Pop up al escritorio

Hola @MARCELO_BRAVO

No entendí, :thinking: desaparecieron o aun nop?

Sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKU\S-1-5-21-940513610-2606913777-4097325418-1000\...\MountPoints2: {58869893-d61d-11e9-944a-38eaa7e09f04} - "F:\autorun.exe" 
HKU\S-1-5-21-940513610-2606913777-4097325418-1000\...\MountPoints2: {a22214ca-e0b6-11e9-944d-38eaa7e09f04} - "F:\Autorun.exe" 
HKU\S-1-5-21-940513610-2606913777-4097325418-1000\...\MountPoints2: {a222152c-e0b6-11e9-944d-38eaa7e09f04} - "G:\Autorun.exe" 
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
GroupPolicy: Restriction ? <==== ATTENTION
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {4944A21D-6FB3-4203-BFE2-82079831CBD2} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {4C15816B-1438-4B23-9F1A-74C30872E550} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {A29A87CA-9FEF-4C05-BF4D-62C67A778E04} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {A8E02C08-AE1A-43DD-868A-6839D18A0037} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe
Task: {C194A7C1-BE7F-4BCD-B55D-5B27974E1D3E} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {EBA378B9-BA20-4AA1-866F-649E390FC117} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5923600 2019-09-18] (IObit Information Technology -> IObit)
Task: {F5B5494A-A227-4698-994B-CD1742F8B315} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3007760 2019-04-24] (IObit Information Technology -> IObit)
CHR Notifications: Default -> hxxps://maranhesduve.club; hxxps://py.checkio.org; hxxps://www.youtube.com
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
U3 idsvc; no ImagePath
C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys
C:\Program Files (x86)\IObit\Advanced SystemCare
2019-10-28 04:32 - 2019-08-13 05:39 - 000000000 ____D C:\Users\pc\AppData\Roaming\IObit
2019-10-28 04:32 - 2019-08-13 05:39 - 000000000 ____D C:\ProgramData\IObit
2019-10-27 05:38 - 2019-08-13 05:40 - 000000000 ____D C:\Users\pc\AppData\LocalLow\IObit
2019-10-27 05:38 - 2019-08-13 05:39 - 000000000 ____D C:\Program Files (x86)\IObit
CustomCLSID: HKU\S-1-5-21-940513610-2606913777-4097325418-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\pc\AppData\Local\Microsoft\OneDrive\19.152.0801.0009\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-940513610-2606913777-4097325418-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\pc\AppData\Local\Microsoft\OneDrive\19.152.0801.0009\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-940513610-2606913777-4097325418-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\pc\AppData\Local\Microsoft\OneDrive\19.152.0801.0009\amd64\FileSyncShell64.dll => No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [183808 2010-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.YV12] => C:\Windows\SysWOW64\yv12vfw.dll [237568 2010-11-03] (www.helixcommunity.org) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [151552 2010-01-17] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\lameACM.acm [839680 2008-09-24] (hxxp://www.mp3dev.org/) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [108032 2010-12-11] () [File not signed]
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
FirewallRules: [{A276A0C9-A368-45A6-A952-F42FF1676C63}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe No File
FirewallRules: [UDP Query User{920F50A5-BBE4-4C89-8BA7-FB14E59A895E}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe No File
FirewallRules: [TCP Query User{B3AC174C-FB3C-4F01-B80C-11EF65744134}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe No File
FirewallRules: [UDP Query User{A094ED79-6376-44FE-AB3E-129978381BE4}C:\users\pc\appdata\local\temp\kmsemul.exe] => (Allow) C:\users\pc\appdata\local\temp\kmsemul.exe No File
FirewallRules: [TCP Query User{CAD4438A-FD82-497D-8DFB-10DCAA8CB577}C:\users\pc\appdata\local\temp\kmsemul.exe] => (Allow) C:\users\pc\appdata\local\temp\kmsemul.exe No File
FirewallRules: [{D3CCA5FA-D507-408E-91C2-D8BBACBBE8F8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD9.EXE No File
FirewallRules: [UDP Query User{172282FE-0923-4B08-B56C-D164F96543FA}F:\memoria interna\nueva carpeta\sdi_rus\sdi_x64_r1790.exe] => (Allow) F:\memoria interna\nueva carpeta\sdi_rus\sdi_x64_r1790.exe No File
FirewallRules: [TCP Query User{2A3677BD-E3E6-436D-8294-0A3198329C70}F:\memoria interna\nueva carpeta\sdi_rus\sdi_x64_r1790.exe] => (Allow) F:\memoria interna\nueva carpeta\sdi_rus\sdi_x64_r1790.exe No File
FirewallRules: [{CB526515-1ED8-4139-A2A0-6C984A0F0727}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.6.0\DriverBooster.exe No File
FirewallRules: [{4C153651-F3B8-4A3D-9BD6-D1CBF0ADC163}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.6.0\DriverBooster.exe No File
FirewallRules: [{B5A81B72-F9E9-4FF7-9329-D4AC061EDF4C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.6.0\DBDownloader.exe No File
FirewallRules: [{12F75BA8-9AE2-4698-89D4-888E366EB7B5}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.6.0\DBDownloader.exe No File
FirewallRules: [{ED7C643F-0CE2-478C-AF63-B6929FE49559}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.6.0\AutoUpdate.exe No File
FirewallRules: [{10E13F96-A0F9-44A9-A1A4-4455CD6313B7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.6.0\AutoUpdate.exe No File
FirewallRules: [TCP Query User{254C610D-E831-4F18-8784-FBC8FF13A4F4}C:\users\pc\desktop\microsoft office 2016-2019\files\bin\kmss.exe] => (Allow) C:\users\pc\desktop\microsoft office 2016-2019\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{00CA2093-724E-48A3-A28D-459F64B27C09}C:\users\pc\desktop\microsoft office 2016-2019\files\bin\kmss.exe] => (Allow) C:\users\pc\desktop\microsoft office 2016-2019\files\bin\kmss.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Nos comentas .

Salu2.