Script ZHPFix 
FirewallRaz 
EmptyPrefetch 
EmptyTemp


O58 - SDL:2015/09/23 03:06:46 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\41A87648.sys [113880] =>.Malwarebytes Corporation® (.SUP.Orphan) 
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8} =>.SUP.Orphan 
HKLM\Software\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8} =>.SUP.Orphan 
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0055C089-8582-441B-A0BF-17B458C2A3A8} =>.SUP.Orphan 
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0055C089-8582-441B-A0BF-17B458C2A3A8} =>.SUP.Orphan 
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\###MegaContextMenuExt =>.SUP.Orphan 
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\AVG Shredder Shell Extension =>.SUP.Orphan 
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Glary Utilities =>.SUP.Orphan 
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan 
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan 
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX =>.SUP.Orphan 
HKLM\Software\Classes\CLSID\{6C467336-8281-4E60-8204-430CED96822D} =>.SUP.Orphan 
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX =>.SUP.Orphan 
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\###MegaContextMenuExt =>.SUP.Orphan 
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\AVG Disk Space Explorer Shell Extension =>.SUP.Orphan 
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\AVG Shredder Shell Extension =>.SUP.Orphan 
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX =>.SUP.Orphan 
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX =>.SUP.Orphan 
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Glary Utilities =>.SUP.Orphan 
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan 
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX =>.SUP.Orphan 
HKLM\Software\Classes\Drive\shellex\ContextMenuHandlers\Glary Utilities =>.SUP.Orphan 
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} (.Orphan.) 
O108 - CMH1: ###MegaContextMenuExt [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (.Orphan.) 
O108 - CMH1: AVG Shredder Shell Extension [64Bits] - {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} . (.Orphan.) 
O108 - CMH1: Glary Utilities [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (.Orphan.) 
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) 
O108 - CMH1: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Orphan.) 
O108 - CMH3: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Orphan.) 
O108 - CMH4: ###MegaContextMenuExt [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (.Orphan.) 
O108 - CMH4: AVG Disk Space Explorer Shell Extension [64Bits] - {4838CD50-7E5D-4811-9B17-C47A85539F28} . (.Orphan.) 
O108 - CMH4: AVG Shredder Shell Extension [64Bits] - {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} . (.Orphan.) 
O108 - CMH4: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Orphan.) 
O108 - CMH5: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Orphan.) 
O108 - CMH6: Glary Utilities [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (.Orphan.) 
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) 
O108 - CMH6: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Orphan.) 
O108 - CMH7: Glary Utilities [64Bits] - {B3C418F8-922B-4faf-915E-59BC14448CF7} . (.Orphan.) 
O2 - BHO: SnagIt Toolbar Loader [64Bits] - {00C6482D-C502-44C8-8409-FCE54AD9C208} . (.TechSmith Corporation - SnagIt Browser Helper Object for Internet E.) -- C:\Program Files (x86)\TechSmith\SnagIt 8\DLLx64\SnagItBHO64.dll =>.TechSmith Corporation® 
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - ãÓÊÚÑÖ ÇáÅäÊÑäÊ.) (11.00.9600.18817 (winblue_ltsb.170907-0600)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation 
R4 - HKLM\Software\WOW6432Node\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 
O42 - Logiciel: AVG - (.AVG Technologies.) [HKLM][64Bits] -- {63E181FF-AC11-4910-A35E-3C6FD94332BC} =>.AVG Technologies 
O42 - Logiciel: FMW 1 - (.AVG Technologies.) [HKLM][64Bits] -- {91079213-6155-4062-96E1-DFF570DE80C4} =>.AVG Technologies 
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} =>.AVG Technologies 
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} =>.AVG Technologies CZ, s.r.o. 
HKLM\SOFTWARE\Wow6432Node\AVG =>.AVG Software 
O43 - CFD: 27/05/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG =>.AVG Software 
O43 - CFD: 26/04/2017 - [] D -- C:\Users\TAHER\AppData\Local\AvgSetupLog =>.AVG Software 
O43 - CFD: 20/04/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Avg =>.AVG Software 
O43 - CFD: 25/04/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\AvgSetupLog =>.AVG Software 
[MD5.59D0F30F102B382B13DD66A97A09E110] [WIS][2017/04/20 21:00:06] (.AVG Technologies - Visual Studio 2012 x64 Redistributables.) -- C:\Windows\Installer\ea48b63.msi [13684736] =>.AVG Technologies 
[MD5.D7C8F629A87765492DAA8856DE7A9CCC] [WIS][2017/04/20 21:00:34] (.AVG Technologies CZ, s.r.o. - Visual Studio 2012 x86 Redistributables.) -- C:\Windows\Installer\ea48b66.msi [40960] =>.AVG Technologies CZ, s.r.o. 
[MD5.AE2EF71E1C9E8021BBB1C061FC0A2EB8] [WIS][2017/04/20 21:01:44] (.AVG Technologies - FMW.) -- C:\Windows\Installer\ea48b69.msi [2179072] =>.AVG Technologies 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://captive.apple.com 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://detectportal.firefox.com 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://g.cn 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.airport.us 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc. 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.thinkdifferent.us 
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api2.poperblocker.com