sScript ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash

[MD5.00000000000000000000000000000000] [APT] [{364B8223-8CC4-422F-A5ED-921593A00F49}] (...) -- C:\Users\haythamalani\Desktop\adguardInstaller.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{7A00E330-9222-4F26-A871-AC4A73E4D854}] (...) -- C:\Users\haythamalani\Desktop\¢??©ï?\USB3_Intel_W7_A01_Setup-0N1D9_ZPE.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [Microsoft\Windows\Multimedia\Manager] (...) -- C:\Users\haythamalani\AppData\Roaming\Adobe\Manager.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated®
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\UCBrowserUpdater.job [474] =>PUP.Optional.CertifiedToolbar
O39 - APT: {364B8223-8CC4-422F-A5ED-921593A00F49} - (...) -- C:\Windows\System32\Tasks\{364B8223-8CC4-422F-A5ED-921593A00F49} [3172] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {7A00E330-9222-4F26-A871-AC4A73E4D854} - (...) -- C:\Windows\System32\Tasks\{7A00E330-9222-4F26-A871-AC4A73E4D854} [3234] (.Orphan.) =>.Superfluous.Orphan
[MD5.EC1D9A382C2B14E694102C63BFD47302] - (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe [139776] [PID.2712] =>.IvoSoft
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.amisites.com/ =>Hijacker.Amisites
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.amisites.com/ =>Hijacker.Amisites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.amisites.com/ =>Hijacker.Amisites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.amisites.com/ =>Hijacker.Amisites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.amisites.com/ =>Hijacker.Amisites
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.amisites.com/ =>Hijacker.Amisites
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.amisites.com/ =>Hijacker.Amisites
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.amisites.com/ =>Hijacker.Amisites
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: IObit Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - ASCPlugin_Protection.) -- C:\Program Files\IObit\Advanced SystemCare\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll =>.IObit Information Technology®
O2 - BHO: IObit Ads Removal - {FFCB3198-32F3-4E8B-9539-4324694ED664} . (.IObit - Surfing Protection Dynamic Library.) -- C:\Program Files\IObit\Advanced SystemCare\Surfing Protection\Adblock\ADBlock.dll =>.IObit Information Technology®
O4 - GS\CommonDesktop [Public]: Subway Surfers.lnk . (...) C:\Program Files\Subway Surfers\Subway_Surfers.exe
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
O42 - Logiciel: amuleC - (.amuleC.) [HKLM] -- {19539992-061C-4E8B-9053-07B175303AF4} =>.Superfluous.aMULEcustom
O42 - Logiciel: Subway Surfers - (..) [HKLM] -- Subway Surfers
O42 - Logiciel: Torch - (.Torch Media, Inc.) [HKCU] -- Torch =>.Superfluous.Torch
HKLM\SOFTWARE\Torch =>.Superfluous.Torch
HKLM\SOFTWARE\PCGUID =>.Unknow
HKLM\SOFTWARE\WinArcher =>PUP.Optional.Youndoo
HKLM\SOFTWARE\UCBrowser =>.UCWeb Inc.
HKLM\SOFTWARE\trotuxSoftware =>.Superfluous.Trotux
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\IM =>Adware.InstallCore
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\F70583257956DC78B117A6190D5DB349 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\PCGUID =>.Unknow
HKCU\SOFTWARE\Torch =>.Superfluous.Torch
O43 - CFD: 09/01/2017 - [] D -- C:\Program Files\1f8ad1e3-09f0-409f-b9a4-7927e7cd09351483914081 =>PUP.Optional.CrossRider
O43 - CFD: 04/12/2016 - [] D -- C:\Program Files\Maoha =>.???????????????®
46 - SEH:ShellExecuteHooks - (no name) - [HKLM] - {23AE72B8-AB34-11E6-BA78-64006A5CFC23} . (...) -- (.not file.)
O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] - {379799E2-C68C-11E6-9299-64006A5CFC23} . (...) -- (.not file.)