Hola a todos y muchas gracias de antemano por atender mi petición de ayuda, les explico:

Hace poco me dí cuenta que en ciertas ocaciones que escribía direcciones de internet en explorer, salia una página completamente distinta de promoción de algo extraño, la página se llama "sale loader" o algo así, para entonces pensé que era un error aislado. Eventualmente se alentó mi máquina y mi antivirus (bitdefender) frecuentemente me alertaba de virus que no se podían remover y de cookies que aunque borrara volvían a salir, mi página de inicio fue robada pero logré recuperarla, solamente que ahora mi explorer no responde cuando lo abro pues se congela; les mando este mensaje con el modo seguro de firefox, lo demás no lo he podido corregir.

Ya he escaneado mi sistema con muchos antivirus online, así como con el mismo bitdefender que tengo instalado y he borrado todo lo que ha salido, inclusive tambien con el SUPERantispyware... pero no se soluciona el problema, espero que me puedan ayudar pues esta computadora es casi como mi vida laboral y académica y pues no quiero reinstalar todo, es muy engorroso.

Les dejo mi HijackThis scan, y espero que me puedan ayudar. Muchas gracias!!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:32:59 p.m., on 30/10/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\mobsync.exe
C:\Windows\SYSTEM32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Mindjet\MindManager 7\MmReminderService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\ProgramData\U3\U3Launcher\LaunchU3.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\ehome\ehmsas.exe
C:\PROGRA~1\HEWLET~1\Shared\HPQTOA~1.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\conime.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Windows Media Player\wmprph.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9c.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yoby.net/sb/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://prodigy.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.forospyware.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = BaTaKo RaStA's ExPlOrEr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - (no file)
O2 - BHO: CmjBrowserHelperObject Object - {07A11D74-9D25-4fea-A833-8B0D76A5577A} - C:\Program Files\Mindjet\MindManager 7\Mm7InternetExplorer.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - (no file)
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] "C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [hpWirelessAssistant] "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
O4 - HKLM\..\Run: [QlbCtrl] "C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" /Start
O4 - HKLM\..\Run: [WAWifiMessage] "C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0EYTHM] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VER SIO~2.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [MMReminderService] "C:\Program Files\Mindjet\MindManager 7\MMReminderService.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [PCSuiteTrayApplication] "C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" -startup
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe"
O4 - HKLM\..\Run: [SynTPStart] "C:\Program Files\Synaptics\SynTP\SynTPStart.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKCU\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
O4 - HKCU\..\Run: [AnyDVD] "C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] "C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
O4 - HKCU\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICIO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'Servicio de red')
O4 - HKUS\S-1-5-21-3672494305-2750351181-3524109037-1009\..\Run: [Sidebar] "C:\Program Files\Windows Sidebar\Sidebar.exe" /detectMem (User 'postgres')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - Startup: Recorte de pantalla e Inicio rápido de OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: LaunchU3.exe.lnk = ?
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.es/scan_es/scan8/oscan8.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
O16 - DPF: {CE8267C2-D41A-4A50-A69D-F32B5C289F14} (FileOpenInstaller) - http://plugin.fileopen.com/current/FileOpen.CAB
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762# # (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender S.R.L. - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: OracleMTSRecoveryService - Oracle Corporation - C:\oraclexe\app\oracle\product\10.2.0\server\BIN\o mtsreco.exe
O23 - Service: OracleServiceXE - Oracle Corporation - c:\oraclexe\app\oracle\product\10.2.0\server\bin\O RACLE.EXE
O23 - Service: OracleXEClrAgent - Unknown owner - C:\oraclexe\app\oracle\product\10.2.0\server\bin\O raClrAgnt.exe
O23 - Service: OracleXETNSListener - Unknown owner - C:\oraclexe\app\oracle\product\10.2.0\server\BIN\t nslsnr.exe
O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:\Windows\system32\drivers\pclepci.sys
O23 - Service: PostgreSQL Database Server 8.2 (pgsql-8.2) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\8.2\bin\pg_ctl.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe

--
End of file - 14222 bytes

Hola batakorasta,

Tu log de HijackThis esta limpio.

Tendrias que dejarnos un reporte de BitDefender y probar haciendole un escaneo online con Kaspersky y Ewido online.

Descarga CCleaner v1.4 y ejecútalo usando primero su opción de "Limpiador" para borrar cookies, temporales de internet y todos los archivos que este te muestre como obsoletos, y luego usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).

Una vez que este termine de limpiar todo, actualiza "Java", hace una Desfragmentación del disco con la opción de Windows y pasa por www.windowsupdate.com para descargar todos los parches disponibles (si tu sistema lo permite)

• Descarga y ejecuta la utilidad Advanced WindowsCare, para reparar y optimizar a fondo tu PC.

Reinicia y nos contas los resultados.

Salu2

Muchas gracias por la respuesta.

Te cuento que he hecho todo lo que me dijiste, el log del escaneo con bitlocker es el siguiente:

BitDefender Log File !!!!!
Product : BitDefender Total Security 2008
Version : BitDefender UIScanner v.11
Log date : 06:20:43 01/11/2007
Log path : C:\ProgramData\BitDefender\Desktop\Profiles\Logs\f ull_scan\1193919643_1_00.xml

Scan Paths:Path0000: C:\
Path0001: N:\


Scan Options:Scan for viruses : Yes
Scan for adware : Yes
Scan for spyware : Yes
Scan for applications : Yes
Scan for dialers : Yes
Scan for rootkits : No


Target selection options:Scan registry keys : No
Scan cookies : Yes
Scan boot sectors : No
Scan memory processes : Yes
Scan archives : No
Scan runtime packers : No
Scan emails : No
Scan all files : No
Heuristic Scan : No
Scanned extensions : (null)
Excluded extensions :


Target ProcessingDefault action for infected objects : Disinfect
Default action for suspicious objects : None
Default action for hidden objects : None


Scan engines summaryNumber of virus signatures : 0
Archive plugins : 0
Email plugins : 0
Scan plugins : 0
Archive plugins : 0
System plugins : 0
Unpack plugins : 0


Overall scan summaryScanned items : 0
Infected items : 0
Suspicious items : 0
Resolved items : 0
Individual viruses found : 0
Scanned directories : 0
Scanned boot sectors : 0
Scanned archives : 0
Input-output errors : 0
Scan time : 00:00:00:01
Files per second : 0


Scanned processes summaryScanned : 0
Infected : 0


Scanned registry keys summaryScanned : 0
Infected : 0


Scanned cookies summaryScanned : 0
Infected : 0


Remaining issues:Object Name Threat Name Final Status


Resolved issues:Object Name Threat Name Final Status
---------------------------------------------------------------

Como ves no halló ningún tipo de malware.

Pero después de haber hecho todas las limpiezas que me dijiste, y aún optimizando el sistema y escaneandolo con los antivirus online (el ewido no jala en vista, solo el kaspersky), hay algunas cosas que siguen sin arreglarse:

1.- En ocaciones cuando ingreso manualmente un link en el explorer, me redirecciona a una página cuyo link es el siguiente (varía dependiendo lo que haya escrito): http://click.vnn.bz/?checknow=ok&url=unsitiodeinternet.com
E inmediatamente mi antivirus reporta un cookie infectado y lo inhabilita.
El contenido de dicha página es el siguiente:

If this is safe link, click here to go to http://unsitiodeinternet.com


Click to go http://unsitiodeinternet.comThe easiest HTML guide for beginners Let's begin to create your first web page. To make this truly the easiest guide, we will ignore some technical terms and details that you don't need to know right now. This tutorial will guide you in creating a simple web page containing text, image, links to other web pages, and email link. What you need for this tutorial is only a simple text editor program like Notepad or other programs that you use for writing text on your machine. If you're using Windows 95/98, just click 'Start' -> 'Programs' -> 'Accessories' -> 'Notepad' Best features Web Site Builders Price 1 SiteCube $9.75 2 Site2you $59.95 3 W3Sitebuilder $24.95 Web site builders come in different flavors and at different prices. We have collected a list of favorites for you, but of course your personal choice will be dictated by your specific needs. Create your first web page First, type the first line of our web page You can type them in capital case or lower case. It doesn't matter. I typed them in capital to make it easy to read. Nothing has happened yet; we have just told the browsers (Netscape, Internet Explorer, and etc.) that this is a HTML document. The first is to tell the browser that "Here's the begining of HTML section." tells the browsers that "Here's the end of HTML section." Inside these two tags is where you will put the contents of your web page in. Notice that we have. This is how we open and close HTML tags. The closing tag is always in format. In most case, you will have to close every tag that you open. Next, add a HEAD section to your web page. tells the browsers that the title of our web page is "My first page." This sentence will appear at the top of browser window. Where? Look at the top of this window (the one that you're reading) and you will see "The easiest HTML guide for beginners" OK. Now, let's put in the first word that the browser will display. We put to tell the browser that this is the starting point of the body of our document.
refers to header 1, which is the biggest size (see below.) You can try from
to
. Different numbers will yield different sizes. Here is an example: h1 h3 h5 Let's get back to our document. It now looks like this in a browser. HELLO Let's save this web page and view it in your browser. Save the page using 'save as' and name it whatever you like. Let's name it "mypage.htm" Please remember the location of your file. You may create a new directory for it or just simply save it in drive C. Open your web browser (Netscape or Internet Explorer) and try to open the file that you just save. Click on 'File' -> 'Open' and type in c:\mypage.htm or the path to your file. * Page 2 in this section * Page 3 in this section
Some Information at here !

2.- Me doy cuenta que el Windows Media Player ya no reproduce los videos, solamente el sonido, y tiene deshabilitados los controles de mejoras (como ecualizador, color, etc.)

3.- De pronto al abrir algunos programas o hacer click derecho con el mouse, el instalador de adobe acrobat inicia y luego se para con un error que dice no haber encontrado una llave en el registro. He intentado desinstalarlo para volverlo a instalar pero tampoco me deja.

Como ves, he intentado de todo para librarme de esto, me úrge pues es tiempo perdido en el trabajo y la universidad. Espero me puedas seguir ayudando. Muchas gracias.

Hola, lamento la demora y si todavía continúan los problemas tendrías que seguir con lo siguiente:

• Descarga la herramienta ComboFix.exe y guárdala tu escritorio.
• Hace doble-click en el archivo combofix.exe y seguí los avisos.
• Cuando termine este generara un reporte que tendrías que pegar en este mismo mensaje.
  • Nota* Puede que algunos Antivirus como Panda detecten un falso positivo en ComboFix pero no hay que preocuparse por esto.

Reinicia y nos contas los resultados.

Salu2

Muchas gracias por atenderme, aquí les pongo el reporte, pero lamento decirles que mis problemas siguen aún después de este reporte, espero me puedan seguir ayudando. Saludos!




ComboFix 07-11-05.2 - BaTaKo RaStA 2007-11-07 15:48:02.1 - NTFSx86
Se ejecuta desde: C:\Users\BaTaKo RaStA\Downloads\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((( Otras eliminaciones )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Windows\install.exe
C:\Windows\msvrc20.dll
C:\Windows\system32\x64

.
(((((((((((((((((( Archivos creados desde 2007-10-07 - 2007-11-07 )))))))))))))))))))))))))))))))))
.

2007-11-07 15:43 51,200 --a------ C:\Windows\NirCmd.exe
2007-11-03 14:31 <DIR> d-------- C:\Users\BaTaKo RaStA\AppData\Roaming\vlc
2007-11-03 14:30 <DIR> d-------- C:\Program Files\VideoLAN
2007-11-01 18:29 <DIR> d-------- C:\Program Files\EsetOnlineScanner
2007-11-01 17:16 <DIR> d-------- C:\Program Files\IObit
2007-11-01 08:26 2,131 --a------ C:\cc_20071101_0826.reg
2007-10-30 09:21 <DIR> d-------- C:\Program Files\SSH Communications Security
2007-10-29 23:50 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2007-10-29 23:24 <DIR> d-------- C:\Program Files\Regseeker
2007-10-29 18:49 81,984 --a------ C:\Windows\System32\bdod.bin
2007-10-29 17:56 <DIR> d-------- C:\Users\BaTaKo RaStA\AppData\Roaming\Bitdefender
2007-10-29 17:55 <DIR> d-------- C:\Users\All Users\BitDefender
2007-10-29 17:55 <DIR> d-------- C:\ProgramData\BitDefender
2007-10-29 17:55 <DIR> d-------- C:\Program Files\BitDefender
2007-10-29 17:50 <DIR> d-------- C:\Program Files\Common Files\BitDefender
2007-10-29 16:01 <DIR> d-------- C:\Windows\BDOSCAN8
2007-10-28 23:15 <DIR> d-------- C:\Users\BaTaKo RaStA\AppData\Roaming\SUPERAntiSpyware.com
2007-10-28 11:48 <DIR> d-------- C:\Users\All Users\sentinel
2007-10-28 11:48 <DIR> d-------- C:\ProgramData\sentinel
2007-10-28 11:20 <DIR> d-------- C:\Users\All Users\Backup
2007-10-28 11:20 <DIR> d-------- C:\ProgramData\Backup
2007-10-28 11:09 <DIR> d-------- C:\Program Files\Common Files\Panda Software
2007-10-28 00:19 <DIR> d-------- C:\Program Files\Trend Micro
2007-10-27 23:14 <DIR> d-------- C:\Users\All Users\SUPERAntiSpyware.com
2007-10-27 23:14 <DIR> d-------- C:\ProgramData\SUPERAntiSpyware.com
2007-10-27 22:57 <DIR> d-------- C:\Program Files\DelPSGuard
2007-10-27 19:23 <DIR> d-------- C:\Program Files\jv16 PowerTools 2007
2007-10-27 14:20 <DIR> d-------- C:\Users\BaTaKo RaStA\AppData\Roaming\PCToolsFirewallPlus
2007-10-25 23:41 <DIR> d-------- C:\Windows\Internet Logs
2007-10-24 22:17 <DIR> d-------- C:\Program Files\Common Files\Nero
2007-10-24 19:05 <DIR> d-------- C:\Users\BaTaKo RaStA\AppData\Roaming\Nero
2007-10-24 09:26 <DIR> d-------- C:\Users\All Users\Nero
2007-10-24 09:26 <DIR> d-------- C:\ProgramData\Nero
2007-10-23 22:54 23 --ahs---- C:\Windows\System32\edecdfaaaacac_r.dll
2007-10-23 19:38 <DIR> d-------- C:\Program Files\Show My PC
2007-10-23 19:31 <DIR> d-------- C:\j2sdk1.4.2_16
2007-10-23 19:22 <DIR> d-------- C:\Perl
2007-10-23 19:19 <DIR> d-------- C:\Users\BaTaKo RaStA\AppData\Roaming\Notepad++
2007-10-23 19:19 <DIR> d-------- C:\Program Files\Notepad++
2007-10-23 13:13 200,704 --a------ C:\Windows\System32\IfsDrives.dll
2007-10-23 13:13 132,736 --a------ C:\Windows\System32\drivers\ext2fs.sys
2007-10-23 13:13 4,608 --a------ C:\Windows\System32\drivers\IfsDrives.sys
2007-10-23 09:01 <DIR> d-------- C:\Program Files\Common Files\DVDVideoSoft
2007-10-22 22:44 <DIR> d-------- C:\Program Files\Microsoft Visual Studio .NET
2007-10-22 22:32 <DIR> d-------- C:\oraclexe
2007-10-11 22:31 148,893 --a------ C:\Windows\hpoins19.dat
2007-10-11 22:31 26,952 --a------ C:\Windows\hpomdl19.dat
2007-10-11 19:08 1,419,232 --a------ C:\Windows\System32\drivers\wdfcoinstaller01005.dl l
2007-10-11 19:08 16,768 --a------ C:\Windows\System32\drivers\HpqKbFiltr.sys
2007-10-10 22:42 <DIR> d-------- C:\Windows\System32\Kaspersky Lab
2007-10-10 14:59 8,147,968 --a------ C:\Windows\System32\wmploc.DLL
2007-10-10 14:59 356,864 --a------ C:\Windows\System32\MediaMetadataHandler.dll
2007-10-10 14:59 7,680 --a------ C:\Windows\System32\spwmp.dll
2007-10-10 14:59 4,096 --a------ C:\Windows\System32\dxmasf.dll
2007-10-10 14:38 737,792 --a------ C:\Windows\System32\inetcomm.dll
2007-10-10 14:38 84,480 --a------ C:\Windows\System32\INETRES.dll
2007-10-10 14:36 788,992 --a------ C:\Windows\System32\rpcrt4.dll
2007-10-09 23:32 <DIR> d-------- C:\Program Files\Common Files\PCSuite
2007-10-09 23:27 <DIR> d-------- C:\Program Files\PC Connectivity Solution
2007-10-09 23:11 <DIR> d-------- C:\Windows\CatRoot
2007-10-09 23:11 219,520 --a------ C:\Windows\System32\drivers\usbvm326.sys
2007-10-09 23:11 192,512 --a------ C:\Windows\VimicroCam.exe
2007-10-09 23:11 73,728 --a------ C:\Windows\VMInstNT.exe
2007-10-09 23:11 40,960 --a------ C:\Windows\VM303UninstNT.exe
2007-10-09 23:08 <DIR> d-------- C:\Program Files\HP 1.3MP Webcam
2007-10-09 22:56 <DIR> d-------- C:\Users\All Users\NCH Software
2007-10-09 22:56 <DIR> d-------- C:\ProgramData\NCH Software

.
(((((((((((((((((((((((((((((((((((((( Reporte Find3M )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
2007-11-04 04:04 --------- d-----w C:\Users\BaTaKo RaStA\AppData\Roaming\Audacity
2007-11-03 20:53 --------- d-----w C:\Users\BaTaKo RaStA\AppData\Roaming\VSO
2007-11-03 20:12 --------- d-----w C:\Program Files\FlashGet
2007-11-01 19:08 87,952 ------w C:\Windows\system32\drivers\bdfndisf.sys
2007-11-01 14:20 --------- d-----w C:\Program Files\Java
2007-10-30 15:21 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-30 15:20 --------- d-----w C:\Program Files\Common Files\InstallShield
2007-10-30 07:14 --------- d-----w C:\Program Files\Disk Cleaner
2007-10-30 05:49 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2007-10-27 06:41 --------- d-----w C:\ProgramData\Microsoft Help
2007-10-27 06:38 --------- d-----w C:\Program Files\Microsoft Works
2007-10-27 06:37 --------- d-----w C:\Program Files\MSBuild
2007-10-24 15:26 --------- d-----w C:\Program Files\Nero
2007-10-24 00:24 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2007-10-24 00:19 --------- d-----w C:\ProgramData\Symantec
2007-10-23 15:15 --------- d-----w C:\Program Files\Xilisoft
2007-10-23 15:01 --------- d-----w C:\Program Files\DVDVIDEOSOFT
2007-10-23 06:34 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr
2007-10-23 06:34 67,584 ----a-w C:\Windows\System32\wlanhlp.dll
2007-10-23 06:34 542,720 ----a-w C:\Windows\System32\sysmain.dll
2007-10-23 06:34 502,784 ----a-w C:\Windows\System32\wlansvc.dll
2007-10-23 06:34 47,104 ----a-w C:\Windows\System32\wlanapi.dll
2007-10-23 06:34 45,240 ----a-w C:\Windows\system32\drivers\pciidex.sys
2007-10-23 06:34 3,504,824 ----a-w C:\Windows\System32\ntkrnlpa.exe
2007-10-23 06:34 3,471,032 ----a-w C:\Windows\System32\ntoskrnl.exe
2007-10-23 06:34 297,984 ----a-w C:\Windows\System32\wlansec.dll
2007-10-23 06:34 290,816 ----a-w C:\Windows\System32\wlanmsm.dll
2007-10-23 06:34 28,344 ----a-w C:\Windows\system32\drivers\battc.sys
2007-10-23 06:34 258,232 ----a-w C:\Windows\system32\drivers\acpi.sys
2007-10-23 06:34 25,784 ----a-w C:\Windows\system32\drivers\msahci.sys
2007-10-23 06:34 24,064 ----a-w C:\Windows\System32\wtsapi32.dll
2007-10-23 06:34 21,688 ----a-w C:\Windows\system32\drivers\atapi.sys
2007-10-23 06:34 20,920 ----a-w C:\Windows\system32\drivers\compbatt.sys
2007-10-23 06:34 2,923,520 ----a-w C:\Windows\explorer.exe
2007-10-23 06:34 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2007-10-23 06:34 17,592 ----a-w C:\Windows\system32\drivers\intelide.sys
2007-10-23 06:34 14,208 ----a-w C:\Windows\system32\drivers\CmBatt.sys
2007-10-23 06:34 11,264 ----a-w C:\Windows\system32\drivers\wmiacpi.sys
2007-10-23 06:34 109,752 ----a-w C:\Windows\system32\drivers\ataport.sys
2007-10-22 05:21 --------- d-----w C:\Users\BaTaKo RaStA\AppData\Roaming\U3
2007-10-12 04:49 --------- d-----w C:\ProgramData\HP
2007-10-12 04:35 --------- d-----w C:\Program Files\HP
2007-10-12 03:50 --------- d-----w C:\Program Files\Hewlett-Packard
2007-10-12 01:09 --------- d-----w C:\Program Files\HPQ
2007-10-11 04:22 --------- d-----w C:\Program Files\Windows Mail
2007-10-10 20:47 56,320 ----a-w C:\Windows\System32\iesetup.dll
2007-10-10 20:47 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2007-10-10 20:47 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2007-10-10 05:32 --------- d-----w C:\Program Files\Nokia
2007-10-10 05:32 --------- d-----w C:\Program Files\Common Files\Nokia
2007-10-10 05:20 --------- d-----w C:\ProgramData\Installations
2007-10-10 05:14 --------- d-----w C:\Program Files\DIFX
2007-10-09 22:14 --------- d-----w C:\Program Files\Elaborate Bytes
2007-10-06 23:48 --------- d-----w C:\Program Files\CPU-Z
2007-10-05 23:56 --------- d-----w C:\Users\BaTaKo RaStA\AppData\Roaming\Image Zone Express
2007-10-04 03:27 --------- d-----w C:\Users\BaTaKo RaStA\AppData\Roaming\dvdcss
2007-10-03 14:42 --------- d-----w C:\Program Files\123 Flash Menu
2007-10-03 14:37 319,456 ----a-w C:\Windows\DIFxAPI.dll
2007-10-03 14:36 --------- d-----w C:\Program Files\Realtek
2007-10-03 14:35 315,392 ----a-w C:\Windows\HideWin.exe
2007-10-02 22:20 160,005 ----a-w C:\Windows\FlickrDown Uninstaller.exe
2007-10-02 22:20 --------- d-----w C:\Program Files\FlickrDown
2007-10-02 01:15 --------- d-----w C:\Program Files\Messenger Plus! Live
2007-10-02 01:14 --------- d-----w C:\Program Files\Windows Live
2007-09-30 22:29 --------- d-----w C:\Program Files\iTunes
2007-09-30 22:29 --------- d-----w C:\Program Files\iPod
2007-09-30 20:53 --------- d-----w C:\Program Files\PostgreSQL
2007-09-30 19:59 --------- d-----w C:\Program Files\Publicación en Web
2007-09-29 19:26 233,888 ----a-w C:\Windows\System32\DreamScene.dll
2007-09-29 19:26 1,152,000 ----a-w C:\Windows\System32\themecpl.dll
2007-09-20 14:59 972,072 ----a-w C:\Windows\UNRecode.exe
2007-09-20 14:55 95,600 ----a-w C:\Windows\System32\NeroCo.dll
2007-09-19 13:02 --------- d-----w C:\ProgramData\Mindjet
2007-09-19 13:02 --------- d-----w C:\Program Files\Mindjet
2007-09-18 04:06 --------- d-----w C:\Program Files\Apple Software Update
2007-09-15 21:36 --------- d-----w C:\Program Files\TagScanner
2007-09-15 20:57 --------- d-----w C:\Program Files\AudioShell
2007-09-15 07:50 191,408 ----a-w C:\Windows\system32\drivers\SynTP.sys
2007-09-15 07:50 110,592 ----a-w C:\Windows\System32\SynTPCo4.dll
2007-09-15 07:21 147,456 ----a-w C:\Windows\System32\SynTPAPI.dll
2007-09-15 07:13 196,608 ----a-w C:\Windows\System32\SynCtrl.dll
2007-09-15 07:13 163,840 ----a-w C:\Windows\System32\SynCOM.dll
2007-09-13 21:52 --------- d-----w C:\Program Files\StarUML
2007-08-29 03:06 174 --sha-w C:\Program Files\desktop.ini
2007-08-28 23:50 8,192 ----a-w C:\Windows\System32\riched32.dll
2007-08-28 23:50 77,824 ----a-w C:\Windows\System32\rascfg.dll
2007-08-28 23:50 694,784 ----a-w C:\Windows\System32\localspl.dll
2007-08-28 23:50 52,736 ----a-w C:\Windows\System32\rasdiag.dll
2007-08-28 23:50 384,000 ----a-w C:\Windows\System32\netcfgx.dll
2007-08-28 23:50 36,864 ----a-w C:\Windows\System32\cdd.dll
2007-08-28 23:50 33,280 ----a-w C:\Windows\System32\traffic.dll
2007-08-28 23:50 32,768 ----a-w C:\Windows\System32\rasmxs.dll
2007-08-28 23:50 286,208 ----a-w C:\Windows\System32\ipnathlp.dll
2007-08-28 23:50 22,016 ----a-w C:\Windows\System32\rasser.dll
2007-08-28 23:50 15,360 ----a-w C:\Windows\System32\pacerprf.dll
2007-08-28 23:50 134,656 ----a-w C:\Windows\System32\dps.dll
2007-08-28 23:50 13,824 ----a-w C:\Windows\System32\wshqos.dll
2007-08-28 23:50 13,824 ----a-w C:\Windows\System32\icsunattend.exe
2007-08-28 23:49 25,600 ----a-w C:\Windows\System32\LangCleanupSysprepAction.dll
2007-08-28 23:49 23,552 ----a-w C:\Windows\System32\lpremove.exe
.

((((((((((((((((((((((((((((((((( Cargando Puntos Reg ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vac¡as & entradas leg¡timas predeterminadas no son mostradas

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{07A11D74-9D25-4fea-A833-8B0D76A5577A}]
2007-05-17 23:05 71184 -ra------ C:\Program Files\Mindjet\MindManager 7\Mm7InternetExplorer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{381FFDE8-2394-4f90-B10D-FC6124A40F8C}"= C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll [2007-11-01 13:08 86016]

[HKEY_CLASSES_ROOT\CLSID\{381FFDE8-2394-4f90-B10D-FC6124A40F8C}]
[HKEY_CLASSES_ROOT\BitDefender Toolbar]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-05-10 13:57]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-09-15 01:50]
"HP Health Check Scheduler"="C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-06-05 08:12]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 20:52]
"hpWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2006-10-18 01:32]
"QlbCtrl"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2007-09-06 12:46]
"WAWifiMessage"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2006-10-18 01:56]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 02:06]
"Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2007-03-29 21:14]
"Adobe_ID0EYTHM"="C:\PROGRA~1\COMMON~1\Adobe\ADOBE V~1\Server\bin\VERSIO~2.EXE" [2007-03-20 15:40]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 23:47]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 05:24]
"MMReminderService"="C:\Program Files\Mindjet\MindManager 7\MMReminderService.exe" [2007-05-17 23:05]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-09-26 13:42]
"VirtualCloneDrive"="C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2006-04-29 07:21]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-06-18 14:10]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [2007-08-24 18:54]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2007-08-24 18:54]
"Persistence"="C:\Windows\system32\igfxpers.ex e" [2007-08-24 18:54]
"QPService"="C:\Program Files\HP\QuickPlay\QPService.exe" [2007-04-23 17:11]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 08:51]
"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 14:57]
"SynTPStart"="C:\Program Files\Synaptics\SynTP\SynTPStart.exe" [2007-09-15 01:29]
"BDAgent"="C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe" [2007-11-01 13:08]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2006-11-02 06:33]
"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe" [2007-06-05 22:25]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-05-15 16:12]
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2005-08-11 15:30]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 06:34]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-06-25 22:52]

[HKEY_USERS\.default\software\microsoft\windows\cur rentversion\run]
"Nokia.PCSync"=C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog

C:\Users\BaTaKo RaStA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Recorte de pantalla e Inicio r pido de OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 19:24:54]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-01-02 20:40:10]
LaunchU3.exe.lnk - C:\Windows\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_294823.exe [2007-09-01 20:03:02]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\run-]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe
"LaunchList"=C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run-]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0\bin\jusched.exe"


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs BthServ
hpdevmgmt hpqcxs08 hpqddsvc
bdx scan

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\I]
\shell\AutoRun\command - I:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{2bc7b07a-55dc-11dc-9143-001a6b2e1137}]
\shell\AutoRun\command - I:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{3031cad3-ff56-11db-a568-0016d3955656}]
\shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe
\shell\Open(&0)\command - Recycled\ctfmon.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{3a8dfa49-87bc-11dc-a9fb-001a6b2e1137}]
\shell\auto\command - Knight.exe open
\shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Knight.exe open
\shell\explore\command - Knight.exe open
\shell\find\command - Knight.exe open
\shell\install\command - Knight.exe open
\shell\open\command - Knight.exe open

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{41cd9615-8165-11dc-b325-001a6b2e1137}]
\shell\AutoRun\command - I:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{49a5f8a8-0931-11dc-97d5-001a6b2e1137}]
\shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Recycled\ctfmon.exe
\shell\Open(&0)\command - Recycled\ctfmon.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{5e0feb75-37ab-11dc-b8a4-0016d3955656}]
\shell\AutoRun\command - I:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{bad60639-77e9-11dc-afaf-001a6b2e1137}]
\shell\AutoRun\command - I:\USBNB.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{bbe41714-ffd6-11db-81f3-001a6b2e1137}]
\shell\auto\command - Knight.exe open
\shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Knight.exe open
\shell\explore\command - Knight.exe open
\shell\find\command - Knight.exe open
\shell\install\command - Knight.exe open
\shell\open\command - Knight.exe open

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{d0af07c4-7517-11dc-b7c2-0016d3955656}]
\shell\AutoRun\command - G:\CDSTART.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{d7322728-66ab-11dc-993b-001a6b2e1137}]
\shell\AutoRun\command - H:\LaunchU3.exe


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
Contenido de carpeta 'Tareas Programadas'
"2007-10-26 22:19:11 C:\Windows\Tasks\Mantenimiento con 1 clic.job"
"2007-11-07 00:55:26 C:\Windows\Tasks\User_Feed_Synchronization-{CACC1E7D-42E5-43DC-BE7F-84E15202BF88}.job"
- C:\Windows\system32\msfeedssync.exe
.
************************************************** ************************

catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-07 16:07:50
Windows 6.0.6000 NTFS

escaneando procesos ocultos ...

escaneando entradas ocultas de autostart ...

escaneando archivos ocultos ...

el escaneo se completo con exito
archivos ocultos: 0

************************************************** ************************
.
Tiempo completado: 2007-11-07 16:17:43 - machine was rebooted
.
--- E O F ---

Hola batakorasta,

[quote]Paso 1- Apagar el "Restaurar Sistema"

Paso 2- Descargar estas herramientas. (pero no las ejecutarlas aun)

• Flash_Disinfector.exe
• FixWareOut
• CCleaner

Paso 3- Reiniciar eh iniciar en "Modo a prueba de fallos" (modo seguro)

Paso 4- Ejecutar Flash_Disinfector.exe en el PC y luego Colocar el Pendrive en el puerto USB y ejecutarlo nuevamente.

Luego ejecuta FixWareOut y guarda su reporte para pegarlo en este mensaje.

Paso 5- Ejecute CCleaner usando primero su opción de "Limpiador" para borrar cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos, y luego usa su opción de "Registro" para limpiar todo el registro de Windows (haciendo copia de seguridad).

Paso 6- Reinicia y comprobar el sistema

Hola:

Ya he inentado de todas las formas posibles correr el fixwareout en modo a prueba de fallos (con compatibilidad desde inicio normal de vista y así en modo a prueba de errores... etc...) pero pues no corre y me despliega u mensaje de versión incompatible de windows, no sé si habrá su equivalente para vista o utilizo otro programa, lo demás si se puede hacer bien.

Una cosa extraña que me ocurrió, fue que quise abrir cmm desde el run de windows, y me apareció una ventana de explorador con el prefijo extraño del redireccionador que me está afectando...

En general no he podido resolver nada, espero puedan continuar ayudándome, muchas gracias.

Hola, no FixWareOut no funciona para Win Vista ya que se supone que este tipo de malware no afecta a este si tenes activada su protección.

En este caso tendrás que dejarnos mas datos como lo que te sale en esa ventana y pasar Ewido y Kas online dejandonos su reporte.

SAlu2

Pues mira logré arreglar ya la mayoría de los problemas, en ningúno de los antivirus que me dices que pase o inclusive en otros no sale nada malo, pero ahora lo que no puedo arreglar es:

1.- El windows media player me reproduce el audio de los videos, pero sin video, además de que no me aparecen los cotroles de complementos como son el ecualizador, controles de imágen y volúmen, etc.

2.- En office desaparecieron los botones y barra de herramientas de Adobe PDF, y no puedo ni desinstalar ni reparar tanto el acrobat profesional, como el office.

Creo que es cuestion de permisos en el registro, pero no sé como hacer para arreglarlo, espero que me puedas seguir ayudando, muchas gracias!