I've been advised to reformat and reinstall Windows and to repost here if I need help to do so....I will paste my original forum post...I am unsure how to do this if someone could help me I'd appreciate it. Thanks Kerry
Mod Edit: Prior AII topic: https://www.bleepingcomputer.com/forums/t/660259/laptop-was-infected-prior-to-being-given-to-meransomware-kies/#entry4357568 - Hamluis.
Thank you in advance. OK....I inherited this laptop and after becoming aware that the laptop was streaming audio and video over shared wi-fi I took the laptop to PC World and they confirmed the laptop has been hacked.
The camera and the microphone where open and streaming, the screen was being shared via skype and all email accounts had subsequently been hacked, there was also a keylogger running.
After discovering the laptop was hacked I spoke to the person who gave it to me and they remembered a pop up asking them to pay money to a certain account as the contents of the pc had been sent to the authorities.
I then thought back to when I first got the laptop and aeroplane mode was locked and I was unable to access the internet....after googling the problem I managed to unlock the laptop and disable aeroplane mode, I checked all the sharing permissions of the folders and unchecked any boxes hit apply and I then thought the laptop was fine to use. Until my discovery. I then found there was a principal administrator controlling the laptop and the local user (me) had what looked like administrator privileges but not quite.
The last few days I have been trying to clean the laptop via Bleeping Computer and I have run several of your tools, Rkill, Unhide, Malwarebytes Cybereason and Secunia PSI ......I had 1003 threats according to Malwarebytes and I quarantined them....I am hoping to learn more about this and I am interested in your courses but at the moment I am hoping that someone could please help me as I now don't know how to check if the laptop is clean.
The battery pack gets very hot and I always have to have the laptop plugged in....which sets alarm bells ringing as it would seem that someone wants there to be a constant power supply to the laptop to ensure no down periods.
Thank you in advance
Edited by hamluis, 15 October 2017 - 09:49 AM.