• Registrarse
  • Iniciar sesión


  • Resultados 1 al 4 de 4

    Eliminar Delta Search (Solucionado)

    Resumen del tema: Eliminar Delta Search (Solucionado) - Buenas. Me estoy volviendo loco al tratar de eliminar este virus o spyware o lo que sea. Estuve leyendo un poco, y segui los primeros pasos que le decian a alguien con el mismo problema. ...

      
    1. #1
      Usuario Avatar de fernandogaston
      Registrado
      feb 2013
      Ubicación
      Caseros, Argentina
      Mensajes
      2

      Malware Eliminar Delta Search (Solucionado)

      Buenas.

      Me estoy volviendo loco al tratar de eliminar este virus o spyware o lo que sea.

      Estuve leyendo un poco, y segui los primeros pasos que le decian a alguien con el mismo problema.

      Solo use el OTL ya que en Chrome e Internet Explorer lo pude borrar. Solo me faltaria Firefox. Aunque si ven algo mas seguro me lo van a decir.

      Desde ya Gracias.

      Les que pongo el log de OTL a continuacion:

      ------------------------------------------------------------------------------


      OTL logfile created on: 13/02/2013 02:36:00 a.m. - Run 2
      OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Yemi\Mis documentos\Downloads
      Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
      Internet Explorer (Version = 8.0.6001.18702)
      Locale: 0000280A | Country: Perú | Language: ESR | Date Format: dd/MM/yyyy

      1023.36 Mb Total Physical Memory | 522.75 Mb Available Physical Memory | 51.08% Memory free
      2.40 Gb Paging File | 1.97 Gb Available in Paging File | 82.18% Paging File free
      Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

      %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
      Drive C: | 135.22 Gb Total Space | 116.24 Gb Free Space | 85.96% Space Free | Partition Type: NTFS
      Drive D: | 97.65 Gb Total Space | 97.40 Gb Free Space | 99.73% Space Free | Partition Type: NTFS

      Computer Name: YEMI-PC | User Name: Yemi | Logged in as Administrator.
      Boot Mode: Normal | Scan Mode: Current user
      Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 7 Days

      ========== Processes (SafeList) ==========

      PRC - C:\Documents and Settings\Yemi\Mis documentos\Downloads\OTL.exe (OldTimer Tools)
      PRC - C:\Archivos de programa\Java\jre7\bin\jqs.exe (Oracle Corporation)
      PRC - C:\Archivos de programa\Google\Chrome\Application\chrome.exe (Google Inc.)
      PRC - C:\Archivos de programa\AVAST Software\Avast\AvastUI.exe (AVAST Software)
      PRC - C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
      PRC - C:\Archivos de programa\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      PRC - C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
      PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)


      ========== Modules (No Company Name) ==========

      MOD - C:\Archivos de programa\AVAST Software\Avast\defs\13021201\algo.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.57\ppgooglenaclpluginchrome.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.57\pdf.dll ()
      MOD - C:\Archivos de programa\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll ()
      MOD - C:\WINDOWS\system32\msdmo.dll ()


      ========== Services (SafeList) ==========

      SRV - (JavaQuickStarterService) -- C:\Archivos de programa\Java\jre7\bin\jqs.exe (Oracle Corporation)
      SRV - (avast! Antivirus) -- C:\Archivos de programa\AVAST Software\Avast\AvastSvc.exe (AVAST Software)


      ========== Driver Services (SafeList) ==========

      DRV - (WDICA) -- File not found
      DRV - (PDRFRAME) -- File not found
      DRV - (PDRELI) -- File not found
      DRV - (PDFRAME) -- File not found
      DRV - (PDCOMP) -- File not found
      DRV - (PCIDump) -- File not found
      DRV - (lbrtfdc) -- File not found
      DRV - (i2omgmt) -- File not found
      DRV - (esgiguard) -- C:\Archivos de programa\Enigma Software Group\SpyHunter\esgiguard.sys File not found
      DRV - (Changer) -- File not found
      DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
      DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
      DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
      DRV - (AswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
      DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
      DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
      DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
      DRV - (AIDA64Driver) -- C:\Archivos de programa\FinalWire\AIDA64 Extreme Edition\kerneld.x32 ()
      DRV - (rt2870) -- C:\WINDOWS\system32\drivers\rt2870.sys (Ralink Technology, Corp.)
      DRV - (nvata) -- C:\WINDOWS\system32\drivers\nvata.sys (NVIDIA Corporation)
      DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
      DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
      DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
      DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices)
      DRV - (irsir) -- C:\WINDOWS\system32\drivers\irsir.sys (Microsoft Corporation)


      ========== Standard Registry (SafeList) ==========


      ========== Internet Explorer ==========

      IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://latam.msn.com/?ocid=iehp
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = es-pe
      IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E4 84 C3 F1 BD C2 CD 01 [binary data]
      IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
      IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

      ========== FireFox ==========

      FF - prefs.js..browser.search.selectedEngine: "Delta Search"
      FF - prefs.js..browser.search.useDBForOrder: "false"
      FF - prefs.js..browser.startup.homepage: "about:home"
      FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.13
      FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.2


      FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_110.dll ()
      FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Archivos de programa\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Archivos de programa\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Archivos de programa\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
      FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Documents and Settings\Yemi\Configuración local\Datos de programa\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Components: C:\Archivos de programa\Mozilla Firefoxxx\components [2013/02/13 02:33:28 | 000,000,000 | ---D | M]
      FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Plugins: C:\Archivos de programa\Mozilla Firefoxxx\plugins

      [2012/11/14 20:04:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Yemi\Datos de programa\Mozilla\Extensions
      [2013/02/13 02:29:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Yemi\Datos de programa\Mozilla\Firefox\Profiles\h7wtv2xi.default\extensions
      [2013/01/28 09:47:27 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Yemi\Datos de programa\Mozilla\Firefox\Profiles\h7wtv2xi.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
      [2013/02/13 00:39:04 | 000,001,294 | ---- | M] () -- C:\Documents and Settings\Yemi\Datos de programa\Mozilla\Firefox\Profiles\h7wtv2xi.default\searchplugins\delta.xml
      [2013/02/13 00:38:25 | 000,006,484 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\babylon.xml

      ========== Chrome ==========

      CHR - homepage: http://www.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=784f5dfa000000000000f4ec388e335e
      CHR - default_search_provider: Google (Enabled)
      CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
      CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
      CHR - homepage: null
      CHR - plugin: Shockwave Flash (Enabled) = C:\Archivos de programa\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll
      CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
      CHR - plugin: Native Client (Enabled) = C:\Archivos de programa\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll
      CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Archivos de programa\Google\Chrome\Application\24.0.1312.57\pdf.dll
      CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Archivos de programa\Windows Media Player\npdrmv2.dll
      CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Archivos de programa\Windows Media Player\npdsplay.dll
      CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Archivos de programa\Windows Media Player\npwmsdrm.dll
      CHR - plugin: Google Update (Enabled) = C:\Archivos de programa\Google\Update\1.3.21.124\npGoogleUpdate3.dll
      CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Documents and Settings\Yemi\Configuraci\u00F3n local\Datos de programa\Facebook\Video\Skype\npFacebookVideoCalling.dll
      CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_110.dll

      O1 HOSTS File: ([2004/08/13 09:26:12 | 000,000,792 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
      O1 - Hosts: 127.0.0.1 localhost
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
      O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre7\bin\ssv.dll (Oracle Corporation)
      O2 - BHO: (Windows Live Aplicación auxiliar de inicio de sesión) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
      O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
      O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
      O4 - HKLM..\Run: [avast] C:\Archivos de programa\AVAST Software\Avast\avastUI.exe (AVAST Software)
      O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
      O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
      O4 - HKLM..\Run: [nwiz] nwiz.exe /install File not found
      O4 - HKLM..\Run: [PlusService] C:\Archivos de programa\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
      O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
      O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoUserNameInStartMenu = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
      O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
      O13 - gopher Prefix: missing
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.100.1 198.41.0.4
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{300E6188-CF3D-4F61-83FC-E140E1A6C498}: DhcpNameServer = 192.168.100.1 198.41.0.4
      O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
      O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
      O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
      O24 - Desktop Components:0 (Mi página de inicio actual) - About:Home
      O24 - Desktop WallPaper: C:\Documents and Settings\Yemi\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
      O24 - Desktop BackupWallPaper: C:\Documents and Settings\Yemi\Configuración local\Datos de programa\Microsoft\Wallpaper1.bmp
      O32 - HKLM CDRom: AutoRun - 1
      O32 - AutoRun File - [2012/11/14 21:07:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
      O32 - AutoRun File - [2012/04/10 12:06:47 | 000,000,108 | ---- | M] () - D:\AUTORUN.INF -- [ NTFS ]
      O34 - HKLM BootExecute: (autocheck autochk *)
      O35 - HKLM\..comfile [open] -- "%1" %*
      O35 - HKLM\..exefile [open] -- "%1" %*
      O37 - HKLM\...com [@ = comfile] -- "%1" %*
      O37 - HKLM\...exe [@ = exefile] -- "%1" %*
      O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
      O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

      NetSvcs: 6to4 - File not found
      NetSvcs: Ias - File not found
      NetSvcs: Iprip - File not found
      NetSvcs: NWCWorkstation - File not found
      NetSvcs: Nwsapagent - File not found
      NetSvcs: WmdmPmSp - File not found


      CREATERESTOREPOINT
      Restore point Set: OTL Restore Point

      ========== Files/Folders - Created Within 7 Days ==========

      [2013/02/13 02:33:26 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Mozilla Firefoxxx
      [2013/02/13 02:18:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yemi\Datos de programa\Malwarebytes
      [2013/02/13 02:17:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Malwarebytes
      [2013/02/13 02:17:21 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Yemi\Recent
      [2013/02/13 01:26:02 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\Wise Installation Wizard
      [2013/02/13 01:14:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Hewlett-Packard Company
      [2013/02/13 01:13:43 | 000,000,000 | ---D | C] -- C:\Config.Msi
      [2013/02/13 00:22:10 | 000,000,000 | ---D | C] -- C:\Archivos de programa\OpenOffice.org 3
      [2013/02/12 20:14:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Sony Ericsson
      [2013/02/12 19:37:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yemi\Escritorio\Camera
      [2013/02/12 18:25:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Sony
      [2013/02/12 17:40:33 | 000,000,000 | ---D | C] -- C:\Flashtool
      [2013/02/10 09:54:56 | 000,000,000 | -H-D | C] -- C:\Archivos de programa\InstallShield Installation Information
      [2013/02/10 09:54:56 | 000,000,000 | ---D | C] -- C:\DriveKey
      [2013/02/10 09:54:41 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\InstallShield
      [2013/02/10 09:22:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\Sun
      [2013/02/10 09:22:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
      [2013/02/10 09:22:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yemi\Configuración local\Datos de programa\Sun
      [2013/02/10 09:22:35 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Archivos comunes\Java
      [2013/02/10 09:22:01 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Java
      [2013/02/10 09:20:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Yemi\Datos de programa\Sun
      [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
      [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [1 C:\Documents and Settings\Yemi\*.tmp files -> C:\Documents and Settings\Yemi\*.tmp -> ]

      ========== Files - Modified Within 7 Days ==========

      [2013/02/13 02:33:28 | 000,000,787 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Mozilla Firefox.lnk
      [2013/02/13 02:27:06 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
      [2013/02/13 02:26:41 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
      [2013/02/13 02:26:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
      [2013/02/13 02:26:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
      [2013/02/13 02:02:03 | 000,001,006 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1482476501-1085031214-1801674531-1003UA.job
      [2013/02/13 01:47:01 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
      [2013/02/13 01:16:29 | 000,001,752 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\avast! Free Antivirus.lnk
      [2013/02/13 01:16:28 | 000,002,957 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
      [2013/02/12 23:02:02 | 000,000,984 | ---- | M] () -- C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1482476501-1085031214-1801674531-1003Core.job
      [2013/02/12 17:57:22 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
      [2013/02/12 17:57:22 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
      [2013/02/12 17:57:22 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
      [2013/02/12 17:46:43 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
      [2013/02/12 17:46:22 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
      [2013/02/12 10:17:33 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
      [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
      [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
      [1 C:\Documents and Settings\Yemi\*.tmp files -> C:\Documents and Settings\Yemi\*.tmp -> ]

      ========== Files Created - No Company Name ==========

      [2013/02/13 02:33:28 | 000,000,793 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Mozilla Firefox.lnk
      [2013/02/13 02:33:28 | 000,000,787 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Mozilla Firefox.lnk
      [2013/02/13 01:16:29 | 000,001,752 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\avast! Free Antivirus.lnk
      [2013/02/12 17:57:22 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
      [2013/02/12 17:57:22 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggsemc_01009.Wdf
      [2013/02/12 17:57:22 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ggflt_01009.Wdf
      [2013/02/12 17:46:43 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf
      [2013/02/12 17:46:22 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
      [2012/11/26 19:56:23 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
      [2012/11/14 21:12:39 | 000,014,051 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat
      [2012/11/14 21:12:34 | 000,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
      [2012/11/14 21:12:34 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
      [2012/11/14 21:12:34 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
      [2012/11/14 21:08:43 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
      [2012/11/14 21:05:21 | 000,021,900 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
      [2012/11/14 14:57:44 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
      [2012/11/14 14:56:49 | 000,094,272 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

      ========== ZeroAccess Check ==========


      [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

      [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
      "" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/14 07:48:38 | 001,499,648 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Apartment

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
      "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 07:52:53 | 000,473,600 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Free

      [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
      "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/14 07:48:48 | 000,273,920 | ---- | M] (Microsoft Corporation)
      "ThreadingModel" = Both

      ========== LOP Check ==========

      [2012/11/14 20:24:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\AVAST Software
      [2012/11/14 20:26:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Messenger Plus!
      [2013/02/12 18:25:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Datos de programa\Sony
      [2013/01/29 01:29:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yemi\Datos de programa\ImgBurn
      [2013/01/30 08:00:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Yemi\Datos de programa\PhotoScape

      ========== Purity Check ==========



      ========== Custom Scans ==========

      < %SYSTEMDRIVE%\*.* >
      [2012/11/14 21:07:54 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
      [2012/11/14 21:03:17 | 000,000,211 | -HS- | M] () -- C:\boot.ini
      [2004/08/13 09:24:24 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
      [2012/11/14 21:07:54 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
      [2012/11/14 21:07:54 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
      [2012/11/14 21:07:54 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
      [2008/04/13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
      [2008/04/14 00:01:52 | 000,251,168 | RHS- | M] () -- C:\ntldr
      [2013/02/13 02:26:25 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys

      < End of report >

    2. #2
      Moderador Gral.
      Avatar de Tyny's
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.616

      re: Eliminar Delta Search

      Buenas.


      1.- Realiza un copia de tus marcadores:

      Menu Marcadores->organizar marcadores->Importar y respaldar->exportar Html
      2.- Elimina con Revo Unistaller En modo avanzado (Esto es muy importante) Seleccionas Firefox || presionas desinstalar || y seleccionas Modo avanzado y vas eliminado todo los restos.

      3.- Descarga y ejecuta: Glary Utilities.

      4.- Reinstala Firefox ; descargalo desde Aquí: Firefox

      5.- Restaura los marcadores:
      Para restaurarla menu marcadores->organizar marcadores->importar y respaldar->importar Html, marcamos desde archivo seleccionando el bookmarks.html con la copia de nuestros marcadores
      Nos cuentas.

      Salu2!!
      If on your journey, you should encounter God, God will be cut!


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de fernandogaston
      Registrado
      feb 2013
      Ubicación
      Caseros, Argentina
      Mensajes
      2

      Re: Eliminar Delta Search

      Hola.

      Ya no aparece mas en ningun lado.

      Muchisimas Gracias Tyny's !

      La verdad me estaba volviendo loco.

      Gracias. Saludos.

    4. #4
      Moderador Gral.
      Avatar de Tyny's
      Registrado
      may 2008
      Ubicación
      Argentina
      Mensajes
      14.616

      Re: Eliminar Delta Search

      Buenas.


      **Tema solucionado** Si queres reabrir el tema hace clic aqui que un moderador atendera tu consulta.
      Como recomendación final, te invitamos a seguirnos en nuestros canales de difusión: Blog, Twitter, Facebook, vía E-Mail, para estar al tanto de los nuevos malwares y como prevenirlos.

      Saludos.
      If on your journey, you should encounter God, God will be cut!


      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.