# AdwCleaner v6.041 - Logfile created 27/12/2016 at 10:04:13 # Updated on 16/12/2016 by Malwarebytes # Database : 2016-12-26.3 [Server] # Operating System : Windows 10 Home (X64) # Username : fernand - ORDI-TIFERN # Running from : C:\Users\fernand\Desktop\adwcleaner_6.041.exe # Mode: Scan # Support : https://www.malwarebytes.com/support ***** [ Services ] ***** Service Found: mehugosi Service Found: Orbiter Service Found: SMUpd Service Found: SMUpdd Service Found: UCBrowserSvc Service Found: ProntSpooler Service Found: zdwfp Service Found: GoogleChromeUpService Service Found: KuaiZipDrive Service Found: KuaizipUpdateChecker Service Found: NetUtils2016 Service Found: NetUtils2016srv Service Found: Nettrans Service Found: SaFiSvc ***** [ Folders ] ***** Folder Found: C:\Program Files (x86)\A776EEAB-1482753468-96F7-1A43-74D02B99725F Folder Found: C:\Users\fernand\AppData\Local\BrowserAir Folder Found: C:\Users\fernand\AppData\Roaming\Note-up Folder Found: C:\Users\fernand\AppData\Roaming\Kuaizip Folder Found: C:\Users\fernand\AppData\Roaming\Softlink Folder Found: C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserAir Folder Found: C:\Program Files\Common Files\Noobzo Folder Found: C:\ProgramData\SearchModule Folder Found: C:\ProgramData\NetworkPacketManitor Folder Found: C:\ProgramData\vCore Folder Found: C:\ProgramData\Application Data\SearchModule Folder Found: C:\ProgramData\Application Data\NetworkPacketManitor Folder Found: C:\ProgramData\Application Data\vCore Folder Found: C:\Program Files (x86)\Max Driver Updater Folder Found: C:\Program Files (x86)\ORBTR Folder Found: C:\Program Files (x86)\CleanBrowser Folder Found: C:\Program Files (x86)\mpck Folder Found: C:\Program Files (x86)\DPower Folder Found: C:\Program Files (x86)\HDWallPaper Folder Found: C:\Program Files (x86)\MyMemory Folder Found: C:\Users\fernand\AppData\Local\Temp\MAXDriverUpdater Folder Found: C:\WINDOWS\SysWoW64\config\systemprofile\AppData\Local\zdengine Folder Found: C:\Users\fernand\AppData\Local\app Folder Found: C:\Users\fernand\AppData\Roaming\browsers Folder Found: C:\Program Files (x86)\DPower Folder Found: C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\naweriweentcofise Folder Found: C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\extensions\amcontextmenu@loucypher ***** [ Files ] ***** File Found: C:\Users\fernand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BrowserAir.lnk File Found: C:\Users\fernand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\BrowserAir.lnk File Found: C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\¿ìѹ.lnk File Found: C:\Users\fernand\Desktop\BrowserAir.lnk File Found: C:\Users\fernand\Desktop\AutoTime.lnk File Found: C:\Users\fernand\Desktop\¿ìѹ.lnk File Found: C:\WINDOWS\SysNative\zdengineOff.ini File Found: C:\WINDOWS\SysNative\bi3.exe File Found: C:\WINDOWS\SysNative\drivers\zdwfp64.sys File Found: C:\WINDOWS\SysNative\drivers\KuaiZipDrive.sys File Found: C:\WINDOWS\SysNative\drivers\NetUtils2016.sys File Found: C:\ProgramData\smp2.exe File Found: C:\ProgramData\smp2.exe File Found: C:\ProgramData\Application Data\smp2.exe File Found: C:\WINDOWS\SysWoW64\findit.xml File Found: C:\WINDOWS\SysWoW64\zdengineOff.ini File Found: C:\WINDOWS\SysWoW64\NetUtils2016.exe File Found: C:\Users\fernand\AppData\Roaming\Browsers\firefox.bat.exe File Found: C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\invalidprefs.js File Found: C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\searchplugins\trovi.xml File Found: C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\searchplugins\smod.xml ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious keys found. ***** [ Shortcuts ] ***** Shortcut infected: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www-searching.com/?prd=set_epc&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe38b, ) Shortcut infected: C:\Users\fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk ( hxxp://www%2dsearching.com/?prd=set_epc&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe Shortcut infected: C:\Users\fernand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk ( "microsoft-edge:hxxp://www%2dsearching.com/?prd=set_epe&s=gcqzftptn095001au,5ca14dc1- Shortcut infected: C:\Users\fernand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Search.lnk ( hxxp://www%2dsearching.com/?prd=set_epe&s=gcqzftptn095001au,5ca14dc1-7240-491b-9663-0da1949fe ***** [ Scheduled Tasks ] ***** Task Found: IBUpd Task Found: IBUpd2 Task Found: SMW_P Task Found: KuaiZip_Update Task Found: UCBrowserUpdaterCore Task Found: Microsoft\Windows\Media Center\VCore ***** [ Registry ] ***** Key Found: HKLM\SOFTWARE\Classes\UCHTML Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.CRX Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTM Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.HTML Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.MHT Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTM Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.SHTML Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.WEBP Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHT Key Found: HKLM\SOFTWARE\Classes\UCHTML.AssocFile.XHTML Value Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [WINCOMQR3] Key Found: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting Key Found: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Application Hosting Key Found: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\ProntSpooler Key Found: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\ProntSpooler Key Found: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService Key Found: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\GoogleChromeUpService Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Classes\AppXrh6feys59dqfzsv9p3s9p6aep0hwtb23 Key Found: HKCU\Software\Classes\AppXrh6feys59dqfzsv9p3s9p6aep0hwtb23 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.001 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.002 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.003 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.004 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.005 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.006 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.007 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.008 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.009 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.01 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.010 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.011 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.012 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.013 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.014 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.015 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.016 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.017 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.018 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.019 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.02 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.020 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.021 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.022 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.023 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.024 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.025 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.026 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.027 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.028 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.029 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.03 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.030 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.031 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.032 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.033 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.034 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.035 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.036 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.037 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.038 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.039 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.04 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.040 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.041 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.042 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.043 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.044 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.045 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.046 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.047 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.048 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.049 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.05 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.050 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.051 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.052 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.053 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.054 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.055 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.056 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.057 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.058 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.059 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.06 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.060 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.061 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.062 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.063 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.064 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.065 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.066 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.067 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.068 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.069 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.07 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.070 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.071 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.072 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.073 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.074 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.075 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.076 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.077 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.078 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.079 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.08 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.080 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.081 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.082 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.083 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.084 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.085 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.086 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.087 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.088 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.089 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.09 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.090 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.091 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.092 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.093 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.094 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.095 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.096 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.097 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.098 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.099 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.7z Key Found: HKLM\SOFTWARE\Classes\KuaiZip.arj Key Found: HKLM\SOFTWARE\Classes\KuaiZip.bz2 Key Found: HKLM\SOFTWARE\Classes\KuaiZip.cab Key Found: HKLM\SOFTWARE\Classes\KuaiZip.gz Key Found: HKLM\SOFTWARE\Classes\KuaiZip.gzip Key Found: HKLM\SOFTWARE\Classes\KuaiZip.jar Key Found: HKLM\SOFTWARE\Classes\KuaiZip.kz Key Found: HKLM\SOFTWARE\Classes\KuaiZip.lzh Key Found: HKLM\SOFTWARE\Classes\KuaiZip.mou Key Found: HKLM\SOFTWARE\Classes\KuaiZip.rar Key Found: HKLM\SOFTWARE\Classes\KuaiZip.rpm Key Found: HKLM\SOFTWARE\Classes\KuaiZip.tar Key Found: HKLM\SOFTWARE\Classes\KuaiZip.tbz Key Found: HKLM\SOFTWARE\Classes\KuaiZip.tgz Key Found: HKLM\SOFTWARE\Classes\KuaiZip.wim Key Found: HKLM\SOFTWARE\Classes\KuaiZip.z Key Found: HKLM\SOFTWARE\Classes\KuaiZip.zip Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.ape Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.bin Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.ccd Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.cue Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.flac Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.iso Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.isz Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.mdf Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.mds Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.nrg Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.vcd Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount.wv Key Found: HKLM\SOFTWARE\Classes\KuaiZipMount_FileAsso.Origin Key Found: HKLM\SOFTWARE\Classes\KuaiZip_FileAsso.Origin Key Found: HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt Key Found: HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt.1 Key Found: HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu Key Found: HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu.1 Key Found: HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler Key Found: HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler.1 Key Found: HKLM\SOFTWARE\Classes\QZipShell.KzShlobj Key Found: HKLM\SOFTWARE\Classes\QZipShell.KzShlobj.1 Key Found: HKLM\SOFTWARE\Classes\QZipShell.PropertyExt Key Found: HKLM\SOFTWARE\Classes\QZipShell.PropertyExt.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataContainer Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataContainer.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataController Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataController.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataTable Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataTable.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder Key Found: HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic Key Found: HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager Key Found: HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager.1 Key Found: HKLM\SOFTWARE\Classes\zdengineLib.WFPController Key Found: HKLM\SOFTWARE\Classes\zdengineLib.WFPController.1 Key Found: [x64] HKCU\Software\Classes\AppXrh6feys59dqfzsv9p3s9p6aep0hwtb23 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.001 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.002 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.003 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.004 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.005 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.006 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.007 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.008 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.009 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.01 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.010 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.011 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.012 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.013 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.014 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.015 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.016 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.017 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.018 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.019 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.02 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.020 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.021 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.022 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.023 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.024 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.025 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.026 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.027 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.028 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.029 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.03 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.030 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.031 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.032 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.033 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.034 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.035 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.036 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.037 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.038 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.039 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.04 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.040 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.041 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.042 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.043 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.044 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.045 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.046 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.047 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.048 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.049 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.05 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.050 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.051 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.052 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.053 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.054 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.055 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.056 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.057 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.058 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.059 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.06 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.060 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.061 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.062 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.063 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.064 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.065 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.066 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.067 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.068 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.069 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.07 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.070 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.071 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.072 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.073 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.074 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.075 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.076 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.077 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.078 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.079 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.08 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.080 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.081 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.082 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.083 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.084 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.085 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.086 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.087 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.088 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.089 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.09 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.090 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.091 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.092 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.093 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.094 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.095 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.096 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.097 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.098 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.099 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.7z Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.arj Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.bz2 Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.cab Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.gz Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.gzip Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.jar Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.kz Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.lzh Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.mou Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.rar Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.rpm Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.tar Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.tbz Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.tgz Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.wim Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.z Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip.zip Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.ape Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.bin Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.ccd Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.cue Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.flac Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.iso Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.isz Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.mdf Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.mds Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.nrg Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.vcd Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount.wv Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZipMount_FileAsso.Origin Key Found: [x64] HKLM\SOFTWARE\Classes\KuaiZip_FileAsso.Origin Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.ContextMenuExt.1 Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.DragDropMenu.1 Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.KYDropHandler.1 Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.KzShlobj Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.KzShlobj.1 Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.PropertyExt Key Found: [x64] HKLM\SOFTWARE\Classes\QZipShell.PropertyExt.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataContainer Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataContainer.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataController Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataController.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTable Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTable.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager.1 Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.WFPController Key Found: [x64] HKLM\SOFTWARE\Classes\zdengineLib.WFPController.1 Key Found: HKLM\SOFTWARE\Classes\AppID\{25B1494D-230A-42CF-BBF6-EC73868D13DC} Key Found: HKLM\SOFTWARE\Classes\AppID\{9CC34070-3A38-4C7A-89CB-EF8177EF07A1} Key Found: HKLM\SOFTWARE\Classes\TypeLib\{86C4C3BA-4EA4-4CF8-98B9-6B07B477B835} Key Found: HKU\.DEFAULT\Software\UCBrowser Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\BrowserAir Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Installer Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\MICROSOFT\OTUT Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\MICROSOFT\IDSC Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\UCBrowser Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\UCBrowserPID Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\AutoTime Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\KuaiZip Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\SNDA Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\KuaiZipSFX Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\MICROSOFT\wewewe Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\BrowserAir Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\UCBrowser Key Found: HKU\S-1-5-18\Software\UCBrowser Key Found: HKCU\Software\BrowserAir Key Found: HKCU\Software\Installer Key Found: HKCU\Software\MICROSOFT\OTUT Key Found: HKCU\Software\MICROSOFT\IDSC Key Found: HKCU\Software\UCBrowser Key Found: HKCU\Software\UCBrowserPID Key Found: HKCU\Software\AutoTime Key Found: HKCU\Software\KuaiZip Key Found: HKCU\Software\SNDA Key Found: HKCU\Software\KuaiZipSFX Key Found: HKCU\Software\MICROSOFT\wewewe Key Found: HKLM\SOFTWARE\BrowserAir Key Found: HKLM\SOFTWARE\ORBTR Key Found: HKLM\SOFTWARE\SearchModule Key Found: HKLM\SOFTWARE\UCBrowser Key Found: HKLM\SOFTWARE\UCBrowserPID Key Found: HKLM\SOFTWARE\OtherSearch Key Found: HKLM\SOFTWARE\trotuxSoftware Key Found: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\BrowserAir Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search module Key Found: [x64] HKCU\Software\BrowserAir Key Found: [x64] HKCU\Software\Installer Key Found: [x64] HKCU\Software\MICROSOFT\OTUT Key Found: [x64] HKCU\Software\MICROSOFT\IDSC Key Found: [x64] HKCU\Software\UCBrowser Key Found: [x64] HKCU\Software\UCBrowserPID Key Found: [x64] HKCU\Software\AutoTime Key Found: [x64] HKCU\Software\KuaiZip Key Found: [x64] HKCU\Software\SNDA Key Found: [x64] HKCU\Software\KuaiZipSFX Key Found: [x64] HKCU\Software\MICROSOFT\wewewe Key Found: [x64] HKLM\SOFTWARE\BrowserAir Key Found: [x64] HKLM\SOFTWARE\SearchModule Key Found: [x64] HKLM\SOFTWARE\UCBrowser Key Found: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\BrowserAir Key Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vnlgp Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjY Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Main [SearchAssistant] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBR Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaH Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOj Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjY Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Main [SearchAssistant] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBR Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaH Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOj Data Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgL Data Found: HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLr Data Found: HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgLrt Data Found: HKCU\Software\Microsoft\Internet Explorer\Main [SearchAssistant] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7Al Data Found: HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MX Data Found: HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgL Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMg Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlMgL Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [SearchAssistant] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7 Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0 Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL7qPpMxkGStHC4wmTIB36SpQGhZ0MXQa7AlM Value Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6E290A5C-BCC6-4973-8D0F-800B3733CFD5} Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - Value Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] Key Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} Data Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1013\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - Value Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] Key Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Key Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6E290A5C-BCC6-4973-8D0F-800B3733CFD5} Key Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} Data Found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - Value Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] Key Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\ielnksrch Value Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6E290A5C-BCC6-4973-8D0F-800B3733CFD5} Key Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} Data Found: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - Value Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce [Wd] Value Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce [IDSCPRODUCT] Value Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vnlgp] Value Found: HKU\S-1-5-21-2388257860-2033325751-358006991-1001\Software\Microsoft\Windows\CurrentVersion\Run [msiql] Value Found: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [msiql] Value Found: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [msiql] Value Found: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [gplyra] Key Found: HKLM\SOFTWARE\Microsoft\Internet Explorer\SEARCHSCOPES\IELNKSRCH Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\smu.exe Key Found: HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} Key Found: HKLM\SOFTWARE\CLASSES\APPID\zdengine.EXE Key Found: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\Application Hosting Key Found: HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\zdwfp Key Found: HKLM\SOFTWARE\Clients\StartMenuInternet\UCBrowser Key Found: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\UCBrowser.exe Value Found: HKLM\SOFTWARE\RegisteredApplications [UCBrowser] Key Found: HKLM\SOFTWARE\Microsoft\MediaPlayer\ShimInclusionList\UCBrowser.exe Key Found: HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\IELNKSRCH Value Found: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [kuaizipupdatesvc] Key Found: HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9 Key Found: HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\KuaiZipShlExt Key Found: HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\KuaiZipShlExt Key Found: HKLM\SOFTWARE\Classes\AppID\QZipShell.DLL Value Found: HKEY_USERS\S-1-5-18\Environment [SNP] Value Found: HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SVCHOST [ORBTR] Key Found: HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\KuaiZipShlExt ***** [ Web browsers ] ***** Firefox pref Found: [C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\prefs.js] - "browser.newtab.url" - "hxxp://www-searching.com/?site=shyosffdefault&prd=set_ff&s=gcqzftptn095001 Firefox pref Found: [C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\prefs.js] - "browser.search.searchengine.hp" - "hxxp://www.trotux.com/?z=d3d12680e93a75cf67c3846gazab6o3m2wcc7 Firefox pref Found: [C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\prefs.js] - "browser.search.searchengine.sp" - "hxxp://www.trotux.com/search/?from=clc&q={searchTerms}&type=sp Firefox pref Found: [C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\prefs.js] - "browser.search.searchengine.url" - "hxxp://www.trotux.com/search/?from=clc&q={searchTerms}&type=s Firefox pref Found: [C:\Users\fernand\AppData\Roaming\Mozilla\Firefox\Profiles\04iduxuy.default-1481252859664\prefs.js] - "browser.startup.homepage" - "hxxp://www-searching.com/?site=shyosffdefault&prd=set_ff&s=gcqzftptn No malicious Chromium based browser items found. ************************* C:\AdwCleaner\AdwCleaner[C10].txt - [4464 Bytes] - [05/11/2015 23:33:48] C:\AdwCleaner\AdwCleaner[C1].txt - [3653 Bytes] - [08/07/2016 21:36:55] C:\AdwCleaner\AdwCleaner[C2].txt - [2734 Bytes] - [14/07/2016 07:48:08] C:\AdwCleaner\AdwCleaner[C5].txt - [2828 Bytes] - [21/08/2016 16:21:32] C:\AdwCleaner\AdwCleaner[C6].txt - [2943 Bytes] - [11/09/2016 02:31:30] C:\AdwCleaner\AdwCleaner[C7].txt - [4634 Bytes] - [24/09/2016 17:46:17] C:\AdwCleaner\AdwCleaner[C8].txt - [3577 Bytes] - [12/12/2016 13:16:34] C:\AdwCleaner\AdwCleaner[C9].txt - [10910 Bytes] - [31/10/2015 00:35:52] C:\AdwCleaner\AdwCleaner[R0].txt - [18756 Bytes] - [30/11/2013 12:26:11] C:\AdwCleaner\AdwCleaner[R1].txt - [11661 Bytes] - [02/12/2013 01:48:02] C:\AdwCleaner\AdwCleaner[R2].txt - [6325 Bytes] - [18/01/2014 10:46:15] C:\AdwCleaner\AdwCleaner[R3].txt - [6392 Bytes] - [18/01/2014 10:47:34] C:\AdwCleaner\AdwCleaner[R4].txt - [3105 Bytes] - [03/02/2014 12:23:12] C:\AdwCleaner\AdwCleaner[R5].txt - [1401 Bytes] - [08/02/2014 09:32:02] C:\AdwCleaner\AdwCleaner[R6].txt - [1522 Bytes] - [10/02/2014 06:45:21] C:\AdwCleaner\AdwCleaner[R7].txt - [1582 Bytes] - [10/02/2014 06:47:00] C:\AdwCleaner\AdwCleaner[R8].txt - [10715 Bytes] - [13/07/2014 00:44:57] C:\AdwCleaner\AdwCleaner[R9].txt - [4638 Bytes] - [21/02/2015 00:54:26] C:\AdwCleaner\AdwCleaner[S0].txt - [17554 Bytes] - [30/11/2013 12:26:27] C:\AdwCleaner\AdwCleaner[S11].txt - [11516 Bytes] - [31/10/2015 00:35:20] C:\AdwCleaner\AdwCleaner[S12].txt - [702 Bytes] - [31/10/2015 00:54:09] C:\AdwCleaner\AdwCleaner[S13].txt - [4166 Bytes] - [05/11/2015 23:33:14] C:\AdwCleaner\AdwCleaner[S14].txt - [2997 Bytes] - [21/08/2016 15:54:47] C:\AdwCleaner\AdwCleaner[S15].txt - [3111 Bytes] - [11/09/2016 02:31:21] C:\AdwCleaner\AdwCleaner[S16].txt - [4553 Bytes] - [24/09/2016 17:45:32] C:\AdwCleaner\AdwCleaner[S17].txt - [3672 Bytes] - [12/12/2016 13:16:20] C:\AdwCleaner\AdwCleaner[S18].txt - [38353 Bytes] - [27/12/2016 10:04:13] C:\AdwCleaner\AdwCleaner[S1].txt - [15331 Bytes] - [02/12/2013 01:48:25] C:\AdwCleaner\AdwCleaner[S2].txt - [3937 Bytes] - [18/01/2014 10:46:57] C:\AdwCleaner\AdwCleaner[S3].txt - [8565 Bytes] - [18/01/2014 10:47:49] C:\AdwCleaner\AdwCleaner[S4].txt - [5580 Bytes] - [03/02/2014 12:23:48] C:\AdwCleaner\AdwCleaner[S5].txt - [1463 Bytes] - [08/02/2014 09:32:28] C:\AdwCleaner\AdwCleaner[S6].txt - [9353 Bytes] - [13/07/2014 00:45:15] C:\AdwCleaner\AdwCleaner[S7].txt - [4759 Bytes] - [21/02/2015 00:55:53] ########## EOF - C:\AdwCleaner\AdwCleaner[S18].txt - [38940 Bytes] ##########