• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 11

    fb downloader - imposible desinstalar

    bueno cogi esta barra o lo que se a en softonic , para variar cada vez que descargo algo de ahi aparecen nuevos virus que yo consigo obtener gratis y con mucha calidad jajaja. Bueno ...

    1. #1
      Usuario Avatar de manuel-24
      Registrado
      may 2012
      Ubicación
      madrid
      Mensajes
      55

      fb downloader - imposible desinstalar

      bueno cogi esta barra o lo que se a en softonic , para variar cada vez que descargo algo de ahi aparecen nuevos virus que yo consigo obtener gratis y con mucha calidad jajaja. Bueno le he pasado AT Destroyer , ADWcleaner , analisis del eset nod 32 , ccleaner , malwarebyts y nada es indestructible. Me cambia la pagina de inicio cada vez que reinicio , me aparece un mensaje antes que me dice que me agradecen que la tenga instalada , en la barrita pequeña de buscar me aparecen 2 el fb downloader y el fb downloader search , al abrir una pestaña todo el rato me la abre con fb downloader. He probado a restablecer mozilla , a desinstalar el programita de panel de control a cambiar todo una y otra vez y nada , desintalo todo paso todos estos programas "anti-bichos" , reinicio y sigue saliendome el mensajito y cambiandome la pagina de inicio , restableciendo todo lo que tenga que ver con esto. Os agradeceria que me lo quitarais de encima. Gracias. Un saludo.

    2. #2
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: fb downloader - imposible desinstalar

      Buenas.-

      Descargá OTL By OldTimer a Tu escritorio

      Ejecutá OTL

      • Cerrá todos programas que tengas abiertos y Hacé doble click en el ícono de OTL para ejecutarlo.
      • Dejalo correr sin interrumpirlo hasta que termine el Análisis.
      • Cuando la interfaz aparesca, solo debes cambiar Abajo de: "Tipo de Análisis" poniendo Resultado Minimo.
      • Marcá las opciones: Buscar LOP y Buscar Purity.
      • Marcá las Opciones Omitir Archivos De Microsoft y Usar Listado de Compañias Reconocidas.
      • Por favor No cambies el resto de la configuración a menos que te lo solicitemos.


      • Presioná el boton .
      • Una vez que termine, se abrirán dos (2) archivos, OTL.Txt y Extras.Txt. Éstos aparecerán grabados en el mismo lugar OTL.exe fue descargado.
      • Copiá y pegá el contenido del archivo OTL.txt en tu próxima respuesta.




      Nos traes el reporte de OTL.


      Saludos.
      Última edición por @Tincho fecha: 05/11/12 a las 01:00:27
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de manuel-24
      Registrado
      may 2012
      Ubicación
      madrid
      Mensajes
      55

      Re: fb downloader - imposible desinstalar

      OTL logfile created on: 05/11/2012 6:24:53 - Run 1
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Manuel\Downloads
      64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      11,75 Gb Total Physical Memory | 10,12 Gb Available Physical Memory | 86,15% Memory free
      23,49 Gb Paging File | 21,66 Gb Available in Paging File | 92,19% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 97,56 Gb Total Space | 47,10 Gb Free Space | 48,28% Space Free | Partition Type: NTFS
      Drive D: | 368,10 Gb Total Space | 71,57 Gb Free Space | 19,44% Space Free | Partition Type: NTFS
      Drive J: | 519,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

      Computer Name: MANUEL-PC | User Name: Manuel | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Manuel\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      PRC - C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe (DT Soft Ltd)
      PRC - C:\Archivos de programa\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
      PRC - C:\Program Files (x86)\Windows Sidebar\sidebar.exe (Microsoft Corporation)
      PRC - C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe ()


      ========== Modules (No Company Name) ==========


      ========== Services (SafeList) ==========

      SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
      SRV:64bit: - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.)
      SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (ekrn) -- C:\Archivos de programa\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
      SRV - (D_Link_DWA-140_WPS) -- C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe ()
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
      DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd)
      DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
      DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
      DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
      DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
      DRV:64bit: - (epfwwfpr) -- C:\Windows\SysNative\drivers\epfwwfpr.sys (ESET)
      DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
      DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
      DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
      DRV:64bit: - (netr28ux) -- C:\Windows\SysNative\drivers\Dnetr28ux.sys (Ralink Technology Corp.)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (tsusbhub) -- C:\Windows\SysNative\drivers\tsusbhub.sys (Microsoft Corporation)
      DRV:64bit: - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)
      DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
      DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV:64bit: - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (anodlwf) -- C:\Windows\SysNative\drivers\anodlwfx.sys ()
      DRV - (AODDriver4.1) -- C:\Archivos de programa\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys (Advanced Micro Devices)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = fbDownloader Search
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = fbDownloader Search
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN España: Hotmail, Messenger, Skype y Cuenta Microsoft
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 27 B2 D5 0D 32 A4 CD 01 [binary data]
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Google
      IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
      IE - HKCU\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://search.yahoo.com/search?fr=vmn&type=vmn-toolbarcleaner-1_1-ya-ch-rp&q={searchTerms}
      IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q={searchTerms}
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "FBDownloader Search"
      FF - prefs.js..browser.search.defaulturl: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q="
      FF - prefs.js..browser.search.order.1: "Yahoo"
      FF - prefs.js..browser.search.selectedEngine: "Google"
      FF - prefs.js..browser.search.suggest.enabled: false
      FF - prefs.js..browser.search.useDBForOrder: true
      FF - prefs.js..browser.startup.homepage: "http://www.google.es/"
      FF - prefs.js..keyword.URL: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q="
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/27 12:22:01 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012/11/05 03:14:03 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/27 12:22:01 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

      [2012/10/07 03:31:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Manuel\AppData\Roaming\mozilla\Extensions
      [2012/10/27 12:21:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
      [2012/10/27 12:22:01 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
      [2012/09/06 04:35:44 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
      [2012/09/06 04:35:44 | 000,003,882 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\drae.xml
      [2012/09/06 04:35:44 | 000,001,143 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-es.xml
      [2012/10/25 01:06:23 | 000,000,952 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\FBDownloader.xml
      [2012/11/05 04:53:03 | 000,021,150 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\testlog.txt
      [2012/10/13 09:27:20 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
      [2012/09/06 04:35:44 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/07/11 19:26:14 | 000,001,068 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahootc.xml

      O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
      O2 - BHO: (FBDownloader BHO) - {553318DA-D010-469E-84B1-496563CAE1BF} - C:\Users\Manuel\AppData\Local\fbDownloader\Extensions\FBDownloader.dll File not found
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
      O4:64bit: - HKLM..\Run: [TNOD UP] "C:\Program Files\ESET\TNod User & Password Finder\TNODUP.exe" /i File not found
      O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
      O4 - HKLM..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
      O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
      O4 - HKCU..\Run: [DataMgr] C:\Users\Manuel\AppData\Roaming\DataMgr\datamgr.exe (HTTO Group, Ltd.)
      O4 - HKCU..\Run: [Protector] C:\Users\Manuel\AppData\Roaming\SDIV 2.0\Prot\prot.vbs ()
      O4 - HKCU..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: Descargar con Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
      O8 - Extra context menu item: Descargar con Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CA293EF6-0A82-4287-A870-46FCED21B165}: DhcpNameServer = 192.168.2.1
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2008/03/11 01:29:01 | 000,000,041 | R--- | M] () - J:\AUTORUN.INF -- [ CDFS ]
      O33 - MountPoints2\{ccf088fe-1028-11e2-8250-a2208e223dbc}\Shell - "" = AutoRun
      O33 - MountPoints2\{ccf088fe-1028-11e2-8250-a2208e223dbc}\Shell\AutoRun\command - "" = J:\SETUP.EXE -- [2008/03/11 01:28:38 | 000,032,768 | R--- | M] ()
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

    4. #4
      Usuario Avatar de manuel-24
      Registrado
      may 2012
      Ubicación
      madrid
      Mensajes
      55

      Re: fb downloader - imposible desinstalar

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/11/05 04:52:25 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner
      [2012/11/05 04:52:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
      [2012/11/05 03:19:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\ESET
      [2012/11/05 03:16:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
      [2012/11/05 03:13:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
      [2012/11/05 03:13:54 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
      [2012/11/05 03:13:54 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
      [2012/11/02 06:43:36 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Malwarebytes
      [2012/11/02 06:43:25 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
      [2012/11/02 06:43:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2012/11/02 06:43:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2012/11/02 06:43:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [2012/10/31 13:16:16 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\vlc
      [2012/10/31 13:16:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      [2012/10/31 13:16:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
      [2012/10/31 12:50:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Win7 MAC Address Changer
      [2012/10/31 08:44:55 | 000,036,864 | ---- | C] (NirSoft) -- C:\Windows\nircmd.exe
      [2012/10/27 12:21:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2012/10/25 0128 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
      [2012/10/25 0128 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
      [2012/10/25 0105 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
      [2012/10/25 01:07:54 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2012/10/25 01:07:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2012/10/25 01:06:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\SDIV 2.0
      [2012/10/25 01:06:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\HMN
      [2012/10/25 01:06:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\DataMgr
      [2012/10/25 01:05:31 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\WinRAR
      [2012/10/25 01:05:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
      [2012/10/18 18:25:49 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Documents\Mipony
      [2012/10/18 18:24:02 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Mipony
      [2012/10/18 18:23:59 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MiPony
      [2012/10/18 18:23:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiPony
      [2012/10/18 18:23:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MiPony
      [2012/10/17 19:54:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2012/10/17 19:54:23 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2012/10/17 10:26:43 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
      [2012/10/13 00:13:34 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
      [2012/10/13 00:13:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
      [2012/10/10 06:40:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
      [2012/10/10 06:40:35 | 000,000,000 | ---D | C] -- C:\Program Files\Core Temp
      [2012/10/10 06:37:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
      [2012/10/09 20:01:29 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Documents\Messenger Plus!
      [2012/10/09 20:01:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Messenger Plus!
      [2012/10/09 20:00:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yuna Software
      [2012/10/07 1619 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Macromedia
      [2012/10/07 1619 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\Macromedia
      [2012/10/07 1619 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Adobe
      [2012/10/07 1601 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
      [2012/10/07 1601 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
      [2012/10/07 16:09:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
      [2012/10/07 15:19:43 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Documents\Mis archivos recibidos
      [2012/10/07 15:11:09 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
      [2012/10/07 15:01:17 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Tracing
      [2012/10/07 15:00:03 | 000,000,000 | ---D | C] -- C:\Windows\es
      [2012/10/07 14:59:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      [2012/10/07 14:58:54 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
      [2012/10/07 14:58:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
      [2012/10/07 14:58:50 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
      [2012/10/07 14:58:45 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
      [2012/10/07 14:58:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
      [2012/10/07 14:53:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
      [2012/10/07 14:50:41 | 000,000,000 | R--D | C] -- C:\Users\Manuel\SkyDrive
      [2012/10/07 14:50:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SkyDrive
      [2012/10/07 14:50:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft SkyDrive
      [2012/10/07 14:50:09 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\Windows Live
      [2012/10/07 14:50:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
      [2012/10/07 04:35:05 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Desktop\Ethal bot
      [2012/10/07 04:29:08 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images
      [2012/10/07 04:27:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
      [2012/10/07 04:27:06 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
      [2012/10/07 04:27:04 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\DAEMON Tools Pro
      [2012/10/07 04:27:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Pro
      [2012/10/07 04:26:35 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Pro
      [2012/10/07 04:13:13 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Diablo II
      [2012/10/07 04:07:18 | 000,102,400 | ---- | C] (Blizzard Entertainment) -- C:\Windows\DIIUnin.exe
      [2012/10/07 04:07:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II
      [2012/10/07 03:34:00 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
      [2012/10/07 03:33:06 | 000,000,000 | ---D | C] -- C:\Windows\Panther
      [2012/10/07 03:31:20 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Mozilla
      [2012/10/07 03:31:20 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\Mozilla
      [2012/10/07 03:31:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
      [2012/10/07 03:31:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
      [2012/10/07 03:30:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\AMD
      [2012/10/07 03:30:01 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\ATI
      [2012/10/07 03:30:01 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\ATI
      [2012/10/07 03:30:01 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
      [2012/10/07 03:25:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
      [2012/10/07 03:25:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
      [2012/10/07 03:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
      [2012/10/07 03:25:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
      [2012/10/07 03:25:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
      [2012/10/07 03:24:57 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
      [2012/10/07 03:24:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
      [2012/10/07 03:24:29 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
      [2012/10/07 03:24:22 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
      [2012/10/07 03:24:21 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
      [2012/10/07 03:23:50 | 000,000,000 | ---D | C] -- C:\AMD
      [2012/10/07 02:52:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\D-Link
      [2012/10/07 02:47:26 | 001,617,472 | ---- | C] (Ralink Technology Corp.) -- C:\Windows\SysNative\drivers\Dnetr28ux.sys
      [2012/10/07 02:47:26 | 000,327,008 | ---- | C] (Ralink Technology, Inc.) -- C:\Windows\SysNative\RaCoInstx.dll
      [2012/10/07 02:47:26 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
      [2012/10/07 02:47:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\D-Link
      [2012/10/07 02:47:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\InstallShield
      [2012/10/07 02:41:31 | 000,000,000 | R--D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
      [2012/10/07 02:41:31 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Searches
      [2012/10/07 02:41:31 | 000,000,000 | R--D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
      [2012/10/07 02:41:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Identities
      [2012/10/07 02:41:17 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Contacts
      [2012/10/07 02:41:12 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\VirtualStore
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\SendTo
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Reciente
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Plantillas
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Documents\Mis vídeos
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Documents\Mis imágenes
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Mis documentos
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Documents\Mi música
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Menú Inicio
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Impresoras
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\AppData\Local\Historial
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Entorno de red
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Datos de programa
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\AppData\Local\Datos de programa
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Cookies
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\Configuración local
      [2012/10/07 02:40:51 | 000,000,000 | -HSD | C] -- C:\Users\Manuel\AppData\Local\Archivos temporales de Internet
      [2012/10/07 02:40:50 | 000,000,000 | --SD | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Videos
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Saved Games
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Pictures
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Music
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Links
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Favorites
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Downloads
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Documents
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\Desktop
      [2012/10/07 02:40:50 | 000,000,000 | R--D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
      [2012/10/07 02:40:50 | 000,000,000 | -H-D | C] -- C:\Users\Manuel\AppData
      [2012/10/07 02:40:50 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\Temp
      [2012/10/07 02:40:50 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\Microsoft
      [2012/10/07 02:40:50 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Media Center Programs
      [2012/10/07 02:40:40 | 000,000,000 | -HSD | C] -- C:\Recovery
      [2012/10/07 02:40:40 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mis vídeos
      [2012/10/07 02:40:40 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mis imágenes
      [2012/10/07 02:40:40 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mi música
      [2012/10/07 02:40:40 | 000,000,000 | -HSD | C] -- C:\Archivos de programa
      [2012/10/07 02:40:40 | 000,000,000 | -HSD | C] -- C:\Program Files\Archivos comunes
      [2012/10/07 02:40:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plantillas
      [2012/10/07 02:40:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menú Inicio
      [2012/10/07 02:40:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoritos
      [2012/10/07 02:40:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Escritorio
      [2012/10/07 02:40:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documentos
      [2012/10/07 02:40:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Datos de programa
      [2012/10/07 02:37:00 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
      [2012/10/07 02:34:51 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
      [2012/10/07 02:34:06 | 000,000,000 | -HSD | C] -- C:\System Volume Information

      ========== Files - Modified Within 30 Days ==========

      [2012/11/05 05:57:23 | 000,016,864 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2012/11/05 05:57:23 | 000,016,864 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2012/11/05 05:27:00 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2012/11/05 04:59:10 | 001,671,442 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2012/11/05 04:59:10 | 000,745,448 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2012/11/05 04:59:10 | 000,652,150 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2012/11/05 04:59:10 | 000,157,948 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2012/11/05 04:59:10 | 000,121,082 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2012/11/05 04:54:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2012/11/05 04:54:50 | 870,981,630 | -HS- | M] () -- C:\hiberfil.sys
      [2012/11/02 06:43:25 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/10/30 11:25:59 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/10/30 09:39:46 | 000,001,327 | ---- | M] () -- C:\Users\Manuel\Desktop\Diablo 2.lnk
      [2012/10/21 07:21:56 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
      [2012/10/18 18:23:59 | 000,000,995 | ---- | M] () -- C:\Users\Manuel\Desktop\MiPony.lnk
      [2012/10/13 00:19:38 | 001,648,480 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2012/10/13 00:15:22 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
      [2012/10/13 00:15:22 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
      [2012/10/11 02:44:46 | 000,274,824 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2012/10/10 06:40:35 | 000,000,948 | ---- | M] () -- C:\Users\Manuel\Desktop\Core Temp.lnk
      [2012/10/10 06:34:42 | 000,024,576 | ---- | M] () -- C:\Windows\SysWow64\AsIO.dll
      [2012/10/10 06:34:42 | 000,013,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\AsIO.sys
      [2012/10/10 06:34:39 | 000,015,416 | ---- | M] () -- C:\Windows\SysNative\drivers\ASACPI.sys
      [2012/10/07 04:27:56 | 000,001,932 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Pro.lnk
      [2012/10/07 04:27:06 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
      [2012/10/07 04:23:23 | 000,000,912 | ---- | M] () -- C:\Users\Manuel\Desktop\Diablo 1.lnk
      [2012/10/07 04:15:09 | 000,051,450 | ---- | M] () -- C:\Windows\DIIUnin.dat
      [2012/10/07 04:14:24 | 000,021,840 | ---- | M] () -- C:\Windows\SysWow64\SIntfNT.dll
      [2012/10/07 04:14:24 | 000,017,212 | ---- | M] () -- C:\Windows\SysWow64\SIntf32.dll
      [2012/10/07 04:14:24 | 000,012,067 | ---- | M] () -- C:\Windows\SysWow64\SIntf16.dll
      [2012/10/07 04:07:18 | 000,102,400 | ---- | M] (Blizzard Entertainment) -- C:\Windows\DIIUnin.exe
      [2012/10/07 04:07:18 | 000,002,829 | ---- | M] () -- C:\Windows\DIIUnin.pif
      [2012/10/07 03:31:13 | 000,001,130 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2012/10/07 03:28:59 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
      [2012/10/07 02:50:59 | 000,000,258 | ---- | M] () -- C:\Users\Manuel\AppData\Roaming\ANICONFIG_{CA293EF6-0A82-4287-A870-46FCED21B165}.ini
      [2012/10/07 02:38:39 | 000,226,192 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
      [2012/10/07 02:38:39 | 000,226,192 | ---- | M] () -- C:\Windows\SysNative\license.rtf
      [2012/10/07 02:36:31 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf

      ========== Files Created - No Company Name ==========

      [2012/11/02 06:43:25 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/10/31 08:44:55 | 000,069,660 | ---- | C] () -- C:\Windows\Fart.exe
      [2012/10/31 08:44:55 | 000,022,528 | ---- | C] () -- C:\Windows\AT-Uninstall.exe
      [2012/10/31 08:44:55 | 000,011,776 | ---- | C] () -- C:\Windows\Colous.exe
      [2012/10/30 09:39:28 | 000,001,327 | ---- | C] () -- C:\Users\Manuel\Desktop\Diablo 2.lnk
      [2012/10/18 18:23:59 | 000,000,995 | ---- | C] () -- C:\Users\Manuel\Desktop\MiPony.lnk
      [2012/10/17 19:54:23 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/10/13 00:15:22 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
      [2012/10/13 00:15:22 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
      [2012/10/10 06:40:35 | 000,000,948 | ---- | C] () -- C:\Users\Manuel\Desktop\Core Temp.lnk
      [2012/10/10 06:37:56 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
      [2012/10/10 06:37:56 | 000,013,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
      [2012/10/10 06:34:14 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
      [2012/10/07 1602 | 000,000,838 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2012/10/07 14:59:44 | 000,001,305 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
      [2012/10/07 14:59:38 | 000,001,374 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
      [2012/10/07 14:59:25 | 000,001,458 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
      [2012/10/07 14:59:19 | 000,002,486 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
      [2012/10/07 14:56:02 | 001,648,480 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2012/10/07 14:50:41 | 000,002,192 | ---- | C] () -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
      [2012/10/07 04:27:56 | 000,001,932 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Pro.lnk
      [2012/10/07 04:14:24 | 000,021,840 | ---- | C] () -- C:\Windows\SysWow64\SIntfNT.dll
      [2012/10/07 04:14:24 | 000,017,212 | ---- | C] () -- C:\Windows\SysWow64\SIntf32.dll
      [2012/10/07 04:14:24 | 000,012,067 | ---- | C] () -- C:\Windows\SysWow64\SIntf16.dll
      [2012/10/07 04:13:13 | 000,000,912 | ---- | C] () -- C:\Users\Manuel\Desktop\Diablo 1.lnk
      [2012/10/07 04:07:18 | 000,051,450 | ---- | C] () -- C:\Windows\DIIUnin.dat
      [2012/10/07 04:07:18 | 000,002,829 | ---- | C] () -- C:\Windows\DIIUnin.pif
      [2012/10/07 03:31:13 | 000,001,142 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      [2012/10/07 03:31:13 | 000,001,130 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
      [2012/10/07 03:28:59 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
      [2012/10/07 02:48:58 | 000,000,258 | ---- | C] () -- C:\Users\Manuel\AppData\Roaming\ANICONFIG_{CA293EF6-0A82-4287-A870-46FCED21B165}.ini
      [2012/10/07 02:48:02 | 000,302,080 | ---- | C] () -- C:\Windows\lwd.exe
      [2012/10/07 02:47:26 | 000,014,119 | ---- | C] () -- C:\Windows\SysNative\RaCoInst.dat
      [2012/10/07 02:43:45 | 000,015,872 | ---- | C] () -- C:\Windows\SysNative\drivers\anodlwfx.sys
      [2012/10/07 02:41:37 | 000,001,393 | ---- | C] () -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
      [2012/10/07 02:41:32 | 000,001,427 | ---- | C] () -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
      [2012/10/07 02:38:27 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
      [2012/10/07 02:38:20 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
      [2012/10/07 02:36:31 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
      [2012/10/07 02:34:06 | 870,981,630 | -HS- | C] () -- C:\hiberfil.sys
      [2012/07/04 06:34:16 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
      [2012/07/04 06:34:16 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
      [2012/04/18 18:39:10 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
      [2011/09/12 23:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

      ========== ZeroAccess Check ==========

      [2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2012/10/17 19:55:17 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\DAEMON Tools Pro
      [2012/10/25 01:06:22 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\DataMgr
      [2012/10/25 01:06:22 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\HMN
      [2012/11/05 06:24:09 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Mipony
      [2012/10/25 01:06:22 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\SDIV 2.0

      ========== Purity Check ==========



      < End of report >

    5. #5
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: fb downloader - imposible desinstalar

      Buenas.



      Ejecutá OTL.exe


      1.- Copiar el siguiente texto (excluyendo la palabra Código):
      Código:
      :OTL
      FF - prefs.js..browser.search.defaultenginename: "FBDownloader Search"
      FF - prefs.js..browser.search.defaulturl: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q="
      FF - prefs.js..keyword.URL: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q="
      
      :Commands
      [PURITY] 
      [RESETHOSTS]
      [EMPTYFLASH]
      [EMPTYTEMP]
      [CREATERESTOREPOINT]
      2.- Pegar el contenido sobre el apartado: Análisis Personalizados /Código de Reparación.


      3.- Presionar el botón Reparar para comenzar el procedimiento. Presionar OK.


      OTL va a reiniciar el ordenador para completar el procedimiento.

      Guardar el nuevo reporte generado. Copiar y pegarlo en su próxima respuesta, comentando como funciona el Sistema.
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    6. #6
      Usuario Avatar de manuel-24
      Registrado
      may 2012
      Ubicación
      madrid
      Mensajes
      55

      Re: fb downloader - imposible desinstalar

      All processes killed
      ========== OTL ==========
      Prefs.js: "FBDownloader Search" removed from browser.search.defaultenginename
      Prefs.js: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q=" removed from browser.search.defaulturl
      Prefs.js: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q=" removed from keyword.URL
      ========== COMMANDS ==========
      C:\Windows\System32\drivers\etc\Hosts moved successfully.
      HOSTS file reset successfully

      [EMPTYFLASH]

      User: All Users

      User: Default

      User: Default User

      User: m2

      User: Manuel
      ->Flash cache emptied: 602 bytes

      User: Public

      Total Flash Files Cleaned = 0,00 mb


      [EMPTYTEMP]

      User: All Users

      User: Default
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 33170 bytes

      User: Default User
      ->Temp folder emptied: 0 bytes
      ->Temporary Internet Files folder emptied: 0 bytes

      User: m2
      ->Temp folder emptied: 32878 bytes
      ->Temporary Internet Files folder emptied: 33621 bytes

      User: Manuel
      ->Temp folder emptied: 63981289 bytes
      ->Temporary Internet Files folder emptied: 7158397 bytes
      ->Java cache emptied: 10675 bytes
      ->FireFox cache emptied: 76311975 bytes
      ->Flash cache emptied: 0 bytes

      User: Public

      %systemdrive% .tmp files removed: 0 bytes
      %systemroot% .tmp files removed: 0 bytes
      %systemroot%\System32 .tmp files removed: 0 bytes
      %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
      %systemroot%\System32\drivers .tmp files removed: 0 bytes
      Windows Temp folder emptied: 5936 bytes
      %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36095973 bytes
      RecycleBin emptied: 0 bytes

      Total Files Cleaned = 175,00 mb

      Restore point Set: OTL Restore Point

      OTL by OldTimer - Version 3.2.69.0 log created on 11052012_172506

      Files\Folders moved on Reboot...
      C:\Users\Manuel\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

      PendingFileRenameOperations files...

      Registry entries deleted on Reboot...

      sigue apareciendome fb downloader nada mas iniciar el sistema...

    7. #7
      Moderador.
      Avatar de @Tincho
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.701

      Re: fb downloader - imposible desinstalar

      Buenas.-


      Saca otro log de OTL.


      -Saludos
      Tyny's
      If on your journey, you should encounter God, God will be cut!

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de manuel-24
      Registrado
      may 2012
      Ubicación
      madrid
      Mensajes
      55

      Re: fb downloader - imposible desinstalar

      OTL logfile created on: 08/11/2012 9:24:26 - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Manuel\Downloads
      64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
      Internet Explorer (Version = 9.0.8112.16421)
      Locale: 00000c0a | Country: España | Language: ESN | Date Format: dd/MM/yyyy

      11,75 Gb Total Physical Memory | 10,09 Gb Available Physical Memory | 85,90% Memory free
      23,49 Gb Paging File | 21,65 Gb Available in Paging File | 92,15% Paging File free
      Paging file location(s): ?:\pagefile.sys [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
      Drive C: | 97,56 Gb Total Space | 37,95 Gb Free Space | 38,90% Space Free | Partition Type: NTFS
      Drive D: | 368,10 Gb Total Space | 71,56 Gb Free Space | 19,44% Space Free | Partition Type: NTFS
      Drive J: | 519,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

      Computer Name: MANUEL-PC | User Name: Manuel | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Users\Manuel\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      PRC - C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      PRC - C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe (DT Soft Ltd)
      PRC - C:\Archivos de programa\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
      PRC - C:\Program Files (x86)\Windows Sidebar\sidebar.exe (Microsoft Corporation)
      PRC - C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe ()


      ========== Modules (No Company Name) ==========


      ========== Services (SafeList) ==========

      SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
      SRV:64bit: - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.)
      SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
      SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
      SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
      SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
      SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
      SRV - (wlidsvc) -- C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.)
      SRV - (ekrn) -- C:\Archivos de programa\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (ESET)
      SRV - (D_Link_DWA-140_WPS) -- C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe ()
      SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
      SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


      ========== Driver Services (SafeList) ==========

      DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
      DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd)
      DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
      DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
      DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
      DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
      DRV:64bit: - (epfwwfpr) -- C:\Windows\SysNative\drivers\epfwwfpr.sys (ESET)
      DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
      DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
      DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
      DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
      DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
      DRV:64bit: - (netr28ux) -- C:\Windows\SysNative\drivers\Dnetr28ux.sys (Ralink Technology Corp.)
      DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
      DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
      DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
      DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
      DRV:64bit: - (tsusbhub) -- C:\Windows\SysNative\drivers\tsusbhub.sys (Microsoft Corporation)
      DRV:64bit: - (Synth3dVsc) -- C:\Windows\SysNative\drivers\Synth3dVsc.sys (Microsoft Corporation)
      DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
      DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
      DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
      DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
      DRV:64bit: - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices)
      DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
      DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
      DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
      DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
      DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
      DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
      DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
      DRV:64bit: - (anodlwf) -- C:\Windows\SysNative\drivers\anodlwfx.sys ()
      DRV - (AODDriver4.1) -- C:\Archivos de programa\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys (Advanced Micro Devices)
      DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
      IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
      IE - HKLM\..\SearchScopes,DefaultScope =
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = fbDownloader Search
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = fbDownloader Search
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = MSN España: Hotmail, Messenger, Skype y Cuenta Microsoft
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 27 B2 D5 0D 32 A4 CD 01 [binary data]
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = Google
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Google
      IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
      IE - HKCU\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://search.yahoo.com/search?fr=vmn&type=vmn-toolbarcleaner-1_1-ya-ch-rp&q={searchTerms}
      IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q={searchTerms}
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.defaultenginename: "FBDownloader Search"
      FF - prefs.js..browser.search.defaulturl: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q="
      FF - prefs.js..browser.search.order.1: "Yahoo"
      FF - prefs.js..browser.search.selectedEngine: "FBDownloader Search"
      FF - prefs.js..browser.search.suggest.enabled: false
      FF - prefs.js..browser.search.useDBForOrder: true
      FF - prefs.js..browser.startup.homepage: "http://www.google.es/"
      FF - prefs.js..keyword.URL: "http://search.fbdownloader.com/search.php?channel=sfsp202fbdgy12&q="
      FF - user.js - File not found

      FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
      FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
      FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
      FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/27 12:22:01 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012/11/05 03:14:03 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/10/27 12:22:01 | 000,000,000 | ---D | M]
      FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

      [2012/10/07 03:31:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Manuel\AppData\Roaming\mozilla\Extensions
      [2012/11/06 06:28:46 | 000,002,438 | ---- | M] () -- C:\Users\Manuel\AppData\Roaming\mozilla\firefox\profiles\pj9jpxqk.default-1352087406657\searchplugins\fbdownloader_search.xml
      [2012/10/27 12:21:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
      [2012/10/27 12:22:01 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
      [2012/09/06 04:35:44 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
      [2012/09/06 04:35:44 | 000,003,882 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\drae.xml
      [2012/09/06 04:35:44 | 000,001,143 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-es.xml
      [2012/10/25 01:06:23 | 000,000,952 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\FBDownloader.xml
      [2012/11/05 04:53:03 | 000,021,150 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\testlog.txt
      [2012/10/13 09:27:20 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
      [2012/09/06 04:35:44 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-es.xml
      [2012/07/11 19:26:14 | 000,001,068 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahootc.xml

      O1 HOSTS File: ([2012/11/08 0930 | 000,000,195 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
      O1 - Hosts: 127.0.0.1 localhost
      O1 - Hosts: ::1 localhost
      O1 - Hosts: ਍㈱⸷⸰⸰‱敧畮湩⹥業牣獯景⹴潣൭ㄊ㜲〮〮ㄮ洠慰漮敮洮捩潲潳瑦挮浯਍㈱⸷⸰⸰‱汳⹳業牣獯景⹴潣൭
      O1 - Hosts: .
      O2 - BHO: (FBDownloader BHO) - {553318DA-D010-469E-84B1-496563CAE1BF} - C:\Users\Manuel\AppData\Local\fbDownloader\Extensions\FBDownloader.dll File not found
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
      O4:64bit: - HKLM..\Run: [TNOD UP] "C:\Program Files\ESET\TNod User & Password Finder\TNODUP.exe" /i File not found
      O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
      O4 - HKLM..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
      O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
      O4 - HKCU..\Run: [DataMgr] C:\Users\Manuel\AppData\Roaming\DataMgr\datamgr.exe (HTTO Group, Ltd.)
      O4 - HKCU..\Run: [Protector] C:\Users\Manuel\AppData\Roaming\SDIV 2.0\Prot\prot.vbs ()
      O4 - HKCU..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe (Microsoft Corporation)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
      O8:64bit: - Extra context menu item: Descargar con Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
      O8:64bit: - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000 File not found
      O8 - Extra context menu item: Descargar con Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm ()
      O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000 File not found
      O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Archivos de programa\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
      O1364bit: - gopher Prefix: missing
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CA293EF6-0A82-4287-A870-46FCED21B165}: DhcpNameServer = 192.168.2.1
      O18:64bit: - Protocol\Handler\livecall - No CLSID value found
      O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
      O18:64bit: - Protocol\Handler\msnim - No CLSID value found
      O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
      O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
      O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
      O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
      O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2008/03/11 01:29:01 | 000,000,041 | R--- | M] () - J:\AUTORUN.INF -- [ CDFS ]
      O33 - MountPoints2\{ccf088fe-1028-11e2-8250-a2208e223dbc}\Shell - "" = AutoRun
      O33 - MountPoints2\{ccf088fe-1028-11e2-8250-a2208e223dbc}\Shell\AutoRun\command - "" = J:\SETUP.EXE -- [2008/03/11 01:28:38 | 000,032,768 | R--- | M] ()
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35:64bit: - HKLM\..comfile [open] -- "%1" %*
      O35:64bit: - HKLM\..exefile [open] -- "%1" %*
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
      O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
      O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

    9. #9
      Usuario Avatar de manuel-24
      Registrado
      may 2012
      Ubicación
      madrid
      Mensajes
      55

      Re: fb downloader - imposible desinstalar

      ========== Files/Folders - Created Within 30 Days ==========

      [2012/11/08 09:02:03 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\iLivid
      [2012/11/05 18:38:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
      [2012/11/05 18:37:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
      [2012/11/05 18:37:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
      [2012/11/05 18:37:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
      [2012/11/05 18:35:21 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
      [2012/11/05 18:35:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
      [2012/11/05 18:34:52 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\Microsoft Help
      [2012/11/05 18:34:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
      [2012/11/05 18:34:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
      [2012/11/05 18:33:50 | 000,000,000 | RH-D | C] -- C:\MSOCache
      [2012/11/05 17:25:06 | 000,000,000 | ---D | C] -- C:\_OTL
      [2012/11/05 04:52:25 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner
      [2012/11/05 04:52:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
      [2012/11/05 03:19:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Local\ESET
      [2012/11/05 03:16:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
      [2012/11/05 03:13:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
      [2012/11/05 03:13:54 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
      [2012/11/05 03:13:54 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
      [2012/11/02 06:43:36 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Malwarebytes
      [2012/11/02 06:43:25 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
      [2012/11/02 06:43:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
      [2012/11/02 06:43:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
      [2012/11/02 06:43:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
      [2012/10/31 13:16:16 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\vlc
      [2012/10/31 13:16:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      [2012/10/31 13:16:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
      [2012/10/31 12:50:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Win7 MAC Address Changer
      [2012/10/31 08:44:55 | 000,036,864 | ---- | C] (NirSoft) -- C:\Windows\nircmd.exe
      [2012/10/27 12:21:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
      [2012/10/25 0128 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
      [2012/10/25 0128 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
      [2012/10/25 0105 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
      [2012/10/25 01:07:54 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2012/10/25 01:07:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
      [2012/10/25 01:06:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\SDIV 2.0
      [2012/10/25 01:06:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\HMN
      [2012/10/25 01:06:22 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\DataMgr
      [2012/10/25 01:05:31 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\WinRAR
      [2012/10/25 01:05:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
      [2012/10/18 18:25:49 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Documents\Mipony
      [2012/10/18 18:24:02 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Mipony
      [2012/10/18 18:23:59 | 000,000,000 | ---D | C] -- C:\Users\Manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MiPony
      [2012/10/18 18:23:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiPony
      [2012/10/18 18:23:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MiPony
      [2012/10/17 19:54:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      [2012/10/17 19:54:23 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
      [2012/10/17 10:26:43 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
      [2012/10/13 00:13:34 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
      [2012/10/13 00:13:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
      [2012/10/10 06:40:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
      [2012/10/10 06:40:35 | 000,000,000 | ---D | C] -- C:\Program Files\Core Temp
      [2012/10/10 06:37:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
      [2012/10/09 20:01:29 | 000,000,000 | ---D | C] -- C:\Users\Manuel\Documents\Messenger Plus!
      [2012/10/09 20:01:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Messenger Plus!
      [2012/10/09 20:00:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yuna Software

      ========== Files - Modified Within 30 Days ==========

      [2012/11/08 09:17:17 | 001,671,442 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
      [2012/11/08 09:17:17 | 000,745,448 | ---- | M] () -- C:\Windows\SysNative\perfh00A.dat
      [2012/11/08 09:17:17 | 000,652,150 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
      [2012/11/08 09:17:17 | 000,157,948 | ---- | M] () -- C:\Windows\SysNative\perfc00A.dat
      [2012/11/08 09:17:17 | 000,121,082 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
      [2012/11/08 09:11:46 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
      [2012/11/08 09:11:41 | 870,981,630 | -HS- | M] () -- C:\hiberfil.sys
      [2012/11/08 0954 | 000,016,864 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      [2012/11/08 0954 | 000,016,864 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      [2012/11/08 0938 | 000,002,048 | ---- | M] () -- C:\Windows\SysWow64\winver.exe
      [2012/11/08 0932 | 000,113,543 | ---- | M] () -- C:\Windows\SysWow64\slmgr.vbs
      [2012/11/08 0930 | 000,000,195 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
      [2012/11/08 08:27:00 | 000,000,838 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
      [2012/11/06 06:25:57 | 000,414,208 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
      [2012/11/02 06:43:25 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/10/30 11:25:59 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/10/30 09:39:46 | 000,001,327 | ---- | M] () -- C:\Users\Manuel\Desktop\Diablo 2.lnk
      [2012/10/21 07:21:56 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
      [2012/10/18 18:23:59 | 000,000,995 | ---- | M] () -- C:\Users\Manuel\Desktop\MiPony.lnk
      [2012/10/13 00:19:38 | 001,648,480 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2012/10/13 00:15:22 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
      [2012/10/13 00:15:22 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
      [2012/10/10 06:40:35 | 000,000,948 | ---- | M] () -- C:\Users\Manuel\Desktop\Core Temp.lnk
      [2012/10/10 06:34:42 | 000,024,576 | ---- | M] () -- C:\Windows\SysWow64\AsIO.dll
      [2012/10/10 06:34:42 | 000,013,440 | ---- | M] () -- C:\Windows\SysWow64\drivers\AsIO.sys
      [2012/10/10 06:34:39 | 000,015,416 | ---- | M] () -- C:\Windows\SysNative\drivers\ASACPI.sys

      ========== Files Created - No Company Name ==========

      [2012/11/08 0932 | 000,113,543 | ---- | C] () -- C:\Windows\SysWow64\slmgr.vbs
      [2012/11/08 0932 | 000,002,048 | ---- | C] () -- C:\Windows\SysWow64\winver.exe
      [2012/11/02 06:43:25 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      [2012/10/31 08:44:55 | 000,069,660 | ---- | C] () -- C:\Windows\Fart.exe
      [2012/10/31 08:44:55 | 000,022,528 | ---- | C] () -- C:\Windows\AT-Uninstall.exe
      [2012/10/31 08:44:55 | 000,011,776 | ---- | C] () -- C:\Windows\Colous.exe
      [2012/10/30 09:39:28 | 000,001,327 | ---- | C] () -- C:\Users\Manuel\Desktop\Diablo 2.lnk
      [2012/10/18 18:23:59 | 000,000,995 | ---- | C] () -- C:\Users\Manuel\Desktop\MiPony.lnk
      [2012/10/17 19:54:23 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
      [2012/10/13 00:15:22 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
      [2012/10/13 00:15:22 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
      [2012/10/10 06:40:35 | 000,000,948 | ---- | C] () -- C:\Users\Manuel\Desktop\Core Temp.lnk
      [2012/10/10 06:37:56 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
      [2012/10/10 06:37:56 | 000,013,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
      [2012/10/10 06:34:14 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
      [2012/10/07 14:56:02 | 001,648,480 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
      [2012/10/07 04:14:24 | 000,021,840 | ---- | C] () -- C:\Windows\SysWow64\SIntfNT.dll
      [2012/10/07 04:14:24 | 000,017,212 | ---- | C] () -- C:\Windows\SysWow64\SIntf32.dll
      [2012/10/07 04:14:24 | 000,012,067 | ---- | C] () -- C:\Windows\SysWow64\SIntf16.dll
      [2012/10/07 04:07:18 | 000,051,450 | ---- | C] () -- C:\Windows\DIIUnin.dat
      [2012/10/07 03:28:59 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
      [2012/10/07 02:48:58 | 000,000,258 | ---- | C] () -- C:\Users\Manuel\AppData\Roaming\ANICONFIG_{CA293EF6-0A82-4287-A870-46FCED21B165}.ini
      [2012/10/07 02:48:02 | 000,302,080 | ---- | C] () -- C:\Windows\lwd.exe
      [2012/07/04 06:34:16 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
      [2012/07/04 06:34:16 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
      [2012/04/18 18:39:10 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
      [2011/09/12 23:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

      ========== ZeroAccess Check ==========

      [2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

      [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
      "" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
      "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

      ========== LOP Check ==========

      [2012/10/17 19:55:17 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\DAEMON Tools Pro
      [2012/10/25 01:06:22 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\DataMgr
      [2012/10/25 01:06:22 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\HMN
      [2012/11/08 0943 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\Mipony
      [2012/10/25 01:06:22 | 000,000,000 | ---D | M] -- C:\Users\Manuel\AppData\Roaming\SDIV 2.0

      ========== Purity Check ==========



      < End of report >

    10. #10
      Usuario Avatar de manuel-24
      Registrado
      may 2012
      Ubicación
      madrid
      Mensajes
      55

      Re: fb downloader - imposible desinstalar

      necesito una respuesta porfavor ahi esta el log del OTL

    Página 1 de 2 12 ÚltimoÚltimo