Script ZHPFix
[MD5.AEBC034888EFD533001B741E172E6463] - (.Copyright (C) 2002 - autoclk MFC Application.) -- C:\Windows\autoclk.exe [143360] [PID.2216]
HKLM\SOFTWARE\Wow6432Node\14919ea49a8f3b4aa3cf1058d9a64cec
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\VideoBox
O43 - CFD: 16/07/2017 - [] D -- C:\Program Files (x86)\AdBlocker
O43 - CFD: 17/07/2017 - [] D -- C:\ProgramData\Logic Cramble
O43 - CFD: 17/07/2017 - [] D -- C:\ProgramData\WindowsErrorReporting
O45 - LFCP:[MD5.3ABEFA07ACE8185B6F16CC18FF46B2C5] 29/07/2017 A -- C:\Windows\Prefetch\ADBLOCKERSERVICE.EXE-F742996C.pf
O53 - SMSR:HKLM\...\startupreg\AppTrailers  [Key] . (...) -- C:\Users\fred\AppData\Roaming\AppTrailers\AppTrailers.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\YeaDesktop  [Key] . (...) -- C:\Program Files (x86)\YeaDesktop\YeaDesktop.exe (.not file.)
C:\Windows\autoclk.exe
C:\Program Files (x86)\AdBlocker
C:\ProgramData\Logic Cramble
C:\ProgramData\WindowsErrorReporting
C:\Windows\Prefetch\ADBLOCKERSERVICE.EXE-F742996C.pf
[HKLM64\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AppTrailers]
[HKLM64\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\YeaDesktop]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97]
O39 - APT: 6Lz0iZHS0b - (...) -- C:\Windows\System32\Tasks\6Lz0iZHS0b  [1996]  (.Orphan.)
O39 - APT: SharePoint Plugin - (...) -- C:\Windows\System32\Tasks\SharePoint Plugin  [16722]  (.Orphan.)
O39 - APT: {06E09376-7798-45A6-96C0-7D1E31D377AC} - (...) -- C:\Windows\System32\Tasks\{06E09376-7798-45A6-96C0-7D1E31D377AC}  [3200]  (.Orphan.)
O39 - APT: {53430109-6CDB-4BBF-BAD2-F82A255AA558} - (...) -- C:\Windows\System32\Tasks\{53430109-6CDB-4BBF-BAD2-F82A255AA558}  [2980]  (.Orphan.)
O39 - APT: {7E1CB844-0CB6-47A9-AA04-3CD8AF76C9A8} - (...) -- C:\Windows\System32\Tasks\{7E1CB844-0CB6-47A9-AA04-3CD8AF76C9A8}  [3160]  (.Orphan.)
O39 - APT: {8E4D0E2A-F485-4A6E-A565-EAE7593B7839} - (...) -- C:\Windows\System32\Tasks\{8E4D0E2A-F485-4A6E-A565-EAE7593B7839}  [3160]  (.Orphan.)
O39 - APT: {BD0C1949-C92B-4D5B-B284-6B7392D87E8E} - (...) -- C:\Windows\System32\Tasks\{BD0C1949-C92B-4D5B-B284-6B7392D87E8E}  [2966]  (.Orphan.)
O39 - APT: {DC87E493-F968-46F8-B1FE-019EBC1493A1} - (...) -- C:\Windows\System32\Tasks\{DC87E493-F968-46F8-B1FE-019EBC1493A1}  [2980]  (.Orphan.)
HKCU\SOFTWARE\TeleCharger_v2
HKCU\SOFTWARE\Visicom Media
HKCU\SOFTWARE\WebApp
O43 - CFD: 19/04/2015 - [0] D -- C:\Users\fred\AppData\Roaming\RailGameFans
O43 - CFD: 16/07/2017 - [] D -- C:\Users\fred\AppData\Local\AdvinstAnalytics
O43 - CFD: 01/07/2017 - [] D -- C:\Users\fred\AppData\Local\Tencent
O43 - CFD: 19/11/2010 - [0] D -- C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIConverter
O43 - CFD: 24/06/2015 - [0] D -- C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\M.A.X
O53 - SMSR:HKLM\...\startupreg\PCSpeedUp  [Key] . (...) -- C:\Program Files (x86)\Accelerer PC\PCSUNotifier.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WeatherBuddy  [Key] . (...) -- C:\Users\fred\AppData\Local\WeatherBuddy\WeatherBuddy.exe (.not file.)
O68 - StartMenuInternet: <UCBrowser> <UC???>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe  (.not file.)
C:\Users\fred\AppData\Local\AdvinstAnalytics
C:\Users\fred\AppData\Local\Tencent
HKCU\SOFTWARE\BitTorrent
O43 - CFD: 30/12/2016 - [] D -- C:\Users\fred\AppData\Roaming\uTorrent
[HKLM64\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PCSpeedUp]
[HKLM64\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WeatherBuddy]



SysRestore
FirewallRaz
EmptyPrefetch
EmptyCLSID
EmptyFlash
Emptytemp
ShortcutFix