start
CreateRestorePoint:
Task: {86778E9B-77C0-4E94-A719-46F27E81F666} - System32\Tasks\UCBrowserUpdater => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
127.0.0.1       down.baidu2016.com
127.0.0.1       123.sogou.com
127.0.0.1       www.czzsyzgm.com
127.0.0.1       www.czzsyzxl.com
127.0.0.1       union.baidu2019.com
127.0.0.1       down.baidu2016.com
127.0.0.1       123.sogou.com
127.0.0.1       www.czzsyzgm.com
127.0.0.1       www.czzsyzxl.com
127.0.0.1       union.baidu2019.com
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [win_en_77] => [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers: [KzShlobj2] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F3} =>  No File
GroupPolicy: Restriction <======= ATTENTION
R1 UCGuard; C:\Windows\System32\DRIVERS\ucguard.sys [81792 2016-08-02] (Huorong Borui (Beijing) Technology Co., Ltd.) <==== ATTENTION
U0 aswVmm; no ImagePath
Folder: C:\Program Files (x86)\gq0FF58
2016-09-08 23:13 - 2016-09-08 23:13 - 00000000 ____D C:\ProgramData\Avira
2016-09-08 23:13 - 2016-09-08 23:13 - 00000000 ____D C:\ProgramData\Avg
Folder: C:\WINDOWS\Ogiedplofipy
2016-09-08 23:09 - 2016-09-08 23:14 - 00000000 ____D C:\Users\Pedro Teixeira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UC浏览器
2016-09-08 23:08 - 2016-09-30 19:57 - 00000506 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job
EmptyTemp:
Reboot:
end