Main Forum > General Computer Support
Help! Laptop being taken over remotely or by bot [solved]
jmk909er:
My wife has a pretty new Lenovo Yoga II running windows 8. Either someone or a bot takes it over. It takes control of the mouse, highlights text moves around goes to different websites like wikipedia, you tube, Amazon and more. It has also been into the registry and I don't know what it's doing. It also opened and was in the mouse properties also.
It did it about a week ago and I ran malwarebytes, and superantispyware and Ccleanr in addition the the Kapersky anti virus running on it and it cleaned up a lot of stuff. It was OK for a while but now it just did it again. The laptop is unusable when this is going on.
I am concerned about security especially since my wife does banking and pays all our bills online. My wife does a lot of prison ministry here in San Diego, she suspects it is the government because they stop at nothing to prosecute these guys and they are in for serious offenses. (Don't know just putting it out there)
When the laptop is restarted it seems to be OK but I know it's not fixed.
Do you think I should do a factory reset to get rid of it? Any help is appreciated. Thanks, Joe
P.S. My wife took a video of it from her phone while it was doing this. Click on the link to view:
https://www.dropbox.com/s/jzai9bwro1j4adb/20150324_171933.mp4?dl=0
jmk909er:
I have been researching online about 'superfish" is it possible that this is the problem? We uninstalled it but maybe that didn't get rid of it?
Boggin:
As Superfish leaves a backdoor open for sensitive details to be stolen, it's possible the incursion took place before you removed it.
A factory reset should certainly remove any hack but you would have Superfish back on and running Lenovo's removal tool first after creating a robust Admin password account and creating a local user account for normal use should prevent any further incursions.
Is this the removal tool you used before to get rid of Superfish http://support.lenovo.com/us/en/product_security/superfish_uninstall
Once it is back up and running you should update to Win 8.1 or did you mean it was running 8.1 ?
jmk909er:
Thanks Boggin, My wife uninstalled it and she is pretty novice, I'm sure she just used the uninstall program. Is the link that you have given me the one I should use to remove it after I reset?
So do you think that this is the problem?
Boggin:
Yes, Lenovo's tool also removes Superfish certificates and Windows Uninstall is pretty hopeless anyway unless you don't mind leaving residue in the registry.
Have you thought of putting IOBit's Uninstaller on there ?
It's quite a serious hack when someone takes over your computer as the computer is no longer yours and your wife should use your computer to change all of her passwords for her sensitive web sites ASAP.
Navigation
[0] Message Index
[#] Next page
Go to full version