Windows 7.0 infected

Hello there and welcome. Please re run Hitman and have it delete Malware and Potentially Unwanted Programs.

Uninstall the below:

• 24x7 Help
  [*]Iminent
  [*]MixiDJ
  [*]LessTabs
  [*]Wajam
  [*]WhiteSmoke New Toolbar
  [*]Solid Savings
  [*]Qwiklinx
  [*]GetSavin

http://img805.imageshack.us/img805/9659/rktigzy.gif Fix items using RogueKiller.

Double-click RogueKiller.exe to run. (Vista/7 right-click and select Run as Administrator)
When it opens, press the Scan button
Now click the Registry tab and locate these 3 detections:

• [RUN][SUSP PATH] HKCU\[...]\Run : SearchProtect (C:\Users\Lehn Financial\AppData\Roaming\SearchProtect\bin\cltmng.exe [7]) -> FOUND
• [RUN][SUSP PATH] HKUS\S-1-5-21-413469749-1689335336-2738114167-1000\[...]\Run : SearchProtect (C:\Users\Lehn Financial\AppData\Roaming\SearchProtect\bin\cltmng.exe [7]) -> FOUND
• [V2][SUSP PATH] Updater26278.exe : C:\Users\Lehn - Financial\AppData\Local\Updater26278\Updater26278.exe /extensionid=26278 /extensionname="Solid Savings" /chromeid=cijeeimilokkhlfjombmalgpabbonmah [x][x][x] -> FOUND

Place a checkmark each of these items, leave the others unchecked.
Now press the Delete button.
When it is finished, there will be a log on your desktop called: RKreport[2].txt
Attach RKreport[2].txt to your next message. (How to attach)
Reboot the machine.


http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.

• Please save the work in your browsers before proceeding.
• Double-click JRT.exe to run (Vista/7 right-click and select Run as Administrator)
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Please attach JRT.txt to your next message. (See: HOW TO: Attach Items To Your Post )

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this.

Let us know of any problems you may have encountered with the above instructions and also let me know how things are running now!

 

Then uninstall those programs using Revo Uninstaller, hopefully that will remove them.

The Hitman log appears to still show alot that should be removed, when you rescan with it, does it find plenty? If so attach the FRESH log please.

Download OTL to your desktop.

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Vista and Windows 7 users Right-click OTL and choose Run as Administrator)
• When the window appears, underneath Output at the top change it to Minimal Output.
• Check the boxes beside LOP Check and Purity Check.
• Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.

Attach both of these logs into your next reply.

 

Could you still attach the log from OTL regardless? (I suffer with OCD and it would go against my grain not to look at it :-D)

 

Please. Rerun again and attach the log.

 

Comodo can be extremely aggressive depending upon how it is set up to run. You might want to think about switching your Father to something else otherwise he ma be calling you up frequently with questions and troubles.

What issues remain on this machine please?

 

Uninstall Reimage Repair with Revo Uninstaller.

I recommend using the windows own firewall. I stick with that and don't bother with third party now that I am not on XP any more. Let me know how you get on with Revo.

 

Sorry about the confusion and Yes, get rid if it! Let me know if it uninstalls ok.