Solved

Microsoft scam computer

Posted on 2016-10-24
10
80 Views
Last Modified: 2016-10-25
A moron friend of mine paid $300 for the scam about computer is infected.  I told him  to cancel the payment and unplug the computer.  He gave them access to the computer

Is he at any risk?
0
Comment
Question by:J.R. Sitman
10 Comments
 
LVL 53

Assisted Solution

by:Joe Winograd, EE MVE
Joe Winograd, EE MVE earned 41 total points
ID: 41857984
> Is he at any risk?

In a word — YES! There's no telling what they did to his computer when he gave them access to it. Does he have his files backed up anywhere?
0
 
LVL 19

Assisted Solution

by:*** Hopeleonie ***
*** Hopeleonie *** earned 41 total points
ID: 41857998
If he has a backup reinstall / restore the computer.
0
 
LVL 27

Accepted Solution

by:
Dr. Klahn earned 254 total points
ID: 41858015
That computer can not be trusted again for any purpose.  It will be necessary to erase the hard drive and reload Windows from scratch.
0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 
LVL 80

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 41 total points
ID: 41858016
Let your friend know that the IRS (if you are an American) or the CRA (If you are a Canadian) is issuing a warrant for his arrest and he is being given this last ditch attempt to pay his outstanding tax bill by purchasing pre-paid credit cards and informing the person on the phone of the CC details.. If not he will be arrested within the hour..

Just one of many scams that are going around.  The CRA recently closed down a call center in India and have made many arrests

Restore from backup or flatten the machine and rebuild also change all passwords
0
 
LVL 63

Assisted Solution

by:btan
btan earned 41 total points
ID: 41858021
His machine is no longer trusted. Isolate the machine from any internet, change all his login credential (priority for those ebanking and online transaction) and password (go for 2FA for online). Rebuild the machine. Report the scam to Microsoft and also contact the bank that there is a scam transaction (they may still be able to withhold)
https://www.microsoft.com/en-us/reportascam/
0
 
LVL 18

Expert Comment

by:Mal Osborne
ID: 41858034
Yes, there is a risk.

Having said that, these guys have already got $300. Usually, that is what this type of scammer is after, they do not tend to plant Malware or anything.

If this is a home machine, and the guy does not care too much about any data he has, it may be OK to take the risk. If he has confidential information, or does banking, or runs a business, then it would be prudent to blow everything away and start again.
0
 
LVL 37

Expert Comment

by:bbao
ID: 41858109
agreed with all experts above.

what i am thinking are, why people could be so vulnerable to this kind of simple scam and keen to pay so much for something not existing at all? why could they be controlled in such an easy way? what are the common characteristics for those vulnerable people?
0
 
LVL 88

Assisted Solution

by:rindi
rindi earned 41 total points
ID: 41858170
Besides doing a clean installation as has been mentioned, change all passwords (email, cloud, user accounts etc.). If you had any banking and credit card info stored on the PC, get in touch with those institutions to cancel those cards or accounts and send you new ones. I'd also change the email addresses. If a phone number of the scammers is known, or also the payment address, get that info to the law enforcement agencies.
0
 
LVL 30

Assisted Solution

by:Sudeep Sharma
Sudeep Sharma earned 41 total points
ID: 41858339
Well if they said that you machine is infected then most likely they would have tried cleaning the system using some tools or application and also might have installed some AV product for which you might have been charged.

If you have made the payment using the Credit Card, claim the credit by calling your Credit Card company. Then as suggested above, clean wipe and re-install.

Take backup of your document/images/videos/favorites and other software license, if you don't have license keys of those software before wiping it out.

Sudeep
0
 

Author Closing Comment

by:J.R. Sitman
ID: 41858695
Thanks to everyone.   I'll have him bring it to me to rebuild it
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to extract and to view the contents of a Microsoft Update Standalone Package (MSU) for Windows Vista, you cannot extract the files from the MSU. Here we are going to explain how to extract those hotfix details without using any third pa…
Learn how to PXE Boot both BIOS & UEFI machines with DHCP Policies and Custom Vendor Classes
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question