Well Microsoft telephoned the parents, as below - does anyone have advice on followup steps
timeline :
you have lots of Events on your computer and we have been trying to contact you (several missed calls)
foreign speaking advisor enables them to open event viewer and see the proof
we can correct the problem - visit this web-site and we will correct the problem. provide us with the numeric passcode
you will see some foreign font/characters on your screen, that is normal
At which point they had called me, told them to hang-up the phone, undoubtedly at remote control scam
(if I'd had the presence of mind maybe I could have listened in to determine status of the hack)
Aftermath
They don't know if they gave them the full numeric code (they recollect word teamviewer, I think they would have needed to give them a pswd too?)
Caller persistently tried to call them back, I said ignore it (but maybe their persistence meant they didn't yet have control)
Told them to turn off the computer and will do a PC reset next time I visit.
They have 2FA on bank systems, but I have reset their passwords on email & google remotely.
timeline :
you have lots of Events on your computer and we have been trying to contact you (several missed calls)
foreign speaking advisor enables them to open event viewer and see the proof
we can correct the problem - visit this web-site and we will correct the problem. provide us with the numeric passcode
you will see some foreign font/characters on your screen, that is normal
At which point they had called me, told them to hang-up the phone, undoubtedly at remote control scam
(if I'd had the presence of mind maybe I could have listened in to determine status of the hack)
Aftermath
They don't know if they gave them the full numeric code (they recollect word teamviewer, I think they would have needed to give them a pswd too?)
Caller persistently tried to call them back, I said ignore it (but maybe their persistence meant they didn't yet have control)
Told them to turn off the computer and will do a PC reset next time I visit.
They have 2FA on bank systems, but I have reset their passwords on email & google remotely.
