Hi, 

The other day I made a post trying to identify a "bug" aka malicious code, virus, malware that has been afflicting my systems. I'll try and keep this short.

• It is using a virtual machine
• It is embedded into either the TPM or the BIOS (or some other rom)
• It is using the TPM to shimmy its way to my processor where it then broadcasts an ARP from "intelcor_xx:xx:xx" until it will completely hijack both my network and my machine
• It is using commonly name windows files
• It is operating primarily out of "Explorer.exe" (in windows 10)
• It is much more prolific in Windows 10
• It has been a phased attack, both in aggression and symptoms
• It is reactive, and counters any type of counter measure i deploy
• It was reactive to AV software
  1. It caused one of the most violent BSOD's I've ever seen when I tried to run Hitman Pro. Agent against it. Resulting in two NVMe drives wiped, and a third write protected. Almost as a self destruct mechanism
• It is using mount points in Windows to hide volumes
• It affects all networked devices: including IOS, Android, and IoT devices
• I can see the volumes it creates from the bios
• It has cracked or stolen all of my secure boot keys
• It has stolen my ukey
• It has read, write, and execution privilege's
• It's primary goal is a complete takeover of the machine, seemingly. 
  1. This was not always the case, with the primary goal being reputational harm until I had discovered it  
• It or an associated attack vector are capable of DNS and Domain attacks including MITM and DDOs.
  1. Could be coincidental, highly doubted
• This was most likely the work of a very clever spoof website or a phishing email. 
• It has extricated personal data
• It has intervened in my personal, and business communications
• It is redirecting to port 453, which is known to generate malicious code
  1. Most likely where the trojan/worm transport came from
• I am also being redirected to port 853, most likely a command and control 
• The logs and .DMP files Literally read like someone breaking into my house and it is extremely unsettling
  1. It took me exorcising it from the VM enabling a ukey in order to find the .dmp and log files as it is extremely efficient in deleted/hiding them
• Forgot to mention this has actively countered any software I've ran against it including"
  • Wireshark
    • Physically broke via driver mismatch
  • Portmaster
    • Physically broke via driver mismatch
  • Hitman Pro
    • Turned into a martyrdom grenade
  • Whocrashed
    • Not seeing anything
  • Windows defender
    • Not seeing anything

I know this is probably the wrong place for this, but I'd like to speak to someone who has a better understand of these things as I am so far incredibly out of my depth, and It's to the point where I'm literally being denied my own internet service and devices. 

Thanks in advance. 

Specs:

• Intel Core i9 12900k
• MSI Unify Z690
• Corsair Vengeance 32gb ram (2x16)
• WD Black 500gb NVMe x2
• Crucial P5 1tb NVMe
• TeamGroup Cardera 1tb NVMe
• Crucial BX500 1tb SSD x2
• WD compact 1tb SSD
• EVGA Nvidia 3060 ti
• EVGA Nvidia 2060 KO Ultra
• Windows 11, latest distro, fully updated

I appreciate any response