Infection + otshot

Hello. I am trying to clean a friend's daughter's mini laptop and was not able to get rid of a program called "otshot". When I first started working on the computer, I noticed some strange behavior typical of spyware/malware. Additionally, after the first reboot I noticed that this program called "otshot" would try to do something with Outlook and would popup a few windows. I removed it from the taskbar (exit), but was unable to uninstall it via "Control Panel->Uninstall a Program" because it does not show up on the list of installed programs. I then proceeded to update the computer and run some anti-spyware/malware programs on my own. I ran CCleaner, Malwarebytes' Anti-Malware, SUPERAntiSpyware, Spybot - Search & Destroy and TDSSkiller. However, I hadn't gone through the steps in the "READ & RUN ME FIRST" guide nor disabled UAC. Each time I would reboot, this program would popup and do its thing. I eventually emoved "otshot" from the Startup via CCleaner so it wouldn't startup automatically at windows startup. I kept its files in all its locations in hopes that one of these programs would remove it, but none of these scans even detected "otshot". Once I was done with all these scans, I kept getting an error with the McAfee VirusScan Plus program that was installed on the computer. It said it needed to be updated, but after updating and rebooting, it kept saying the same thing. Additionally, when I tried to run a virus scan I got an error that prevented me from doing so. I ended up uninstalling it and installing AVG Anti-Virus FREE 2013 instead. I ran a virus scan with AVG and it did not find anything. So I came here and followed the instructions for malware removal. Since I can only attach 5 files at a time, I'll post the old logs in this post followed by the new ones in a post immediately following this one. Attached here are only the OLD logs for the two programs, which are recommended in the guide, out of all the programs I ran before.

 

Attached here are the NEW logs for the same 2 programs I had run before that are recommended to run here as well as the logs for the other 3.

 

I did see it. You posted it while I was posting my second reply (post #3). The problem is that Revo Uninstaller only seems to work on programs that are also listed by "Add/Remove Programs" or "Uninstall a Program". As I mentioned in my first post, "otshot" does not show up in the "Uninstall a Program" list in Windows. Therefore, this program is not showing up on the list of programs Revo Uninstaller can run on. In an effort to re-enable/re-install "otshot" (by running *otshot*.exe files found in the different locations) so that Revo Uninstaller can pick it up and completely uninstall it, AVG picked up a security threat. It got rid of it, but I hope I didn't get re-infected.

 

Well, I ran the executable files I could find for this program and I was able to re-enable it to the point where Revo Uninstaller picked it up. I then proceeded to successfully delete it. A Windows search did find traces of it in places other than c:/Program Files, so I deleted those as well. Is everything else fine? What about the other things found by the newest scans?

 

I successfully ran Hitman Pro and let it delete the 18 PUPs that were ignored before. I then ran JRT and am attaching its log file.

 

I can't say one way or the other, as I haven't been using the computer while I was waiting for a reply. Is there a quick/easy way to find out?

 

It does seem fine. The internet browsers work good and it is fairly speedy now.

 

UPDATE: The computer was working fine yesterday as I mentioned previously.
I left it on overnight with one browser window open to this forum. Apparently, it automatically installed some Windows Updates and rebooted. I logged in and after windows loaded, I read the notice that Windows had installed updates, but my touchpad was not working. I accessed the Start Menu with the keyboard button and restarted, but am having the same problem. My touchpad no longer works!

 

Ok, so I got my touchpad working again. I had to "Enable" it in Control Panel->Hardware and Sound->Devices and Printers->Mouse Properties->Device Settings, although I don't know how it got disabled in the first place. Especially since I did nothing to it overnight and it was working fine before. As I mentioned previously, the only thing that happened overnight is several Windows Updates were installed. However, everything that was downloaded on 02/13 was a Security Update.

Anyhow, the pc seems to be working good. Can we move to the next steps or are there other program scans I should run?

 

Well, I am not having any typical easily identifiable problems with malware, so I would've assumed things were fine now. However, I ran an ESET Online Scan and it found two entries with multiple threats each. The only reason I ran it is because it was recommended to me for another computer in another thread. I figured it wouldn't hurt anything if I did, but I was surprised it found something that all previous scans didn't? Anyhow, since I didn't want to change anything until I heard from you, I unchecked the "Remove found threats" option. I wasn't sure if you'd simply have me run it again, but this time leaving that option checked so it can get rid of them, or whether you'd have me use something else to get rid of them. I have attached the ESET scan log.

 

Ok, I ran ESET and fixed the items it found. However, this time I selected "Scan for potentially unwanted applications" and "Scan for potentially unsafe applications" and it found a lot more threats. Since I selected "Remove found threats", it deleted all of them. I've attached the log.

 

Yes, I ran CCleaner. I don't seem to be having issues anymore

 

Final steps completed. Thank you very much!