Hi, I'm not sure if this is the correct forum, so if there is a better place to look for an answer let me know.
Anyways, my grandma called me yesterday saying that "Microsoft" called her and alerted her that "Hackers" had gotten into her system and she needed to follow their instructions to "uninstall the viruses" the hackers left. They showed her the event viewer and proceeded to tell her all the warnings and errors were due to viruses the hackers put on her computer (total bs). They then proceeded to do some other things my grandma couldn't describe, but at one point she said "they took over control of the mouse and were doing things". So they were using some form of a remote desktop connection. She said she was on the phone with them for close to 2 hours, she hung up and called me (thank god) after they said they needed $200 to fix the issues.
I told her it was a scam and most likely they have loaded her computer with viruses and just want her credit card info because: 1. Microsoft will never call you unsolicited. 2. Event viewer always has warnings and errors. 3. Anybody asking for credit card info over the phone is trying to con you.
I instructed her to to a hard shutdown of her computer and leave it off until I figure out how we need to proceed.
Anyways, my grandma is terrible with computers (obviously) and lives 1,000 miles away. My biggest concern I have is that they have installed keyloggers on her computer to try and get usernames/passwords/credit card info and that if they remotely took control of her computer once, they will be able to do it again.
I know the easiest fix is to do a full reinstall with her recovery disks, but doubtful she is capable of doing that with me coaching her over the phone. Also, will this for sure remove anything they did?
I was thinking of using a remote desktop program (logmein or teamviewer, both of which I have used in the past) to get on her computer and try to remove anything suspicious, without doing a full reinstall, but I'm hesitant to do this as I'm betting that it is going be a huge pain to try and find everything they may have installed and I'm afraid of missing something that could potentially cause problems in the future. So basically I'd waste a lot of time and end up doing a full windows reinstall anyways, when I could just do that from the start.
Would it be worth it to have her take her computer (an HP laptop) and recovery disks to a "computer repair" shop and ask them to wipe it clean and reinstall? How much do you think it would cost?
Any help is appreciated. Thanks.
Anyways, my grandma called me yesterday saying that "Microsoft" called her and alerted her that "Hackers" had gotten into her system and she needed to follow their instructions to "uninstall the viruses" the hackers left. They showed her the event viewer and proceeded to tell her all the warnings and errors were due to viruses the hackers put on her computer (total bs). They then proceeded to do some other things my grandma couldn't describe, but at one point she said "they took over control of the mouse and were doing things". So they were using some form of a remote desktop connection. She said she was on the phone with them for close to 2 hours, she hung up and called me (thank god) after they said they needed $200 to fix the issues.
I told her it was a scam and most likely they have loaded her computer with viruses and just want her credit card info because: 1. Microsoft will never call you unsolicited. 2. Event viewer always has warnings and errors. 3. Anybody asking for credit card info over the phone is trying to con you.
I instructed her to to a hard shutdown of her computer and leave it off until I figure out how we need to proceed.
Anyways, my grandma is terrible with computers (obviously) and lives 1,000 miles away. My biggest concern I have is that they have installed keyloggers on her computer to try and get usernames/passwords/credit card info and that if they remotely took control of her computer once, they will be able to do it again.
I know the easiest fix is to do a full reinstall with her recovery disks, but doubtful she is capable of doing that with me coaching her over the phone. Also, will this for sure remove anything they did?
I was thinking of using a remote desktop program (logmein or teamviewer, both of which I have used in the past) to get on her computer and try to remove anything suspicious, without doing a full reinstall, but I'm hesitant to do this as I'm betting that it is going be a huge pain to try and find everything they may have installed and I'm afraid of missing something that could potentially cause problems in the future. So basically I'd waste a lot of time and end up doing a full windows reinstall anyways, when I could just do that from the start.
Would it be worth it to have her take her computer (an HP laptop) and recovery disks to a "computer repair" shop and ask them to wipe it clean and reinstall? How much do you think it would cost?
Any help is appreciated. Thanks.