Script ZHPFix FirewallRaz EmptyPrefetch EmptyTemp O39 - APT: AVG EUpdate Task - (...) -- C:\Windows\System32\Tasks\AVG EUpdate Task [3578] (.Orphan.) =>.Superfluous.Orphan O39 - APT: {56C85568-7541-43DB-8E2A-8FB0327A0AAA} - (...) -- C:\Windows\System32\Tasks\{56C85568-7541-43DB-8E2A-8FB0327A0AAA} [3292] (.Orphan.) =>.Superfluous.Orphan O43 - CFD: 27/03/2015 - [0] D -- C:\Program Files\ToolSupport O43 - CFD: 29/12/2015 - [0] D -- C:\Program Files\Windsor Direct MultiTerminal O43 - CFD: 18/02/2017 - [0] D -- C:\ProgramData\SWCUTemp [MD5.00000000000000000000000000000000] [APT] [{56C85568-7541-43DB-8E2A-8FB0327A0AAA}] (...) -- C:\Users\zakaria\Desktop\Nouveau dossier (7)\EmbratoriaG6.5\EmbratoriaG6.5.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty O4 - HKCU\..\Run: [VideoBox] C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\VideoBox.exe (.not file.) O4 - HKUS\S-1-5-21-1054388925-708552623-2949336312-1000\..\Run: [VideoBox] C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\VideoBox.exe (.not file.) O2 - BHO: Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} . (...) -- C:\Program Files\pandasecuritytb\pandasecurityDx.dll (.not file.) O3 - Toolbar: 0x53455241592D505300A77A786E7484D7 - [HKCU]{41524553-2D59-5350-00A7-7A786E7484D7} . (...) -- (.not file.) O3 - Toolbar: Panda Safe Web - [HKLM]{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} . (...) -- C:\Program Files\pandasecuritytb\pandasecurityDx.dll (.not file.) O4 - GS\Desktop [Administrateur]: Hero BeOut.lnk . (.Hero Hero - Hero Hero.) C:\Program Files\Hero\Hero BeOut.exe O4 - GS\Desktop [Administrateur]: HitLeap Viewer.lnk . (...) C:\Users\zakaria\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows O4 - GS\Desktop [zakaria]: Hero BeOut.lnk . (.Hero Hero - Hero Hero.) C:\Program Files\Hero\Hero BeOut.exe O4 - GS\Desktop [zakaria]: HitLeap Viewer.lnk . (...) C:\Users\zakaria\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows O4 - GS\CommonDesktop [Public]: FX Solutions UK - MetaTrader.lnk . (...) C:\Program Files\FX Solutions UK - MetaTrader\terminal.exe O4 - GS\CommonDesktop [Public]: Otohits App.lnk . (.OtohitsNetwork - Otohits.App.) C:\OtohitsNetwork\OtohitsApp\Otohits.App.exe O4 - GS\CommonDesktop [Public]: SimpleTV.lnk . (.VSG - SimpleTV v0.4.6 r.) C:\Program Files\SimpleTV\tv.exe O4 - GS\CommonDesktop [Public]: Windsor Direct MultiTerminal.lnk . (...) C:\Program Files\Windsor Direct MultiTerminal\multiterminal.exe O4 - GS\ProgramsCommon [Public]: Adobe Help.lnk . (...) C:\Program Files\Adobe\Adobe Help\Adobe Help.exe O87 - FAEL: "TCP Query User{E308FC7A-F628-4FD7-BCB7-ABBDBC07C454}C:\program files\paltalk messenger\paltalk.exe" [In-None-P6-TRUE] .(...) -- C:\program files\paltalk messenger\paltalk.exe (.not file.) O87 - FAEL: "UDP Query User{83B9018C-B693-4336-AA53-76928474DA92}C:\program files\paltalk messenger\paltalk.exe" [In-None-P17-TRUE] .(...) -- C:\program files\paltalk messenger\paltalk.exe (.not file.) O87 - FAEL: "TCP Query User{EFDC72A9-20BC-4CB4-B742-E1FE1F7AA30F}C:\users\zakaria\downloads\nouveau dossier (2)\tv.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\downloads\nouveau dossier (2)\tv.exe (.not file.) O87 - FAEL: "UDP Query User{C3CDD76B-56D5-4D08-82E1-D6E1A7F92282}C:\users\zakaria\downloads\nouveau dossier (2)\tv.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\downloads\nouveau dossier (2)\tv.exe (.not file.) O87 - FAEL: "TCP Query User{ED264613-AD66-4E58-8476-D1ABF41BFBDC}C:\users\zakaria\downloads\nouveau dossier\tv.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\downloads\nouveau dossier\tv.exe (.not file.) O87 - FAEL: "UDP Query User{DB75079D-1B4F-443B-BA5E-AD1FBC8C4DC4}C:\users\zakaria\downloads\nouveau dossier\tv.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\downloads\nouveau dossier\tv.exe (.not file.) O87 - FAEL: "TCP Query User{C4E8D7C1-D3D6-4E24-9F19-76D0DE66E5E8}C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe (.not file.) O87 - FAEL: "UDP Query User{48A4B584-9150-44B2-A25C-23919ECA3550}C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe (.not file.) O87 - FAEL: "TCP Query User{9A17CC02-2D49-471D-A0A6-AB47D1105685}C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe (.not file.) O87 - FAEL: "UDP Query User{81A05940-AAF5-453E-BB18-CF0881263C51}C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\appdata\roaming\acestream\engine\ace_engine.exe (.not file.) O87 - FAEL: "{67937AF0-D65A-48EF-A2DE-1138AFF29D1A}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\VideoBox.exe (.not file.) O87 - FAEL: "{799AC93F-B023-4330-87DE-1A5D52028EE7}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\stat.exe (.not file.) O87 - FAEL: "{9F3A04FE-DA67-4BC3-8D3B-20B7A2F78F3D}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\player\HiP2PService.exe (.not file.) O87 - FAEL: "{23731557-EEEB-4652-BB91-3F341B59557B}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\player\player.exe (.not file.) O87 - FAEL: "{B060862C-835C-4BAC-98EB-C6297E17834F}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\UpServer.exe (.not file.) O87 - FAEL: "{2AF77BA3-B68D-468B-B616-2E0D48463E93}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\vbUpdate.exe (.not file.) O87 - FAEL: "{803AD6B9-E7C3-46A9-ADA9-A603426C0E9F}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Roaming\Baidu\VideoBox\bugreport.exe (.not file.) O87 - FAEL: "{B601DB9E-8621-4614-BB08-BBA3B1395E46}" [Out-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Local\Temp\nskC2E6.tmp\CnetInstaller-75095296.exe (.not file.) =>.Temporary file not necessary O87 - FAEL: "{C15DF7F0-987B-4B35-9AE6-6FDB42C3EB74}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\AppData\Local\Temp\nskC2E6.tmp\CnetInstaller-75095296.exe (.not file.) =>.Temporary file not necessary O87 - FAEL: "{C0CAB0A8-9720-4CA8-9E55-E132E3BBDB4C}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVG\AVG2015\avgmfapx.exe (.not file.) O87 - FAEL: "{92CF19B4-5D7E-4D7B-B968-A0179B383E97}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVG\AVG2015\avgmfapx.exe (.not file.) O87 - FAEL: "TCP Query User{3E10E055-7E81-4499-8540-A4A64C8EFB65}C:\program files\ares\ares.exe" [In-None-P6-TRUE] .(...) -- C:\program files\ares\ares.exe (.not file.) O87 - FAEL: "UDP Query User{A801B42A-9ECA-490A-A902-A1D5133AC0DC}C:\program files\ares\ares.exe" [In-None-P17-TRUE] .(...) -- C:\program files\ares\ares.exe (.not file.) O87 - FAEL: "{44C60936-2B07-4B44-8B45-64EADDEC3201}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe (.not file.) O87 - FAEL: "{606AD7B1-40D0-459C-A209-31A8F9BF9ED8}" [Out-None-P17-TRUE] .(...) -- C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe (.not file.) O87 - FAEL: "TCP Query User{9A23AD6C-2AA1-4750-BE34-24F531FE61A8}C:\users\zakaria\desktop\nouveau dossier (3)\embratoriag2_beta\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\embratoriag2_beta\es.exe (.not file.) O87 - FAEL: "UDP Query User{5259CE5A-F1A7-4F32-AD42-E5C2C3E0E0F1}C:\users\zakaria\desktop\nouveau dossier (3)\embratoriag2_beta\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\embratoriag2_beta\es.exe (.not file.) O87 - FAEL: "TCP Query User{7211FE2B-ED0A-45D1-B636-0A13EEFEE0D8}C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier\embratoriag2_v2.1_stable\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier\embratoriag2_v2.1_stable\es.exe (.not file.) O87 - FAEL: "UDP Query User{4BFFB422-D5D8-4385-A0DC-71CDF7353775}C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier\embratoriag2_v2.1_stable\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier\embratoriag2_v2.1_stable\es.exe (.not file.) O87 - FAEL: "TCP Query User{D225F448-257F-4E1B-8DA2-6599EC5402DC}C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (2)\embratoria_g3\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (2)\embratoria_g3\es.exe (.not file.) O87 - FAEL: "UDP Query User{F40B7866-7905-44EB-94A9-0F7D7DD35CAA}C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (2)\embratoria_g3\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (2)\embratoria_g3\es.exe (.not file.) O87 - FAEL: "TCP Query User{10F21094-C511-4333-8EE1-E994B976A98F}C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (3)\embratoria_g4\es.exe" [In-None-P6-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (3)\embratoria_g4\es.exe (.not file.) O87 - FAEL: "UDP Query User{C14DBE89-591E-4F9B-B9B9-DC69280631FB}C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (3)\embratoria_g4\es.exe" [In-None-P17-TRUE] .(...) -- C:\users\zakaria\desktop\nouveau dossier (3)\nouveau dossier (3)\embratoria_g4\es.exe (.not file.) O87 - FAEL: "{5B88C359-4C97-4633-AEB9-897F6419AB96}" [In-None-P6-TRUE] .(...) -- C:\Users\zakaria\Desktop\samsat\Nouveau dossier\EmbratoriaG6\libs.exe (.not file.) O87 - FAEL: "{9AE7A54D-779A-41B7-9DBC-B6858E1E9ED6}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\Desktop\samsat\Nouveau dossier\EmbratoriaG6\libs.exe (.not file.) O87 - FAEL: "{BFC49612-9A47-4451-8349-A487F84EB55C}" [In-None-P6-TRUE] .(...) -- C:\embrato\EmbratoriaG6\libs.exe (.not file.) O87 - FAEL: "{7DE0BABF-DBBB-4B34-813C-D4FCC16E2A06}" [In-None-P17-TRUE] .(...) -- C:\embrato\EmbratoriaG6\libs.exe (.not file.) O87 - FAEL: "{B1B6539B-1D68-4F44-82BB-F1D3C5046491}" [In-None-P6-TRUE] .(...) -- C:\Users\zakaria\Desktop\Nouveau dossier (3)\EmbratoriaG6.5.1\libs.exe (.not file.) O87 - FAEL: "{8E48D3D3-1E44-459B-89D4-CDAF19254150}" [In-None-P17-TRUE] .(...) -- C:\Users\zakaria\Desktop\Nouveau dossier (3)\EmbratoriaG6.5.1\libs.exe (.not file.) O87 - FAEL: "{A8BE7D5A-057D-47B8-B7F3-46BEAA5DDE06}" [In-None-P17-TRUE] .(...) -- C:\Program Files\SoftEther VPN Client\vpncmgr.exe (.not file.) O87 - FAEL: "{CF9DC096-FABB-48A1-AC83-2E3BAE2C4CF1}" [In-None-P17-TRUE] .(...) -- C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (.not file.) O87 - FAEL: "{FA926AA1-935D-4B83-BC59-BD2BA4F15089}" [In-None-P17-TRUE] .(...) -- C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (.not file.) O87 - FAEL: "{51D4CCA2-9AC2-4865-A0C7-29B013CE1D75}" [In-None-P17-TRUE] .(...) -- C:\Program Files\SoftEther VPN Client\vpncmd.exe (.not file.) O87 - FAEL: "{14EE5BDB-A851-419B-998C-4D550D413566}" [In-None-P17-TRUE] .(...) -- C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (.not file.) O87 - FAEL: "{F3B34467-971C-4D99-B09E-857566642D7D}" [In-None-P17-TRUE] .(...) -- C:\Program Files\SoftEther VPN Client\vpnclient.exe (.not file.) O87 - FAEL: "{DF6FEAEA-9B51-4A05-B339-B6956BFB3022}" [In-None-P6-TRUE] .(...) -- C:\Program Files\pandasecuritytb\ToolbarCleaner.exe (.not file.) O87 - FAEL: "{A181D956-56C5-42FD-B9A8-D4448E2A657E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\pandasecuritytb\ToolbarCleaner.exe (.not file.) O43 - CFD: 27/02/2015 - [0] D -- C:\Users\zakaria\AppData\Roaming\Publish Providers =>.Unknow