Warning signs that your device is infected:

  • Your web browser freezes or becomes unresponsive.
  • You get redirected to web pages other than the ones you are trying to visit.
  • You are bombarded with pop-up messages.
  • Your device or internet runs slower than usual.
  • You see new icons on your desktop that you don’t recognize.
  • Your device’s cooling fan spins suspiciously louder or harder than usual.

If you think you are a victim of a botnet, we recommend that you act immediately by following our guidelines below, and then proceed to our ReportRecover, and Reinforce sections for further assistance.

Some Immediate Action Steps to Take*

  1. Disconnect your device from the internet immediately.
  2. Remove any CDs or DVDs, and unplug USB drives from your computer.
  3. Shut down your device and restart it in Safe Mode: WindowsMac.
  4. Backup files like documents, photos, and videos. Do not back up program files, as those are where infections like to hide.
  5. Use another computer to download a malware scanning program or purchase a program disc at a store. If you don’t have another computer, ask a good friend or family member to use their computer to download the malware scanning software.
  6. Use an empty flash drive to transport the malware scanning program from the clean computer to the infect one.
  7. Run the scan. A list of scan results will tell you what malware was found and removed.
  8. After scanning and removing any malware, restart your computer and confirm the results of your anti-malware scan by running a full scan with another malware detection program. Restart your device again if the program found additional infections.
  9. Update your operating system, browser, and applications.
  10. Change and create new strong passwords for all of your account. Learn how from ConnectSafely.org.


* If you still believe you have problems after following these steps or don’t feel comfortable completing these steps, take your device to a professional.


Reporting cybercrime incidents to the FBI Internet Crime Complaint Center (IC3)

is very important! The more national reporting data that is collected, the better the chance law enforcement has to catch the criminals and decrease online crime. Although the FBI does not resolve individual complaints directly, they will make your report available to local, state and other law enforcement partners. The FAQs about reporting can be found here. Please read the FBI/IC3 privacy policy here. (If you believe that you’ve received a phishing email, please forward the email directly to reportphishing@apwg.org.)


These resources have been gathered, selected and vetted to help simplify the process of recovering after a cybercrime incident has taken place. You may need to contact organizations outside Fraudsupport.org. Results will vary depending on your circumstances.


Once you have notified the appropriate organizations and you are on the road to recovery, it is time to reinforce your cybersecurity using these resources and tools.

Implement Preventive Measures

  • Download our Six Steps to Better Security PDF.
  • Always keep your operating system, security software, and apps up to date.
  • Keep your firewall turned on at all times to prevent hackers from stealing passwords or other sensitive information.
  • Only use trusted or secure WiFi networks, and disable auto-connect on your device’s WiFi settings.
  • Never click on a link or open an attachment in a message or email from someone you don’t know.
  • Create strong passwords. Learn how from ConnectSafely.org
  • Always enable a two-step/factor verification on your email, social media and other online accounts– which requires an additional code to log in.

Helpful Videos