this post was submitted on 17 Jul 2024
36 points (87.5% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54500 readers
681 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS
 

Hi everyone, i'd like to start off by saying that i've been pirating for a while and have always stuck to sites that are reccommended on various megathreads and considered safe. Sorry for the long winded explaination.

So i was downloading a game from gamdie (which i have before with no issue) and one from steamrip (i don't remember any issues there) and the gamdie file was almost immediately flagged by WD as trojan. i didn't even make it in time to click anything that all these other trojans started popping up and WD closed on its own. i panicked and deleted the files and tried to run malwarebytes which i thought was installed already (but apparently not) and it turns out i can't even install it, it says the app can't run and to check different versions. I checked on taskmanager and it seems nothing immediately fishy was there, WD gave me back a list of the trojans it found and i deleted them, firefox has acted weird a couple times (duplicating tab instead of opening new one, or opening settings instead), and some of my login info is gone from my browser. i still can't install malwarebytes, and i'm kinda not handling this well, so any help is appreciated.

i couldn't read what all the trojans are and WD won't tell me what they are now, but i remember having seen trojan wacaca (or somehing) and trojan malmar (or something like that). Thank you!

Edit: thank you to everyone that replied, between your advice and the sources I found here (linked below) I apparently found a cryptominer and it seems my system should be clean now. I'll run some extra stuff to be sure and hopefully that will be that. Have a nice day!

https://www.reddit.com/r/antivirus/comments/jh3s0g/virus_deleted_or_not/

you are viewing a single comment's thread
view the rest of the comments
[–] jet@hackertalks.com 22 points 3 months ago (1 children)

In the future, you might want to use a virtual machine when you're unpacking new payloads.

At this point, use Windows defender to do a offline scan, so it reboots and scans the entire computer from a special operating environment.

If you're not using Windows, mount the drive on a different computer and do a scan that way.

It's likely the computer is not tainted, cuz your virus scanner caught it before you ran it. But if you're very paranoid, or if the computer is very sensitive, it doesn't hurt to reinstall everything from scratch. And then in the future use virtual machines

[–] astandimandi@lemmy.dbzer0.com 3 points 3 months ago

Thank you for your reply! I will try the offline scan, it's a good idea! Yeah I'm definitely not gonna mess round on my native environment anymore, it's not worth the hassle really