SOS Reset cannot fix as book, bios, mbr all corrupted standalone machine(s) corrupted by RAT. built in admin shortcuts broken & admin replaced


  • If someone with greater technical savvy than I can help, it would be appreciated. If logs would help, please advise which. I've tried to find/dislodge hijacker (.ru URL) I feel like I'm playing chess in the dark against grand master as grim reaper. Losing money, time and peace with situation. Windows level 2 techs have remotely tried to fix ( 3 separate cases) and top tech guy at Corte Madera, CA store unable to fix problem. DCOM flooded with error messages by time OS completes Welcome  song/dance. Unable to fix corrupt certificates with unknown and unsigned certificate extensions. Default (built-in admin) replaced by Defaultuser. Paths changed on any owner created admin accounts which no longer have any admin privileges despite still being named as admin. Attributes changed on Library files so documents saved and pusic ripped cannot be accessed. Rollback option on drivers also all changed immed. after start up 1st time. Disk Management loses ability to format or save info on USB devices which are converted to RAW format. Thrice weekly reset of system does nothing but allow brief window of usage.

    Network settings corrupted and based on description believe DNS cache to be poisoned. Tried using sysinternal accesschk but log shows for less than 1 second & disappears. Procmgr shows huge amounts of svchost programs running simultaneously. Though my guess is that both machine and network corrupted, probably 1 primary and rest result of ports left open by 1st so don't know where to start. VM and proxy attempts circumvented by unchangeable command, bypass proxy for localhost command. 

    Not just Windows, purchased Mac OS x which worked great for 5 months until shrug Windows script started getting written to Mac library. Devices w/ every OS of Windows since XP, every OS x of Mac, Linux, iOS, Android all have permissions & admin changed to point where I have lost access to system files. 

    Registry corrupted but nothing in regedit or tools from sysinternals can fix. Cannot make myself NET USER on Windows machines since all my user accounts get changed to standard. I cannot imagine a situation wherein I could possibly be more f****ked. Experts, new machines, software have cost fortune. Would eat worms but can't find. Sorry for length but could not figure out how to shorten. SOS. Excellent opportunity for someone to be hero. Thnx for any conceivable solution aside Luddism.

    Thursday, November 17, 2016 1:45 AM

All replies