Script ZHPFix 
FirewallRaz 
EmptyPrefetch 
EmptyTemp 
EmptyFlash 


[MD5.00000000000000000000000000000000] [APT] [\SafeZone scheduled Autoupdate 1458655975] (...) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty 
[MD5.00000000000000000000000000000000] [APT] [\SafeZone scheduled Autoupdate 1458685207] (...) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty 
[MD5.00000000000000000000000000000000] [APT] [\{43967136-E717-49D7-B1FC-3318A09F86A8}] (...) -- D:\Ossama\games\Pro Evolution Soccer 6 RIP By Juan ignaciOo ©\Install\kitserver\setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty 
[MD5.00000000000000000000000000000000] [APT] [\AVAST Software\Avast settings backup] (...) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty 
O39 - APT: \avast! Emergency Update - (...) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: \Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 - (...) -- C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 [3640] (.Orphan.) =>.Superfluous.Orphan 
O39 - APT: \FL Studio - (...) -- C:\Windows\System32\Tasks\FL Studio [3304] (.Orphan.) =>.Superfluous.Orphan 
O39 - APT: \SafeZone scheduled Autoupdate 1458655975 - (...) -- C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458655975 [3068] (.Orphan.) =>.Superfluous.Orphan 
O39 - APT: \SafeZone scheduled Autoupdate 1458685207 - (...) -- C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458685207 [3068] (.Orphan.) =>.Superfluous.Orphan 
O39 - APT: \{43967136-E717-49D7-B1FC-3318A09F86A8} - (...) -- C:\Windows\System32\Tasks\{43967136-E717-49D7-B1FC-3318A09F86A8} [3334] (.Orphan.) =>.Superfluous.Orphan 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients4.google.com 
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [mechpigjnekdkblihaojcamiponlngjp] Anghami 
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\15018p99.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/ 
P2 - EXT FILE: (.Yahoo! (Avast) - Yahoo! (Avast).) -- C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\15018p99.default\searchplugins\yahoo-avast.xml =>.Yahoo! (Avast) 
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/ 
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer 
O3 - Toolbar: 0x530CAC1D237DB34A856AB04D98CD982A - [HKCU]{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (...) -- (.not file.) 
O3 - Toolbar: (no name) - [HKLM]{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} (Orphan) (.not file.) 

O4 - HKCU\..\Run: [AdobeBridge] (Orphan) =>.Superfluous.Orphan 
O4 - HKCU\..\Run: [SysinfY2X] C/c start wscript 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-21-2849517584-1831733247-1931239374-1000\..\Run: [AdobeBridge] (Orphan) =>.Superfluous.Orphan 
O4 - HKUS\S-1-5-21-2849517584-1831733247-1931239374-1000\..\Run: [SysinfY2X] C/c start wscript 
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent 
O87 - FAEL: "{A186DF74-5359-4592-8F2E-A56BF8B2AB06}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\tencentdl.exe (.not file.) =>.Superfluous.Tencent 
O87 - FAEL: "{BF4D27DD-F80E-49D7-99F2-A08D1AB96FA4}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\bugreport_xf.exe (.not file.) =>.Superfluous.Tencent 
O87 - FAEL: "{E816E591-7246-4FBE-8ED1-65681C0573A4}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\bugreport_xf.exe (.not file.) =>.Superfluous.Tencent 
O87 - FAEL: "{62E9C57D-B0BD-4868-9B1A-51840400E027}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\tencentdl.exe (.not file.) =>.Superfluous.Tencent 
O87 - FAEL: "{AF9ED91D-959B-44C9-B898-484331D068F1}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\tencentdl.exe (.not file.) =>.Superfluous.Tencent 
O87 - FAEL: "{E8321012-3E9D-4480-B217-E50F4175E61F}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\bugreport_xf.exe (.not file.) =>.Superfluous.Tencent 
O87 - FAEL: "{E5ADC0F1-37BA-4AB2-BFDD-4A40D48AC19B}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\bugreport_xf.exe (.not file.) =>.Superfluous.Tencent 
O87 - FAEL: "{AEF08C8E-F396-4F27-80C4-CD54D78ECDBD}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\132\tencentdl.exe (.not file.) =>.Superfluous.Tencent 

HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent 
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect 
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect 
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect 
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.) 

O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.) 

O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.) 
O87 - FAEL: "{639B8DA4-70CF-47F6-ABC4-D0FCE79F26BC}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Opera\opera.exe (.not file.) 
O87 - FAEL: "{3BBD1038-9998-4416-945E-525E232C21A0}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Opera\opera.exe (.not file.) 
O87 - FAEL: "TCP Query User{9E66D8A3-8288-4EED-8BCE-B6ED4BB5FA1C}F:\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe" [In-None-P6-TRUE] .(...) -- F:\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe (.not file.) 
O87 - FAEL: "UDP Query User{6E3711EB-89AF-45C8-9A65-515E72210FC1}F:\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe" [In-None-P17-TRUE] .(...) -- F:\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe (.not file.) 
O87 - FAEL: "TCP Query User{05193D4F-9FB4-479A-B8B5-47049E7D2EEE}C:\users\hp\downloads\compressed\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe" [In-None-P6-TRUE] .(...) -- C:\users\hp\downloads\compressed\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe (.not file.) 
O87 - FAEL: "UDP Query User{0A64E460-D186-4C5C-B124-BE61070E8741}C:\users\hp\downloads\compressed\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe" [In-None-P17-TRUE] .(...) -- C:\users\hp\downloads\compressed\pro evolution soccer 6 rip by juan ignacioo ®\install\pes6.exe (.not file.) 

O87 - FAEL: "{FD5111D7-8D96-4D4A-94FA-FE6ED85F0D2A}" [In-None-P17-TRUE] .(...) -- C:\Program Files\zk\zkremote\zkremote.exe (.not file.) 
O87 - FAEL: "TCP Query User{12970299-1CB0-4042-A367-69D285C96D6F}C:\program files\kingsoft\kwifi\kwifi.exe" [In-None-P6-TRUE] .(...) -- C:\program files\kingsoft\kwifi\kwifi.exe (.not file.) 
O87 - FAEL: "UDP Query User{661F37A7-B2D5-454A-8BF9-2DDD47030F13}C:\program files\kingsoft\kwifi\kwifi.exe" [In-None-P17-TRUE] .(...) -- C:\program files\kingsoft\kwifi\kwifi.exe (.not file.) 
O87 - FAEL: "{E7A5BECF-5DC4-40A6-A4EF-C836A9D50542}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Steam\Steam.exe (.not file.) 
O87 - FAEL: "{6B4A8F0C-1F17-4619-B395-CB792FFEB320}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Steam\Steam.exe (.not file.) 
O87 - FAEL: "{47F12BAA-5AA5-4A3E-9787-251217A872D7}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Steam\bin\steamwebhelper.exe (.not file.) 
O87 - FAEL: "{8B59D563-923A-4B77-B100-B4035EBCBA0C}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Steam\bin\steamwebhelper.exe (.not file.) 
O87 - FAEL: "TCP Query User{C1FD4944-C5AE-4000-BE5E-56B5FF89E2DD}C:\users\hp\appdata\local\temp\bduninstall\x32\pcsftool.exe" [In-None-P6-TRUE] .(...) -- C:\users\hp\appdata\local\temp\bduninstall\x32\pcsftool.exe (.not file.) 
O87 - FAEL: "UDP Query User{11E62136-B00B-400E-B625-2F176E9BA3B2}C:\users\hp\appdata\local\temp\bduninstall\x32\pcsftool.exe" [In-None-P17-TRUE] .(...) -- C:\users\hp\appdata\local\temp\bduninstall\x32\pcsftool.exe (.not file.) 

O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\QuickTime =>Riskware.QuickTime 
C:\Program Files\QuickTime =>Riskware.QuickTime 

HKCU\SOFTWARE\AVAST Software =>.AVAST Software 

O43 - CFD: 07/01/2016 - [] D -- C:\Users\hp\AppData\Local\AVAST Software =>.AVAST Software 
O58 - SDL:2015/11/11 00:44:05 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\aswTap.sys [38984] =>.AVAST Software a.s.®