Author Topic: Accidentally downloaded a virus; What should I do? (Read 1997 times)

QuadStorm · July 21, 2013, 02:58:19 PM

Yesterday, I accidentally downloaded a virus in a RAR archive, and it turns out to be the iStealer trojan. I immediately deleted the RAR archive but failed to completely wipe out the file (permanently erase it). Would I be in the clear considering the file was in a Sandboxed environment (using Sandboxie) and the fact I never executed the virus?

Ad Bot · Advertisement

Pacha- · July 21, 2013, 02:59:58 PM

if all you did was open the archive, you're fine

Dreams_Of_Cheese · July 21, 2013, 03:00:23 PM

Boot in safemode and run MalwareBytes

QuadStorm · July 21, 2013, 03:29:59 PM

Well, just checked my registry and windows files on my real windows and my sandbox. Luckily, it looks like I don't have the trojan, but from a source, they said it can grab my passwords from cache, or will that only happen if I actually executed the virus? (I just permanently erased the sandbox the file was in. The virus seemingly never ran in the sandbox either, but I'm not taking chances.)

Jaxx · July 21, 2013, 03:37:11 PM

system restore point

QuadStorm · July 21, 2013, 03:44:00 PM

Quote from: Jaxx on July 21, 2013, 03:37:11 PM

system restore point

If the virus never executed, would I even need to do a system restore. Also considering I don't have one within the last 3 days, I highly doubt it'd do anything.

Demian · July 21, 2013, 04:24:47 PM

If you sandbox is worth anything you should just be able to wipe all registry and files from the sandbox. Essentially reset the entire sandbox. That's what they're designed to do and this is exactly what they're used for.

QuadStorm · July 21, 2013, 04:27:14 PM

Quote from: Demian on July 21, 2013, 04:24:47 PM

If you sandbox is worth anything you should just be able to wipe all registry and files from the sandbox. Essentially reset the entire sandbox. That's what they're designed to do and this is exactly what they're used for.

I'm about to wipe out everything that's in my Sandboxie folder, after I try to overwrite the virus file indirectly.

crunk.com · July 21, 2013, 04:28:46 PM

U R TOETL DED

Nal · July 21, 2013, 05:20:13 PM

Welcome to hotel rat

Lusk · July 21, 2013, 05:33:31 PM

~~Panic~~

Anti-Virus it up!

Blockzillahead · July 21, 2013, 05:35:00 PM

too late now, i mean they already have control of your every file now, might as well buy new pc. the rar file extension allows dirty programs to install themselves like an os on your current os and be a parasite to it basically, sucking all its code to them. no joke they are spying on you right now through your camera

AlsoSulfate · July 21, 2013, 05:56:27 PM

advice: stop trying to download archives of research. all of them are viruses. all of them.

[Maxx] · July 21, 2013, 07:05:30 PM

they infected your whole harddrive, i suggest taking it out and smashing it with a hammer
t hh ey s ee y O uU

Starzy · July 21, 2013, 07:08:33 PM

If you just opened the rar file then you won't need to do anything but delete the file, it's only if you run the exe or if the virus somehow self executes when you open it (Highly unlikely)