Script ZHPFix
O1 - Hosts: 178.255.41.176 pes6gate-ec.winning-eleven.net
O1 - Hosts: 212.227.67.195 we9stun.winning-eleven.net
O1 - Hosts: 127.0.0.2                   d3.connectify.me
O1 - Hosts: 127.0.0.2                   b.connectify.me
O1 - Hosts: 127.0.0.2                   bc.connectify.me
O1 - Hosts: 127.0.0.2                   data.connectify.me
O1 - Hosts: 127.0.0.2                   news.connectify.me
O4 - HKCU\..\Run: [Skype] C:\Users\TAREKO\Downloads\SkypePortable\SkypePortable.exe (.not file.) 
O4 - HKCU\..\Run: [uTorrent] C:\Users\TEMP.TAREK\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)   =>P2P.µTorrent
O4 - HKCU\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\TAREKO\AppData\Roaming\BitTorrent\BitTorrent.exe   =>P2P.BitTorrent
O4 - HKCU\..\Run: [GreedyTorrent] . (...) -- C:\Program Files (x86)\GreedyTorrent\GTor.exe   =>P2P.GreedyTorrent 
O4 - HKLM\..\Wow6432Node\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (.not file.) 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [download.ninja] C:\Program Files\Download Ninja\download.ninja.exe (.not file.) 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [Skype] C:\Users\TAREKO\Downloads\SkypePortable\SkypePortable.exe (.not file.) 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [uTorrent] C:\Users\TEMP.TAREK\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)   =>P2P.µTorrent
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\TAREKO\AppData\Roaming\BitTorrent\BitTorrent.exe   =>P2P.BitTorrent
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [GreedyTorrent] . (...) -- C:\Program Files (x86)\GreedyTorrent\GTor.exe   =>P2P.GreedyTorrent 
O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office15\ONBttnIE.dll (.not file.)
O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office15\ONBTTN~1.dll (.not file.)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe   =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) 
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\TAREKO\AppData\Local\Facebook\Update\FacebookUpdate.exe 
O4 - HKCU\..\Run: [DU Meter] . (.Hagel Technologies Ltd. - DU Meter Monitor.) -- C:\Program Files (x86)\DU Meter\DUMeter.exe 
O4 - HKCU\..\Run: [同步助手移动服务] . (.同步网络平台 - 同步助手服务.) -- C:\Program Files (x86)\Tongbu\tbMobileService.exe 
O4 - HKCU\..\Run: [download.ninja] C:\Program Files\Download Ninja\download.ninja.exe (.not file.) 
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe   =>.DT Soft Ltd
O4 - HKCU\..\Run: [Skype] C:\Users\TAREKO\Downloads\SkypePortable\SkypePortable.exe (.not file.) 
O4 - HKCU\..\Run: [uTorrent] C:\Users\TEMP.TAREK\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)   =>P2P.µTorrent
O4 - HKCU\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\TAREKO\AppData\Local\FluxSoftware\Flux\flux.exe 
O4 - HKCU\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\TAREKO\AppData\Roaming\BitTorrent\BitTorrent.exe   =>P2P.BitTorrent
O4 - HKCU\..\Run: [GreedyTorrent] . (...) -- C:\Program Files (x86)\GreedyTorrent\GTor.exe   =>P2P.GreedyTorrent 
O4 - HKLM\..\Wow6432Node\Run: [YouCam Tray] . (.CyberLink Corp. - CyberLink YouCam Tray.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe 
O4 - HKLM\..\Wow6432Node\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (.not file.) 
O4 - HKLM\..\Wow6432Node\Run: [VirtualCloneDrive] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe   =>.Elaborate Bytes AG
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe 
O4 - HKLM\..\Wow6432Node\Run: [HSPALauncher] . (.No owner - HSDPALauncher MFC Application.) -- C:\Program Files (x86)\HSPA USB Modem\HSPALauncher.exe 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [DU Meter] . (.Hagel Technologies Ltd. - DU Meter Monitor.) -- C:\Program Files (x86)\DU Meter\DUMeter.exe 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\TAREKO\AppData\Local\Facebook\Update\FacebookUpdate.exe 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [同步助手移动服务] . (.同步网络平台 - 同步助手服务.) -- C:\Program Files (x86)\Tongbu\tbMobileService.exe 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [download.ninja] C:\Program Files\Download Ninja\download.ninja.exe (.not file.) 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe   =>.DT Soft Ltd
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [Skype] C:\Users\TAREKO\Downloads\SkypePortable\SkypePortable.exe (.not file.) 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [uTorrent] C:\Users\TEMP.TAREK\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)   =>P2P.µTorrent
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\TAREKO\AppData\Local\FluxSoftware\Flux\flux.exe 
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\TAREKO\AppData\Roaming\BitTorrent\BitTorrent.exe   =>P2P.BitTorrent
O4 - HKUS\S-1-5-21-2125108019-1014452923-2971699372-1002\..\Run: [GreedyTorrent] . (...) -- C:\Program Files (x86)\GreedyTorrent\GTor.exe   =>P2P.GreedyTorrent 
[MD5.00000000000000000000000000000000] [APT] [{BB7B76AD-9030-4B66-B154-ACF7EF5299ED}] (...) -- T:\Program Files (x86)\JDownloader\JDUninstall.exe (.not file.)   [0]
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent  =>P2P.BitTorrent
O42 - Logiciel: qBittorrent 3.1.12 - (.The qBittorrent project.) [HKLM][64Bits] -- qBittorrent  =>P2P.BitTorrent
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent  =>P2P.BitTorrent
[HKCU\Software\Conduit]  =>Toolbar.Conduit
[HKCU\Software\GreedyTorrent]  =>P2P.GreedyTorrent 
[HKCU\Software\InstalledBrowserExtensions]  =>PUP.BrowserExtensions
[HKLM\Software\InstalledBrowserExtensions]  =>PUP.BrowserExtensions
[HKLM\Software\Wow6432Node\610b548c-8d28-431d-bef6-2c8e823ff180]  =>PUP.CrossRider
[HKLM\Software\Wow6432Node\8ffc9d8e-ade0-4037-84d7-9fc4d130a636]  =>PUP.CrossRider
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions]  =>PUP.BrowserExtensions
O43 - CFD: 13-03-2015 - 20:02:54 - [] ----D C:\Program Files (x86)\GreedyTorrent  =>P2P.GreedyTorrent 
O43 - CFD: 11-03-2015 - 19:19:43 - [] ----D C:\Program Files (x86)\qBittorrent  =>P2P.BitTorrent
O43 - CFD: 13-03-2015 - 20:02:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GreedyTorrent  =>P2P.GreedyTorrent 
O43 - CFD: 11-03-2015 - 19:19:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent  =>P2P.BitTorrent
O43 - CFD: 15-06-2015 - 20:54:56 - [] ----D C:\Users\TAREKO\AppData\Roaming\BitTorrent  =>P2P.BitTorrent
O43 - CFD: 15-06-2015 - 20:38:21 - [] ----D C:\Users\TAREKO\AppData\Roaming\BitTorrent Maelstrom  =>P2P.BitTorrent
O43 - CFD: 11-03-2015 - 19:21:13 - [] ----D C:\Users\TAREKO\AppData\Roaming\qBittorrent  =>P2P.BitTorrent
O43 - CFD: 19-02-2015 - 18:14:04 - [] ----D C:\Users\TAREKO\AppData\Roaming\uTorrent  =>P2P.µTorrent
O43 - CFD: 11-03-2015 - 19:20:50 - [] ----D C:\Users\TAREKO\AppData\Local\qBittorrent  =>P2P.BitTorrent
O45 - LFCP:[MD5.997028E2614F0489D8DD339DA909D241] - 15-06-2015 - 20:50:15 ---A- - C:\Windows\Prefetch\BITTORRENT.EXE-48A8206C.pf  =>P2P.BitTorrent
O45 - LFCP:[MD5.E68CFE611175C62298238C847E4D1411] - 15-06-2015 - 12:22:04 ---A- - C:\Windows\Prefetch\QBITTORRENT.EXE-E16051E4.pf  =>P2P.BitTorrent
O51 - MPSK:{1e794c12-9cd6-11e4-bec6-28d24448a393}\AutoRun\command. (...) -- G:\setup.exe (.not file.)
O51 - MPSK:{5c748c08-8d08-11e4-bebb-28d24448a393}\AutoRun\command. (...) -- G:\autorun.exe (.not file.)
O51 - MPSK:{7dc56522-9440-11e4-bec0-28d24448a393}\AutoRun\command. (...) -- G:\autorun.exe (.not file.)
O51 - MPSK:{7dc5683f-9440-11e4-bec0-28d24448a393}\AutoRun\command. (...) -- G:\autorun.exe (.not file.)
O51 - MPSK:{d6f63452-3810-11e4-be86-28d24448a393}\AutoRun\command. (...) -- H:\Startme.exe (.not file.)
O61 - LFC: 10-06-2015 - 21:01:48 ---A- . (...) -- C:\Users\TAREKO\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.FactsList_8_1_RP-bf695b40.dll   [15320]
O61 - LFC: 10-06-2015 - 21:01:48 ---A- . (...) -- C:\Users\TAREKO\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.Rating_8_1_RP-5b672b01.dll   [11736]
O61 - LFC: 13-06-2015 - 21:01:52 ---A- . (...) -- C:\Users\TAREKO\AppData\Local\Temp\jrt\mws.bat   [13758]
O61 - LFC: 15-06-2015 - 21:01:52 ---A- . (...) -- C:\Users\TAREKO\AppData\Local\Temp\jrt\get.bat   [17013]
O61 - LFC: 15-06-2015 - 21:01:52 ---A- . (...) -- C:\Users\TAREKO\AppData\Local\Temp\jrt\misc.bat   [117371]
C:\Program Files (x86)\Visible Body - Cracked by m!DVT\Human Anatomy Atlas\Human Anatomy Atlas.exe  =>.Crack,Keygen
C:\Program Files (x86)\Visible Body - Cracked by m!DVT\Human Anatomy Atlas\Uninstall.exe  =>.Crack,Keygen
C:\Program Files (x86)\Visible Body - Cracked by m!DVT\Human Anatomy Atlas\Human Anatomy Atlas.exe  =>.Crack,Keygen
C:\Program Files (x86)\Visible Body - Cracked by m!DVT\Human Anatomy Atlas\Uninstall.exe  =>.Crack,Keygen
O87 - FAEL: "{E8482F4E-B427-41C0-BC1D-2E7DC7154EB1}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\TAREKO\AppData\Roaming\BitTorrent\BitTorrent.exe  =>P2P.BitTorrent
O87 - FAEL: "{A9D08ED1-443F-4DBC-A81F-4E9E0DA7EEEB}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\TAREKO\AppData\Roaming\BitTorrent\BitTorrent.exe  =>P2P.BitTorrent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrent]   =>P2P.BitTorrent^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\GreedyTorrent_is1]   =>P2P.GreedyTorrent ^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\qBittorrent]   =>P2P.BitTorrent^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent]   =>P2P.BitTorrent^
[HKLM\Software\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}]   =>PUP.Babylon
[HKCU\Software\Microsoft\Office\Word\Addins\BabylonOfficeAddin.OfficeAddin]   =>PUP.Babylon
[HKCU\Software\Microsoft\Office\PowerPoint\Addins\BabylonOfficeAddin.OfficeAddin]   =>PUP.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}]   =>PUP.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}]   =>PUP.Babylon
[HKLM\Software\Classes\BabyDict]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}]   =>PUP.Babylon
[HKLM\Software\Classes\AppID\{C0CEA572-2978-4DFC-A672-8100FF0E276A}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{C0CEA572-2978-4DFC-A672-8100FF0E276A}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{B7EA2226-F876-4BE4-B478-76EBAE2A668A}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{B7EA2226-F876-4BE4-B478-76EBAE2A668A}]   =>PUP.Babylon
[HKLM\Software\Classes\.bdc]   =>PUP.Conduit
[HKCU\Software\InstalledBrowserExtensions\]   =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions]   =>PUP.CrossRider
[HKLM\Software\InstalledBrowserExtensions]   =>PUP.CrossRider
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions]   =>PUP.CrossRider
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent   =>P2P.µTorrent^
C:\Program Files (x86)\GreedyTorrent   =>P2P.GreedyTorrent ^
C:\Program Files (x86)\qBittorrent   =>P2P.BitTorrent^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GreedyTorrent   =>P2P.GreedyTorrent ^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent   =>P2P.BitTorrent^
C:\Users\TAREKO\AppData\Roaming\BitTorrent   =>P2P.BitTorrent^
C:\Users\TAREKO\AppData\Roaming\BitTorrent Maelstrom   =>P2P.BitTorrent^
C:\Users\TAREKO\AppData\Roaming\qBittorrent   =>P2P.BitTorrent^
C:\Users\TAREKO\AppData\Roaming\uTorrent   =>P2P.µTorrent^
C:\Users\TAREKO\AppData\Local\qBittorrent   =>P2P.BitTorrent^
[HKCU\Software\Conduit]   =>Toolbar.Conduit^
[HKCU\Software\GreedyTorrent]   =>P2P.GreedyTorrent ^
[HKLM\Software\Wow6432Node\610b548c-8d28-431d-bef6-2c8e823ff180]   =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\8ffc9d8e-ade0-4037-84d7-9fc4d130a636]   =>PUP.CrossRider^

FirewallRaz
EmptyTemp
EmptyFlash 
Proxyfix
Sysrestore