Hola qisiera desirles qe tambien en el disco C se crea un archivo qe dice [ Start_ ] junto con la carpeta dicha, abajo del nombre dice SECUANCIA DE COMANDOS DE WINDOWS NT les voe a poner lo qe dice adentro de ese archivo..

START_

@echo off
cls
prompt $
title .
color 17
cls

set "system=%systemroot%\system32"
set "path=%systemroot%\system32;%systemroot%;%system%\ wbem"
set "comspec=%systemroot%\system32\%kmd%"
@swreg add "hklm\software\microsoft\windows\currentversion\ap p paths\combofix.exe" /ve /d "%sfxname%"

cd /d "%systemdrive%\"
if not exist "%cfldr%" goto Abort
if exist "%tmp%\%cfldr%%cfldr%.log" del "%tmp%\%cfldr%%cfldr%.log" 2>nul
"%cfldr%\Nircmd.com" win close ititle "ComboFix"

cmd.exe /c ver | Findstr.exe -c:"[Version 6.0" >nul && Call :Vista

For /f "tokens=*" %%g in ("%sfxname%") do @(
set "FileName=%%~ng"
set "FilePath=%%~dpg"
)

If not defined FileName goto END

DIR /AD/B | FindStr.exe -IVX ComboFix >dirname00
FindStr.exe -LIXC:"%FileName%" dirname00 >nul 2>&1 && call :NameChk
If exist dirname0? del /Q dirname0? 2>nul

If exist "%FileName%" DIR /AD "%FileName%" >nul 2>&1 &&(
rd /s/q "%FileName%" 2>nul
If exist "%FileName%" (
pushd "%cfldr%"
call pid.bat
popd
rd /s/q "%FileName%" 2>nul
)
If exist "%FileName%" (
"%cfldr%\handle.cfexe" "%systemdrive%\%FileName%" | "%cfldr%\SED.cfexe" -r "/pid:/!d; s/.*: (.*): .*/\1/" >temp00
for /f "tokens=1,2" %%g in ( temp00 ) do @echo.y|"%cfldr%\Handle.cfexe" -p %%g -c %%h >nul
del /q temp00 2>nul
rd /s/q "%FileName%" 2>nul
))

If exist "%FileName%" rd /s/q "%FileName%" 2>nul
If not exist "%FileName%" (
md "%FileName%"
Move /y "%cfldr%\*" "%FileName%" >nul 2>&1
RD /S/Q "%cfldr%"
)
If exist "%cfldr%" goto AbortB
set cfldr=
Start "." /d"%systemdrive%\%FileName%" "%system%\%kmd%" /c "%systemdrive%\%FileName%\c.bat"
"%FileName%\nircmd.com" execmd del %0
del Start_B.cmd
exit /B

:NameChk
@for %%g in ("%allusersprofile%\..") do @echo.%%~ng>dirname03
@(
echo.%systemroot:~3%
echo.%programfiles:~3%
echo.Recycler
echo.cmdcons
echo.Documents and Settings
echo.QooBox
echo.System Volume Information
)>>dirname03

FindStr.exe -LIXC:"%FileName%" dirname03 >nul 2>&1 &&goto AbortB

if exist "%FileName%\*.cfexe" goto :eof
if exist "%FileName%\Combo-Fix.sys" goto :eof
if exist "%FileName%\Creg.dat" goto :eof
"%cfldr%\Vfind.cfexe" -tf "%FileName%\*" | FindStr.exe . >nul || goto :eof

:AbortB
del /Q dirname0? 2>nul
"%cfldr%\nircmd.com" infobox "You cannot rename ComboFix as %FileName%~n~nPlease use another name" ""
goto END

:Abort
if exist "%tmp%\%cfldr%%cfldr%.log" goto AbortC
"%~dp0%cfldr%\nircmd.com" regdelkey "HKCU\Software\WinRAR SFX"
"%~dp0%cfldr%\nircmd.com" regdelkey "HKLM\Software\WinRAR SFX"
type nul > "%tmp%\%cfldr%%cfldr%.log"
Start "." "%sfxname%" %*
goto end

:AbortC
"%~dp0%cfldr%\nircmd.com" infobox "%~dp0%cfldr% not in expected location~n~n Inform sUBs now!!" ""

:END
del /a/f/q "%~dp0%cfldr%" 2>nul
rd /s/q "%~dp0%cfldr%" 2>nul
del "%~dp0%Start_.cmd"
EXIT /B

:VISTA
"%cfldr%\swxcacls.cfexe" "%system%\cmd.exe" /o "nt service\trustedinstaller" /o "nt service\trustedinstaller" /g "nt service\trustedinstaller":f /ga:x /gs:x /gp:x /gu:x /q
"%cfldr%\VFind.cfexe" -tf "%system%\cmd.exe.mui" >MUI00
For /F "tokens=*" %%g in ( MUI00 ) do @if not exist "%%~dpg%kmd%.mui" (
"%cfldr%\swxcacls.cfexe" "%%~g" /oa /p /ga:f /gs:f /gp:x /gu:x /q
Copy /y "%%g" "%%~dpg%kmd%.mui" >nul
"%cfldr%\swxcacls.cfexe" "%%~g" /o "nt service\trustedinstaller" /o "nt service\trustedinstaller" /g "nt service\trustedinstaller":f /ga:x /gs:x /gp:x /gu:x /q
)
del MUI00 2>nul
goto :eof

sLudos.