Guys, thanks to everyone who contacted us here. We plan to change the behavior of the QUIC scanning. For the period of time until a full blown scanning is released in Avast, we will continue to provide security of the connections by blocking QUIC in google by the policy (the most transparent way, as opposed to other mechanisms that are available, like simply blocking QUIC traffic :-) and let the browser handle it). However, once you, the user, disable QUIC scanning - we will ignore such connections completely and won't block QUIC inside browsers. (and remove the policy from the registry).
Would that be ok for you?
PS: Malware authors, if you are reading this, please don't move your servers to QUIC. Thanks!