Fix result of Farbar Recovery Scan Tool (x86) Version:21-08-2015 03
Ran by Alex (2015-08-22 03:10:49) Run:2
Running from C:\Users\Alex\Desktop
Loaded Profiles: Alex (Available Profiles: Alex)
Boot Mode: Normal

==============================================

fixlist content:
*****************
globalupdate Helper (Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ATTENTION
Task: {30C9548A-C60A-4163-B16C-89A50BFBE8CB} - System32\Tasks\{03A73401-C37E-47D4-B23E-10649EC2320F} => pcalua.exe -a C:\Users\Alex\Desktop\Free-Hide-IP-31946-dp.cpl
C:\Program Files\Tencent
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service"
FirewallRules: [{800653E1-976C-4142-A78A-82F3B58FBA3A}] => (Allow) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
FirewallRules: [{40F4F7D0-2CC3-42F8-BD80-8F71C1A813AD}] => (Allow) C:\Program Files\Raptr\raptr.exe
FirewallRules: [{4577B067-4086-43D8-88CA-3FB2760113D3}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe
FirewallRules: [{1A0A720B-C4AB-452F-98B0-329F9288E9CA}] => (Allow) C:\IQIYI Video\GeePlayer\GeePlayer.exe
FirewallRules: [{631FCF0C-F113-4CFD-986B-9D8891A2911B}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe
FirewallRules: [{055042BE-2CF8-4A95-8A87-5EA3D9937747}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exe
FirewallRules: [{03AE2896-5C6C-474B-8B99-C83C4CFE63A2}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exe
FirewallRules: [{8FB0E168-641C-4617-9C0A-673DBD57661F}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe
FirewallRules: [{F6AAA8D2-41A9-4117-A5F4-8EF5349ECA21}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe
FirewallRules: [{664E7E89-0EF6-40A0-86AA-51C053754862}] => (Allow) C:\program files\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{D4A10035-B301-4BED-9042-AEC4965256D0}] => (Allow) C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{F139E77A-F32E-41A3-BEC6-47BB3C3F344B}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCmgrInstallGuide.exe
FirewallRules: [{62691E92-8086-40FA-AD76-03AEBC35C5EF}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCTray.exe
FirewallRules: [{70BCCEF4-71FC-4F90-9E82-CBD977A48451}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCMgr.exe
FirewallRules: [{F499B39D-2546-429B-B357-B88E26AD015D}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCRTP.exe
FirewallRules: [{FC002D19-7990-4AAE-A916-E97102B01599}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMDL.exe
FirewallRules: [{51C3123B-E961-4AFC-AC7E-F17C33DF14EC}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\bugreport.exe
FirewallRules: [{0B51FE3A-C397-4017-9129-1A2B1A67DC3B}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCFileOpen.exe
FirewallRules: [{58B52E3C-AA31-49E0-B7D9-72D0F9DE4DF6}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCLeakScan.exe
FirewallRules: [{375331D8-4BD0-4560-901D-221BC53987B7}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPConfig.exe
FirewallRules: [{CC4A8E5A-975C-415B-AD5E-A3FB408A172A}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCSoftMgr.exe
FirewallRules: [{9425F280-F406-40A8-B4B7-940B19905DA9}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\plugins\QMNetMon\QQPCNetFlow.exe
FirewallRules: [{8A78900E-2826-4E25-A70C-6C19FBC59FF2}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCBTU.exe
FirewallRules: [{2492D291-2EEE-4BC8-B1E7-29AC01AE3780}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCClinic.exe
FirewallRules: [{82FFA897-6A48-436B-BE1B-C74A32E0A7FD}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCLaunch.exe
FirewallRules: [{AF2CFEEE-443B-4163-BDB0-20E811102790}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMUpdate\QQPCMgrUpdate.exe
FirewallRules: [{5EE688A8-7C1F-44AE-BA55-8A49512D91FB}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCSoftGame.exe
FirewallRules: [{257BA39A-E784-40EE-A826-3DD3420A5DF3}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCSysOptimize.exe
FirewallRules: [{BCA73291-080D-4512-AB86-06EFF7741693}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCUpdateAVLib.exe
FirewallRules: [{F683808F-6743-42D5-9B83-0EFBD26C5931}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQRepair.exe
FirewallRules: [{5B3E9BAE-31D7-49E0-A1B0-713F5456264C}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\Uninst.exe
FirewallRules: [{D2938B5D-5689-4DA1-9C45-D05623BDBFBC}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCPatch.exe
FirewallRules: [{3CDC6CC4-153E-4F2C-85BF-ABDDB1CB5BEE}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TpkUpdate.exe
FirewallRules: [{601B4058-54B4-4546-8D76-AA986BED2B7F}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMRouterMgr.exe
FirewallRules: [{CED259AB-63EF-4DD2-9E45-B576BB02E894}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMAccountProtection.exe
FirewallRules: [{DEE28A60-53A4-45A9-96BF-D2950F853194}] => (Allow) C:\Program Files\Rising\RAV\ravmond.exe
FirewallRules: [{6B459F86-D596-41FA-B454-D27A56F5D01B}] => (Allow) C:\Program Files\Rising\RAV\ravmond.exe
FirewallRules: [{0518D1DC-DB58-4ADD-BFFB-2713967D7CC2}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exe
FirewallRules: [{4F3BF249-3CC9-490B-9D5F-C7A5B0568C42}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe
FirewallRules: [{D4F2BE7A-A9E3-49E2-B420-36660E6A7EF4}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exe
FirewallRules: [{26F6731A-7BDB-4709-9669-33B9C413B718}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe
FirewallRules: [{037E09EE-1361-4C17-9B5D-7419FAC25D63}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe
FirewallRules: [{DF4E3DC2-4F2C-4E91-8E5C-4A6C2F2AF80C}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe
FirewallRules: [{19D9FFD1-C32C-4A1E-9782-A0B2B01489CE}] => (Allow) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exe
FirewallRules: [{C112BF2C-988C-4C3E-BD76-DF9257A1466B}] => (Allow) C:\program files\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{94661AB8-095B-4D5B-BF8E-C89776C7480C}] => (Allow) C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe
C:\Program Files\Common Files\Tencent
HKLM\...\Run: [ QQPCTray] => C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCTray.exe [355296 2015-08-04] (Tencent)
HKLM\...\Run: [RavTRAY] => "C:\Program Files\Rising\RAV\RSTRAY.EXE" -system
C:\Program Files\Rising
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMGCShellExt.dll [2015-08-04] (Tencent)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=98388105_hao_pg
HKU\S-1-5-21-3050552178-2778190213-2786081387-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=98388105_hao_pg
R2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCRTP.exe [297608 2015-08-04] (Tencent)
R3 TAOFrame; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TAOFrame.exe [293728 2015-08-04] (Tencent)
S2 RsMgrSvc; "C:\Program Files\Rising\RSD\RsMgrSvc.exe" [X]
S2 RsRavMon; "C:\Program Files\Rising\RAV\ravmond.exe" [X]
R1 HyperVM; C:\Windows\system32\drivers\hvm.sys [32568 2015-08-04] (Beijing Rising Information Technology Co., Ltd.)
R1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMIEProtect.sys [49976 2015-08-18] ()
R1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMUdisk.sys [59872 2015-04-17] (Tencent)
R2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQSysMon.sys [108344 2015-08-04] (????)
R2 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sys [77016 2015-08-04] (Tencent)
R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sys [138552 2015-08-04] (Tencent Technology(Shenzhen) Company Limited)
R3 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sys [149944 2015-08-04] (????)
R3 TS888; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TS888.sys [30392 2015-08-20] (Tencent)
R1 TSCPM; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\tscpm.sys [43448 2015-08-04] (????)
R1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sys [14008 2015-08-04] (Tencent)
R5 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sys [128120 2015-08-04] (????)
R1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSKsp.sys [204312 2015-08-04] (????)
R1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSSysKit.sys [101560 2015-08-04] (????)
S5 sysmon; system32\DRIVERS\sysmon.sys [X]
C:\Windows\System32\drivers\TsFltMgr.sys
C:\Windows\System32\DRIVERS\TSDefenseBt.sys
C:\Windows\System32\Drivers\TFsFlt.sys
C:\Windows\System32\Drivers\TAOKernel.sys
C:\Windows\system32\Drivers\TAOAccelerator.sys
C:\Windows\system32\drivers\hvm.sys
Reg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\globalupdate Helper" /f
C:\Users\Alex\AppData\Roaming\Tencent
C:\ProgramData\Tencent
C:\ProgramData\TXQMPC
C:\Users\Alex\AppData\Local\SysassistByHotWheel
C:\ProgramData\aWinManProa
C:\ProgramData\2WinManPro2
C:\ProgramData\lWinManProl
C:\ProgramData\JWinManProJ
C:\Users\Alex\AppData\Local\Crossbrowse
C:\Users\Alex\AppData\Roaming\X82FxyOAlfq82FaPhMv
EmptyTemp:
*****************

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}\\SystemComponent => value removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{30C9548A-C60A-4163-B16C-89A50BFBE8CB}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{30C9548A-C60A-4163-B16C-89A50BFBE8CB}" => key removed successfully.
C:\Windows\System32\Tasks\{03A73401-C37E-47D4-B23E-10649EC2320F} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{03A73401-C37E-47D4-B23E-10649EC2320F}" => key removed successfully.

"C:\Program Files\Tencent" folder move:

Could not move "C:\Program Files\Tencent" => Scheduled to move on reboot.

"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP" => key removed successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP" => key removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{800653E1-976C-4142-A78A-82F3B58FBA3A} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{40F4F7D0-2CC3-42F8-BD80-8F71C1A813AD} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4577B067-4086-43D8-88CA-3FB2760113D3} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1A0A720B-C4AB-452F-98B0-329F9288E9CA} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{631FCF0C-F113-4CFD-986B-9D8891A2911B} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{055042BE-2CF8-4A95-8A87-5EA3D9937747} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{03AE2896-5C6C-474B-8B99-C83C4CFE63A2} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8FB0E168-641C-4617-9C0A-673DBD57661F} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F6AAA8D2-41A9-4117-A5F4-8EF5349ECA21} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{664E7E89-0EF6-40A0-86AA-51C053754862} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D4A10035-B301-4BED-9042-AEC4965256D0} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F139E77A-F32E-41A3-BEC6-47BB3C3F344B} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{62691E92-8086-40FA-AD76-03AEBC35C5EF} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{70BCCEF4-71FC-4F90-9E82-CBD977A48451} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F499B39D-2546-429B-B357-B88E26AD015D} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FC002D19-7990-4AAE-A916-E97102B01599} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{51C3123B-E961-4AFC-AC7E-F17C33DF14EC} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B51FE3A-C397-4017-9129-1A2B1A67DC3B} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{58B52E3C-AA31-49E0-B7D9-72D0F9DE4DF6} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{375331D8-4BD0-4560-901D-221BC53987B7} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC4A8E5A-975C-415B-AD5E-A3FB408A172A} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9425F280-F406-40A8-B4B7-940B19905DA9} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8A78900E-2826-4E25-A70C-6C19FBC59FF2} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2492D291-2EEE-4BC8-B1E7-29AC01AE3780} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{82FFA897-6A48-436B-BE1B-C74A32E0A7FD} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF2CFEEE-443B-4163-BDB0-20E811102790} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5EE688A8-7C1F-44AE-BA55-8A49512D91FB} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{257BA39A-E784-40EE-A826-3DD3420A5DF3} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BCA73291-080D-4512-AB86-06EFF7741693} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F683808F-6743-42D5-9B83-0EFBD26C5931} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5B3E9BAE-31D7-49E0-A1B0-713F5456264C} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D2938B5D-5689-4DA1-9C45-D05623BDBFBC} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3CDC6CC4-153E-4F2C-85BF-ABDDB1CB5BEE} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{601B4058-54B4-4546-8D76-AA986BED2B7F} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CED259AB-63EF-4DD2-9E45-B576BB02E894} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DEE28A60-53A4-45A9-96BF-D2950F853194} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6B459F86-D596-41FA-B454-D27A56F5D01B} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0518D1DC-DB58-4ADD-BFFB-2713967D7CC2} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4F3BF249-3CC9-490B-9D5F-C7A5B0568C42} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D4F2BE7A-A9E3-49E2-B420-36660E6A7EF4} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{26F6731A-7BDB-4709-9669-33B9C413B718} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{037E09EE-1361-4C17-9B5D-7419FAC25D63} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF4E3DC2-4F2C-4E91-8E5C-4A6C2F2AF80C} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{19D9FFD1-C32C-4A1E-9782-A0B2B01489CE} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C112BF2C-988C-4C3E-BD76-DF9257A1466B} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{94661AB8-095B-4D5B-BF8E-C89776C7480C} => value removed successfully.

"C:\Program Files\Common Files\Tencent" folder move:

Could not move "C:\Program Files\Common Files\Tencent" => Scheduled to move on reboot.

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ QQPCTray => value could not remove.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\RavTRAY => value removed successfully.

"C:\Program Files\Rising" folder move:

"C:\Program Files\Rising" => folder moved successfully

"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\.QMDeskTopGCIcon" => key removed successfully.
"HKCR\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6}" => key removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-3050552178-2778190213-2786081387-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
QQPCRTP => Unable to stop service.
QQPCRTP => service could not remove
TAOFrame => Service stopped successfully.
TAOFrame => service removed successfully.
RsMgrSvc => service removed successfully.
RsRavMon => service removed successfully.
HyperVM => Service stopped successfully.
HyperVM => service removed successfully.
QMIEProtect => Service stopped successfully.
QMIEProtect => service removed successfully.
QMUdisk => Unable to stop service.
QMUdisk => service removed successfully.
QQSysMon => Unable to stop service.
QQSysMon => service could not remove
TAOAccelerator => Service stopped successfully.
TAOAccelerator => service removed successfully.
TAOKernelDriver => Unable to stop service.
TAOKernelDriver => service removed successfully.
TFsFlt => Unable to stop service.
TFsFlt => service could not remove
TS888 => Service stopped successfully.
TS888 => service removed successfully.
TSCPM => Unable to stop service.
TSCPM => service removed successfully.
TSDefenseBt => Service stopped successfully.
TSDefenseBt => service could not remove
TsFltMgr => Unable to stop service.
TsFltMgr => service could not remove
TSKSP => Unable to stop service.
TSKSP => service could not remove
TSSysKit => Unable to stop service.
TSSysKit => service could not remove
sysmon => service removed successfully.
Could not move "C:\Windows\System32\drivers\TsFltMgr.sys" => Scheduled to move on reboot.
Could not move "C:\Windows\System32\DRIVERS\TSDefenseBt.sys" => Scheduled to move on reboot.
Could not move "C:\Windows\System32\Drivers\TFsFlt.sys" => Scheduled to move on reboot.
C:\Windows\System32\Drivers\TAOKernel.sys => moved successfully
C:\Windows\system32\Drivers\TAOAccelerator.sys => moved successfully
C:\Windows\system32\drivers\hvm.sys => moved successfully

========= reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\globalupdate Helper" /f =========

Bť¤D: System nie znalazˆ w rejestrze okre˜lonego klucza albo warto˜ci.


========= End of Reg: =========


"C:\Users\Alex\AppData\Roaming\Tencent" folder move:

Could not move "C:\Users\Alex\AppData\Roaming\Tencent" => Scheduled to move on reboot.


"C:\ProgramData\Tencent" folder move:

Could not move "C:\ProgramData\Tencent" => Scheduled to move on reboot.

C:\ProgramData\TXQMPC => moved successfully
C:\Users\Alex\AppData\Local\SysassistByHotWheel => moved successfully
C:\ProgramData\aWinManProa => moved successfully
C:\ProgramData\2WinManPro2 => moved successfully
C:\ProgramData\lWinManProl => moved successfully
C:\ProgramData\JWinManProJ => moved successfully
C:\Users\Alex\AppData\Local\Crossbrowse => moved successfully
C:\Users\Alex\AppData\Roaming\X82FxyOAlfq82FaPhMv => moved successfully
EmptyTemp: => 846.5 MB temporary data Removed.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-08-22 03:17:07)<=

"C:\Program Files\Tencent" => Could not move
"C:\Program Files\Common Files\Tencent" => Could not move
"C:\Windows\System32\drivers\TsFltMgr.sys" => Could not move
"C:\Windows\System32\DRIVERS\TSDefenseBt.sys" => Could not move
"C:\Windows\System32\Drivers\TFsFlt.sys" => Could not move
C:\Users\Alex\AppData\Roaming\Tencent => moved successfully
"C:\ProgramData\Tencent" => Could not move

==== End of Fixlog 03:17:22 ====