Question:

How to detect and prevent unauthorized downloads on my computer?

I have recently been a victim of a cyberattack that compromised my PayPal account and cost me $800. I have taken several measures to secure my system, such as reinstalling the OS, changing my phone, avoiding p2p and torrents, disabling remote desktop, and using a global password for auto-fill. However, I still noticed some suspicious files being downloaded to my computer while I was asleep. They are zip files with names like Mia_Khalifa 18+ (1), Mia_Khalifa 18+ (2), etc. They contain an executable file and some obfuscated xml files. I have no idea where they came from, as they are not in my Chrome download history. The websites that supposedly hosted them are either inaccessible or unrelated to the files. My antivirus software did not detect any malware.

I want to know how I can monitor my network activity and identify any external connections that may be responsible for these downloads. I also want to know how I can prevent this from happening again and what other steps I can take to protect my computer. Any expert advice would be greatly appreciated.

Answer:

If you have ever experienced a cyberattack that compromised your personal or financial information, you know how frustrating and scary it can be. You may have taken some steps to secure your system, such as reinstalling the operating system, changing your phone, avoiding peer-to-peer and torrent networks, disabling remote desktop, and using a global password for auto-fill. However, you may still notice some strange files being downloaded to your computer without your knowledge or consent. These files may have names like Mia_Khalifa 18+ (1), Mia_Khalifa 18+ (2), etc. They may contain an executable file and some obfuscated xml files. You may have no idea where they came from, as they are not in your browser download history. The websites that supposedly hosted them may be either inaccessible or unrelated to the files. Your antivirus software may not detect any malware.

This is a serious problem that can expose your computer to further attacks, damage your system, or steal your data. You need to know how to monitor your network activity and identify any external connections that may be responsible for these downloads. You also need to know how to prevent this from happening again and what other steps you can take to protect your computer. In this article, we will provide some expert advice on how to do that.

How to monitor your network activity and identify external connections?

One of the first things you should do is to check your network activity and see if there are any suspicious connections or processes running on your computer. There are several tools that can help you do that, such as:

• Task Manager: This is a built-in tool in Windows that shows you the applications and processes that are running on your computer, as well as the CPU, memory, disk, and network usage. You can access it by pressing Ctrl+Alt+Delete and selecting Task Manager. You can then click on the Network tab and sort the processes by network usage. You can also right-click on any process and select Properties to see more details, such as the location, description, and digital signature of the file. If you see any process that has a high network usage, a strange name, or an unknown location, you should end it immediately and delete the file if possible. You can also search for the name of the process online and see if it is associated with any malware or unwanted software.
• Resource Monitor: This is another built-in tool in Windows that shows you more detailed information about the network activity on your computer, such as the TCP connections, listening ports, and network traffic. You can access it by opening Task Manager and clicking on the Performance tab. You can then click on the Open Resource Monitor link at the bottom. You can then click on the Network tab and expand the TCP Connections section. You can see the processes that are using the network, the remote addresses and ports they are connected to, and the amount of data they are sending and receiving. You can also right-click on any process and select End Process to terminate it. You can also search for the remote address or port online and see if it is associated with any malicious or unwanted activity.
• Wireshark: This is a free and open-source tool that allows you to capture and analyze the network traffic on your computer or network. You can download it from [here](https://www.wireshark.org/). You can then select the network interface you want to monitor and start capturing the packets. You can see the source and destination addresses, ports, protocols, and data of each packet. You can also apply filters to narrow down the results and focus on the packets that interest you. You can also export the captured data to a file for further analysis. You can use Wireshark to identify any unusual or malicious traffic on your network, such as requests to unknown or suspicious domains, ports, or IP addresses, or data that contains malware or sensitive information.

These tools can help you monitor your network activity and identify any external connections that may be responsible for the unauthorized downloads on your computer. However, they may not be enough to stop them from happening again or to remove any malware that may have been installed on your system. You need to take some additional steps to prevent and protect your computer from further attacks.

How to prevent unauthorized downloads and protect your computer?

To prevent unauthorized downloads and protect your computer, you need to follow some best practices and use some reliable software, such as:

• Update your system and software: One of the most important things you can do to prevent unauthorized downloads and protect your computer is to keep your system and software up to date. This will ensure that you have the latest security patches and bug fixes that can prevent hackers from exploiting any vulnerabilities in your system or software. You can check for updates manually or enable automatic updates in your settings. You should also update your browser and any plugins or extensions you use, as they can also be used as entry points for hackers to access your computer or data.
• Use a strong antivirus and firewall: Another essential thing you can do to prevent unauthorized downloads and protect your computer is to use a strong antivirus and firewall software. These will help you detect and block any malware or unwanted software that may try to download or run on your computer, as well as any unauthorized or malicious connections or traffic on your network. You should choose a reputable and reliable antivirus and firewall software that has good ratings and reviews, and that offers real-time protection, frequent updates, and comprehensive scans. You should also scan your computer regularly and remove any threats that are found. You should also avoid disabling or ignoring your antivirus or firewall software, as this can expose your computer to more risks.
• Use a VPN: A VPN, or a virtual private network, is a service that encrypts and secures your internet connection, making it harder for hackers to intercept or monitor your online activity. A VPN can also help you hide your IP address and location, making it harder for hackers to identify or target you. A VPN can also help you access geo-restricted or censored content, such as websites or streaming services that are not available in your region. You should choose a trustworthy and fast VPN service that has a good reputation and a strict no-logs policy, meaning that they do not keep any records of your online activity. You should also use a VPN whenever you connect to a public or unsecured Wi-Fi network, such as at a hotel, airport, or coffee shop, as these can be easily hacked or compromised.
• Use a password manager: A password manager is a tool that helps you create and store strong and unique passwords for your online accounts, making it harder for hackers to guess or crack them. A password manager can also help you fill in your passwords automatically, saving you time and hassle. You should choose a secure and user-friendly password manager that has a good reputation and offers features such as encryption, synchronization, backup, and multi-factor authentication. You should also avoid using the same or similar passwords for different accounts, as this can make it easier for hackers to access multiple accounts if they breach one of them. You should also change your passwords regularly and use a combination of letters, numbers, symbols, and cases.
• Be careful what you click and download: Finally, one of the most simple and effective things you can do to prevent unauthorized downloads and protect your computer is to be careful what you click and download online. You should avoid clicking on any links or attachments that are sent to you by unknown or suspicious sources, such as spam emails, pop-ups, or social media messages. These can contain malware or phishing scams that can infect your computer or steal your personal or financial information. You should also avoid downloading any files or software from untrusted or illegitimate websites, as these can also contain malware or unwanted software. You should also check the file name, size, type, and extension before downloading anything, as these can indicate if the file is safe or not. You should also scan any file or software you download with your antivirus software before opening or running it.

By

following these best practices and using these software, you can prevent unauthorized downloads and protect your computer from further attacks. You can also enjoy a safer and smoother online experience. However, you should also be aware that no system or software is 100% secure or foolproof, and that hackers are constantly evolving and finding new ways to bypass security measures. Therefore, you should always be vigilant and cautious online, and report any suspicious or unusual activity to the relevant authorities or platforms. You should also backup your data regularly and have a recovery plan in case of an emergency. Remember, prevention is better than cure, and security is a shared responsibility.