# AdwCleaner 7.0.2.1 - Logfile created on Sun Sep 10 01:06:01 2017 # Updated on 2017/29/08 by Malwarebytes  # Running on Windows 7 Home Basic (X64) # Mode: clean # Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

Deleted: C:\Users\lenovo\AppData\Local\Bundled software uninstaller Deleted: C:\Users\lenovo\AppData\Roaming\SeeSimilar02 Deleted: C:\Users\lenovo\Documents\vShare Deleted: C:\Users\lenovo\AppData\Roaming\zulagames Deleted: C:\ProgramData\Speedbit Deleted: C:\ProgramData\Application Data\Speedbit Deleted: C:\Users\All Users\Speedbit Deleted: C:\Users\lenovo\AppData\Roaming\Speedbit Deleted: C:\ProgramData\Tencent Deleted: C:\ProgramData\Application Data\Tencent Deleted: C:\Users\All Users\Tencent Deleted: C:\Users\lenovo\AppData\Roaming\Tencent Deleted: C:\Users\lenovo\AppData\Roaming\Performersoft Deleted: C:\Users\lenovo\AppData\Roaming\OpenCandy Deleted: C:\Windows\System32\config\systemprofile\AppData\Local\LavasoftTcpService Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService Deleted: C:\Users\lenovo\AppData\Roaming\SpeedAnalysis2

***** [ Files ] *****

Deleted: C:\Windows\System32\h@tkeysh@@k.dll Deleted: C:\Windows\SysWOW64\h@tkeysh@@k.dll Deleted: C:\Windows\System32\lavasofttcpservice.dll Deleted: C:\Windows\SysWOW64\lavasofttcpservice.dll Deleted: C:\Windows\System32\LavasoftTcpServiceOff.ini Deleted: C:\Windows\SysNative\LavasoftTcpServiceOff.ini Deleted: C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini Deleted: C:\Windows\SysNative\LavasoftTcpService64.dll Deleted: C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\or3bsgbw.default\invalidprefs.js Deleted: C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\or3bsgbw.default\searchplugins\yahoo-lavasoft.xml Deleted: C:\Windows\Reimage.ini Deleted: C:\Windows\Temp\reimage.log Deleted: C:\Users\lenovo\AppData\Roaming\speedanalysis.ico

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\APN PIP Deleted: [Key] - HKCU\Software\APN PIP Deleted: [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\BI Deleted: [Key] - HKCU\Software\BI Deleted: [Key] - HKLM\SOFTWARE\Lavasoft\Web Companion Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338A754C-B46E-4BF2-8AC8-23DE36862AD3} Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1} Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{6B3732AA-F6D4-4F16-9E22-49EDC52C9514} Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E} Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484} Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484} Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB} Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4} Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546} Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36} Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A} Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9} Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3444C3C5-6C56-4A16-A453-832B05BF6EA4} Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9} Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B} Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD} Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A} Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474} Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057} Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION|BackgroundHost.exe Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD|BackgroundHost.exe Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com Deleted: [Key] - HKLM\SOFTWARE\SafetyNut Deleted: [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief. Deleted: [Key] - HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief. Deleted: [Key] - HKLM\SOFTWARE\Reimage Deleted: [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\Reimage Deleted: [Key] - HKCU\Software\Reimage Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA} Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{A0207057-3461-4F7F-B689-D016B7A03964} Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F} Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB} Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\LavasoftTcpService.exe Deleted: [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\Softonic Deleted: [Key] - HKCU\Software\Softonic Deleted: [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\drpsu Deleted: [Key] - HKCU\Software\drpsu

***** [ Firefox (and derivatives) ] *****

Plugin deleted: Yahoo Toolbar and New Tab - Yahoo

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted ::Winsock settings cleared ::Additional Actions: 0

*************************

C:/AdwCleaner/AdwCleaner[S0].txt - [7242 B] - [2017/9/10 1:5:27]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########

Re: Can anyone help me identify if any of these deleted registry keys are essential for windows?

I cannot help you, I'm sorry. I wish I could, then we'd BOTH know what we're doing when we get results. I don't understand computers well enough to understand 9/10ths of what they even DO anymore. I know this much: everything is slow, and has been since Windows 10 was forced upon us all. I don't even understand WHAT this program actually does except "clean" things that are "bad" ... lol ... good luck!  Maybe one day someone will respond to people like me and work with us, so they can have pages that the average know-nothing can understand.  I'm game to be a 'translator' ... computerese to vernacular! ;-) 

Re: Can anyone help me identify if any of these deleted registry keys are essential for windows?

Greetings,

First of all, sorry for the late answer.

Can you share the scan logfile as well? Thanks.

Regards.

Re: Can anyone help me identify if any of these deleted registry keys are essential

Greetings,

First of all, sorry for the late answer.

Can you share the scan logfile as well? Thanks.

Regards.


cocochepeau, 2017-09-19 06:55:31 (UTC)

# AdwCleaner 7.0.2.1 - Logfile created on Sun Sep 10 01:05:26 2017 # Updated on 2017/29/08 by Malwarebytes  # Database: 09-08-2017.1 # Running on Windows 7 Home Basic (X64) # Mode: scan # Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy, C:\Users\lenovo\AppData\Local\Bundled software uninstaller PUP.Optional.Legacy, C:\Users\lenovo\AppData\Roaming\SeeSimilar02 PUP.Optional.Legacy, C:\Users\lenovo\Documents\vShare PUP.Optional.Legacy, C:\Users\lenovo\AppData\Roaming\zulagames PUP.Optional.Legacy, C:\ProgramData\Speedbit PUP.Optional.Legacy, C:\ProgramData\Application Data\Speedbit PUP.Optional.Legacy, C:\Users\All Users\Speedbit PUP.Optional.Legacy, C:\Users\lenovo\AppData\Roaming\Speedbit PUP.Optional.Legacy, C:\ProgramData\Tencent PUP.Optional.Legacy, C:\ProgramData\Application Data\Tencent PUP.Optional.Legacy, C:\Users\All Users\Tencent PUP.Optional.Legacy, C:\Users\lenovo\AppData\Roaming\Tencent PUP.Optional.PCPerformer, C:\Users\lenovo\AppData\Roaming\Performersoft PUP.Optional.OpenCandy, C:\Users\lenovo\AppData\Roaming\OpenCandy PUP.Optional.WebCompanion, C:\Windows\System32\config\systemprofile\AppData\Local\LavasoftTcpService PUP.Optional.WebCompanion, C:\Windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService PUP.Optional.SoftwareUpdater.A, C:\Users\lenovo\AppData\Roaming\SpeedAnalysis2

***** [ Files ] *****

PUP.Optional.Legacy, C:\Windows\System32\h@tkeysh@@k.dll PUP.Optional.Legacy, C:\Windows\SysWOW64\h@tkeysh@@k.dll PUP.Optional.Legacy, C:\Windows\System32\lavasofttcpservice.dll PUP.Optional.Legacy, C:\Windows\SysWOW64\lavasofttcpservice.dll PUP.Optional.Legacy, C:\Windows\System32\LavasoftTcpServiceOff.ini PUP.Optional.Legacy, C:\Windows\SysNative\LavasoftTcpServiceOff.ini PUP.Optional.Legacy, C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini PUP.Optional.Legacy, C:\Windows\SysNative\LavasoftTcpService64.dll PUP.Optional.Legacy, C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\or3bsgbw.default\invalidprefs.js PUP.Optional.Legacy, C:\Users\lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\or3bsgbw.default\searchplugins\yahoo-lavasoft.xml PUP.Optional.Reimage, C:\Windows\Reimage.ini PUP.Optional.Reimage, C:\Windows\Temp\reimage.log PUP.Optional.SpeedAnalysis2, C:\Users\lenovo\AppData\Roaming\speedanalysis.ico

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\APN PIP PUP.Optional.Legacy, [Key] - HKCU\Software\APN PIP PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\BI PUP.Optional.Legacy, [Key] - HKCU\Software\BI PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Lavasoft\Web Companion PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338A754C-B46E-4BF2-8AC8-23DE36862AD3} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{51BEE30D-EEC8-4BA3-930B-298B8E759EB1} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{6B3732AA-F6D4-4F16-9E22-49EDC52C9514} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{E7270EC6-0113-4A78-B610-E501D0A9E48E} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484} PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3444C3C5-6C56-4A16-A453-832B05BF6EA4} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057} PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION | BackgroundHost.exe PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD | BackgroundHost.exe PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com PUP.Optional.MoviesToolBar, [Key] - HKLM\SOFTWARE\SafetyNut PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief. PUP.Optional.Reimage, [Key] - HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief. PUP.Optional.Reimage, [Key] - HKLM\SOFTWARE\Reimage PUP.Optional.Reimage, [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\Reimage PUP.Optional.Reimage, [Key] - HKCU\Software\Reimage PUP.Optional.MiniBar.A, [Key] - HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA} PUP.Optional.MiniBar.A, [Key] - HKLM\SOFTWARE\Classes\Interface\{A0207057-3461-4F7F-B689-D016B7A03964} PUP.Optional.MiniBar.A, [Key] - HKLM\SOFTWARE\Classes\Interface\{A75ACCCD-3CC9-4865-8BE3-F523FDA2164F} PUP.Optional.WebCompanion, [Key] - HKLM\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB} PUP.Optional.WebCompanion, [Key] - HKLM\SOFTWARE\Classes\AppID\LavasoftTcpService.exe PUP.Optional.SofTonicAssistant, [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\Softonic PUP.Optional.SofTonicAssistant, [Key] - HKCU\Software\Softonic PUP.Optional.DriverPack, [Key] - HKU\S-1-5-21-3881207547-3005380571-2402166323-1000\Software\drpsu PUP.Optional.DriverPack, [Key] - HKCU\Software\drpsu

***** [ Firefox (and derivatives) ] *****

PUP.Optional.Legacy, Plugin found: Yahoo Toolbar and New Tab - Yahoo

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

Re: Can anyone help me identify if any of these deleted registry keys are essential for windows?

Hello,

Thanks. Everything is fine.

Regards.


cocochepeau, 2017-09-20 13:10:21 (UTC)

Thanks glad to know :)