[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.701.0\ClickPotatoLiteSA.exe (.not file.) => Infection BT (Adware.ClickPotato) O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - [www.questscan.com] => Infection BT (Adware.QuestScan) O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - [www.questscan.com] => Infection BT (Adware.QuestScan) O87 - FAEL: "TCP Query User{CD0A34DF-3534-4C52-882C-1315C9D05070}C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe" ; |In - Public - P6 - TRUE | .(...) -- C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) => Infection PUP (PUP.CacaoWeb) O87 - FAEL: "UDP Query User{0FC81861-6BAB-4016-AF42-B64484F8C8BD}C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe" ; |In - Public - P17 - TRUE | .(...) -- C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) => Infection PUP (PUP.CacaoWeb) O87 - FAEL: "TCP Query User{BB683883-4E92-4694-A2A1-92EBB66D640C}C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe" ; |In - Private - P6 - TRUE | .(...) -- C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) => Infection PUP (PUP.CacaoWeb) O87 - FAEL: "UDP Query User{0D7CEBC8-7518-4A7C-A985-734D944EC622}C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe" ; |In - Private - P17 - TRUE | .(...) -- C:\users\fatima\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) => Infection PUP (PUP.CacaoWeb)