Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão: 15-03-2017 Executado por Jonas (administrador) em NET (14-04-2017 22:35:25) Executando a partir de C:\Users\Jonas\Documents\EGDownloads Perfis Carregados: Jonas (Perfis Disponíveis: Jonas) Platform: Microsoft Windows 8.1 Pro (X86) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files\Google\Update\1.3.33.3\GoogleCrashHandler.exe (BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe (BitTorrent Inc.) C:\Users\Jonas\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files\EagleGet\EGMonitor.exe (EagleGet.com) C:\Program Files\EagleGet\EagleGet.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\...\Run: [uTorrent] => C:\Users\Jonas\AppData\Roaming\uTorrent\uTorrent.exe [2403520 2017-03-25] (BitTorrent Inc.) HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\...\Run: [eagleget-2-0-4-20] => C:\Users\Jonas\AppData\Local\Temp\is-71KPC.tmp\eagleget-2-0-4-20.tmp -V <===== ATENÇÃO ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{F9DB134F-8325-4FBF-990C-49148F25BF76}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp BHO: EGet Class -> {1E871FF8-029C-4732-8AA7-39E3D3872057} -> C:\Program Files\EagleGet\eagleSniffer.dll [2017-02-01] (EagleGet.com) FireFox: ======== FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.) FF Plugin HKU\S-1-5-21-3136444817-2526492344-3489844588-1000: eagleget.com/EagleGet32 -> C:\Program Files\EagleGet\npEagleget.dll [2016-09-13] (EagleGet) Chrome: ======= CHR Profile: C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default [2017-04-14] CHR Extension: (Flash Video Downloader) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2017-04-14] CHR Extension: (Google Docs) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-13] CHR Extension: (Google Drive) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-13] CHR Extension: (YouTube) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-13] CHR Extension: (Documentos Google off-line) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-13] CHR Extension: (EagleGet Free Downloader) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2017-04-14] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-13] CHR Extension: (Baixar vídeos com Video Downloader Pro) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofcgiflmicieegobmapobiohjeokdbcd [2017-04-14] CHR Extension: (Gmail) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-13] CHR Extension: (Chrome Media Router) - C:\Users\Jonas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-13] CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2017-04-14] CHR HKU\S-1-5-21-3136444817-2526492344-3489844588-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2017-04-14] ==================== Serviços (Whitelisted) ==================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 egGetSvc; C:\Program Files\EagleGet\EGMonitor.exe [247464 2017-02-01] () R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [741056 2015-11-29] (@ByELDI) [Arquivo não assinado] R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [278264 2013-08-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22240 2013-08-22] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R1 MpKslb75968f5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D55C990C-25DC-437E-9796-ABA1DFD57FC8}\MpKslb75968f5.sys [29904 2017-04-14] (Microsoft Corporation) R3 MTsensor; C:\WINDOWS\System32\drivers\ATKACPI.sys [7680 2007-07-31] (ATK0100) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [29128 2013-08-22] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [214368 2013-08-22] (Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [93024 2013-08-22] (Microsoft Corporation) R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)