Scammed by PC virus removal company

[Rembrandt]

My daughter got scammed by one of these companies because she didn't call me first. what steps you suggest I take to clear her computer from whatever inevitable back door they have on her PC?

 

[jagu]

What exactly did they do ?

 

[mathtest]

i say do a clean install, jus back up your important files

 

[Rembrandt]

What exactly did they do ?

had her call a number and did some things on the computer because she gave access.

i say do a clean install, jus back up your important files

i need to find her install information, probably going to do it.

 

[T_Holmes]

The good news is that usually the scammers are only after some quick cash, and they generally only control the machine to show "infected" stuff and get the money.

The bad news is that they absolutely can do worse if they so desire, so the best bet is to clean everything out. Better safe than sorry.

 

[thismybgolname]

If the HDD is encrypted and they're asking for a random you might as well tell her to wipe that bitch because those files are gone unless you pay them.

 

[The Untouchable GDFOLKS]

Since they didn't ask for any money after syskeying her machine, they were most likely looking for banking information. Does your daughter have that type of information (saved log ins etc) on her computer?

 

[CPT Callamity]

Wipe the entire computer and reinstall the OS.

 

[BAG]

Gotta wipe it Clean I would use DBAN and start from scratch me personally wouldn't want to save any files on it

 

[King_of_Posts]

Since they didn't ask for any money after syskeying her machine, they were most likely looking for banking information. Does your daughter have that type of information (saved log ins etc) on her computer?

This is An old common hustle those Indians be running on less suspecting individuals.

I don't think the machine was syskeyed unless I missed that. He just wanted to prevent them from accessing it again . After they remotely disconnect from that session, that would not have access anymore. They use common everyday remote access software and provide you with a code to enter in order to gain access.

The "damage" is already done though and it was to her purse. But for peace of mind, it's use DBAN to wipe the machine.

 

[Mrfreddygoodbud]

yea those scammers be scaring the shit out of young folks and the elderly..

I think she would be ok, sounds like your daughter is too young to be doing any type of real business on the computer...

they need quick flips.. so a social and birth certificate of a pre teen is normally not what they are looking for..

but I agree with the rest here... clean install.. and if the p.c or laptop is over four years old

Id just replace the whole bitch..

but chea thats why I was saying..

if I had a family ESPECIALLY with daughters...

Id be running a server and see everything that takes place from my wifi network..

anybody want to download any fuckin thing they will need permission..

all cell phones except the wives will have key loggers in them..

 

[michigantoga]

Malwarebytes

 

[Adam Knows]

what operating system is on the computer.

 

[veritech]

Wipe that bitch! Pronto!!!

 

[mcguyver]

You failed as a parent

 

[therealjondoe]

Homegrowns on deck

 

[Rembrandt]

what operating system is on the computer.

windows 10

 

[Rembrandt]

You failed as a parent

cause she panicked and made a mistake? ok...

 

[Rip2dbone]

http://www.windowsreinstall.com/

 

[stickyfingerz]

they probably got all the cam vids she's been making.

 

[Database Error]

Damn their still making computers? I have one around here somewhere... probably.

 

[Kaffeine]

Malwarebytes

You don't need to reinstall the damn OS.
Also, clear whatever browser history she was on.

 

[man-machine]

You don't need to reinstall the damn OS.
Also, clear whatever browser history she was on.

Best practice dictates wiping the machine. You also need to change all account passwords for any accounts ever accessed on that PC as well. The bottom line here is you dealt with a fraudulent entity and gave them remote access to your PC. They got their money but we all know how valuable hacked account info is on the dark web. There is simply no guarantee that Malwarebytes or any other program would get everything.

 

[Flawless]

Fresh install and they now have her homegrown

 

[Princenubian]

My daughter got scammed by one of these companies because she didn't call me first. what steps you suggest I take to clear her computer from whatever inevitable back door they have on her PC?

No need to wipe if you didn’t already. Usually they have a screen that has your OS running behind it but u can’t access it.

Google the company or type of virus, she’s probably not their only victim.

Post the name or take a pic and post it.

I once started a PC in safe mode and had malwarebytes on flash drive to wipe one out.

For those interested, there’s an episode of American Greed on CNBC about one of these dudes. Made millions but now’s in jail.
If interested I’ll try to find it. Good luck bruh.

Carry on.......

 

[g0nbad real bad]

Look for exceptions added to windows defender
Look for unusual names in the firewall list
Look for entries in C:\windows\system32\drivers\etc\host file

Boot in safe mode scan with malwarebytes and 2 separate Antivirus programs.

 

[Adam Knows]

windows 10

in windows 10 do a hard reset even with the suggestions made there will components left in there that can repopulate. also if you have a login for your browser like chrome and firefox, delete your cache when you log back in as well as cookies and temp files

 

[Quek9]

My daughter got scammed by one of these companies because she didn't call me first. what steps you suggest I take to clear her computer from whatever inevitable back door they have on her PC?

Install another hdd and do a fresh install of the os. Burn the old had.