing up your data. Even then, days to re-install all your apps and settings.
How do you actually reinstall windows as i haven,t got a clue.
@@GhostLead65there should be plenty of tutorials just search "how to reinstall windows"
Thanks, UA-cam recommendations, but I'd like to go WITHOUT paranoia for today.
I managed to disinfect a malware-infected system but I still prefer re-installing everything
Nicely done. I still prefer a fresh installation, mainly for piece of mind and ease of execution. To that end, I have a external hard-drives with all noteworthy software, drivers, etc, that I might require.
Fresh and debloated with chris titus
@@lussor1Windows 10 Enterprise LTSC is debloated windows and official from microsoft..
Or at least that's what the malware led you to believe, bwahahaha.
reinstalling without wiping hard drive also does nothing
nice touch on Serial Experiments Lain
Best practice is to install a virtual machine in your clean PC and use it to test any file or run any software. That way any malware will be restricted to the VM and prevent infecting the host
Hey that's a good tip. Thanks.
This is scary, more than horror. Hearing windows defender notification sound gives me PTSD.
Then you've had an easy life
To start off never use Win Defender as your main anti-virus, pretty much any other anti-virus will do.
Windows defender is actually a great AV. Using anything else is not necessary. Lmfao.
@@NicholasAdamDemonte Then why is it that I used Win Defender and it said I have no viruses, then I used Malwarebytes and it said I had over 20 viruses and pup's?
🤦♂️
thanks! ended up finding out my pc was indeed infected and exactly where i could find the files and so on. this helped immensely!
i never downloaded anything off of sketchy sites or anything so ima have to figure out how this happened.
Do you plan to make a video on using more advanced DFIR tools on samples like this? Probably too complicated for the average user but I'd love a video going through these samples, what traces they leave over Windows event logs and how accurate automated tools like Hayabusa are at marking them
anyone else get weirdly creeped out by malware? Like it feels actually scary for some reason, the thought of that stuff sends shivers down my spine
Yes it is! I once got a Trojan virus on my Mac just by accepting cookies on a website.
I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
Okay, so basically, if your computer's been hacked, it's like that one friend who always 'borrows' your stuff and never returns it... but instead of your favorite sweater, it's your entire identity and financial info. And the worst part? You might not even realize it until it's too late! So, yeah, just a casual Tuesday afternoon of checking for remote access Trojans and info Stealers... no big deal. Thanks for the anxiety, Eric!
I have Logi Options for my actual Logitech mouse… but now you’ve made me nervous.
This is mainly for people who use Windows Defender as their only antivirus, if you have a 3rd party antivirus then these settings would be in the antivirus program's settings instead
It should be noted that using another Antivirus than Windows Defender is a risk in itself. Windows Defender is pretty good these days, other antivirus programs may be worse and they seem to replace/disable Defender most of the time. But you're essentially giving Malware an easy entry point to system internals either way, especially if said program has exploits on its own.
If I suspect a virus can’t I use do a full scan with windows security and remove any threats?
I have virus protection and firewall on
@@Mimi.1001 I mean if you're rejecting 3rd party antivirus based on that logic, all programs including Windows itself have a backdoor because government forced them to include one. Nothing is happening because we're not a threat, not rich and not on anyone's crosshair yet. The safest way is to go Linux by building your own Distro.
@@bindogaming791 You can, but not every virus can be removed once infected. As every expert in the cybersecurity industry have said countless of times; 3rd party antiviruses are essentially a tank with a camera facing you(some antiviruses are paper tanks though) while Windows Defender is a riot shield with a Microsoft camera facing you, neither will protect you if you get hit by a missile. We have already reach an age where hackers can use HDMI radiation to monitor your screen(yes Google it), that doesn't mean you should shoot your computer. So pick your own poison, do your own research, and always double check links before you access it.
Thanks for the useful video! I like how you go into detail and actually simulate what it would look like
Used computers are cheap. Have a second "secure" computer used only for shopping, banking, and sensitive tasks with an up-to-date linux distro, and no pirated software
most families have an old pc or a laptop and don't know what to do with it. Great opportunity to get a secure system. Some lightweight linux distro will fly even on an old system (like windows 7/8 epoch and even older)
yeah most solid advice, if you KNOW or heavily suspect you got a rat on your system, rootkit or whatever the hell, just wipe and reinstall. ive heard of people in IT going over how much shit they can infect and how deep they burrow, its really not something the average guy will know enough to rid of
a friend in IT told me before that sometimes you gotta just toss the whole drive (or more if you have several) in really bad cases, idk how they survive a full drive wipe but im not the it guy so
great video eric!
ty once again bbg
Your video was on my recommended home page, I think you'll be getting way more subs soon :)
Awesome vid! I'm not worried about my system being hacked but a comprehensive tutorial like this is nice to do jsut to check anyways.
Good day Eric.
I wanted to ask real quick, as this could be important for other people as well, but, if the infected user has more than one hard drive, should they completely wipe all of them?
Plus to this is it impossible to backup the files on your pc after an attack?
Is there any way to backup anything? Or should a person run an usb stick with linux and move things around on a fresh hard drive?
Perhaps you have tips on this, as i have heard in rare occasions it could be possible for malware to jump ship and run on other parts of your computer, even after you format your main part of it.
Thank you lots for your work, this was extremely informative. I really liked it.
If you have more than one drive connected and you don't know the details of your infection it is best to completely wipe all of the drives.
If you need data off of an infected drive the best option is (IMO) to to mount it as a data-only drive from another system (such as a Linux distro) and copy files you need to a third drive. There they can be scanned. If at all possible wait a few weeks before using the files and perform more scans because that will give some time for the protection databases to catch up.
What a piece of education content man. Please just keep it up with the chanel!!
Way too advanced for an old-timer like myself. I just follow the basic guidelines of installing an anti-virus program and never giving out any information or clicking on any links thru email, but instead going directly to the company's website itself to communicate. When setting passwords, I always use long, complicated mixtures of upper & lower case letters, numbers & characters. After 23 years of being a frequent PC user, I've never gotten hacked once.
you either never got hacked or never realized you got hacked
remember we only see the Worst programmed malware
the best virus is the one that does its job and deletes itself and you never find it
@@SToXC_. are you trying to help or just to make people who feel already left behind feel paranoia on top of that?
@@axureerheeid9136 just saying, in the broad meaning of the term, its unlikely he never got "hacked"
Welp I checked everything and found nothing, thank you for the video and keep them coming
Now you making a paranoid about me having malware too
I got a trojan horse info stealer on my pc earlier this year, had to completely re-install my pc and change every password, to this day i still recieve notifications that people are trying to log into my accounts, the hacker sold all the information
2fA can help nowadays so make sure that’s turned on as much as possible.
Damn that sucks dude... that's also one of the reasons i don't play online games anymore
@@isaiahwalkingoffline games still requiring an account to play: 💀💀💀💀💀💀
Those are still online games dude @@emma6648
I once got a Trojan virus on my Mac just by accepting cookies on a website.
I was apparently logged out of everything and apps had to be reinstalled very often because the uninstalled and files were disappearing. This mac had a motherboard issue since before anyways so after repair and reinstall the virus was gone
Hackers watching this to see what they have to fix about their attacks:
You are a great professional, I'm sure this video helped many people. Even though I'm here just out of curiosity, I was still impressed by your knowledge. If I ever need to use this knowledge (hopefully not xD), I can only thank you.
this didn't do much, but hey, helped stopped that random "this task cannot be run" popping up everytime I started up my computer, thanks mate 👍
Great video! I think I am overall pretty hygienic with my windows install, but it was still nice to go through these steps to ensure my my system has not been compromised as it has been around 3 years since I last did a fresh install of windows.
bro tysm I found malware on my computer acting as lsass.exe.
Are you sure it was malware? At 4:43 you can see he also had Isass.exe running (the last red one), before he installed malware
If it's running from the System32 folder it's probably not actually malware. Possible but less likely. If it's running from anywhere else then yes.
it's not malware it's essential process to handle your credentials in windows
this is the situation when you better give a hint or any other CLEAR sign about your intention: are you serious or are you joking. I tend to think it's a joke, but not 100% sure
Guys the op said "acting"
Amazing! This is the knowledge I was looking for a long time, now right here on a platter in simple steps. You are a hero.
pretty good tbh, keep uploading
like, these vids are helpful, i love em.
I back up a fresh install image with my standard desktop setup and save it for situations like you are describing. It’s saved my bacon many times. It’s good practice, even if you are not hacked, drives fail, get corrupted and sometimes they just stop working properly, glitches and so forth.
That's what I get for clicking the "single moms in your area" ad lol
this was very inciteful, as an emulation enthusiast I worry about viruses a lot, but thankfully I haven't encountered any.
Hey Eric, Where are you from? I can't quite pick up the accent as it sounds American and British at the same time. Have a nice day!
He's from British Columbia, Canada
@@british_penguin_gg Nice. I seem to hear a little bit of a British Accent, but I don't know if living in British Columbia gives you that accent or something. I like it though!
Hahaha thats what I was hearing too.
@@british_penguin_gg he klaims such however his vowels are inkosistant, most of the time he uses amerikan style vowels however sometimes (inkonsistantly) he uses british style vowes "sahmple" instead of "sample "rahn" instead of "run" (its hard to right out alot more of these phonetik diffrences without knowing ipa however u may onberve, as english natives, there are far more "brittishisms" in his english (extra emphisys on the final w in "window", ect.) that will be observable to u) and when he speeks quikly he dropps the final r found in amerikan (and for that matter kanadian) english. so its klear he has accidental selektive non rhoticity
@@creeperking0017bro hates the letter c
Hey bro, thanks for making this video. I can tell you are really skilled in IT stuff is there a way you can maybe create an abridged version for us laymen who arent so savvy with all the internal working of Operating Systems? I managed to get through the video with a lot of Google searches. Perhaps kindly point us to where or how(i.e. Courses or videos)we can hopefully get as savvy as you.
basically the best thing to do is to reset?
Ideally with a flash drive on a separate computer yes. If you're tech savvy you can also attempt to manually remove files.
I plan on making a separate video on doing this with a linux live USB. Basically the idea is you would find the files and remove via linux, but 99% of the time backing up the files and resetting is better.
I didn't need this video at all but it was still neat to watch and potentially helpful should something happen to my pc
When in doubt, reinstall windows.
If you have Windows and/or Chrome, there is no need to worry about hacking. Both have enough backdoors left by the developers.
Thats the best advice, reinstalling. 👌
Got his with a “This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator”
You explain topic in very detailed way😊😊😊❤❤❤.
dude please learn english or use your first language whatever youre using to translate is doing you dirty
LMAOOO
@@MadPsyclone my hobby is nothing like shit _bitch_ 🗣️🗣️🗣️🔥🔥🔥🔥
“I haven’t been hacked since my pc is fine”
interested. i’m sure i have malware that’s fucking up my stuff
now a video to find out if your phone was hacked
duuude... PEAK just uploaded...
Keep up the good work eric!
once a hacker got access to my pc when i was young, and he jumpscared me on april fools day with homosexual videos (we'll just say that to keep the filter happy)
That’s not a scare, that’s a gift
@@emma6648lmfao
@@emma6648 probably not for some random 7 year old 💀
a good IT user carries everything on a USB just in case
every computer has tools to let you access your files, format your USB and keep the cycle going
I have some garbage apps running that I never use: News and Interests, Microsoft Edge, and Search. WTF is up with Microsoft that "News and Interests" starts up even when you don't use it? Hubris coupled with stupidity.
I subbed. Great video!
Remeber. If defender alerts you after you install something. Rip tht wifi cable out of the wall
Great video Eric! Can you do one on manually finding malware on linux?
I HAVE Logi Options (not +) for my Logitech wireless keyboard
Holy f- that actually jumpscared me
Logi options+ is legit software though, they updated it last year and changed the name
First thing I did was look through these comments for that, because I was like "whhaaaaat, I have that for my mouse".
I have it because of my keysboard. Is it made for it though?
An under rated way to prevent that API nonsense in recent times is to wipe out cookies and cache every time you log out or exit a browser application, seriously lads 2FA is not as secure as you think.
discord.exe showing up in process list? you've been hacked by chinese agents
This is very useful.
Also Windows Defender seems to be doing a good job right? quite persistent.
This happened to my buddy Eric once