Hi, recently i had to format and reinstall windows7 64bit in a computer who have been infected with "all in one keylogger" and other spyware, from an idiotic ex husband.
The computer is a recent one, and good one, i7 + ssd...
So, to be sure i get rid of any malware/virus/spyware i boot from usb, where i have a win7 64bit sp1 ready to install, i run the setup, in the setup i delete ALL partition and i create 1 from scratch, and i install windows 7 there.
before connect to internet, i installed also avg free edition (offline install file).
As soon i connected to internet, i made windows update install all critical and non critical patches (thanks god i have a 500mbit optic cable, and the computer had a ssd, so was not too much time... lol).
i install and configured all program and all run fine without suspicius activities, at least for what i can see.
I give back the computer to the woman.
after around a week, the woman contact me saying the ex husband tell her still can control her activityes online, to prove to her this, him gave her a password, she write on desktop and appear the windows of "all in one keylogger"... she immediate uninstalled the keylogger (you can unistal it after you write the password and see the keylogger windows)...
she assured me she never open files from ex husband emails, or accepted and run files from messenger or stuff like this, like i told here before give back her computer.
also told me the ex husband say he infected the bios, so each time she will reinstall window, his spyware will be reinstalled and she cannot escape his control.
Now, im not an expert, i help friend to reinstall stuff and fix the system, for free, lol...
so i ask, it is possible to infect a bios and have in case of windows reinstall and partition recreation, have certain software automatically reinstalled on boot???
if yes, reset or maybe upgrade the bios flashing it, will solve the issue?
another question, is true a keylogger cannot connect to internet if i install a firewall? they dont automatically manage to bypass the firewall?
thanks for help and sorry for my bad english level.
Edited by boopme, 19 January 2015 - 01:17 PM.