I think I’m clean, but I haven’t had to do this before. Given the below, do I need to do anything else? And what should I do with the files in the Virus Chest (screenshot in the original post)? Also, I extracted most to upload to virustotal (see below); what should I do with those files? Thanks.
I ran the items listed in the link in the reply to my original post.
After running the Windows online validation, the not genuine message didn’t come up again after the AdvCleaner reboot.
AdvCleaner deleted some things including one that I wanted but don’t use a lot (Expat Shield). I’m not sure about Conduit. Log attached (user name changed to my display name).
There was another file that failed analysis and doesn’t come up in a search: Win32:IBryte-AH [PUP] in Flash_Player_Pro_Setup.exe. I don’t need that anyway, but I’m not sure about the others.
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
I posted those previously, and listed some questions on the first post here. (It looks like other people have issues with the Adobe Acrobat/Reader files being put into the Chest too; I'm not sure if I need those files. Also I had to extract the files from the Chest in order to upload them to virustotal--what should I do with the extractions now?).
After running the boot scan that resulted in the Windows not genuine message then running the Windows validation (which seems to have fixed it), it did take longer for the desktop to load, but after this last OTL, it seems back to normal speed.
Run OTL
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
I attached the log, as well as the first log from the fix. (As stated earlier, I’ve replaced the actual user and computer names with placeholders in these logs. I also used the real username in this script that you provided for OTL.)