Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 15-03-2017
Executado por Jonas (administrador) em NET (14-04-2017 22:35:25)
Executando a partir de C:\Users\Jonas\Documents\EGDownloads
Perfis Carregados: Jonas (Perfis Disponíveis: Jonas)
Platform: Microsoft Windows 8.1 Pro (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.3\GoogleCrashHandler.exe
(BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe
(BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\EagleGet\EGMonitor.exe
(EagleGet.com) C:\Program Files\EagleGet\EagleGet.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\...\Run: [uTorrent] => C:\Users\Jonas\AppData\Roaming\uTorrent\uTorrent.exe [2403520 2017-03-25] (BitTorrent Inc.)
HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\...\Run: [eagleget-2-0-4-20] => C:\Users\Jonas\AppData\Local\Temp\is-71KPC.tmp\eagleget-2-0-4-20.tmp -V <===== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F9DB134F-8325-4FBF-990C-49148F25BF76}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: EGet Class -> {1E871FF8-029C-4732-8AA7-39E3D3872057} -> C:\Program Files\EagleGet\eagleSniffer.dll [2017-02-01] (EagleGet.com)
FireFox:
========
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.)
FF Plugin HKU\S-1-5-21-3136444817-2526492344-3489844588-1000: eagleget.com/EagleGet32 -> C:\Program Files\EagleGet\npEagleget.dll [2016-09-13] (EagleGet)
Chrome:
=======
CHR Profile: C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default [2017-04-14]
CHR Extension: (Flash Video Downloader) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2017-04-14]
CHR Extension: (Google Docs) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-13]
CHR Extension: (Google Drive) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-13]
CHR Extension: (YouTube) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-13]
CHR Extension: (Documentos Google off-line) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-13]
CHR Extension: (EagleGet Free Downloader) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2017-04-14]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-13]
CHR Extension: (Baixar vídeos com Video Downloader Pro) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofcgiflmicieegobmapobiohjeokdbcd [2017-04-14]
CHR Extension: (Gmail) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-13]
CHR Extension: (Chrome Media Router) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-13]
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2017-04-14]
CHR HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2017-04-14]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 egGetSvc; C:\Program Files\EagleGet\EGMonitor.exe [247464 2017-02-01] ()
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [741056 2015-11-29] (@ByELDI) [Arquivo não assinado]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [278264 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22240 2013-08-22] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 MpKslb75968f5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D55C990C-25DC-437E-9796-ABA1DFD57FC8}\MpKslb75968f5.sys [29904 2017-04-14] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\System32\drivers\ATKACPI.sys [7680 2007-07-31] (ATK0100)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [29128 2013-08-22] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [214368 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [93024 2013-08-22] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
Executado por Jonas (administrador) em NET (14-04-2017 22:35:25)
Executando a partir de C:\Users\Jonas\Documents\EGDownloads
Perfis Carregados: Jonas (Perfis Disponíveis: Jonas)
Platform: Microsoft Windows 8.1 Pro (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.3\GoogleCrashHandler.exe
(BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe
(BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\EagleGet\EGMonitor.exe
(EagleGet.com) C:\Program Files\EagleGet\EagleGet.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\...\Run: [uTorrent] => C:\Users\Jonas\AppData\Roaming\uTorrent\uTorrent.exe [2403520 2017-03-25] (BitTorrent Inc.)
HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\...\Run: [eagleget-2-0-4-20] => C:\Users\Jonas\AppData\Local\Temp\is-71KPC.tmp\eagleget-2-0-4-20.tmp -V <===== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F9DB134F-8325-4FBF-990C-49148F25BF76}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp
BHO: EGet Class -> {1E871FF8-029C-4732-8AA7-39E3D3872057} -> C:\Program Files\EagleGet\eagleSniffer.dll [2017-02-01] (EagleGet.com)
FireFox:
========
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.)
FF Plugin HKU\S-1-5-21-3136444817-2526492344-3489844588-1000: eagleget.com/EagleGet32 -> C:\Program Files\EagleGet\npEagleget.dll [2016-09-13] (EagleGet)
Chrome:
=======
CHR Profile: C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default [2017-04-14]
CHR Extension: (Flash Video Downloader) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2017-04-14]
CHR Extension: (Google Docs) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-13]
CHR Extension: (Google Drive) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-13]
CHR Extension: (YouTube) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-13]
CHR Extension: (Documentos Google off-line) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-13]
CHR Extension: (EagleGet Free Downloader) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2017-04-14]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-13]
CHR Extension: (Baixar vídeos com Video Downloader Pro) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofcgiflmicieegobmapobiohjeokdbcd [2017-04-14]
CHR Extension: (Gmail) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-13]
CHR Extension: (Chrome Media Router) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-13]
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2017-04-14]
CHR HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2017-04-14]
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 egGetSvc; C:\Program Files\EagleGet\EGMonitor.exe [247464 2017-02-01] ()
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [741056 2015-11-29] (@ByELDI) [Arquivo não assinado]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [278264 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22240 2013-08-22] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 MpKslb75968f5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D55C990C-25DC-437E-9796-ABA1DFD57FC8}\MpKslb75968f5.sys [29904 2017-04-14] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\System32\drivers\ATKACPI.sys [7680 2007-07-31] (ATK0100)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [29128 2013-08-22] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [214368 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [93024 2013-08-22] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)