2016-08-23 22:30:47 : [main] - Saving current options to the configuration file 2016-08-23 22:30:48 : [main.gui] - Scan requested 2016-08-23 22:30:48 : [scan] - Running from: C:\AdwCleaner 2016-08-23 22:30:48 : [scan] - Progress: 0% 2016-08-23 22:30:48 : [database] - Checking for database updates 2016-08-23 22:30:48 : [main.network] - Updating definitions 2016-08-23 22:30:54 : [main.network] - Saving the updated definitions 2016-08-23 22:30:54 : [main.network] - Requesting the lastest database release number 2016-08-23 22:30:57 : [main.network] - Latest definitions: d2afea0357a89eb89b0e5e11622f9eb5 2016-08-23 22:30:57 : [database] - Database update succeeded: D2AFEA0357A89EB89B0E5E11622F9EB5 2016-08-23 22:30:57 : [scan] - Progress: 5% 2016-08-23 22:30:57 : [database] - Initialize the database 2016-08-23 22:30:57 : [database] - Loading sqlite3.dll 2016-08-23 22:30:57 : [database] - Opening the database 2016-08-23 22:30:57 : [database] - Querying database's version 2016-08-23 22:30:58 : [database] - Loading internal data 2016-08-23 22:30:58 : [database] - Loading detections 2016-08-23 22:31:02 : [database] - Loading generics 2016-08-23 22:31:02 : [database] - Closing the database 2016-08-23 22:31:02 : [database] - Closing database 2016-08-23 22:31:02 : [database] - Unloading sqlite3.dll 2016-08-23 22:31:02 : [scan] - Progress: 15% 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [1] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [2] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [3] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [4] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [5] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [6] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [7] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [8] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [9] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [10] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [11] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [12] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [13] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [14] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [15] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [16] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [17] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [18] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [19] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [20] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [21] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [22] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [23] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [24] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [25] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [26] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [27] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [28] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [29] 2016-08-23 22:31:02 : [scan.generic] - Generating generic detections [30] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [31] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [32] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [33] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [34] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [35] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [36] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [37] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [38] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [39] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [40] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [41] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [42] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [43] 2016-08-23 22:31:03 : [scan.generic] - Generating generic detections [44] 2016-08-23 22:31:03 : [scan.generic] - Generic detections generated 2016-08-23 22:31:03 : [scan] - Progress: 20% 2016-08-23 22:31:03 : [scan.generic] - Starting generic analysis 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.CRX 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTM 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTML 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.MHT 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTM 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTML 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.WEBP 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHT 2016-08-23 22:31:38 : [scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHTML 2016-08-23 22:31:38 : [scan.generic] - Found Reimage Reminder 2016-08-23 22:31:39 : [scan] - Progress: 30% 2016-08-23 22:31:39 : [scan.services] - Starting services scan [1] 2016-08-23 22:31:39 : [scan.services] - Stopping services scan [1] 2016-08-23 22:31:39 : [scan.services] - Starting services scan [2] 2016-08-23 22:31:39 : [scan.services] - Found UCGuard 2016-08-23 22:31:39 : [scan.services] - Found KuaiZipDrive 2016-08-23 22:31:39 : [scan.services] - Found Amazon 1Button App Service 2016-08-23 22:31:39 : [scan.services] - Found ziphost 2016-08-23 22:31:39 : [scan.services] - Found ComputerZLock 2016-08-23 22:31:39 : [scan.services] - Found ComputerZ_x64 2016-08-23 22:31:39 : [scan.services] - Found HpSvc 2016-08-23 22:31:39 : [scan.services] - Stopping services scan [2] 2016-08-23 22:31:39 : [scan.services] - 7 malicious services found 2016-08-23 22:31:39 : [scan] - Progress: 40% 2016-08-23 22:31:39 : [scan.folders] - Starting folders scan 2016-08-23 22:31:45 : [scan.folders] - Found C:\Users\Rainbow\AppData\Roaming\Kuaizip 2016-08-23 22:31:45 : [scan.folders] - Found C:\Users\Rainbow\AppData\Roaming\KuaiZip 2016-08-23 22:31:45 : [scan.folders] - Found C:\Users\Rainbow\AppData\Roaming\LuDaShi 2016-08-23 22:31:45 : [scan.folders] - Found C:\Users\Rainbow\AppData\Roaming\lockhomepage 2016-08-23 22:31:45 : [scan.folders] - Found C:\Users\Rainbow\AppData\Roaming\Softlink 2016-08-23 22:31:53 : [scan.folders] - Found C:\Program Files\Reimage 2016-08-23 22:31:58 : [scan.folders] - Found C:\rei 2016-08-23 22:32:01 : [scan.folders] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reimage repair 2016-08-23 22:32:01 : [scan.folders] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ttwifi 2016-08-23 22:32:01 : [scan.folders] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compress 2016-08-23 22:32:01 : [scan.folders] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Social2Se 2016-08-23 22:32:04 : [scan.folders] - Found C:\Program Files (x86)\WeatherChickn 2016-08-23 22:32:04 : [scan.folders] - Found C:\Program Files (x86)\Amazon\Amazon1ButtonApp 2016-08-23 22:32:04 : [scan.folders] - Found C:\Program Files (x86)\mpck 2016-08-23 22:32:04 : [scan.folders] - Found C:\Program Files (x86)\LuDaShi 2016-08-23 22:32:04 : [scan.folders] - Found C:\Program Files (x86)\SoSoEasy 2016-08-23 22:32:10 : [scan.folders] - Found C:\Users\Rainbow\AppData\Local\app 2016-08-23 22:32:10 : [scan.folders] - Found C:\Users\Default User\AppData\Local\Pokki 2016-08-23 22:32:10 : [scan.folders] - Found C:\Users\Default\AppData\Local\Pokki 2016-08-23 22:32:11 : [scan.folders] - Stopping folders scan 2016-08-23 22:32:11 : [scan.folders] - 19 malicious folders found 2016-08-23 22:32:11 : [scan] - Progress: 50% 2016-08-23 22:32:11 : [scan.files] - Starting files scan 2016-08-23 22:32:12 : [scan.files] - Found C:\Users\Rainbow\AppData\Roaming\fastboot.exe 2016-08-23 22:32:12 : [scan.files] - Found C:\Users\Rainbow\AppData\Roaming\adb.exe 2016-08-23 22:32:12 : [scan.files] - Found C:\Users\Rainbow\AppData\Roaming\a.bat 2016-08-23 22:32:12 : [scan.files] - Found C:\Users\Rainbow\AppData\Roaming\xdo.zip 2016-08-23 22:32:12 : [scan.files] - Found C:\Users\Rainbow\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\MaohaWiFi.lnk 2016-08-23 22:32:14 : [scan.files] - Found C:\Users\Rainbow\Desktop\AutoTime.lnk 2016-08-23 22:32:16 : [scan.files] - Found C:\WINDOWS\SysNative\drivers\ucguard.sys 2016-08-23 22:32:16 : [scan.files] - Found C:\WINDOWS\SysNative\drivers\KuaiZipDrive.sys 2016-08-23 22:32:16 : [scan.files] - Found C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk 2016-08-23 22:32:17 : [scan.files] - Found C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat 2016-08-23 22:32:17 : [scan.files] - Found C:\ProgramData\Application Data\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat 2016-08-23 22:32:18 : [scan.files] - Found C:\WINDOWS\Reimage.ini 2016-08-23 22:32:20 : [scan.files] - Stopping files scan 2016-08-23 22:32:20 : [scan.files] - 12 malicious files found 2016-08-23 22:32:20 : [scan] - Progress: 55% 2016-08-23 22:32:20 : [scan.dll] - Starting DLL scan 2016-08-23 22:32:21 : [scan.dll] - Stopping DLL scan 2016-08-23 22:32:21 : [scan.dll] - 0 malicious DLL found 2016-08-23 22:32:21 : [scan] - Progress: 60% 2016-08-23 22:32:21 : [scan.wmi] - Starting WMI scan 2016-08-23 22:32:21 : [scan.wmi] - Found \root\subscription 2016-08-23 22:32:21 : [scan.wmi] - Stopping WMI scan 2016-08-23 22:32:21 : [scan.wmi] - 1 malicious WMI found 2016-08-23 22:32:21 : [scan] - Progress: 65% 2016-08-23 22:32:21 : [scan.shortcuts] - Starting shortcuts scan 2016-08-23 22:32:22 : [scan.shortcuts] - Found C:\Users\Public\Desktop\Google Chrome.lnk 2016-08-23 22:32:22 : [scan.shortcuts] - Found C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-08-23 22:32:22 : [scan.shortcuts] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-08-23 22:32:23 : [scan.shortcuts] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-08-23 22:32:45 : [scan.shortcuts] - Found C:\Users\Rainbow\Desktop\Tor Browser\Start Tor Browser.lnk 2016-08-23 22:32:46 : [scan.shortcuts] - Found C:\Users\Rainbow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2016-08-23 22:32:48 : [scan.shortcuts] - Found C:\Users\Rainbow\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk 2016-08-23 22:32:49 : [scan.shortcuts] - Found C:\Users\Rainbow\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk 2016-08-23 22:32:49 : [scan.shortcuts] - Found C:\Users\Rainbow\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk 2016-08-23 22:32:49 : [scan.shortcuts] - Found C:\Users\Rainbow\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome (2).lnk 2016-08-23 22:32:53 : [scan.shortcuts] - Stopping shortcuts scan 2016-08-23 22:32:53 : [scan.shortcuts] - 0 malicious shortcuts found 2016-08-23 22:32:53 : [scan] - Progress: 70% 2016-08-23 22:32:53 : [scan.tasks] - Starting tasks scan 2016-08-23 22:32:53 : [scan.tasks] - Found Reimage Reminder 2016-08-23 22:32:53 : [scan.tasks] - Found ACC 2016-08-23 22:32:53 : [scan.tasks] - Found Software Update Application 2016-08-23 22:32:53 : [scan.tasks] - Found ComputerZ-Tray 2016-08-23 22:32:53 : [scan.tasks] - Stopping tasks scan 2016-08-23 22:32:53 : [scan.tasks] - 5 malicious tasks found 2016-08-23 22:32:53 : [scan] - Progress: 75% 2016-08-23 22:32:53 : [scan.registry] - Starting registry scan [1] 2016-08-23 22:32:54 : [scan.registry] - Found Amazon1ButtonBrowser.BrowserFrame 2016-08-23 22:32:54 : [scan.registry] - Found Amazon1ButtonBrowserHelper.Amazon1ButtonBHO 2016-08-23 22:32:54 : [scan.registry] - Found Amazon1ButtonRuntime.Amazon1ButtonRuntime 2016-08-23 22:32:54 : [scan.registry] - Found Amazon1ButtonRuntime.AmazonRuntimeServer 2016-08-23 22:32:54 : [scan.registry] - Found AmazonAppIE.AppGateway 2016-08-23 22:32:54 : [scan.registry] - Found AmazonAppIE.GadgetGateway 2016-08-23 22:32:54 : [scan.registry] - Found REI_AxControl.ReiEngine 2016-08-23 22:32:54 : [scan.registry] - Found REI_AxControl.ReiEngine.1 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.001 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.002 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.003 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.004 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.005 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.006 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.007 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.008 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.009 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.01 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.010 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.011 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.012 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.013 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.014 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.015 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.016 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.017 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.018 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.019 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.02 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.020 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.021 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.022 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.023 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.024 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.025 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.026 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.027 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.028 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.029 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.03 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.030 2016-08-23 22:32:55 : [scan.registry] - Found ZipTool.031 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.032 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.033 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.034 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.035 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.036 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.037 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.038 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.039 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.04 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.040 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.041 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.042 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.043 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.044 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.045 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.046 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.047 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.048 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.049 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.05 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.050 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.051 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.052 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.053 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.054 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.055 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.056 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.057 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.058 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.059 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.06 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.060 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.061 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.062 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.063 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.064 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.065 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.066 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.067 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.068 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.069 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.07 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.070 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.071 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.072 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.073 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.074 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.075 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.076 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.077 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.078 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.079 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.08 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.080 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.081 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.082 2016-08-23 22:32:56 : [scan.registry] - Found ZipTool.083 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.084 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.085 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.086 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.087 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.088 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.089 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.09 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.090 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.091 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.092 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.093 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.094 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.095 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.096 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.097 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.098 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.099 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.7z 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.arj 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.bz2 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.cab 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.gz 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.gzip 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.iso 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.jar 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.lzh 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.rar 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.rpm 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.tar 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.tbz 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.tgz 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.wim 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.z 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool.zip 2016-08-23 22:32:57 : [scan.registry] - Found ZipTool_FileAsso.Origin 2016-08-23 22:32:57 : [scan.registry] - Stopping registry scan [1] 2016-08-23 22:32:57 : [scan.registry] - Starting registry scan [2] 2016-08-23 22:32:57 : [scan.registry] - Found {10ECCE17-29B5-4880-A8F5-EAD298611484} 2016-08-23 22:32:57 : [scan.registry] - Found {801B440B-1EE3-49B0-B05D-2AB076D4E8CB} 2016-08-23 22:32:57 : [scan.registry] - Found {BAC72C85-CEC6-4B86-AF06-FA20C259FAB8} 2016-08-23 22:32:57 : [scan.registry] - Found {BD6ECB00-7C4A-4F97-B425-44117F2A7AAE} 2016-08-23 22:32:57 : [scan.registry] - Found {34B3C588-D06C-4F92-929C-2C3A0BC7F821} 2016-08-23 22:32:57 : [scan.registry] - Found {9BB31AD8-5DB2-459E-A901-DEA536F23BA4} 2016-08-23 22:32:58 : [scan.registry] - Found {BD51A48E-EB5F-4454-8774-EF962DF64546} 2016-08-23 22:32:58 : [scan.registry] - Found {7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474} 2016-08-23 22:32:58 : [scan.registry] - Found {BAC72C85-CEC6-4B86-AF06-FA20C259FAB8} 2016-08-23 22:33:02 : [scan.registry] - Found {28FF42B8-A0DA-4BE5-9B81-E26DD59B350A} 2016-08-23 22:33:03 : [scan.registry] - Found 3045035B-3C14-4698-8AC4-ADB18CC42C1E 2016-08-23 22:33:03 : [scan.registry] - Found {7F46C358-270D-4791-A579-AD1DDA1A3F7B} 2016-08-23 22:33:03 : [scan.registry] - Found {BAC72C85-CEC6-4B86-AF06-FA20C259FAB8} 2016-08-23 22:33:03 : [scan.registry] - Found {BD6ECB00-7C4A-4F97-B425-44117F2A7AAE} 2016-08-23 22:33:03 : [scan.registry] - Found {6557DB6C-EFE1-45AC-92A6-FBB1554B7502} 2016-08-23 22:33:03 : [scan.registry] - Found {9BB31AD8-5DB2-459E-A901-DEA536F23BA4} 2016-08-23 22:33:03 : [scan.registry] - Found {BD51A48E-EB5F-4454-8774-EF962DF64546} 2016-08-23 22:33:03 : [scan.registry] - Found {7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474} 2016-08-23 22:33:04 : [scan.registry] - Found {FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36} 2016-08-23 22:33:04 : [scan.registry] - Found {ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5} 2016-08-23 22:33:04 : [scan.registry] - Found {BAC72C85-CEC6-4B86-AF06-FA20C259FAB8} 2016-08-23 22:33:05 : [scan.registry] - Found {BAC72C85-CEC6-4B86-AF06-FA20C259FAB8} 2016-08-23 22:33:05 : [scan.registry] - Found {BD6ECB00-7C4A-4F97-B425-44117F2A7AAE} 2016-08-23 22:33:05 : [scan.registry] - Found {10ECCE17-29B5-4880-A8F5-EAD298611484} 2016-08-23 22:33:05 : [scan.registry] - Found {BAC72C85-CEC6-4B86-AF06-FA20C259FAB8} 2016-08-23 22:33:10 : [scan.registry] - Stopping registry scan [2] 2016-08-23 22:33:10 : [scan.registry] - Starting registry scan [3] 2016-08-23 22:33:10 : [scan.registry] - Found Reimage 2016-08-23 22:33:10 : [scan.registry] - Found Social2Se 2016-08-23 22:33:10 : [scan.registry] - Found Reimage Repair 2016-08-23 22:33:15 : [scan.registry] - Found IM 2016-08-23 22:33:15 : [scan.registry] - Found Reimage 2016-08-23 22:33:15 : [scan.registry] - Found WajIEnhance 2016-08-23 22:33:15 : [scan.registry] - Found Local AppWizard-Generated Applications\Reimage - Windows Problem Relief. 2016-08-23 22:33:15 : [scan.registry] - Found osTip 2016-08-23 22:33:15 : [scan.registry] - Found ttwifi 2016-08-23 22:33:15 : [scan.registry] - Found MICROSOFT\OTUT 2016-08-23 22:33:15 : [scan.registry] - Found INSTALLPATH\STATUS 2016-08-23 22:33:15 : [scan.registry] - Found UCBrowser 2016-08-23 22:33:15 : [scan.registry] - Found UCBrowserPID 2016-08-23 22:33:15 : [scan.registry] - Found AutoTime 2016-08-23 22:33:15 : [scan.registry] - Found KuaiZip 2016-08-23 22:33:15 : [scan.registry] - Found SNDA 2016-08-23 22:33:15 : [scan.registry] - Found KuaiZipSFX 2016-08-23 22:33:15 : [scan.registry] - Found ZipTool 2016-08-23 22:33:15 : [scan.registry] - Found Maoha 2016-08-23 22:33:15 : [scan.registry] - Found Ludashi 2016-08-23 22:33:16 : [scan.registry] - Found IM 2016-08-23 22:33:16 : [scan.registry] - Found Reimage 2016-08-23 22:33:16 : [scan.registry] - Found WajIEnhance 2016-08-23 22:33:16 : [scan.registry] - Found Local AppWizard-Generated Applications\Reimage - Windows Problem Relief. 2016-08-23 22:33:16 : [scan.registry] - Found osTip 2016-08-23 22:33:16 : [scan.registry] - Found ttwifi 2016-08-23 22:33:16 : [scan.registry] - Found MICROSOFT\OTUT 2016-08-23 22:33:16 : [scan.registry] - Found INSTALLPATH\STATUS 2016-08-23 22:33:16 : [scan.registry] - Found UCBrowser 2016-08-23 22:33:16 : [scan.registry] - Found UCBrowserPID 2016-08-23 22:33:16 : [scan.registry] - Found AutoTime 2016-08-23 22:33:16 : [scan.registry] - Found KuaiZip 2016-08-23 22:33:16 : [scan.registry] - Found SNDA 2016-08-23 22:33:16 : [scan.registry] - Found KuaiZipSFX 2016-08-23 22:33:16 : [scan.registry] - Found ZipTool 2016-08-23 22:33:16 : [scan.registry] - Found Maoha 2016-08-23 22:33:16 : [scan.registry] - Found Ludashi 2016-08-23 22:33:18 : [scan.registry] - Found IM 2016-08-23 22:33:18 : [scan.registry] - Found Reimage 2016-08-23 22:33:18 : [scan.registry] - Found WajIEnhance 2016-08-23 22:33:18 : [scan.registry] - Found Local AppWizard-Generated Applications\Reimage - Windows Problem Relief. 2016-08-23 22:33:19 : [scan.registry] - Found osTip 2016-08-23 22:33:19 : [scan.registry] - Found ttwifi 2016-08-23 22:33:19 : [scan.registry] - Found MICROSOFT\OTUT 2016-08-23 22:33:19 : [scan.registry] - Found INSTALLPATH\STATUS 2016-08-23 22:33:19 : [scan.registry] - Found UCBrowser 2016-08-23 22:33:19 : [scan.registry] - Found UCBrowserPID 2016-08-23 22:33:19 : [scan.registry] - Found AutoTime 2016-08-23 22:33:19 : [scan.registry] - Found KuaiZip 2016-08-23 22:33:19 : [scan.registry] - Found SNDA 2016-08-23 22:33:19 : [scan.registry] - Found KuaiZipSFX 2016-08-23 22:33:19 : [scan.registry] - Found ZipTool 2016-08-23 22:33:19 : [scan.registry] - Found Maoha 2016-08-23 22:33:19 : [scan.registry] - Found Ludashi 2016-08-23 22:33:19 : [scan.registry] - Found {E6276374-DE18-4AA5-A365-9016A2F98A2D} 2016-08-23 22:33:19 : [scan.registry] - Found UCBrowser 2016-08-23 22:33:19 : [scan.registry] - Found UCBrowserPID 2016-08-23 22:33:19 : [scan.registry] - Found ZipTool 2016-08-23 22:33:20 : [scan.registry] - Found Maoha 2016-08-23 22:33:20 : [scan.registry] - Found Ludashi 2016-08-23 22:33:20 : [scan.registry] - Found ComputerZ 2016-08-23 22:33:20 : [scan.registry] - Found Social2Se 2016-08-23 22:33:20 : [scan.registry] - Found WeatherChickn 2016-08-23 22:33:20 : [scan.registry] - Found {B6DCCCD3-520D-4485-B642-FCC136CE12C3} 2016-08-23 22:33:20 : [scan.registry] - Stopping registry scan [3] 2016-08-23 22:33:20 : [scan] - Progress: 80% 2016-08-23 22:33:20 : [scan.registry] - Starting registry scan [4] 2016-08-23 22:33:20 : [scan.registry] - Found 3DCCCD6BD02558446B24CF1C63EC213C 2016-08-23 22:33:20 : [scan.registry] - Found 3DCCCD6BD02558446B24CF1C63EC213C 2016-08-23 22:33:20 : [scan.registry] - Found 3DCCCD6BD02558446B24CF1C63EC213C 2016-08-23 22:33:20 : [scan.registry] - Found 3DCCCD6BD02558446B24CF1C63EC213C 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [4] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [5] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [5] 2016-08-23 22:33:21 : [scan] - Progress: 82% 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [6] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [6] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [7] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [7] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [8] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [8] 2016-08-23 22:33:21 : [scan] - Progress: 84% 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [9] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [9] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [10] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [10] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [11] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [11] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [12] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [12] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [13] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [13] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [14] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [14] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [15] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [15] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [16] 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [16] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [17] 2016-08-23 22:33:21 : [scan.registry] - Found amazonbrowserapp.com 2016-08-23 22:33:21 : [scan.registry] - Found analytics.app.amazonbrowserapp.com 2016-08-23 22:33:21 : [scan.registry] - Found navsmart.info 2016-08-23 22:33:21 : [scan.registry] - Found piroga.space 2016-08-23 22:33:21 : [scan.registry] - Found piroga.space 2016-08-23 22:33:21 : [scan.registry] - Stopping registry scan [17] 2016-08-23 22:33:21 : [scan.registry] - Starting registry scan [18] 2016-08-23 22:33:21 : [scan.registry] - Found apphide 2016-08-23 22:33:21 : [scan.registry] - Found apphide 2016-08-23 22:33:21 : [scan.registry] - Found apphide 2016-08-23 22:33:22 : [scan.registry] - Found msiql 2016-08-23 22:33:22 : [scan.registry] - Found msiql 2016-08-23 22:33:22 : [scan.registry] - Found QGuan10in1 2016-08-23 22:33:22 : [scan.registry] - Found QGuan10in1 2016-08-23 22:33:22 : [scan.registry] - Found EYAN 2016-08-23 22:33:22 : [scan.registry] - Stopping registry scan [18] 2016-08-23 22:33:22 : [scan] - Progress: 86% 2016-08-23 22:33:22 : [scan.registry] - Starting registry scan [19] 2016-08-23 22:33:22 : [scan.registry] - Found HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL 2016-08-23 22:33:22 : [scan.registry] - Found HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Classes\AppID\jZipShell.DLL 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Clients\StartMenuInternet\UCBrowser 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\UCBrowser.exe 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\RegisteredApplications UCBrowser 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\UCBrowser.exe 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Classes\AppID\3045035B-3C14-4698-8AC4-ADB18CC42C1E 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost kuaizipupdatesvc 2016-08-23 22:33:23 : [scan.registry] - Found HKEY_CLASSES_ROOT\Drive\shellex\ContextMenuHandlers\JZipShlExt 2016-08-23 22:33:23 : [scan.registry] - Found HKEY_CLASSES_ROOT\Directory\shellex\ContextMenuHandlers\JZipShlExt 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\KuaiZipShlExt 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\KuaiZipShlExt 2016-08-23 22:33:23 : [scan.registry] - Found HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL 2016-08-23 22:33:23 : [scan.registry] - Stopping registry scan [19] 2016-08-23 22:33:23 : [scan] - Progress: 88% 2016-08-23 22:33:23 : [scan.registry] - 264 malicious registry element found 2016-08-23 22:33:23 : [scan] - Progress: 90% 2016-08-23 22:33:23 : [main] - Firefox is installed: True 2016-08-23 22:33:23 : [scan.firefox] - Starting Firefox based browsers scan [1] 2016-08-23 22:33:40 : [scan.firefox] - Stopping Firefox based browsers scan [1] 2016-08-23 22:33:40 : [scan.firefox] - Starting Firefox based browsers scan [2] 2016-08-23 22:33:42 : [scan.firefox] - Stopping Firefox based browsers scan [2] 2016-08-23 22:33:42 : [scan] - Progress: 92% 2016-08-23 22:33:42 : [scan.firefox] - Found Profile1 2016-08-23 22:33:42 : [scan.firefox] - Starting Firefox based browsers scan [3] 2016-08-23 22:33:42 : [scan.firefox] - Reading C:\Users\Rainbow\AppData\Roaming\Mozilla\Firefox\Profiles\g1sdxr00.default\prefs.js 2016-08-23 22:33:42 : [scan.firefox] - Reading C:\Users\Rainbow\AppData\Roaming\Mozilla\Firefox\Profiles\g1sdxr00.default\user.js 2016-08-23 22:33:42 : [scan.firefox] - Reading C:\Users\Rainbow\AppData\Roaming\Mozilla\Firefox\..\..\Profiles\zc4hl6bh.default\prefs.js 2016-08-23 22:33:42 : [scan.firefox] - Found "browser.search.defaultenginename" - "youndoo" 2016-08-23 22:33:42 : [scan.firefox] - Found "browser.search.searchengine.hp" - "http://www.youndoo.com/?z=f464596ff46957be675d591g9zdmcg2tbz0c2q1o3z&from=wak&uid=WDCXWD5000LPVX-22V0TT0_WD-WX11A35506U6506U6&type=hp" 2016-08-23 22:33:42 : [scan.firefox] - Found "browser.search.searchengine.sp" - "http://www.youndoo.com/search/?from=wak&q={searchTerms}&type=sp&uid=WDCXWD5000LPVX-22V0TT0_WD-WX11A35506U6506U6&z=f464596ff46957be675d591g9zdmcg2tbz0c2q1o3z" 2016-08-23 22:33:42 : [scan.firefox] - Found "browser.search.searchengine.url" - "http://www.youndoo.com/search/?from=wak&q={searchTerms}&type=sp&uid=WDCXWD5000LPVX-22V0TT0_WD-WX11A35506U6506U6&z=f464596ff46957be675d591g9zdmcg2tbz0c2q1o3z" 2016-08-23 22:33:42 : [scan.firefox] - Found "browser.search.selectedEngine" - "youndoo" 2016-08-23 22:33:42 : [scan.firefox] - Found "browser.startup.homepage" - "http://www.youndoo.com/?z=f464596ff46957be675d591g9zdmcg2tbz0c2q1o3z&from=wak&uid=WDCXWD5000LPVX-22V0TT0_WD-WX11A35506U6506U6&type=hp" 2016-08-23 22:33:42 : [scan.firefox] - Reading C:\Users\Rainbow\AppData\Roaming\Mozilla\Firefox\..\..\Profiles\zc4hl6bh.default\user.js 2016-08-23 22:33:42 : [scan.firefox] - No profile to scan, skipping 2016-08-23 22:33:42 : [scan.firefox] - No profile to scan, skipping 2016-08-23 22:33:42 : [scan.firefox] - No profile to scan, skipping 2016-08-23 22:33:42 : [scan] - Progress: 94% 2016-08-23 22:33:42 : [scan.firefox] - Stopping Firefox based browsers scan [3] 2016-08-23 22:33:42 : [scan.firefox] - 7 malicious Firefox preferences found 2016-08-23 22:33:42 : [scan] - Progress: 95% 2016-08-23 22:33:42 : [main] - Chrome is installed: True 2016-08-23 22:33:42 : [scan.chromium] - Starting Chromium based browsers scan [1] 2016-08-23 22:33:46 : [scan.chromium] - Stopping Chromium based browsers scan [1] 2016-08-23 22:33:46 : [scan] - Progress: 97% 2016-08-23 22:33:46 : [scan.chromium] - Starting Chromium based browsers scan [2] 2016-08-23 22:33:46 : [scan.chromium] - No profile to scan, skipping 2016-08-23 22:33:46 : [scan.chromium] - Opening C:\Users\Rainbow\AppData\Local\Google\Chrome\User Data\Default\Web Data 2016-08-23 22:33:46 : [scan.chromium] - Closing C:\Users\Rainbow\AppData\Local\Google\Chrome\User Data\Default\Web Data 2016-08-23 22:33:46 : [scan.chromium] - Opening C:\Users\Rainbow\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences 2016-08-23 22:33:47 : [scan.chromium] - No profile to scan, skipping 2016-08-23 22:33:47 : [scan.chromium] - No profile to scan, skipping 2016-08-23 22:33:47 : [scan.chromium] - No profile to scan, skipping 2016-08-23 22:33:47 : [scan.chromium] - No profile to scan, skipping 2016-08-23 22:33:47 : [scan.chromium] - No profile to scan, skipping 2016-08-23 22:33:47 : [scan.chromium] - Stopping Chromium based browsers scan [2] 2016-08-23 22:33:47 : [scan] - Progress: 99% 2016-08-23 22:33:47 : [scan.chromium] - Starting Chromium based browsers scan [3] 2016-08-23 22:33:47 : [scan.chromium] - Found C:\Users\Rainbow\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_navsmart.info_0.localstorage 2016-08-23 22:33:47 : [scan.chromium] - Found C:\Users\Rainbow\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_navsmart.info_0.localstorage-journal 2016-08-23 22:33:47 : [scan.chromium] - Stopping Chromium based browsers scan [3] 2016-08-23 22:33:47 : [scan.chromium] - 0 malicious Chromium preferences elements found 2016-08-23 22:33:47 : [scan] - Progress: 100% 2016-08-23 22:33:47 : [scan] - Stopping scan 2016-08-23 22:33:49 : [main] - Firefox is installed: True 2016-08-23 22:33:49 : [main] - Chrome is installed: True 2016-08-23 22:33:49 : [main] - Firefox is installed: True 2016-08-23 22:33:49 : [main] - Chrome is installed: True 2016-08-23 22:34:20 : [main.gui] - Clean requested 2016-08-23 22:34:23 : [main.gui] - Killing all processes 2016-08-23 22:34:23 : [main] - Killing [System Process](0) 2016-08-23 22:34:23 : [main] - Killing System(4) 2016-08-23 22:34:23 : [main] - smss.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - csrss.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - wininit.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - csrss.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - services.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - lsass.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - svchost.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - winlogon.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - svchost.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - dwm.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - svchost.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - svchost.exe - (4) not killed - whitelisted 2016-08-23 22:34:23 : [main] - Killing nvvsvc.exe(1180) 2016-08-23 22:34:24 : [main] - svchost.exe - (1180) not killed - whitelisted 2016-08-23 22:34:24 : [main] - svchost.exe - (1180) not killed - whitelisted 2016-08-23 22:34:24 : [main] - svchost.exe - (1180) not killed - whitelisted 2016-08-23 22:34:24 : [main] - svchost.exe - (1180) not killed - whitelisted 2016-08-23 22:34:24 : [main] - Killing nvxdsync.exe(1416) 2016-08-23 22:34:24 : [main] - Killing nvvsvc.exe(1424) 2016-08-23 22:34:24 : [main] - Killing IntelCpHeciSvc.exe(1480) 2016-08-23 22:34:24 : [main] - Killing igfxCUIService.exe(1568) 2016-08-23 22:34:24 : [main] - svchost.exe - (1568) not killed - whitelisted 2016-08-23 22:34:24 : [main] - Killing spoolsv.exe(2044) 2016-08-23 22:34:24 : [main] - Killing AdminService.exe(2184) 2016-08-23 22:34:24 : [main] - Killing Amazon1ButtonService64.Exe(2192) 2016-08-23 22:34:24 : [main] - Killing mDNSResponder.exe(2200) 2016-08-23 22:34:24 : [main] - svchost.exe - (2200) not killed - whitelisted 2016-08-23 22:34:24 : [main] - svchost.exe - (2200) not killed - whitelisted 2016-08-23 22:34:24 : [main] - Killing CCDMonitorService.exe(2312) 2016-08-23 22:34:25 : [main] - Killing AppleMobileDeviceService.exe(2356) 2016-08-23 22:34:25 : [main] - Killing GfExperienceService.exe(2364) 2016-08-23 22:34:25 : [main] - mfemms.exe - (2364) not killed - whitelisted 2016-08-23 22:34:25 : [main] - Killing mfevtps.exe(2444) 2016-08-23 22:34:25 : [main] - Killing LMSvc.exe(2464) 2016-08-23 22:34:26 : [main] - Killing mcsacore.exe(2516) 2016-08-23 22:34:26 : [main] - svchost.exe - (2516) not killed - whitelisted 2016-08-23 22:34:26 : [main] - svchost.exe - (2516) not killed - whitelisted 2016-08-23 22:34:26 : [main] - Killing vpnsvc.exe(2852) 2016-08-23 22:34:26 : [main] - Killing mfevtps.exe(2444) 2016-08-23 22:34:26 : [main] - Killing NvNetworkService.exe(2956) 2016-08-23 22:34:26 : [main] - Killing RichVideo.exe(3000) 2016-08-23 22:34:26 : [main] - Killing nvstreamsvc.exe(3008) 2016-08-23 22:34:26 : [main] - Killing MsMpEng.exe(3040) 2016-08-23 22:34:26 : [main] - Killing TuneUpUtilitiesService64.exe(3056) 2016-08-23 22:34:26 : [main] - dasHost.exe - (3056) not killed - whitelisted 2016-08-23 22:34:26 : [main] - Killing mcshield.exe(3968) 2016-08-23 22:34:27 : [main] - Killing nvstreamsvc.exe(4080) 2016-08-23 22:34:27 : [main] - conhost.exe - (4080) not killed - whitelisted 2016-08-23 22:34:27 : [main] - Killing mfefire.exe(4196) 2016-08-23 22:34:27 : [main] - Killing mfefire.exe(4196) 2016-08-23 22:34:27 : [main] - Killing McSvHost.exe(4372) 2016-08-23 22:34:28 : [main] - Killing McAPExe.exe(4396) 2016-08-23 22:34:28 : [main] - unsecapp.exe - (4396) not killed - whitelisted 2016-08-23 22:34:28 : [main] - Killing WmiPrvSE.exe(4904) 2016-08-23 22:34:28 : [main] - Killing WmiPrvSE.exe(4912) 2016-08-23 22:34:28 : [main] - Killing NisSrv.exe(2748) 2016-08-23 22:34:28 : [main] - Killing wermgr.exe(3772) 2016-08-23 22:34:29 : [main] - Killing nvstreamsvc.exe(0) 2016-08-23 22:34:29 : [main] - conhost.exe - (0) not killed - whitelisted 2016-08-23 22:34:29 : [main] - Killing TuneUpUtilitiesApp64.exe(0) 2016-08-23 22:34:29 : [main] - Killing RuntimeBroker.exe(5152) 2016-08-23 22:34:29 : [main] - Killing taskhostw.exe(5168) 2016-08-23 22:34:29 : [main] - sihost.exe - (5168) not killed - whitelisted 2016-08-23 22:34:29 : [main] - Killing PresentationFontCache.exe(5312) 2016-08-23 22:34:29 : [main] - explorer.exe - (5312) not killed - whitelisted 2016-08-23 22:34:29 : [main] - Killing igfxEM.exe(5808) 2016-08-23 22:34:29 : [main] - Killing igfxHK.exe(5828) 2016-08-23 22:34:29 : [main] - Killing igfxTray.exe(5868) 2016-08-23 22:34:29 : [main] - Killing SearchIndexer.exe(4836) 2016-08-23 22:34:29 : [main] - Killing ShellExperienceHost.exe(5688) 2016-08-23 22:34:29 : [main] - Killing SearchUI.exe(6076) 2016-08-23 22:34:29 : [main] - Killing nvtray.exe(6424) 2016-08-23 22:34:29 : [main] - Killing QASvc.exe(6664) 2016-08-23 22:34:29 : [main] - Killing NvBackend.exe(6688) 2016-08-23 22:34:29 : [main] - Killing LMEvent.exe(7052) 2016-08-23 22:34:29 : [main] - Killing LMLockHandler.exe(7068) 2016-08-23 22:34:29 : [main] - unsecapp.exe - (7068) not killed - whitelisted 2016-08-23 22:34:29 : [main] - unsecapp.exe - (7068) not killed - whitelisted 2016-08-23 22:34:29 : [main] - Killing QAMsg.exe(6912) 2016-08-23 22:34:30 : [main] - Killing LMTray.exe(6932) 2016-08-23 22:34:30 : [main] - Killing SettingSyncHost.exe(6924) 2016-08-23 22:34:30 : [main] - Killing QAEvent.exe(7140) 2016-08-23 22:34:30 : [main] - unsecapp.exe - (7140) not killed - whitelisted 2016-08-23 22:34:30 : [main] - Killing RAVCpl64.exe(6872) 2016-08-23 22:34:30 : [main] - Killing iTunesHelper.exe(6852) 2016-08-23 22:34:30 : [main] - Killing OneDrive.exe(7228) 2016-08-23 22:34:30 : [main] - Killing iFunBox_x64.exe(7320) 2016-08-23 22:34:30 : [main] - Killing ComputerZTray.exe(7500) 2016-08-23 22:34:31 : [main] - Killing iPodService.exe(7528) 2016-08-23 22:34:31 : [main] - Killing HD-Agent.exe(7552) 2016-08-23 22:34:31 : [main] - Killing McUICnt.exe(7584) 2016-08-23 22:34:31 : [main] - Killing jusched.exe(7628) 2016-08-23 22:34:31 : [main] - Killing ePowerSvc.exe(7664) 2016-08-23 22:34:31 : [main] - Killing 5KPlayer.exe(7672) 2016-08-23 22:34:31 : [main] - Killing RMSvc.exe(7684) 2016-08-23 22:34:31 : [main] - Killing ePowerTray.exe(8108) 2016-08-23 22:34:31 : [main] - Killing mbam.exe(5580) 2016-08-23 22:34:31 : [main] - svchost.exe - (5580) not killed - whitelisted 2016-08-23 22:34:31 : [main] - Killing igfxext.exe(1680) 2016-08-23 22:34:31 : [main] - Killing BackgroundAgent.exe(8072) 2016-08-23 22:34:32 : [main] - unsecapp.exe - (8072) not killed - whitelisted 2016-08-23 22:34:32 : [main] - Killing AcerPortal.exe(6244) 2016-08-23 22:34:32 : [main] - Killing secureline.exe(3032) 2016-08-23 22:34:33 : [main] - Killing abDocsDllLoaderMonitor.exe(6944) 2016-08-23 22:34:33 : [main] - Killing ePowerEvent.exe(6904) 2016-08-23 22:34:33 : [main] - Killing ccd.exe(5212) 2016-08-23 22:34:33 : [main] - conhost.exe - (5212) not killed - whitelisted 2016-08-23 22:34:33 : [main] - Killing MpCmdRun.exe(8540) 2016-08-23 22:34:33 : [main] - Killing dllhost.exe(9056) 2016-08-23 22:34:33 : [main] - Killing ACCStd.exe(8416) 2016-08-23 22:34:33 : [main] - Killing fontdrvhost.exe(7856) 2016-08-23 22:34:33 : [main] - Killing taskeng.exe(9288) 2016-08-23 22:34:33 : [main] - Killing McCSPServiceHost.exe(9732) 2016-08-23 22:34:33 : [main] - Killing jhi_service.exe(6744) 2016-08-23 22:34:34 : [main] - Killing LMS.exe(5048) 2016-08-23 22:34:34 : [main] - Killing ComputerZService.exe(9704) 2016-08-23 22:34:34 : [main] - Killing ApplicationFrameHost.exe(11100) 2016-08-23 22:34:34 : [main] - Killing sppsvc.exe(7104) 2016-08-23 22:34:34 : [main] - Killing SkypeHost.exe(6984) 2016-08-23 22:34:34 : [main] - Killing GoogleUpdate.exe(5596) 2016-08-23 22:34:34 : [main] - Killing mcupdate.exe(10272) 2016-08-23 22:34:36 : [main] - Killing UBTService.exe(10072) 2016-08-23 22:34:36 : [main] - Killing AppMonitorPlugIn.exe(10472) 2016-08-23 22:34:36 : [main] - Killing taskhostw.exe(10600) 2016-08-23 22:34:36 : [main] - Killing LiveUpdateChecker.exe(11828) 2016-08-23 22:34:37 : [main] - Killing audiodg.exe(12576) 2016-08-23 22:34:37 : [main] - Killing chrome.exe(12436) 2016-08-23 22:34:37 : [main] - Killing chrome.exe(0) 2016-08-23 22:34:37 : [main] - Killing chrome.exe(0) 2016-08-23 22:34:37 : [main] - Killing chrome.exe(0) 2016-08-23 22:34:37 : [main] - Killing chrome.exe(0) 2016-08-23 22:34:37 : [main] - MusNotification.exe - (0) not killed - whitelisted 2016-08-23 22:34:37 : [main] - Killing SearchProtocolHost.exe(0) 2016-08-23 22:34:37 : [main] - MusNotification.exe - (0) not killed - whitelisted 2016-08-23 22:34:37 : [main] - Killing SearchFilterHost.exe(0) 2016-08-23 22:34:37 : [main] - Killing Music.UI.exe(3980) 2016-08-23 22:34:37 : [main] - Killing backgroundTaskHost.exe(0) 2016-08-23 22:34:37 : [main] - Killing FMAPP.exe(0) 2016-08-23 22:34:37 : [quarantine] - Quarantine database successfully opened 2016-08-23 22:34:37 : [clean] - Progress: 0% 2016-08-23 22:34:37 : [clean.services] - Starting services clean