S
SergheiCastravet
Guest
Hi!
I have a serious problem! Long story short is that my laptop had some software installed on it without my consent(my guess is at one of the parties held at my house) and since I have spotted that, my life has become this continuous fight with the invisible monster. The thing is that even after reinstalling windows, somehow this thing gets reinfected with all that stuff. You can't really call it a virus, since it is legit software, but it is software that transformed my laptop into a VM server that is a puppet in the hands of the "Administrator". I have even have had several instances of windows popping up and saying that the admin forbids me to perform that action. I think you can imagine how frustrating is that.
I think I have figured out all the steps that his "system" takes in order to gain control over my laptop and the first and most important one is that it boots from a hidden virtual drive that is called "X:boot" and which I can't remove or edit because it says it is write protected. So I can't really do anything lately,cause I am afraid that all the information I type or acces is seen by somebody,even this post..But there's nothing I can do about it and I really hope you can help me get rid of this stocker.
I have found that this software is in all the computers in my house(phones maybe too but I don't know how to spot that)..And I don't know how this person does it,but every scan that I run,even as it says during the scan that it found some infected files,in the end comes up with the result that my computer is perfectly clean and there are no infected files. Just a cople of moment ago I have installed Windows Malware removal tool and at a moment it sayd that there were 3 files infected,so I switched to this page an continued typing and now I am looking at a result that says that there are no files infected and my computer is in perfect condition.
Also,worth noticing is that there is a huge library of all kind of stuff in WinSxS folder,I mean like tens of thousands of folders and files and I'll give you some examples:
amd64_c_fssystemrecovery.inf.resources_31bf3856ad364e35_10.0.19041.1_en-us_8576afa64c6d0b5b
amd64_c_holographic.inf.resources_31bf3856ad364e35_10.0.19041.1_en-us_bce80c67db57eb5e
amd64_devicepairingproxy.resources_31bf3856ad364e35_10.0.19041.1_en-us_36c84d17b4f5be1d
amd64_dual_netbrdg.inf_31bf3856ad364e35_10.0.19041.1_none_a775377b740f7257
amd64_hyperv-vmiccore_31bf3856ad364e35_10.0.19041.153_none_b2ac5416d1727af7
amd64_libressl-components-onecore_31bf3856ad364e35_10.0.19041.1_none_a51f330973ed5c23
amd64_microsoft-hyper-v-m..lebrowser.resources_31bf3856ad364e35_10.0.19041.1_en-us_4373d0692dcd3a06
wow64_microsoft-windows-n..kgroundtransferhost_31bf3856ad364e35_10.0.19041.1_none_4eca52bc837e6422
wow64_microsoft-windows-object-picker_31bf3856ad364e35_10.0.19041.1_none_cfdb926be052c55c
wow64_microsoft-windows-pdc-dll_31bf3856ad364e35_10.0.19041.1_none_5c22478a3c251c74
and so on and so forth...
Also to mention is that there are a lot of hidden devices in the device manager and when I tried to unisntall them a couple of times there were those messages where the admin forbid me to.
Please,help!
P.S.:I am running Windows 10,but there was no such option for choosing..
More...
I have a serious problem! Long story short is that my laptop had some software installed on it without my consent(my guess is at one of the parties held at my house) and since I have spotted that, my life has become this continuous fight with the invisible monster. The thing is that even after reinstalling windows, somehow this thing gets reinfected with all that stuff. You can't really call it a virus, since it is legit software, but it is software that transformed my laptop into a VM server that is a puppet in the hands of the "Administrator". I have even have had several instances of windows popping up and saying that the admin forbids me to perform that action. I think you can imagine how frustrating is that.
I think I have figured out all the steps that his "system" takes in order to gain control over my laptop and the first and most important one is that it boots from a hidden virtual drive that is called "X:boot" and which I can't remove or edit because it says it is write protected. So I can't really do anything lately,cause I am afraid that all the information I type or acces is seen by somebody,even this post..But there's nothing I can do about it and I really hope you can help me get rid of this stocker.
I have found that this software is in all the computers in my house(phones maybe too but I don't know how to spot that)..And I don't know how this person does it,but every scan that I run,even as it says during the scan that it found some infected files,in the end comes up with the result that my computer is perfectly clean and there are no infected files. Just a cople of moment ago I have installed Windows Malware removal tool and at a moment it sayd that there were 3 files infected,so I switched to this page an continued typing and now I am looking at a result that says that there are no files infected and my computer is in perfect condition.
Also,worth noticing is that there is a huge library of all kind of stuff in WinSxS folder,I mean like tens of thousands of folders and files and I'll give you some examples:
amd64_c_fssystemrecovery.inf.resources_31bf3856ad364e35_10.0.19041.1_en-us_8576afa64c6d0b5b
amd64_c_holographic.inf.resources_31bf3856ad364e35_10.0.19041.1_en-us_bce80c67db57eb5e
amd64_devicepairingproxy.resources_31bf3856ad364e35_10.0.19041.1_en-us_36c84d17b4f5be1d
amd64_dual_netbrdg.inf_31bf3856ad364e35_10.0.19041.1_none_a775377b740f7257
amd64_hyperv-vmiccore_31bf3856ad364e35_10.0.19041.153_none_b2ac5416d1727af7
amd64_libressl-components-onecore_31bf3856ad364e35_10.0.19041.1_none_a51f330973ed5c23
amd64_microsoft-hyper-v-m..lebrowser.resources_31bf3856ad364e35_10.0.19041.1_en-us_4373d0692dcd3a06
wow64_microsoft-windows-n..kgroundtransferhost_31bf3856ad364e35_10.0.19041.1_none_4eca52bc837e6422
wow64_microsoft-windows-object-picker_31bf3856ad364e35_10.0.19041.1_none_cfdb926be052c55c
wow64_microsoft-windows-pdc-dll_31bf3856ad364e35_10.0.19041.1_none_5c22478a3c251c74
and so on and so forth...
Also to mention is that there are a lot of hidden devices in the device manager and when I tried to unisntall them a couple of times there were those messages where the admin forbid me to.
Please,help!
P.S.:I am running Windows 10,but there was no such option for choosing..
More...
