No question about it - there are so many ways to recover from a disaster today then there was years ago.
But my habits were formed back in the IBM PC days, when HD failure was a weekly occurrence ...
Posted on 02/25/2015 5:15:58 AM PST by GYPSY286
I need some advice from Freeperland folks who are savvy with computer issues. Last evening, I received a call from a "Windows Security Center". They knew my name and obviously my phone number. Gave me a spiel that Windows software security had been compromised/corrupted and according to their records, knew I had Windows 7. To prove they were legit, they had me start my computer and prompted me through a series of commands to bring up my specific Windows license number. She read it off and that license numbers was listed on my machine. She prompted me to run a program which showed a long list (2,400+) events under the EventR which apparently showed many "Warnings". She then had me go to www.fastheal.net and click on Technician No. 3 for remote access. Yes, I know I should not have done this. Technician performed a scan (which took about 8 minutes) and the last line in the scan stated that Windows software was corrupted. She offered to remove the Windows software with new/updated software, anti-virus software, etc. etc. Said it would take about 90 minutes to remove all the "junk" files" (946 of them). They want $100 for five years service (or $285 for lifetime sevice). I knew better than to give them any bank/credit card info over the phone. If my computer has been hacked, I won't give them info online either. I told her I wanted to "think about it". She's supposed to call me back on Friday.
Not sure. Any truth to the rumor they've changed their supplier to Burlington?
Thanks!
If you have been hacked, you can notify the authorities. The phone number should be traceable.
If they are holding your OS hostage, that is probably criminal (since they are extorting money to ‘fix’ it back).
You work with Mark Levin?
We get the Punjabi calls periodically....I say quickly that we don't even own a computer and that they are not to call here ever again...........that tends to work -- for a few weeks.
Not yet, but you never know what might happen :).
“DO NOT USE Kasperskys 2015.”
Off topic but I’ve always wondered why anyone would use software built in Russia.
Your tech is a moron. There is no virus than can 'virtually destroy everything'. Almost every virus can be removed with, at worst, a rub and reload... the very few exceptions are hard drive encryptors, which at the very worst might brick the hard drive. That is a far cry from 'destroying everything'.
And Kaspersky is world class - I don't think there is anyone who would deny that. With regard to detection and removal, their stuff is king.
The call was a scam. You should never follow along with such a thing. If you feel you do need to do so, get the extension number they are at, get the company phone number from elsewhere, call the company directly (in this case, Microsoft) and ask for the extension, in order to verify. But I can tell you right now that no legitimate security company does this type of service call.
NEVER allow access to your computer, unless you absolutely and positively KNOW the company/tech. N-E-V-E-R.
Since you have allowed it, and since you allowed them to install software on your computer, it is HIGHLY suspected that you are now infected. You must take your machine to a serious service tech (one recommended to you by someone you trust that would know such a person) and have it very meticulously diagnosed. At worst, this is going to be a rub and reload. A competent tech will assist you to make sure your data is safe through the a process.
I see you have notified your bank. GOOD. Follow their instructions. Be aware of ANY credit card that you may have used to purchase things online anywhere - ANY such needs to be notified, as those numbers are saved in the machine (and thereby accessible to the scammers). Be aware of any personal documents stored on the machine that might contain your social security number or other ID associated numbers that might allow ID-theft. IF such exist onboard the machine, IF you have ever entered your social security number, or some state ID number online, then there may be further risk (contact such agents as necessary and inform them of the risk so they can be alert) - BUT, usually, these scams are meant to lead you down the garden path, going no further than trying to sucker you into paying them.
You do not need to move.
You do not need to change your phone number.
You do not have to change all your bank accounts (unless the bank says to)
You do not need to buy a new computer.
What product/version of Win 7 came out that had the same license number for everyone for that SKU of Win 7?
I have never once seen malware infect documents or stuff like that. They may replace common executables, like iexplore, or system config files, but there is no point to trying to insert code in a file that doesn’t execute, because it would just lay there dormant.
Rule of thumb for EVERYTHING......never do business with any unsolicited incoming call.
.
Whatever they want to install is already on your machine. When you went to their website, it automatically downloaded and installed itself, and anytime you are connected to the internet, that software can contact them and transmit information to them, or download more bad stuff to install.
You should take it for granted that they are logging every key you press and mouse click, taking screenshots of what you do on the machine (whether you are connected to the web or not), and intercepting any data that your computer sends/receives on the internet. Normally, all that would be transmitted occasionally to their server, but if you stay off the internet until you can clean the computer, then any data they gather will be wiped out before they can receive it.
Your computer is obviously very compromised since you received such a call.
If you have any personal information on your computer such as tax, bank or anything else they have it. They have everything on your computer. Likely they have key logging software which records keystrokes; and would have any passwords for any banking or anything else you do online.
Get on a clean computer; and change all passwords you have to start.
Ive already taken care of the passwords on a clean pc. However, if I am to download the Malaware program, I have to do that on the dirty pc, right? And won’t they see that I am doing that?
Well, technically speaking, Windows 7 doesn’t have a “License Number”. It has a product activation key, but this is used to activate the operating system initially. If you do not do so, it goes into reduced functionality mode.
I am assuming that you cannot see your Product Key within the OS—I’m not sure it’s even stored in the registry. Otherwise people would browse for it and try to reuse it, change it, and all kinds of horrible outcomes would result.
If you go to the Systems Properties sheet, at the bottom of the details pane, you should see a product ID, which is based on the SKU.
That sounds correct to me. I am not a software guru, and I tend to err on the careful side.
I appreciate all the comments and suggestions provided on this thread. I ran malwarebytes and spysoftware as suggested. I then rebooted and uninstalled both malwarebytes and spysoftware so it would not interfere with my anti-virus software. Tried to get on the internet - no success - I kept getting notice that “proxy server......”. So I unplugged the whole set-up for the time being until I can figure out what is going on with the proxy server. I checked the number and it is correct.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.