Por favor ayudenme, necesito ayudaaaaaa, tengo unos virus q son muy pesaditos y no puedo vivir con ellos, q debo acer, aki os dejo el registro del autorunsc q vi por algun lado q acia falta.
HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AppSetup
HKLM\Software\Policies\Microsoft\Windows\System\Scripts\Startup
HKCU\Software\Policies\Microsoft\Windows\System\Scripts\Logon
HKLM\Software\Policies\Microsoft\Windows\System\Scripts\Logon
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System\Shell
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\Shell
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Runonce
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\RunonceEx
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Run
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ BDMCon BitDefender Management Console (Not verified) SOFTWIN S.R.L. c:\archivos de programa\softwin\bitdefender9\bdmcon.exe
+ BDOESRV bdoesrv application (Not verified) SOFTWIN SRL c:\archivos de programa\softwin\bitdefender9\bdoesrv.exe
+ BDSwitchAgent c:\archivos de programa\softwin\bitdefender9\bdswitch.exe
+ ccApp Symantec User Session (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\ccapp.exe
+ DAEMON Tools Virtual DAEMON Manager (Verified) DAEMON Tools Code Signing Services c:\archivos de programa\daemon tools\daemon.exe
+ Detect File not found: C:\Archivos de programa\iNTERNET Turbo\iDetect.exe
+ MessengerPlus3 Messenger Plus! (Verified) Patchou c:\archivos de programa\messengerplus! 3\msgplus.exe
+ NeroFilterCheck NeroCheck (Not verified) Ahead Software Gmbh c:\windows\system32\nerocheck.exe
+ NetPumper IExplore 4.x-6.x URL monitor (Not verified) Icenet LLC c:\archivos de programa\netpumper\netpumperieproxy.exe
+ nwiz NVIDIA nView Wizard, Version 110.14 (Not verified) NVIDIA Corporation c:\windows\system32\nwiz.exe
+ QuickTime Task QuickTime Task (Not verified) Apple Computer, Inc. c:\archivos de programa\quicktime\qttask.exe
+ RemoteControl PowerDVD RC Service (Not verified) Cyberlink Corp. c:\archivos de programa\cyberlink\powerdvd\pdvdserv.exe
+ SoundMAX SoundMAX Control Center (Not verified) Analog Devices, Inc. c:\archivos de programa\analog devices\soundmax\smax4.exe
+ SoundMAXPnP SMax4PNP MFC Application (Not verified) Analog Devices, Inc. c:\archivos de programa\analog devices\soundmax\smax4pnp.exe
+ StorageGuard VERITAS Update Manager (Not verified) VERITAS Software, Inc. c:\archivos de programa\veritas software\update manager\sgtray.exe
+ SunJavaUpdateSched Java(TM) 2 Platform Standard Edition binary (Not verified) Sun Microsystems, Inc. c:\archivos de programa\java\jre1.5.0_05\bin\jusched.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
C:\Documents and Settings\All Users\Menú Inicio\Programas\Inicio
+ Consola KIT ADSL.lnk ADIMON MFC Application c:\archivos de programa\terra\kit terra adsl\dslmon.exe
+ Inicio rápido de Adobe Reader.lnk Adobe Acrobat SpeedLauncher (Not verified) Adobe Systems Incorporated c:\archivos de programa\adobe\acrobat 7.0\reader\reader_sl.exe
C:\Documents and Settings\-\Menú Inicio\Programas\Inicio
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Load
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\Run
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
+ dcomcfg.exe c:\windows\system32\dcomcfg.exe
+ kernel32.dll c:\windows\system32\atmclk.exe
+ wininet.dll c:\windows\system32\regperf.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
+ ares Ares (Not verified) Ares Development Group c:\archivos de programa\ares\ares.exe
+ BitComet BitComet - a BitTorrent Client (Not verified)
www.BitComet.com c:\archivos de programa\bitcomet\bitcomet.exe
+ BitComet Acceleration Patch c:\documents and settings\all users\menú inicio\programas\bitcomet acceleration patch\bitcomet acceleration patch.lnk
+ MessengerPlus3 Messenger Plus! (Verified) Patchou c:\archivos de programa\messengerplus! 3\msgplus.exe
+ msnmsgr MSN Messenger (Not verified) Microsoft Corporation c:\archivos de programa\msn messenger\msnmsgr.exe
+ Skype Skype. The whole world can talk for free. (Verified) Skype Technologies SA c:\archivos de programa\skype\phone\skype.exe
+ TuneUp MemOptimizer TuneUp MemOptimizer (Not verified) TuneUp Software GmbH c:\archivos de programa\tuneup utilities 2006\memoptimizer.exe
+ Yahoo! Pager Yahoo! Messenger (Not verified) Yahoo! Inc. c:\archivos de programa\yahoo!\messenger\yahoomessenger.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Runonce
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\RunonceEx
HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\TerminalServer\Install\Software\Microsoft\Windows\CurrentVersion\Run
HKLM\SOFTWARE\Classes\Protocols\Filter
+ application/octet-stream Microsoft .NET Runtime Execution Engine (Not verified) Microsoft Corporation c:\windows\system32\mscoree.dll
+ application/x-complus Microsoft .NET Runtime Execution Engine (Not verified) Microsoft Corporation c:\windows\system32\mscoree.dll
+ application/x-msdownload Microsoft .NET Runtime Execution Engine (Not verified) Microsoft Corporation c:\windows\system32\mscoree.dll
HKLM\SOFTWARE\Classes\Protocols\Handler
+ msnim MSN Messenger Protocol Handler (Not verified) Microsoft Corporation c:\archivos de programa\msn messenger\msgrapp.dll
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
+ AppManager File not found: C:\WINDOWS\system32\appmagr.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ BitDefender Antivirus v9 BDShellExt Module c:\archivos de programa\softwin\bitdefender9\bdshelxt.dll
+ Desktop Explorer NVIDIA Desktop Explorer, Version 110.14 (Not verified) NVIDIA Corporation c:\windows\system32\nvshell.dll
+ Desktop Explorer Menu NVIDIA Desktop Explorer, Version 110.14 (Not verified) NVIDIA Corporation c:\windows\system32\nvshell.dll
+ Fusion Cache Microsoft .NET Runtime Execution Engine (Not verified) Microsoft Corporation c:\windows\system32\mscoree.dll
+ nView Desktop Context Menu NVIDIA Desktop Explorer, Version 110.14 (Not verified) NVIDIA Corporation c:\windows\system32\nvshell.dll
+ OpenOffice.org Column Handler (Not verified) Sun Microsystems, Inc. c:\archivos de programa\openoffice.org 2.0\program\shlxthdl.dll
+ OpenOffice.org Infotip Handler (Not verified) Sun Microsystems, Inc. c:\archivos de programa\openoffice.org 2.0\program\shlxthdl.dll
+ OpenOffice.org Property Sheet Handler (Not verified) Sun Microsystems, Inc. c:\archivos de programa\openoffice.org 2.0\program\shlxthdl.dll
+ OpenOffice.org Thumbnail Viewer (Not verified) Sun Microsystems, Inc. c:\archivos de programa\openoffice.org 2.0\program\shlxthdl.dll
+ SnagIt SnagIt Add-in for Internet Explorer (Not verified) TechSmith Corporation c:\archivos de programa\techsmith\snagit 8\snagitieaddin.dll
+ SnagIt Shell Extension SnagIt Shell Extension DLL (Not verified) TechSmith Corporation c:\archivos de programa\techsmith\snagit 8\snagitshellext.dll
+ TuneUp Shredder TuneUp Shredder Shell Extension (Not verified) TuneUp Software GmbH c:\archivos de programa\tuneup utilities 2006\sdshelex.dll
+ WinRAR shell extension c:\archivos de programa\winrar\rarext.dll
HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
HKLM\Software\Classes\Folder\Shellex\ColumnHandlers
+ PDF Shell Extension PDF Shell Extension (Not verified) Adobe Systems, Inc. c:\archivos de programa\adobe\acrobat 7.0\activex\pdfshell.dll
+ {C52AF81D-F7A0-4AAB-8E87-F80A60CCD396} (Not verified) Sun Microsystems, Inc. c:\archivos de programa\openoffice.org 2.0\program\shlxthdl.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
+ Nothing c:\windows\system32\hp100.tmp
HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ Norton AntiVirus Norton AntiVirus Shell Extension Module (Verified) Symantec Corporation c:\archivos de programa\norton antivirus\navshext.dll
+ snagitieaddin.dll SnagIt Add-in for Internet Explorer (Not verified) TechSmith Corporation c:\archivos de programa\techsmith\snagit 8\snagitieaddin.dll
+ yt.dll Yahoo! Toolbar (Verified) Yahoo! Inc. c:\archivos de programa\yahoo!\companion\installs\cpn\yt.dll
HKCU\Software\Microsoft\Internet Explorer\Explorer Bars
HKLM\Software\Microsoft\Internet Explorer\Explorer Bars
HKCU\Software\Microsoft\Internet Explorer\Extensions
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ Windows Messenger File not found: C:\Archivos de programa\Messenger\msmsgs.exe
Task Scheduler
+ Norton AntiVirus - Run Full System Scan - -.job Norton AntiVirus Scanner Module (Verified) Symantec Corporation c:\archivos de programa\norton antivirus\navw32.exe
+ Symantec NetDetect.job Symantec NetDetect (Verified) Symantec Corporation c:\archivos de programa\symantec\liveupdate\ndetect.exe
HKLM\System\CurrentControlSet\Services
+ bdss Analiza el sistema en búsqueda de virus y otras amenazas virales c:\archivos de programa\archivos comunes\softwin\bitdefender scan server\bdss.exe
+ ccEvtMgr Event propagation and logging service (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\ccevtmgr.exe
+ ccSetMgr Settings storage and management service (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\ccsetmgr.exe
+ LIVESRV Descargar actualizaciones de BitDefender y nuevas firmas de malware por Internet (Not verified) SOFTWIN S.R.L. c:\archivos de programa\archivos comunes\softwin\bitdefender update service\livesrv.exe
+ navapsvc Handles Norton AntiVirus Auto-Protect events. (Verified) Symantec Corporation c:\archivos de programa\norton antivirus\navapsvc.exe
+ NPFMntor Detects installation of Symantec Firewall clients (Verified) Symantec Corporation c:\archivos de programa\norton antivirus\iwp\npfmntor.exe
+ SNDSrvc Symantec Network Drivers Service (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\sndsrvc.exe
HKLM\System\CurrentControlSet\Services
+ ALCXSENS Sensaura WDM 3D Audio Driver (Not verified) Sensaura Ltd c:\windows\system32\drivers\alcxsens.sys
+ ALCXWDM Realtek AC'97 Audio Driver (WDM) (Not verified) Realtek Semiconductor Corp. c:\windows\system32\drivers\alcxwdm.sys
+ bdfdll c:\archivos de programa\softwin\bitdefender9\bdfdll.sys
+ Bdfndisf BitDefender Firewall NDIS Filter Driver (Not verified) Softwin SRL c:\windows\system32\drivers\bdfndisf.sys
+ BDFsDrv c:\archivos de programa\softwin\bitdefender9\bdfsdrv.sys
+ bdftdif Allows BD Firewall to detect application's network activity (Not verified) Softwin SRL c:\archivos de programa\archivos comunes\softwin\bitdefender firewall\bdftdif.sys
+ BDRsDrv c:\archivos de programa\softwin\bitdefender9\bdrsdrv.sys
+ dtscsi c:\windows\system32\drivers\dtscsi.sys
+ EagleNT File not found: C:\WINDOWS\system32\drivers\EagleNT.sys
+ eeCtrl Symantec Eraser Control Driver (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\eengine\eectrl.sys
+ EraserUtilDrv10614 Symantec Eraser Utility Driver (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\eengine\eraserutildrv10614.sys
+ hamachi Hamachi Virtual Network Interface Driver (Not verified) Applied Networking Inc. c:\windows\system32\drivers\hamachi.sys
+ NAVENG AV Engine (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\virusdefs\20060526.025\naveng.sys
+ NAVEX15 AV Engine (Verified) Symantec Corporation c:\archivos de programa\archivos comunes\symantec shared\virusdefs\20060526.025\navex15.sys
+ npkcrypt nProtect KeyCrypt Driver (Not verified) INCA Internet Co., Ltd. c:\archivos de programa\lineage ii\system\npkcrypt.sys
+ NPPTNT2 nProtect NPSC Kernel Mode Driver for NT (Not verified) INCA Internet Co., Ltd. c:\windows\system32\npptnt2.sys
+ nullcd File not found: System32\Drivers\nullcd.sys
+ OVT511Plus Stream Class Mini Driver (Not verified) OmniVision Technologies, Inc. c:\windows\system32\drivers\omcamvid.sys
+ pfc Padus(R) ASPI Shell (Not verified) Padus, Inc. c:\windows\system32\drivers\pfc.sys
+ PxHelp20 PxHelper Device Driver for Windows 2000 (Not verified) VERITAS Software, Inc. c:\windows\system32\drivers\pxhelp20.sys
+ RT2500USB File not found: system32\DRIVERS\rt2500usb.sys
+ SAVRT AutoProtect (Verified) Symantec Corporation c:\archivos de programa\norton antivirus\savrt.sys
+ SAVRTPEL SAVRTPEL (Verified) Symantec Corporation c:\archivos de programa\norton antivirus\savrtpel.sys
+ Secdrv SafeDisc driver (Not verified) Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. c:\windows\system32\drivers\secdrv.sys
+ sfdrv01 StarForce Protection Environment Driver (Not verified) Protection Technology c:\windows\system32\drivers\sfdrv01.sys
+ sfhlp02 StarForce Protection Helper Driver (Not verified) Protection Technology c:\windows\system32\drivers\sfhlp02.sys
+ sfvfs02 StarForce Protection VFS Driver (Not verified) Protection Technology c:\windows\system32\drivers\sfvfs02.sys
HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
HKLM\Software\Microsoft\Command Processor\Autorun
HKCU\Software\Microsoft\Command Processor\Autorun
HKLM\SOFTWARE\Classes\Exefile\Shell\Open\Command\(Default)
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls
+ sockspy.dll c:\windows\system32\sockspy.dll
HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\System
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\UIHost
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GinaDLL
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman
HKCU\Control Panel\Desktop\Scrnsave.exe
HKLM\System\CurrentControlSet\Control\BootVerificationProgram\ImageName
HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9
HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Authentication Packages
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Security Packages
GRACIAS DE ANTEMANO!!!