What actions should I take after clicking a “help me test this game” Discord virus link?

Caution: Navigating the Aftermath of a Discord Virus Attack

Introduction
In today’s digital age, maintaining cybersecurity can often feel like an uphill battle. Recently, a concerning incident occurred involving a friend who fell victim to a malicious link disguised as a game testing opportunity on Discord. This post aims to shed light on the steps taken after this breach, share key precautions, and answer some critical questions regarding potential vulnerabilities.

The Incident
It began innocently enough when a contact on Discord reached out with an invitation to test a game. Trusting my friend’s intentions, I downloaded the link directed to what turned out to be a fraudulent gaming site and proceeded to run the exe installer, ignoring warnings from Windows Defender. Shortly after the installation, my Discord began malfunctioning, and my computer’s fans revved up, indicating something was amiss.

Following the suspicious activity, I received a direct message from the perpetrator on Discord. Anticipating their ulterior motives, I wisely chose not to respond. The chaos didn’t stop there; an unsettling number of pop-up pages began appearing in Firefox, displaying odd messages that suggested I was being hacked.

Immediate Actions Taken
In a race against time, I quickly initiated damage control. Utilizing Malwarebytes, I attempted to eliminate any malicious software, changed passwords for myriad accounts, and activated two-factor authentication (2FA) on my essential accounts via my mobile device. Despite these measures, I’ve discovered remnants of the virus still lurking on my system. Notably, I found a suspicious program named “startup” and an obscure Javascript file beginning with “stealit_” in my appdata folder—both created when I executed the installer.

Current Plan
My current strategy is to systematically back up all crucial files to the cloud and ultimately wipe my entire PC to ensure a clean slate. However, I remain uncertain about how to manage any bank or payment information—since I never stored such data in my browsers, and I predominantly use my phone for account access. Yet, some sensitive documents, including photos and codes, resided on my PC.

Key Concerns
As I navigate this complex situation, several pressing questions linger:

1. What is the scope of information the hackers may have accessed? Beyond browser passwords and Discord data, could they have compromised more sensitive information?

2. What steps can I take to guarantee that my PC is free of malware post-wipe?