TangoTen

Hi Kevin, No thank you and again thank you for your help. All the best

Hi Kevin, Thank you for cleaning my laptop for me and reassuring me that it is now safe to use. All the best.

Hi Kevin, I have attached the fixlog.txt file below. I haven't really used my laptop for anything over the last couple of days. I've only switched it on to carry out the tasks you have asked me to carry out, so I haven't really noticed anything. I'll switch it on tomorrow and see if I notice anything else and then I'll report back later in the day tomorrow. What I am most worried about is whether anything was exfiltrated, or whether a backdoor was setup, and especially if you think I need to change all my passwords. Please inform me, all the best. Fixlog.txt

Hi Kevin, I have attached the new reports run from my admin account. My printer etc... are all disconnected from the network. So I ran FRST.exe through the WiFi to the router and nothing else connected. FRST.txt Addition.txt

Hi Kevin, I have attached the FRST.txt and Additions.txt files. Thank you for your help. FRST.txt Addition.txt

Hi Stapp, I have tried to upload the "Unconfirmed 738148.crdownload" file to you but the upload fails. I don't know why? Help. All the best

Hi Stapp, I have tried to download the Farbar Recovery Scan Tool, but I get this message; FRST64.exe https://download.bleepingcomputer.com/dl/f42338792d8a4d46c54f39315d69a13c/5e305b72/windows/security/security-utilities/f/farbar-recovery-scan-tool/FRST64.exe This file is not commonly downloaded and may be dangerous. It only downloads this file called "Unconfirmed 738148.crdownload", which is only 2.5 Mb and which I can't open. I have also downloaded Emsisoft Emergency Kit. I haven't returned the Trojans back from my Emsisoft Quarantine. So the Emsisoft Emergency Kit found nothing. I've attached the scan report from Emsisoft and the download file which I can't open. Please inform me if I need to return the Trojans from Quarantine and re-scan with Emsisoft Emergency Kit and explain to me what I am doing wrong when trying to download Farbar Recovery Scan Tool, thank you scan_200128-153126.txt

Hi, I've double clicked on an email attachment and it tried to open a page on my browser which said File Error in red capital letters. I run Emsisoft and Malwarebytes anti-malware. Malwarebytes came back clean, but Emsisoft returned the above trojan files hidden in the User Profile of my Mozilla Firefox browser, which is now quarantined in Emsisoft. I use Windows 10 version 1909, Quad9 DNS. I do not have Microsoft Office installed nor Acrobat Reader. I use LibreOffice and all microsoft office documents are associated with LibreOffice. Pdf's are only opened in the Chrome browser. I have disconnected the laptop from my network and the internet. since then Emsisoft does not find anything else. I don't know what this Trojan does and am very worried it has exfiltrated my files or opened a backdoor or downloaded other nasties. Please show me how to determine the state of my laptop and network and whether I need to change my passwords etc...