Current Computing Status:

Service Info

4Help is using a new ticketing system:   Our new IT service management system-ServiceNow-has been implemented. A new web-based support request form, still accessed via the web address, is... view Status History All Active Statuses

Windows Computer Has Been Hacked

I think my Windows computer has been hacked. What should I do?

Caution: The following instructions are intended for use by system administrators and other computer professionals. If you are a novice computer user, please refer to the appropriate article below:

If your computer has been hacked:

  1. Gather the following information about your computer and send it to
    • Hostname
    • IP address
    • System type
    • System administrator's name
    • Operating system
    • Type of attack
    • Relevant logs
    • Date and time of attack
  2. Check your computer for viruses.
    1. Install Symantec. For instructions, see Downloading and Installing Symantec for Windows.
    2. Note: Symantec Endpoint Protection is available at no charge for current Virginia Tech students, faculty, staff, and retirees.
    3. Update your antivirus software's definitions. If you are using Symantec, refer to Running LiveUpdate in Symantec Endpoint Protection for Windows.
    4. Scan your computer for viruses. If you are using Symantec, refer to Manually Scanning Your Computer with Symantec Endpoint Protection for Windows.
  3. Reformat your computer.
    1. Disconnect your computer from the network.
    2. Save your important files to a storage device, such as a CD-R, or your Network-Attached Storage (NAS).
    3. Reformat your computer and reinstall your operating system. For assistance, contact your computer's manufacturer or vendor.
  4. Run Windows Update, and install all critical updates and service packs. For instructions, refer to: Manually Running Windows Update in Windows.
  5. Change all of your passwords.

Fri, 08/02/2013 - 12:30pm 1369 Views Article ID: 1824