Unlocking PC After the Microsoft Support Phone Scam
Posted: Tue Nov 21, 2017 7:49 pm
Bastards conned one of my clients and when they called back to try to get her to pay for more services, and she said no, they locked her out of her PC. They installed SysKey which encrypts your SAM hive.
Fortunately, they didn't delete the \REGBACK folder, and after booting with a Win10 recovery flash drive, I restored the last backed up copy of the registry which gave me access to the PC again and I cleaned out the remote control apps, and pirated copy of McAfee they installed.
They discuss it here:
https://fixedit.itxpress.biz/2015/01/16 ... hone-scam/
Fortunately, they didn't delete the \REGBACK folder, and after booting with a Win10 recovery flash drive, I restored the last backed up copy of the registry which gave me access to the PC again and I cleaned out the remote control apps, and pirated copy of McAfee they installed.
They discuss it here:
https://fixedit.itxpress.biz/2015/01/16 ... hone-scam/