2016-10-22 22:08:18 : 	<INFO>	[main] - Saving current options to the configuration file
2016-10-22 22:08:53 : 	<INFO>	[main.gui] - Scan requested
2016-10-22 22:08:53 : 	<INFO>	[scan] - Running from: C:\AdwCleaner
2016-10-22 22:08:53 : 	<INFO>	[scan] - Progress: 0%
2016-10-22 22:08:53 : 	<INFO>	[database] - Checking for database updates
2016-10-22 22:08:53 : 	<INFO>	[main.network] - Updating definitions
2016-10-22 22:08:57 : 	<INFO>	[main.network] - Saving the updated definitions
2016-10-22 22:08:57 : 	<INFO>	[main.network] - Requesting the lastest database release number
2016-10-22 22:08:59 : 	<INFO>	[main.network] - Latest definitions: 03c0faa5dd0d603b7443181c5d1bac0e
2016-10-22 22:08:59 : 	<INFO>	[database] - Database update succeeded: 03C0FAA5DD0D603B7443181C5D1BAC0E
2016-10-22 22:08:59 : 	<INFO>	[scan] - Progress: 5%
2016-10-22 22:08:59 : 	<INFO>	[database] - Initialize the database
2016-10-22 22:08:59 : 	<INFO>	[database] - Loading sqlite3.dll
2016-10-22 22:08:59 : 	<INFO>	[database] - Opening the database
2016-10-22 22:08:59 : 	<INFO>	[database] - Querying database's version
2016-10-22 22:08:59 : 	<INFO>	[database] - Loading internal data
2016-10-22 22:08:59 : 	<INFO>	[database] - Loading detections
2016-10-22 22:09:13 : 	<INFO>	[database] - Loading generics
2016-10-22 22:09:13 : 	<INFO>	[database] - Closing the database
2016-10-22 22:09:13 : 	<INFO>	[database] - Closing database
2016-10-22 22:09:13 : 	<INFO>	[database] - Unloading sqlite3.dll
2016-10-22 22:09:13 : 	<INFO>	[scan] - Progress: 15%
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections [1]
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections [2]
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections [3]
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections [4]
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections [5]
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections [6]
2016-10-22 22:09:13 : 	<INFO>	[scan.generic] - Generating generic detections [7]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [8]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [9]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [10]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [11]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [12]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [13]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [14]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [15]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [16]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [17]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [18]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [19]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [20]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [21]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [22]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [23]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [24]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [25]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [26]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [27]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [28]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [29]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [30]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [31]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [32]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [33]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [34]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [35]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [36]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [37]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [38]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [39]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [40]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [41]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [42]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [43]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [44]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generating generic detections [45]
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Generic detections generated
2016-10-22 22:09:14 : 	<INFO>	[scan] - Progress: 20%
2016-10-22 22:09:14 : 	<INFO>	[scan.generic] - Starting generic analysis
2016-10-22 22:10:08 : 	<WARN>	[scan.generic] - Found awinpa
2016-10-22 22:10:09 : 	<WARN>	[scan.generic] - Found 3529EDEA-1454947675-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:11 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455345127-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:13 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455687801-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:14 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455695024-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:16 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455723977-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:17 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455739809-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:19 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455747024-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:20 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455762885-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:21 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455770094-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:22 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455777302-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:23 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455829299-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:25 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455836509-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:26 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455850933-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:27 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455858148-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:28 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455865356-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:29 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455872564-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:31 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455919200-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:32 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455926411-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:33 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455933623-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:34 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455940837-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:36 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455986730-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:37 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456022071-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:38 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456029284-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:39 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456105229-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:40 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456112452-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:42 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456169177-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:43 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456176385-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:44 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456183596-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:45 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456190805-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:46 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456198015-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:47 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456205222-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:49 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456262482-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:50 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456269693-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:51 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456276906-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:52 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456284184-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:54 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456321532-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:55 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456328764-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:56 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456335974-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:57 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456343188-E411-A26A-D0BF9C63DB4D
2016-10-22 22:10:58 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456350397-E411-A26A-D0BF9C63DB4D
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.CRX
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTM
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTML
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.MHT
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTM
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTML
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.WEBP
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHT
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHTML
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.001
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.7z
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.arj
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.bz2
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.bzip2
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.cab
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.cpio
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.deb
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.dmg
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.fat
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.gz
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.gzip
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.hfs
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.iso
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.lha
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.lzh
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.lzma
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.ntfs
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.rar
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.rpm
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.squashfs
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.swm
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tar
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.taz
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tbz
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tbz2
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tgz
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tpz
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.txz
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.vhd
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.wim
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.xar
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.xz
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.z
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.zip
2016-10-22 22:11:06 : 	<WARN>	[scan.generic] - Found vToolbarUpdater40.3.6
2016-10-22 22:11:08 : 	<WARN>	[scan.generic] - Found 93BAD29AC2E44034A96BCB446EB8552E
2016-10-22 22:11:26 : 	<INFO>	[scan] - Progress: 30%
2016-10-22 22:11:26 : 	<INFO>	[scan.services] - Starting services scan [1]
2016-10-22 22:11:26 : 	<WARN>	[scan.registry] - Found winzipersvc
2016-10-22 22:11:26 : 	<WARN>	[scan.registry] - Found winzipersvc
2016-10-22 22:11:26 : 	<WARN>	[scan.registry] - Found WdMan
2016-10-22 22:11:26 : 	<WARN>	[scan.registry] - Found WdMan
2016-10-22 22:11:26 : 	<WARN>	[scan.registry] - Found GoogleChromeUpService
2016-10-22 22:11:26 : 	<WARN>	[scan.registry] - Found GoogleChromeUpService
2016-10-22 22:11:26 : 	<INFO>	[scan.services] - Stopping services scan [1]
2016-10-22 22:11:26 : 	<INFO>	[scan.services] - Starting services scan [2]
2016-10-22 22:11:27 : 	<WARN>	[scan.services] - Found WtuSystemSupport
2016-10-22 22:11:27 : 	<WARN>	[scan.services] - Found UCGuard
2016-10-22 22:11:27 : 	<WARN>	[scan.services] - Found WindowsSecurity
2016-10-22 22:11:27 : 	<WARN>	[scan.services] - Found yahoochrometechnology
2016-10-22 22:11:27 : 	<INFO>	[scan.services] - Stopping services scan [2]
2016-10-22 22:11:27 : 	<WARN>	[scan.services] - 5 malicious services found
2016-10-22 22:11:27 : 	<INFO>	[scan] - Progress: 40%
2016-10-22 22:11:27 : 	<INFO>	[scan.folders] - Starting folders scan
2016-10-22 22:11:30 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\globalUpdate
2016-10-22 22:11:31 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\avg web tuneup
2016-10-22 22:11:31 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-10-22 22:11:41 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\cpuminer
2016-10-22 22:11:42 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\tencent
2016-10-22 22:11:42 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\wenguanjia
2016-10-22 22:11:42 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\UPUpdata
2016-10-22 22:11:42 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Tencent
2016-10-22 22:11:42 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Softlink
2016-10-22 22:11:57 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
2016-10-22 22:12:03 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\Documents\vShare
2016-10-22 22:12:15 : 	<WARN>	[scan.folders] - Found C:\Users\aweso\AppData\Roaming\Elex-tech
2016-10-22 22:12:44 : 	<WARN>	[scan.folders] - Found C:\Program Files\avg web tuneup
2016-10-22 22:12:45 : 	<WARN>	[scan.folders] - Found C:\Program Files\Common Files\AVG Secure Search
2016-10-22 22:12:46 : 	<WARN>	[scan.folders] - Found C:\Program Files\Common Files\tencent
2016-10-22 22:12:47 : 	<WARN>	[scan.folders] - Found C:\Program Files\Common Files\Tencent
2016-10-22 22:12:56 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\VirtualStore\Program Files (x86)\tencent
2016-10-22 22:12:56 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\VirtualStore\Program Files (x86)\Tencent
2016-10-22 22:12:59 : 	<WARN>	[scan.folders] - Found C:\ppsfile
2016-10-22 22:13:03 : 	<WARN>	[scan.folders] - Found C:\ProgramData\tencent
2016-10-22 22:13:03 : 	<WARN>	[scan.folders] - Found C:\ProgramData\TXQMPC
2016-10-22 22:13:03 : 	<WARN>	[scan.folders] - Found C:\ProgramData\avg web tuneup
2016-10-22 22:13:03 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Logic Handler
2016-10-22 22:13:03 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Windows Security
2016-10-22 22:13:03 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Quoteexs
2016-10-22 22:13:03 : 	<WARN>	[scan.folders] - Found C:\ProgramData\yahoochrome
2016-10-22 22:13:04 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Tencent
2016-10-22 22:13:04 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Thunder Network
2016-10-22 22:13:04 : 	<WARN>	[scan.folders] - Found C:\ProgramData\NetworkPacketManitor
2016-10-22 22:13:06 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\tencent
2016-10-22 22:13:06 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\TXQMPC
2016-10-22 22:13:06 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\avg web tuneup
2016-10-22 22:13:06 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\Logic Handler
2016-10-22 22:13:06 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\Windows Security
2016-10-22 22:13:06 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\Quoteexs
2016-10-22 22:13:06 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\yahoochrome
2016-10-22 22:13:07 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\Tencent
2016-10-22 22:13:07 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\Thunder Network
2016-10-22 22:13:07 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Application Data\NetworkPacketManitor
2016-10-22 22:13:08 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
2016-10-22 22:13:09 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee
2016-10-22 22:13:09 : 	<WARN>	[scan.folders] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uncheckit
2016-10-22 22:13:16 : 	<WARN>	[scan.folders] - Found C:\Program Files (x86)\globalUpdate
2016-10-22 22:13:17 : 	<WARN>	[scan.folders] - Found C:\Program Files (x86)\tencent
2016-10-22 22:13:17 : 	<WARN>	[scan.folders] - Found C:\Program Files (x86)\Tencent
2016-10-22 22:13:18 : 	<WARN>	[scan.folders] - Found C:\Program Files (x86)\Common Files\AVG Secure Search
2016-10-22 22:13:19 : 	<WARN>	[scan.folders] - Found C:\Program Files (x86)\Common Files\tencent
2016-10-22 22:13:19 : 	<WARN>	[scan.folders] - Found C:\Program Files (x86)\Common Files\Tencent
2016-10-22 22:13:32 : 	<WARN>	[scan.folders] - Found C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Uncheckit
2016-10-22 22:13:39 : 	<WARN>	[scan.folders] - Found C:\Users\Public\Documents\dmp
2016-10-22 22:13:39 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F
2016-10-22 22:13:39 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
2016-10-22 22:13:39 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\Geckofx
2016-10-22 22:13:40 : 	<INFO>	[scan.folders] - Stopping folders scan
2016-10-22 22:13:40 : 	<WARN>	[scan.folders] - 94 malicious folders found
2016-10-22 22:13:40 : 	<INFO>	[scan] - Progress: 50%
2016-10-22 22:13:40 : 	<INFO>	[scan.files] - Starting files scan
2016-10-22 22:14:04 : 	<WARN>	[scan.files] - Found C:\WINDOWS\SysNative\log\iSafeKrnlCall.log
2016-10-22 22:14:04 : 	<WARN>	[scan.files] - Found C:\WINDOWS\SysNative\cpuminer-conf.json
2016-10-22 22:14:06 : 	<WARN>	[scan.files] - Found C:\WINDOWS\SysNative\drivers\TAOKernel64.sys
2016-10-22 22:14:06 : 	<WARN>	[scan.files] - Found C:\WINDOWS\SysNative\drivers\TFsFltX64.sys
2016-10-22 22:14:06 : 	<WARN>	[scan.files] - Found C:\WINDOWS\SysNative\drivers\ucguard.sys
2016-10-22 22:14:06 : 	<WARN>	[scan.files] - Found C:\WINDOWS\SysNative\drivers\KuaiZipDrive2.sys
2016-10-22 22:14:09 : 	<WARN>	[scan.files] - Found C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2016-10-22 22:14:10 : 	<WARN>	[scan.files] - Found C:\ProgramData\Application Data\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2016-10-22 22:14:16 : 	<WARN>	[scan.files] - Found C:\WINDOWS\SysWOW64\drivers\TS888x64.sys
2016-10-22 22:14:20 : 	<INFO>	[scan.files] - Stopping files scan
2016-10-22 22:14:20 : 	<WARN>	[scan.files] - 9 malicious files found
2016-10-22 22:14:20 : 	<INFO>	[scan] - Progress: 55%
2016-10-22 22:14:20 : 	<INFO>	[scan.dll] - Starting DLL scan
2016-10-22 22:14:21 : 	<INFO>	[scan.dll] - Stopping DLL scan
2016-10-22 22:14:21 : 	<WARN>	[scan.dll] - 0 malicious DLL found
2016-10-22 22:14:21 : 	<INFO>	[scan] - Progress: 60%
2016-10-22 22:14:21 : 	<INFO>	[scan.wmi] - Starting WMI scan
2016-10-22 22:14:22 : 	<INFO>	[scan.wmi] - Stopping WMI scan
2016-10-22 22:14:22 : 	<WARN>	[scan.wmi] - 0 malicious WMI found
2016-10-22 22:14:22 : 	<INFO>	[scan] - Progress: 65%
2016-10-22 22:14:22 : 	<INFO>	[scan.shortcuts] - Starting shortcuts scan
2016-10-22 22:14:24 : 	<WARN>	[scan.shortcuts] - Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [%SNF%]
2016-10-22 22:14:43 : 	<INFO>	[scan.shortcuts] - Stopping shortcuts scan
2016-10-22 22:14:43 : 	<WARN>	[scan.shortcuts] - 1 malicious shortcuts found
2016-10-22 22:14:43 : 	<INFO>	[scan] - Progress: 70%
2016-10-22 22:14:43 : 	<INFO>	[scan.tasks] - Starting tasks scan
2016-10-22 22:14:45 : 	<WARN>	[scan.tasks] - Found updateTask
2016-10-22 22:14:45 : 	<WARN>	[scan.tasks] - Found updateama
2016-10-22 22:14:46 : 	<WARN>	[scan.tasks] - Found UncheckitTaskMN
2016-10-22 22:14:46 : 	<WARN>	[scan.tasks] - Found UncheckitUpdateTaskC
2016-10-22 22:14:46 : 	<WARN>	[scan.tasks] - Found UncheckitUpdateTaskDB
2016-10-22 22:14:46 : 	<INFO>	[scan.tasks] - Stopping tasks scan
2016-10-22 22:14:46 : 	<WARN>	[scan.tasks] - 5 malicious tasks found
2016-10-22 22:14:46 : 	<INFO>	[scan] - Progress: 75%
2016-10-22 22:14:46 : 	<INFO>	[scan.registry] - Starting registry scan [1]
2016-10-22 22:14:47 : 	<WARN>	[scan.registry] - Found dream.capture
2016-10-22 22:14:48 : 	<WARN>	[scan.registry] - Found metnsd
2016-10-22 22:14:48 : 	<WARN>	[scan.registry] - Found ppsmb
2016-10-22 22:14:48 : 	<WARN>	[scan.registry] - Found qmgcfiles
2016-10-22 22:14:48 : 	<WARN>	[scan.registry] - Found QQAppIEAgentEx.AgentForAndroid
2016-10-22 22:14:48 : 	<WARN>	[scan.registry] - Found QQAppIEAgentEx.AgentForAndroid.1
2016-10-22 22:14:48 : 	<WARN>	[scan.registry] - Found ScriptHelper.GenericWnd
2016-10-22 22:14:49 : 	<WARN>	[scan.registry] - Found ScriptHelper.GenericWnd.1
2016-10-22 22:14:49 : 	<WARN>	[scan.registry] - Found ScriptHelper.NativeApi
2016-10-22 22:14:49 : 	<WARN>	[scan.registry] - Found ScriptHelper.NativeApi.1
2016-10-22 22:14:49 : 	<WARN>	[scan.registry] - Found ScriptHelper.ScriptHelperApi
2016-10-22 22:14:49 : 	<WARN>	[scan.registry] - Found ScriptHelper.ScriptHelperApi.1
2016-10-22 22:14:49 : 	<WARN>	[scan.registry] - Found WtuServer.WtuServerObj
2016-10-22 22:14:49 : 	<WARN>	[scan.registry] - Found WtuServer.WtuServerObj.1
2016-10-22 22:14:50 : 	<WARN>	[scan.registry] - Found dream.capture
2016-10-22 22:14:51 : 	<WARN>	[scan.registry] - Found metnsd
2016-10-22 22:14:51 : 	<WARN>	[scan.registry] - Found ppsmb
2016-10-22 22:14:51 : 	<WARN>	[scan.registry] - Found qmgcfiles
2016-10-22 22:14:51 : 	<WARN>	[scan.registry] - Found QQAppIEAgentEx.AgentForAndroid
2016-10-22 22:14:51 : 	<WARN>	[scan.registry] - Found QQAppIEAgentEx.AgentForAndroid.1
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found ScriptHelper.GenericWnd
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found ScriptHelper.GenericWnd.1
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found ScriptHelper.NativeApi
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found ScriptHelper.NativeApi.1
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found ScriptHelper.ScriptHelperApi
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found ScriptHelper.ScriptHelperApi.1
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found WtuServer.WtuServerObj
2016-10-22 22:14:52 : 	<WARN>	[scan.registry] - Found WtuServer.WtuServerObj.1
2016-10-22 22:14:52 : 	<INFO>	[scan.registry] - Stopping registry scan [1]
2016-10-22 22:14:52 : 	<INFO>	[scan.registry] - Starting registry scan [2]
2016-10-22 22:15:01 : 	<WARN>	[scan.registry] - Found {E6F928E4-B672-4F3A-8CA2-53C4259235DE}
2016-10-22 22:15:06 : 	<WARN>	[scan.registry] - Found {51BEE30D-EEC8-4BA3-930B-298B8E759EB1}
2016-10-22 22:15:08 : 	<WARN>	[scan.registry] - Found {70DE12EA-79F4-46BC-9812-86DB50A2FD64}
2016-10-22 22:15:08 : 	<WARN>	[scan.registry] - Found {933B95E2-E7B7-4AD9-B952-7AC336682AE3}
2016-10-22 22:15:08 : 	<WARN>	[scan.registry] - Found {5EC7C511-CD0F-42E6-830C-1BD9882F3458}
2016-10-22 22:15:08 : 	<WARN>	[scan.registry] - Found {D96C1D26-5CDF-4506-9244-57233C3984DF}
2016-10-22 22:15:08 : 	<WARN>	[scan.registry] - Found {50F4150A-48B2-417A-BE4C-C83F580FB904}
2016-10-22 22:15:08 : 	<WARN>	[scan.registry] - Found {B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
2016-10-22 22:15:08 : 	<WARN>	[scan.registry] - Found {CA3A5461-96B5-46DD-9341-5350D3C94615}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {E7270EC6-0113-4A78-B610-E501D0A9E48E}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {D96C1D26-5CDF-4506-9244-57233C3984DF}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {023E9EC8-B147-40EB-B0B3-DF90618FB371}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {0522D9A4-4D57-437D-978D-E5B3B6C9005D}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {07F41522-AF7D-4F26-B394-094F059FDB8A}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {0C40F472-7407-4467-8914-1DEA7C326972}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {212E6D43-6062-492A-B8CC-144669FF11ED}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {3A807417-B46D-4D37-8C9A-19AC6DE204F9}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {3CC60715-D6C5-429D-830E-43FA3F86C61D}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {555D7146-94A8-4C94-AE76-C39CDC7F7705}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {59D188FA-757A-424E-8C93-F58FFD896BD7}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {8120D9D6-785C-4413-9C0C-DF2028C56FAD}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {823AE2EB-E62C-4847-B192-C99B91B92416}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {9B9A45F4-18FC-484A-BACA-076D78273D8E}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {A6D54287-7939-466A-8579-92546D946C8C}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {A78EDAFB-926F-4D93-AB13-8232D7378EB1}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {138F4260-66CA-4F7C-812F-C6EED99B7EC7}
2016-10-22 22:15:09 : 	<WARN>	[scan.registry] - Found {790F2D3B-18EE-40E2-A45E-1FAC13B6AFB8}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {E6F928E4-B672-4F3A-8CA2-53C4259235DE}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {B6360BD3-5CD0-40D3-BD87-DAFF37889F50}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {E1D75F62-CBBD-45C7-9D1D-6B5ECEC2E006}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {E6F928E4-B672-4F3A-8CA2-53C4259235DE}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {6E1533F0-E0B5-465A-9F16-98FF0C76D493}
2016-10-22 22:15:11 : 	<WARN>	[scan.registry] - Found {8519F1E4-E25B-42B1-B361-0C643F45CF11}
2016-10-22 22:15:12 : 	<WARN>	[scan.registry] - Found {95B7759C-8C7F-4BF1-B163-73684A933233}
2016-10-22 22:15:12 : 	<WARN>	[scan.registry] - Found {FB4F6285-4C32-49F2-950F-A5998F9CEC6C}
2016-10-22 22:15:12 : 	<WARN>	[scan.registry] - Found {50F4150A-48B2-417A-BE4C-C83F580FB904}
2016-10-22 22:15:15 : 	<WARN>	[scan.registry] - Found {FB4F6285-4C32-49F2-950F-A5998F9CEC6C}
2016-10-22 22:15:15 : 	<WARN>	[scan.registry] - Found {5EC7C511-CD0F-42E6-830C-1BD9882F3458}
2016-10-22 22:15:15 : 	<WARN>	[scan.registry] - Found {50F4150A-48B2-417A-BE4C-C83F580FB904}
2016-10-22 22:15:15 : 	<WARN>	[scan.registry] - Found {29B6CFD5-0064-411A-8C42-9890C83F9921}
2016-10-22 22:15:15 : 	<WARN>	[scan.registry] - Found {FB4F6285-4C32-49F2-950F-A5998F9CEC6C}
2016-10-22 22:15:15 : 	<WARN>	[scan.registry] - Found {50F4150A-48B2-417A-BE4C-C83F580FB904}
2016-10-22 22:15:16 : 	<WARN>	[scan.registry] - Found {5EC7C511-CD0F-42E6-830C-1BD9882F3458}
2016-10-22 22:15:16 : 	<WARN>	[scan.registry] - Found {5645E0E7-FC12-43BF-A6E4-F9751942B298}
2016-10-22 22:15:17 : 	<WARN>	[scan.registry] - Found {C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
2016-10-22 22:15:17 : 	<WARN>	[scan.registry] - Found {5E6A8DA1-5731-465B-B036-B9E16EF26CAC}
2016-10-22 22:15:17 : 	<WARN>	[scan.registry] - Found {5EC7C511-CD0F-42E6-830C-1BD9882F3458}
2016-10-22 22:15:17 : 	<WARN>	[scan.registry] - Found {5EC7C511-CD0F-42E6-830C-1BD9882F3458}
2016-10-22 22:15:17 : 	<WARN>	[scan.registry] - Found {B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
2016-10-22 22:15:29 : 	<WARN>	[scan.registry] - Found {754DF2CE-51E8-4895-B53C-6381418B84AE}
2016-10-22 22:15:38 : 	<WARN>	[scan.registry] - Found {5EC7C511-CD0F-42E6-830C-1BD9882F3458}
2016-10-22 22:15:46 : 	<INFO>	[scan.registry] - Stopping registry scan [2]
2016-10-22 22:15:46 : 	<INFO>	[scan.registry] - Starting registry scan [3]
2016-10-22 22:15:46 : 	<WARN>	[scan.registry] - Found {A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
2016-10-22 22:15:47 : 	<WARN>	[scan.registry] - Found {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
2016-10-22 22:15:49 : 	<WARN>	[scan.registry] - Found {A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
2016-10-22 22:15:49 : 	<WARN>	[scan.registry] - Found {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found GlobalUpdate
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found Installer
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found PPStream
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found yahooprovidedsearch
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found UCBrowser
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found UCBrowserPID
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found AutoTime
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found Uncheckit
2016-10-22 22:16:01 : 	<WARN>	[scan.registry] - Found SNDA
2016-10-22 22:16:03 : 	<WARN>	[scan.registry] - Found Installer
2016-10-22 22:16:03 : 	<WARN>	[scan.registry] - Found GlobalUpdate
2016-10-22 22:16:03 : 	<WARN>	[scan.registry] - Found Installer
2016-10-22 22:16:03 : 	<WARN>	[scan.registry] - Found PPStream
2016-10-22 22:16:03 : 	<WARN>	[scan.registry] - Found yahooprovidedsearch
2016-10-22 22:16:04 : 	<WARN>	[scan.registry] - Found UCBrowser
2016-10-22 22:16:04 : 	<WARN>	[scan.registry] - Found UCBrowserPID
2016-10-22 22:16:04 : 	<WARN>	[scan.registry] - Found AutoTime
2016-10-22 22:16:04 : 	<WARN>	[scan.registry] - Found Uncheckit
2016-10-22 22:16:04 : 	<WARN>	[scan.registry] - Found SNDA
2016-10-22 22:16:06 : 	<WARN>	[scan.registry] - Found UCBrowser
2016-10-22 22:16:09 : 	<WARN>	[scan.registry] - Found UCBrowser
2016-10-22 22:16:11 : 	<WARN>	[scan.registry] - Found {A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
2016-10-22 22:16:11 : 	<WARN>	[scan.registry] - Found {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found GlobalUpdate
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found Installer
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found PPStream
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found yahooprovidedsearch
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found UCBrowser
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found UCBrowserPID
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found AutoTime
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found Uncheckit
2016-10-22 22:16:14 : 	<WARN>	[scan.registry] - Found SNDA
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found GlobalUpdate
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found jogotempo
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found AVG Tuneup
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found qksee
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found {A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found {E6276374-DE18-4AA5-A365-9016A2F98A2D}
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found {G6276374-DEEE-4AAA-A355-9016A2F98A2D}
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found UCBrowser
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found UCBrowserPID
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found Uncheckit
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found SkypeUpdateEx
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found mtQuoteex
2016-10-22 22:16:16 : 	<WARN>	[scan.registry] - Found WinZiper
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found GlobalUpdate
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found Installer
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found PPStream
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found yahooprovidedsearch
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found UCBrowser
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found UCBrowserPID
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found AutoTime
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found Uncheckit
2016-10-22 22:16:21 : 	<WARN>	[scan.registry] - Found SNDA
2016-10-22 22:16:23 : 	<WARN>	[scan.registry] - Found InstalledBrowserExtensions
2016-10-22 22:16:23 : 	<WARN>	[scan.registry] - Found {A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
2016-10-22 22:16:23 : 	<WARN>	[scan.registry] - Found {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83}
2016-10-22 22:16:23 : 	<WARN>	[scan.registry] - Found cpuminer
2016-10-22 22:16:24 : 	<INFO>	[scan.registry] - Stopping registry scan [3]
2016-10-22 22:16:24 : 	<INFO>	[scan] - Progress: 80%
2016-10-22 22:16:24 : 	<INFO>	[scan.registry] - Starting registry scan [4]
2016-10-22 22:16:26 : 	<INFO>	[scan.registry] - Stopping registry scan [4]
2016-10-22 22:16:26 : 	<INFO>	[scan.registry] - Starting registry scan [5]
2016-10-22 22:16:26 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001\Software\Microsoft\Internet Explorer\Main Start Page https://mysearch.avg.com/?cid={D489200E-B8B0-4A01-8941-7855DADFE4D7}&mid=82e9ac8285cd47cfa0be7d98fea7dd25-a97e0440acd2c73fc17edb4711d912c24fcf3560&lang=en&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-10-16 18:50:44&v=4.3.6.255&pid=wtu&sg=&sap=hp
2016-10-22 22:16:26 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001\Software\Microsoft\Internet Explorer\Search Default_Search_URL http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:26 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001\Software\Microsoft\Internet Explorer\SearchUrl Default http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:26 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main Start Page https://mysearch.avg.com/?cid={D489200E-B8B0-4A01-8941-7855DADFE4D7}&mid=82e9ac8285cd47cfa0be7d98fea7dd25-a97e0440acd2c73fc17edb4711d912c24fcf3560&lang=en&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-10-16 18:50:44&v=4.3.6.255&pid=wtu&sg=&sap=hp
2016-10-22 22:16:26 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Search Default_Search_URL http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\SearchUrl Default http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl Default http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU\Software\Microsoft\Internet Explorer\Main Start Page https://mysearch.avg.com/?cid={D489200E-B8B0-4A01-8941-7855DADFE4D7}&mid=82e9ac8285cd47cfa0be7d98fea7dd25-a97e0440acd2c73fc17edb4711d912c24fcf3560&lang=en&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-10-16 18:50:44&v=4.3.6.255&pid=wtu&sg=&sap=hp
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU\Software\Microsoft\Internet Explorer\Search Default_Search_URL http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU\Software\Microsoft\Internet Explorer\SearchUrl Default http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU64\Software\Microsoft\Internet Explorer\Main Start Page https://mysearch.avg.com/?cid={D489200E-B8B0-4A01-8941-7855DADFE4D7}&mid=82e9ac8285cd47cfa0be7d98fea7dd25-a97e0440acd2c73fc17edb4711d912c24fcf3560&lang=en&ds=AVG&coid=avgtbavg&cmpid=0516piz&pr=fr&d=2016-10-16 18:50:44&v=4.3.6.255&pid=wtu&sg=&sap=hp
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU64\Software\Microsoft\Internet Explorer\Search Default_Search_URL http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU64\Software\Microsoft\Internet Explorer\SearchUrl Default http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHCxomeujIo3zShEwEYaK0kT6Qzew7FMwjpoO99eVwM9nQWH-0sQZkrMelVOhZ0W2l4yZwUuF8I9SQT3g9pP1FdlD3aHT-x45tumQHipBQkHCNbYkmW44XStYGKN8cANpZg8-3ozAcE5Sdxz1haKIRac6dtEA-2-9hSjcO96jgA5&q={searchTerms}
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [5]
2016-10-22 22:16:27 : 	<INFO>	[scan] - Progress: 82%
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [6]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [6]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [7]
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {95B7759C-8C7F-4BF1-B163-73684A933233}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001\Software\Microsoft\Internet Explorer\SearchScopes\
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {95B7759C-8C7F-4BF1-B163-73684A933233}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKU\S-1-5-21-3944939195-997498184-2075381370-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\SearchScopes\
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {95B7759C-8C7F-4BF1-B163-73684A933233}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU\Software\Microsoft\Internet Explorer\SearchScopes\
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found {95B7759C-8C7F-4BF1-B163-73684A933233}
2016-10-22 22:16:27 : 	<WARN>	[scan.registry] - Found HKCU64\Software\Microsoft\Internet Explorer\SearchScopes\
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [7]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [8]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [8]
2016-10-22 22:16:27 : 	<INFO>	[scan] - Progress: 84%
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [9]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [9]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [10]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [10]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [11]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [11]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [12]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [12]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [13]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [13]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [14]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [14]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [15]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Stopping registry scan [15]
2016-10-22 22:16:27 : 	<INFO>	[scan.registry] - Starting registry scan [16]
2016-10-22 22:16:28 : 	<INFO>	[scan.registry] - Stopping registry scan [16]
2016-10-22 22:16:28 : 	<INFO>	[scan.registry] - Starting registry scan [17]
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found pstatic.bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found static.cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cdnins.tohotweb.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found foxi69.tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found pstatic.bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found static.cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tohotweb.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cdnins.tohotweb.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found foxi69.tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found pstatic.bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found static.cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tohotweb.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found pstatic.bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found static.cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cdnins.tohotweb.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found foxi69.tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found pstatic.bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found static.cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tohotweb.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cdnins.tohotweb.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found foxi69.tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found pstatic.bestpriceninja.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found static.cmptch.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tlscdn.com
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found tohotweb.com
2016-10-22 22:16:28 : 	<INFO>	[scan.registry] - Stopping registry scan [17]
2016-10-22 22:16:28 : 	<INFO>	[scan.registry] - Starting registry scan [18]
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found apphide
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found apphide
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found apphide
2016-10-22 22:16:28 : 	<WARN>	[scan.registry] - Found apphide
2016-10-22 22:16:29 : 	<WARN>	[scan.registry] - Found cpuminer
2016-10-22 22:16:29 : 	<WARN>	[scan.registry] - Found HCDNClient
2016-10-22 22:16:29 : 	<WARN>	[scan.registry] - Found HCDNClient
2016-10-22 22:16:29 : 	<WARN>	[scan.registry] - Found HCDNClient
2016-10-22 22:16:29 : 	<WARN>	[scan.registry] - Found HCDNClient
2016-10-22 22:16:31 : 	<WARN>	[scan.registry] - Found smallbox
2016-10-22 22:16:32 : 	<WARN>	[scan.registry] - Found msiql
2016-10-22 22:16:32 : 	<WARN>	[scan.registry] - Found msiql
2016-10-22 22:16:32 : 	<INFO>	[scan.registry] - Stopping registry scan [18]
2016-10-22 22:16:32 : 	<INFO>	[scan] - Progress: 86%
2016-10-22 22:16:32 : 	<INFO>	[scan.registry] - Starting registry scan [19]
2016-10-22 22:16:32 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\Classes\AppID\DownloadProxy.EXE
2016-10-22 22:16:32 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
2016-10-22 22:16:33 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
2016-10-22 22:16:33 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\MozillaPlugins\@qq.com/npandroidassistant
2016-10-22 22:16:33 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\AIRTOSTRONG.EXE
2016-10-22 22:16:33 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\Clients\StartMenuInternet\UCBrowser
2016-10-22 22:16:33 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\UCBrowser.exe
2016-10-22 22:16:33 : 	<WARN>	[scan.registry] - Found HKEY_CLASSES_ROOT\.qmgc
2016-10-22 22:16:33 : 	<WARN>	[scan.registry] - Found HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Quoteex.exe
2016-10-22 22:16:33 : 	<INFO>	[scan.registry] - Stopping registry scan [19]
2016-10-22 22:16:33 : 	<INFO>	[scan] - Progress: 88%
2016-10-22 22:16:33 : 	<INFO>	[scan.registry] - 298 malicious registry element found
2016-10-22 22:16:33 : 	<INFO>	[scan] - Progress: 90%
2016-10-22 22:16:33 : 	<INFO>	[main] - Firefox is installed: True
2016-10-22 22:16:33 : 	<INFO>	[scan.firefox] - Starting Firefox based browsers scan [1]
2016-10-22 22:16:44 : 	<WARN>	[scan.firefox] - Found C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\5r8i1eef.default\Extensions\Avg@toolbar.xpi
2016-10-22 22:17:23 : 	<INFO>	[scan.firefox] - Stopping Firefox based browsers scan [1]
2016-10-22 22:17:23 : 	<INFO>	[scan.firefox] - Starting Firefox based browsers scan [2]
2016-10-22 22:17:23 : 	<WARN>	[scan.firefox] - Found C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\5r8i1eef.default\searchplugins\avg-secure-search.xml
2016-10-22 22:17:26 : 	<WARN>	[scan.firefox] - Found C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\5r8i1eef.default\searchplugins\nice.xml
2016-10-22 22:17:30 : 	<INFO>	[scan.firefox] - Stopping Firefox based browsers scan [2]
2016-10-22 22:17:30 : 	<INFO>	[scan] - Progress: 92%
2016-10-22 22:17:30 : 	<INFO>	[scan.firefox] - Starting Firefox based browsers scan [3]
2016-10-22 22:17:30 : 	<INFO>	[scan.firefox] - Reading C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\5r8i1eef.default\prefs.js
2016-10-22 22:17:30 : 	<INFO>	[scan.firefox] - Reading C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\5r8i1eef.default\user.js
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - Found "browser.search.searchengine.iconURL" -  "http://www.nicesearches.com/favicon.ico?t=1"
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - Found "browser.search.searchengine.url" -  "http://www.nicesearches.com/search.php?type=ds&ts=1467194617&from=84040629&uid=hgstxhts545050a7e680_rbf50am5071zgp071zgpx&z=2a870e3d4327257b611ec4eg4z2qem0gbtez5q5gdq&q={searchTerms}"
2016-10-22 22:17:30 : 	<INFO>	[scan.firefox] - Reading C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js
2016-10-22 22:17:30 : 	<INFO>	[scan.firefox] - Reading C:\Users\Azan\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\user.js
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - Found "browser.search.searchengine.iconURL" -  "http://www.nicesearches.com/favicon.ico?t=1"
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - Found "browser.search.searchengine.url" -  "http://www.nicesearches.com/search.php?type=ds&ts=1467194617&from=84040629&uid=hgstxhts545050a7e680_rbf50am5071zgp071zgpx&z=2a870e3d4327257b611ec4eg4z2qem0gbtez5q5gdq&q={searchTerms}"
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - No profile to scan, skipping
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - No profile to scan, skipping
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - No profile to scan, skipping
2016-10-22 22:17:30 : 	<INFO>	[scan] - Progress: 94%
2016-10-22 22:17:30 : 	<INFO>	[scan.firefox] - Stopping Firefox based browsers scan [3]
2016-10-22 22:17:30 : 	<WARN>	[scan.firefox] - 4 malicious Firefox preferences found
2016-10-22 22:17:30 : 	<INFO>	[scan] - Progress: 95%
2016-10-22 22:17:30 : 	<INFO>	[main] - Chrome is installed: True
2016-10-22 22:17:30 : 	<INFO>	[scan.chromium] - Starting Chromium based browsers scan [1]
2016-10-22 22:17:45 : 	<WARN>	[scan.chromium] - Found C:\Users\aweso\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fdckocnfhibclnnkifmjbbogcfkbijki_0.localstorage
2016-10-22 22:17:45 : 	<INFO>	[scan.chromium] - Stopping Chromium based browsers scan [1]
2016-10-22 22:17:45 : 	<INFO>	[scan] - Progress: 97%
2016-10-22 22:17:45 : 	<INFO>	[scan.chromium] - Starting Chromium based browsers scan [2]
2016-10-22 22:17:45 : 	<WARN>	[scan.chromium] - No profile to scan, skipping
2016-10-22 22:17:45 : 	<INFO>	[scan.chromium] - Opening C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Web Data
2016-10-22 22:17:45 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] aol.com
2016-10-22 22:17:45 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] ask.com
2016-10-22 22:17:45 : 	<INFO>	[scan.chromium] - Closing C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Web Data
2016-10-22 22:17:45 : 	<INFO>	[scan.chromium] - Opening C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
2016-10-22 22:17:48 : 	<INFO>	[scan.chromium] - Opening C:\Users\aweso\AppData\Local\Google\Chrome\User Data\Default\Web Data
2016-10-22 22:17:48 : 	<INFO>	[scan.chromium] - Closing C:\Users\aweso\AppData\Local\Google\Chrome\User Data\Default\Web Data
2016-10-22 22:17:48 : 	<INFO>	[scan.chromium] - Opening C:\Users\aweso\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\aweso\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [startup_urls] http://www.nicesearches.com?type=hp&ts=1474892958&from=25470926&uid=hgstxhts545050a7e680_rbf50am5071zgp071zgpx&z=cc6afecfd6f419848e77078g9zdm3z0b7tfoctaw7q
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - No profile to scan, skipping
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - No profile to scan, skipping
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - No profile to scan, skipping
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - No profile to scan, skipping
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - No profile to scan, skipping
2016-10-22 22:17:50 : 	<INFO>	[scan.chromium] - Stopping Chromium based browsers scan [2]
2016-10-22 22:17:50 : 	<INFO>	[scan] - Progress: 99%
2016-10-22 22:17:50 : 	<INFO>	[scan.chromium] - Starting Chromium based browsers scan [3]
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_foxi69.tlscdn.com_0.localstorage
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_foxi69.tlscdn.com_0.localstorage-journal
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_pstatic.bestpriceninja.com_0.localstorage-journal
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.cmptch.com_0.localstorage
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.cmptch.com_0.localstorage-journal
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - Found C:\Users\Azan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.bestpriceninja.com_0.localstorage-journal
2016-10-22 22:17:50 : 	<INFO>	[scan.chromium] - Stopping Chromium based browsers scan [3]
2016-10-22 22:17:50 : 	<WARN>	[scan.chromium] - 3 malicious Chromium preferences elements found
2016-10-22 22:17:50 : 	<INFO>	[scan] - Progress: 100%
2016-10-22 22:17:50 : 	<INFO>	[scan] - Stopping scan
2016-10-22 22:18:59 : 	<INFO>	[main.gui] - Showing Report window
2016-10-22 22:19:15 : 	<INFO>	[main.gui] - Clean requested
2016-10-22 22:19:19 : 	<INFO>	[main.gui] - Killing all processes
2016-10-22 22:19:19 : 	<WARN>	[main] - Killing [System Process](0)
2016-10-22 22:19:19 : 	<WARN>	[main] - Killing System(4)
2016-10-22 22:19:19 : 	<WARN>	[main] - smss.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - csrss.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - wininit.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - csrss.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - winlogon.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - services.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - lsass.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - dwm.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (4) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - Killing IntelCpHeciSvc.exe(1920)
2016-10-22 22:19:19 : 	<WARN>	[main] - Killing WUDFHost.exe(1972)
2016-10-22 22:19:19 : 	<WARN>	[main] - Killing OmniServ.exe(572)
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (572) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - Killing igfxCUIService.exe(1948)
2016-10-22 22:19:19 : 	<WARN>	[main] - RtkAudioService64.exe - (1948) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - RAVBg64.exe - (1948) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - svchost.exe - (1948) not killed - whitelisted
2016-10-22 22:19:19 : 	<WARN>	[main] - Killing spoolsv.exe(2452)
2016-10-22 22:19:20 : 	<WARN>	[main] - dasHost.exe - (2452) not killed - whitelisted
2016-10-22 22:19:20 : 	<WARN>	[main] - Killing AGSService.exe(2932)
2016-10-22 22:19:20 : 	<WARN>	[main] - svchost.exe - (2932) not killed - whitelisted
2016-10-22 22:19:20 : 	<WARN>	[main] - Killing AdobeUpdateService.exe(2980)
2016-10-22 22:19:20 : 	<WARN>	[main] - Killing BTDevMgr.exe(2992)
2016-10-22 22:19:20 : 	<WARN>	[main] - Killing ss_conn_service.exe(3036)
2016-10-22 22:19:20 : 	<WARN>	[main] - Killing AppleMobileDeviceService.exe(2224)
2016-10-22 22:19:20 : 	<WARN>	[main] - Killing PnkBstrB.exe(2232)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing PnkBstrA.exe(2328)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing AERTSr64.exe(2736)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing mDNSResponder.exe(3016)
2016-10-22 22:19:21 : 	<WARN>	[main] - svchost.exe - (3016) not killed - whitelisted
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing HPWMISVC.exe(3092)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing HeciServer.exe(3100)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing ddmgr.exe(3108)
2016-10-22 22:19:21 : 	<WARN>	[main] - svchost.exe - (3108) not killed - whitelisted
2016-10-22 22:19:21 : 	<WARN>	[main] - svchost.exe - (3108) not killed - whitelisted
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing desktop25.exe(3200)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing avgsvca.exe(3208)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing PsiService_2.exe(3216)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing winsecurity.exe(3296)
2016-10-22 22:19:21 : 	<WARN>	[main] - Killing officeclicktorun.exe(3332)
2016-10-22 22:19:22 : 	<WARN>	[main] - Killing ToolbarUpdater.exe(588)
2016-10-22 22:19:22 : 	<WARN>	[main] - sihost.exe - (588) not killed - whitelisted
2016-10-22 22:19:22 : 	<WARN>	[main] - Killing PresentationFontCache.exe(5592)
2016-10-22 22:19:22 : 	<WARN>	[main] - Killing RuntimeBroker.exe(5688)
2016-10-22 22:19:22 : 	<WARN>	[main] - explorer.exe - (5688) not killed - whitelisted
2016-10-22 22:19:22 : 	<WARN>	[main] - svchost.exe - (5688) not killed - whitelisted
2016-10-22 22:19:22 : 	<WARN>	[main] - Killing igfxEM.exe(3980)
2016-10-22 22:19:23 : 	<WARN>	[main] - Killing igfxHK.exe(3964)
2016-10-22 22:19:23 : 	<WARN>	[main] - Killing igfxTray.exe(4396)
2016-10-22 22:19:23 : 	<WARN>	[main] - Killing opvapp.exe(3160)
2016-10-22 22:19:23 : 	<WARN>	[main] - Killing ShellExperienceHost.exe(3304)
2016-10-22 22:19:23 : 	<WARN>	[main] - Killing SearchIndexer.exe(6024)
2016-10-22 22:19:23 : 	<WARN>	[main] - Killing SettingSyncHost.exe(6744)
2016-10-22 22:19:24 : 	<WARN>	[main] - Killing GoogleCrashHandler.exe(6880)
2016-10-22 22:19:24 : 	<WARN>	[main] - Killing GoogleCrashHandler64.exe(6940)
2016-10-22 22:19:24 : 	<WARN>	[main] - Killing ClientCore.exe(7096)
2016-10-22 22:19:24 : 	<WARN>	[main] - Killing OPBHOBroker.exe(3284)
2016-10-22 22:19:24 : 	<WARN>	[main] - Killing OPBHOBrokerDsktop.exe(6548)
2016-10-22 22:19:24 : 	<WARN>	[main] - Killing iTunesHelper.exe(3236)
2016-10-22 22:19:24 : 	<WARN>	[main] - Killing OneDrive.exe(6244)
2016-10-22 22:19:25 : 	<WARN>	[main] - iCloudServices.exe - (6244) not killed - whitelisted
2016-10-22 22:19:25 : 	<WARN>	[main] - Killing ApplePhotoStreams.exe(6624)
2016-10-22 22:19:25 : 	<WARN>	[main] - Killing iCloudDrive.exe(5644)
2016-10-22 22:19:25 : 	<WARN>	[main] - Killing uTorrent.exe(576)
2016-10-22 22:19:25 : 	<WARN>	[main] - Killing iPodService.exe(7272)
2016-10-22 22:19:26 : 	<WARN>	[main] - Killing APSDaemon.exe(8020)
2016-10-22 22:19:26 : 	<WARN>	[main] - Killing utorrentie.exe(8140)
2016-10-22 22:19:26 : 	<WARN>	[main] - Killing avguix.exe(8564)
2016-10-22 22:19:26 : 	<WARN>	[main] - Killing utorrentie.exe(8652)
2016-10-22 22:19:26 : 	<WARN>	[main] - svchost.exe - (8652) not killed - whitelisted
2016-10-22 22:19:26 : 	<WARN>	[main] - Killing CCleaner64.exe(5412)
2016-10-22 22:19:27 : 	<WARN>	[main] - unsecapp.exe - (5412) not killed - whitelisted
2016-10-22 22:19:27 : 	<WARN>	[main] - WmiPrvSE.exe - (5412) not killed - whitelisted
2016-10-22 22:19:27 : 	<WARN>	[main] - Killing HPSA_Service.exe(7816)
2016-10-22 22:19:27 : 	<WARN>	[main] - Killing HPSupportSolutionsFrameworkService.exe(9124)
2016-10-22 22:19:27 : 	<WARN>	[main] - Killing fontdrvhost.exe(1408)
2016-10-22 22:19:27 : 	<WARN>	[main] - Killing SkypeHost.exe(6720)
2016-10-22 22:19:28 : 	<WARN>	[main] - Killing avgcsrva.exe(9820)
2016-10-22 22:19:28 : 	<WARN>	[main] - Killing sdiagnhost.exe(10032)
2016-10-22 22:19:29 : 	<WARN>	[main] - conhost.exe - (10032) not killed - whitelisted
2016-10-22 22:19:29 : 	<WARN>	[main] - Killing ApplicationFrameHost.exe(12152)
2016-10-22 22:19:29 : 	<WARN>	[main] - Killing TripAdvisor.exe(13104)
2016-10-22 22:19:29 : 	<WARN>	[main] - Killing sysnetwk.exe(14732)
2016-10-22 22:19:29 : 	<WARN>	[main] - svchost.exe - (14732) not killed - whitelisted
2016-10-22 22:19:29 : 	<WARN>	[main] - Killing wlanext.exe(7588)
2016-10-22 22:19:29 : 	<WARN>	[main] - conhost.exe - (7588) not killed - whitelisted
2016-10-22 22:19:29 : 	<WARN>	[main] - Killing avgidsagenta.exe(20204)
2016-10-22 22:19:30 : 	<WARN>	[main] - Killing avgcsrva.exe(13776)
2016-10-22 22:19:30 : 	<WARN>	[main] - Killing avgwdsvca.exe(18904)
2016-10-22 22:19:30 : 	<WARN>	[main] - Killing avgnsa.exe(18384)
2016-10-22 22:19:30 : 	<WARN>	[main] - Killing avgrsa.exe(8204)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing HelpPane.exe(10928)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing SyncServer.exe(10596)
2016-10-22 22:19:31 : 	<WARN>	[main] - conhost.exe - (10596) not killed - whitelisted
2016-10-22 22:19:31 : 	<WARN>	[main] - svchost.exe - (10596) not killed - whitelisted
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing GoogleUpdate.exe(19944)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing utorrentie.exe(0)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing SystemSettings.exe(0)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing dllhost.exe(1388)
2016-10-22 22:19:31 : 	<WARN>	[main] - SearchUI.exe - (1388) not killed - whitelisted
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing mbam.exe(15088)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing mbamservice.exe(5088)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing mbamscheduler.exe(19984)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing taskhostw.exe(10800)
2016-10-22 22:19:31 : 	<WARN>	[main] - svchost.exe - (10800) not killed - whitelisted
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing SearchProtocolHost.exe(0)
2016-10-22 22:19:31 : 	<WARN>	[main] - Killing SearchFilterHost.exe(0)
2016-10-22 22:19:31 : 	<INFO>	[quarantine] - Quarantine database successfully opened
2016-10-22 22:19:31 : 	<INFO>	[clean] - Progress: 0%
2016-10-22 22:19:31 : 	<INFO>	[clean.services] - Starting services clean
2016-10-22 23:45:38 : 	INFO	[main] - >>>> STARTING <<<<
2016-10-22 23:45:38 : 	INFO	[main] - Version: 6.030
2016-10-22 23:45:38 : 	INFO	[main] - RAM Usage: 50
2016-10-22 23:45:38 : 	INFO	[main] - OS: WIN_10  X64
2016-10-22 23:45:38 : 	<INFO>	[main.language] - Checking the language
2016-10-22 23:45:38 : 	<INFO>	[main.language] - Language found: en
2016-10-22 23:45:38 : 	<INFO>	[main.network] - Checking the network connectivity
2016-10-22 23:45:38 : 	<INFO>	[main.network] - Network connectivity status: True
2016-10-22 23:45:38 : 	<INFO>	[main.eula] - Checking for EULA agreement
2016-10-22 23:45:38 : 	<INFO>	[main.network] - Check for updates
2016-10-22 23:45:38 : 	<INFO>	[main.network] - Requesting the last release number
2016-10-22 23:45:39 : 	<INFO>	[main.network] - The current version is up-to-date
2016-10-22 23:45:39 : 	<INFO>	[main.gui] - GUI setup
2016-10-22 23:45:39 : 	<INFO>	[main.gui] - Languages setup
2016-10-22 23:45:39 : 	<INFO>	[main] - Chrome is installed: True
2016-10-22 23:45:39 : 	<INFO>	[main] - Firefox is installed: True
2016-10-22 23:45:39 : 	<INFO>	[main.gui] - Showing the gui
2016-10-22 23:45:43 : 	<INFO>	[main.gui] - Showing Report window
2016-10-22 23:46:31 : 	<INFO>	[main.gui] - Scan requested
2016-10-22 23:46:31 : 	<INFO>	[scan] - Running from: C:\AdwCleaner
2016-10-22 23:46:31 : 	<INFO>	[scan] - Progress: 0%
2016-10-22 23:46:31 : 	<INFO>	[database] - Checking for database updates
2016-10-22 23:46:31 : 	<INFO>	[main.network] - Updating definitions
2016-10-22 23:46:38 : 	<INFO>	[main.network] - Saving the updated definitions
2016-10-22 23:46:38 : 	<INFO>	[main.network] - Requesting the lastest database release number
2016-10-22 23:46:39 : 	<INFO>	[main.network] - Latest definitions: 03c0faa5dd0d603b7443181c5d1bac0e
2016-10-22 23:46:39 : 	<INFO>	[database] - Database update succeeded: 03C0FAA5DD0D603B7443181C5D1BAC0E
2016-10-22 23:46:39 : 	<INFO>	[scan] - Progress: 5%
2016-10-22 23:46:39 : 	<INFO>	[database] - Initialize the database
2016-10-22 23:46:40 : 	<INFO>	[database] - Loading sqlite3.dll
2016-10-22 23:46:40 : 	<INFO>	[database] - Opening the database
2016-10-22 23:46:40 : 	<INFO>	[database] - Querying database's version
2016-10-22 23:46:40 : 	<INFO>	[database] - Loading internal data
2016-10-22 23:46:40 : 	<INFO>	[database] - Loading detections
2016-10-22 23:46:50 : 	<INFO>	[database] - Loading generics
2016-10-22 23:46:50 : 	<INFO>	[database] - Closing the database
2016-10-22 23:46:50 : 	<INFO>	[database] - Closing database
2016-10-22 23:46:50 : 	<INFO>	[database] - Unloading sqlite3.dll
2016-10-22 23:46:50 : 	<INFO>	[scan] - Progress: 15%
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [1]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [2]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [3]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [4]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [5]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [6]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [7]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [8]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [9]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [10]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [11]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [12]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [13]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [14]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [15]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [16]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [17]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [18]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [19]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [20]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [21]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [22]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [23]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [24]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [25]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [26]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [27]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [28]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [29]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [30]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [31]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [32]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [33]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [34]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [35]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [36]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [37]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [38]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [39]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [40]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [41]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [42]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [43]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [44]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generating generic detections [45]
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Generic detections generated
2016-10-22 23:46:50 : 	<INFO>	[scan] - Progress: 20%
2016-10-22 23:46:50 : 	<INFO>	[scan.generic] - Starting generic analysis
2016-10-22 23:47:03 : 	<WARN>	[scan.generic] - Found awinpa
2016-10-22 23:47:03 : 	<WARN>	[scan.generic] - Found 3529EDEA-1454947675-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:05 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455345127-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:07 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455687801-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:08 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455695024-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:09 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455723977-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:10 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455739809-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:12 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455747024-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:13 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455762885-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:15 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455770094-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:16 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455777302-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:17 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455829299-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:19 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455836509-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:20 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455850933-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:22 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455858148-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:23 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455865356-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:24 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455872564-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:26 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455919200-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:27 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455926411-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:28 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455933623-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:29 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455940837-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:31 : 	<WARN>	[scan.generic] - Found 3529EDEA-1455986730-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:32 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456022071-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:33 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456029284-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:34 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456105229-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:36 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456112452-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:37 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456169177-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:38 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456176385-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:39 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456183596-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:41 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456190805-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:42 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456198015-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:43 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456205222-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:45 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456262482-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:46 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456269693-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:47 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456276906-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:50 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456284184-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:52 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456321532-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:54 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456328764-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:55 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456335974-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:57 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456343188-E411-A26A-D0BF9C63DB4D
2016-10-22 23:47:58 : 	<WARN>	[scan.generic] - Found 3529EDEA-1456350397-E411-A26A-D0BF9C63DB4D
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.CRX
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTM
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTML
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.MHT
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTM
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTML
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.WEBP
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHT
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHTML
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.001
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.7z
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.arj
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.bz2
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.bzip2
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.cab
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.cpio
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.deb
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.dmg
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.fat
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.gz
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.gzip
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.hfs
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.iso
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.lha
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.lzh
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.lzma
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.ntfs
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.rar
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.rpm
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.squashfs
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.swm
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tar
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.taz
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tbz
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tbz2
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tgz
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.tpz
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.txz
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.vhd
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.wim
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.xar
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.xz
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.z
2016-10-22 23:48:06 : 	<WARN>	[scan.generic] - Found HKLM\SOFTWARE\Classes\WinZippers.zip
2016-10-22 23:48:07 : 	<WARN>	[scan.generic] - Found 93BAD29AC2E44034A96BCB446EB8552E
2016-10-22 23:48:27 : 	<INFO>	[scan] - Progress: 30%
2016-10-22 23:48:27 : 	<INFO>	[scan.services] - Starting services scan [1]
2016-10-22 23:48:27 : 	<WARN>	[scan.registry] - Found winzipersvc
2016-10-22 23:48:27 : 	<WARN>	[scan.registry] - Found winzipersvc
2016-10-22 23:48:28 : 	<WARN>	[scan.registry] - Found WdMan
2016-10-22 23:48:28 : 	<WARN>	[scan.registry] - Found WdMan
2016-10-22 23:48:28 : 	<WARN>	[scan.registry] - Found GoogleChromeUpService
2016-10-22 23:48:28 : 	<WARN>	[scan.registry] - Found GoogleChromeUpService
2016-10-22 23:48:28 : 	<INFO>	[scan.services] - Stopping services scan [1]
2016-10-22 23:48:28 : 	<INFO>	[scan.services] - Starting services scan [2]
2016-10-22 23:48:29 : 	<WARN>	[scan.services] - Found UCGuard
2016-10-22 23:48:29 : 	<WARN>	[scan.services] - Found WindowsSecurity
2016-10-22 23:48:29 : 	<WARN>	[scan.services] - Found yahoochrometechnology
2016-10-22 23:48:30 : 	<INFO>	[scan.services] - Stopping services scan [2]
2016-10-22 23:48:30 : 	<WARN>	[scan.services] - 3 malicious services found
2016-10-22 23:48:30 : 	<INFO>	[scan] - Progress: 40%
2016-10-22 23:48:30 : 	<INFO>	[scan.folders] - Starting folders scan
2016-10-22 23:48:32 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\globalUpdate
2016-10-22 23:48:33 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\avg web tuneup
2016-10-22 23:48:33 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-10-22 23:48:44 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\cpuminer
2016-10-22 23:48:45 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\tencent
2016-10-22 23:48:45 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\wenguanjia
2016-10-22 23:48:45 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\UPUpdata
2016-10-22 23:48:45 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Tencent
2016-10-22 23:48:45 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Softlink
2016-10-22 23:49:00 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
2016-10-22 23:49:06 : 	<WARN>	[scan.folders] - Found C:\Users\Azan\Documents\vShare
2016-10-22 23:49:20 : 	<WARN>	[scan.folders] - Found C:\Users\aweso\AppData\Roaming\Elex-tech
2016-10-22 23:49:53 : 	<WARN>	[scan.folders] - Found C:\Program Files\avg web tuneup
2016-10-22 23:49:54 : 	<WARN>	[scan.folders] - Found C:\Program Files\Common Files\AVG Secure Search