← Back to Blog

What to Do When You Think Your Computer Has Been Hacked

You see a strange email in your sent folder. Or your password suddenly doesn't work. Or there's a charge on your business card you didn't make.

Don't panic. Follow this plan.

Step 1: Disconnect (But Don't Turn Off)

If you suspect active malware:

  • Disconnect from Wi-Fi or unplug your ethernet cable
  • Don't turn off the computer — some malware activates during shutdown
  • Don't delete anything — you may need evidence later
If it's an account compromise (email, banking, etc.), skip to Step 2.

Step 2: Secure Your Most Important Accounts

Work from a different, trusted device (your phone, a family member's computer, a library computer):

  1. Change your email password first — email is the master key to every other account
  2. Enable MFA on your email if you haven't already
  3. Change your banking passwords and check for unauthorized transactions
  4. Change passwords for any account that used the same password as the compromised one
Important: If you can't access an account because the password was changed by someone else, use the account recovery process immediately. Contact the provider's support if recovery fails.

Step 3: Check the Damage

  • Email: Check your sent folder, forwarding rules, and connected apps. Hackers often set up email forwarding to silently copy your messages.
  • Banking: Review the last 30 days of transactions. Report unauthorized charges immediately — most banks have 60-day fraud protection windows.
  • Cloud storage: Check recently modified and deleted files. Services like Google Drive and OneDrive have version history.
  • Social media: Check for posts or messages you didn't send.

Step 4: Clean Your Computer

  • Run a full scan with Malwarebytes (free version works for this)
  • Run Windows Defender full scan (built into Windows 10/11)
  • Check installed programs for anything you don't recognize
  • Check browser extensions — remove anything suspicious
  • Check your startup programs (Task Manager → Startup tab on Windows)

Step 5: Prevent It From Happening Again

  • Set up a password manager (Bitwarden is free) and generate unique passwords for every account
  • Enable MFA everywhere — email, banking, cloud storage, social media
  • Set up automatic backups so you can recover if it happens again
  • Update everything — operating system, browser, all software

Step 6: Decide If You Need Professional Help

Call a professional if:

  • You handle sensitive client data (legal, medical, financial)
  • You can't determine what was accessed
  • The attack involved ransomware
  • You're required to report breaches (HIPAA, PCI, etc.)
  • You're not confident you've fully cleaned the infection

How AI IT Guy Helps

Most small business owners don't have an IT person to call when something goes wrong. AI IT Guy changes that:

  • Immediate guidance when you suspect a breach
  • Monthly security checklists to prevent attacks in the first place
  • Software recommendations for protection tools
  • Escalation to human IT professionals if you need hands-on help
Don't wait until you're hacked to get IT support.

Get protected with AI IT Guy — $29/month →

Need IT Help Right Now?

AI IT Guy gives you unlimited IT support starting at $29/month. No contracts, no jargon.

Get Started — $29/month