Waarschijnlijk geinfecteerd met het GorillaPrice virus

[kape]

HIER vind je een duidelijke handleiding.

[poonkje112]

Dit krijg ik in safe mode

[kape]

Dan blijkt zoek gewerkt te hebben. Kan je eens kijken op je C-partitie of daar het bestand zoek-results.log niet te vinden is ?

[poonkje112]

Vandaag gescant ( Deze is wel gelukt! )

Zoek.exe v5.0.0.0 Updated 18-Januari-2014

Tool run by aaron on za 18-01-2014 at 19:12:33,66.

Microsoft Windows 8 Enterprise 6.2.9200 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\aaron\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used]

==== System Restore Info ======================

18-1-2014 19:16:03 Zoek.exe System Restore Point Created Succesfully.

==== Empty Folders Check ======================

C:\ProgramData\Babylon deleted successfully

C:\ProgramData\Oracle deleted successfully

C:\ProgramData\Telestream deleted successfully

C:\Users\aaron\AppData\Roaming\Publish Providers deleted successfully

C:\Users\aaron\AppData\Roaming\resourcepacks deleted successfully

C:\Users\aaron\AppData\Roaming\saves deleted successfully

C:\Users\aaron\AppData\Roaming\Vara Software deleted successfully

C:\Users\aaron\AppData\Local\DriverTuner deleted successfully

C:\Users\aaron\AppData\Local\Dxtory Software deleted successfully

C:\Users\aaron\AppData\Local\Techne deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=-

==== Deleting Files \ Folders ======================

C:\ProgramData\InstallMate deleted

C:\PROGRA~2\Delta deleted

C:\Program Files\Uninstaller deleted

C:\ProgramData\DOewwnlOaD kaeeper deleted

C:\ProgramData\DoWnlooadd keeeper deleted

C:\ProgramData\SummerSoft deleted

C:\Users\aaron\AppData\Local\SearchProtect deleted

C:\Users\aaron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard deleted

C:\Users\aaron\AppData\LocalLow\DOewwnlOaD kaeeper deleted

C:\Users\aaron\AppData\LocalLow\DoWnlooadd keeeper deleted

C:\Users\aaron\AppData\LocalLow\SearchNewTab deleted

C:\Users\aaron\AppData\LocalLow\Softonic deleted

C:\Windows\wininit.ini deleted

C:\windows\SysNative\Tasks\EPUpdater deleted

C:\windows\SysNative\tasks\BitGuard deleted

C:\Windows\SysWow64\AI_RecycleBin deleted

C:\Windows\SysWow64\searchplugins deleted

C:\Windows\SysWow64\Extensions deleted

"C:\ProgramData\cda12bb8c1ef7102\{CA41BB14-E67B-1653-C57B-5CA99418A866}" deleted

"C:\ProgramData\cda12bb8c1ef7102" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\aaron\AppData\Local\Temp ====

2014-01-04 19:40:23 FF33F0DCA8E465E62457A5D57F813834 93696 --s---r- C:\Users\aaron\AppData\Local\Temp\{52D28901-A4CA-407F-A294-ECE88931ABF7}\Custom.dll

2014-01-04 19:40:23 E717F6CE3A7429BFA6D7F3CF66737A4B 15968 --s---r- C:\Users\aaron\AppData\Local\Temp\{52D28901-A4CA-407F-A294-ECE88931ABF7}\Setup.exe

2014-01-04 19:40:23 D8BBF8E88CF9821DD260F2C41505344A 173568 --s---r- C:\Users\aaron\AppData\Local\Temp\{52D28901-A4CA-407F-A294-ECE88931ABF7}\_Setup.dll

2014-01-04 19:40:22 AF7CE801C8471C5CD19B366333C153C4 275552 --s---r- C:\Users\aaron\AppData\Local\Temp\Tsu05C4361A.dll

====== Java Cache =====

2014-01-14 20:16:36 A5BCD7370FE25039D9118CEA286954A8 17556 ----a-w- C:\Users\aaron\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\2ea66e94-2250664b

====== C:\Windows\SysWOW64 =====

2014-01-15 17:53:37 8A4CEBF34370D689E198E6673C1F2C40 74072 ----a-w- C:\Windows\SysWOW64\XAPOFX1_5.dll

2014-01-15 17:53:37 81DFDDFB401D663BA7E6AD1C80364216 527192 ----a-w- C:\Windows\SysWOW64\XAudio2_7.dll

2014-01-15 17:53:36 4FD7BCB9D8AF6A165E9BA0C2EB702E7C 239960 ----a-w- C:\Windows\SysWOW64\xactengine3_7.dll

2014-01-15 17:53:36 1C9B45E87528B8BB8CFA884EA0099A85 2106216 ----a-w- C:\Windows\SysWOW64\D3DCompiler_43.dll

2014-01-15 17:53:35 83EBA442F07AAB8D6375D2EEC945C46C 1868128 ----a-w- C:\Windows\SysWOW64\d3dcsx_43.dll

2014-01-15 17:53:34 8E0BB968FF41D80E5F2C747C04DB79AE 248672 ----a-w- C:\Windows\SysWOW64\d3dx11_43.dll

2014-01-15 17:53:34 20C835843FCEC4DEDFCD7BFFA3B91641 470880 ----a-w- C:\Windows\SysWOW64\d3dx10_43.dll

2014-01-15 17:53:33 86E39E9161C3D930D93822F1563C280D 1998168 ----a-w- C:\Windows\SysWOW64\D3DX9_43.dll

2014-01-15 14:57:09 62601FF7577D8CC2132D26BDF6B4997F 452608 ----a-w- C:\Windows\SysWOW64\SHCore.dll

2014-01-15 14:57:08 6A10586D2456BBE6E1F7DBAABB2C5F28 550400 ----a-w- C:\Windows\SysWOW64\FirewallAPI.dll

2014-01-15 14:57:08 07577AD2DA7D82B8A077DA4C1981DB9B 199168 ----a-w- C:\Windows\SysWOW64\WebClnt.dll

2014-01-15 14:57:07 AC52DA0DC81956307CB8E13B5A0A390E 86016 ----a-w- C:\Windows\SysWOW64\davclnt.dll

2014-01-15 14:56:55 18DB0EA3DAD0932C62F2DED17837D92E 562688 ----a-w- C:\Windows\SysWOW64\WSShared.dll

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2014-01-15 17:53:37 E9739AE8B2FA28DCD6F2EF5525DA8827 77656 ----a-w- C:\Windows\Sysnative\XAPOFX1_5.dll

2014-01-15 17:53:37 4F7513FF4DE6303088DB28DCBCEF372C 518488 ----a-w- C:\Windows\Sysnative\XAudio2_7.dll

2014-01-15 17:53:36 BDEC09A032DB44D9CDB3A0D97224D64E 176984 ----a-w- C:\Windows\Sysnative\xactengine3_7.dll

2014-01-15 17:53:36 ADA0C39D4EACDC81FD84163A95D62079 2526056 ----a-w- C:\Windows\Sysnative\D3DCompiler_43.dll

2014-01-15 17:53:35 5F1DA86286A2DFB01C4FED55C2DD1D61 1907552 ----a-w- C:\Windows\Sysnative\d3dcsx_43.dll

2014-01-15 17:53:34 AD7FA9485059F4DC53C98B49CAB13F0B 511328 ----a-w- C:\Windows\Sysnative\d3dx10_43.dll

2014-01-15 17:53:34 9D6429F410597750B2DC2579B2347303 276832 ----a-w- C:\Windows\Sysnative\d3dx11_43.dll

2014-01-15 17:53:33 7160FC226391C0B50C85571FA1A546E5 2401112 ----a-w- C:\Windows\Sysnative\D3DX9_43.dll

2014-01-15 14:57:09 A28DE7725EC0426BC76C064B3A9D64EF 588288 ----a-w- C:\Windows\Sysnative\SHCore.dll

2014-01-15 14:57:09 9DE3341BD4E14BC5FADFCAD3019F2D0D 915968 ----a-w- C:\Windows\Sysnative\MPSSVC.dll

2014-01-15 14:57:09 09DC813EA00294A6F5B2B6C75E2740ED 758784 ----a-w- C:\Windows\Sysnative\FirewallAPI.dll

2014-01-15 14:57:08 9B1384CE8E681D2D77BB3524B8E86311 227840 ----a-w- C:\Windows\Sysnative\WebClnt.dll

2014-01-15 14:57:08 353F85DB0B6EB92A77DA1DC2B9DD4FEF 104448 ----a-w- C:\Windows\Sysnative\davclnt.dll

2014-01-15 14:56:55 FA3B2DEF1EA2D6D2018E4289A235B83B 688640 ----a-w- C:\Windows\Sysnative\WSShared.dll

====== C:\Windows\Sysnative\drivers =====

2014-01-15 14:57:08 AE3786294CC246A5403783E1B86A0168 100696 ----a-w- C:\Windows\Sysnative\drivers\disk.sys

2014-01-15 14:57:06 4CCBBD4944777CA100B9A6C2F149A46F 74752 ----a-w- C:\Windows\Sysnative\drivers\mpsdrv.sys

====== C:\Windows\Tasks ======

2013-12-25 11:59:06 A45857A7FC39EE5F6A51101FBF210784 4052 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA

2013-12-25 11:59:06 435740C56838901293B7629F34AD9819 1080 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-12-25 11:59:05 BF469E435151463EB4288929ADCA0A12 3816 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore

2013-12-25 11:59:05 5D973563300D4C16C28EE8EF7DF7BA74 1076 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

====== C:\Windows\Temp ======

======= C:\Program Files =====

2014-01-16 19:48:58 -------- d-----w- C:\Program Files\Dolphin

2014-01-16 14:52:25 -------- d-----w- C:\Program Files\trend micro

======= C:\PROGRA~2 =====

2013-12-26 14:28:55 -------- d-----w- C:\PROGRA~2\KeyTweak

2013-12-25 11:59:04 -------- d-----w- C:\PROGRA~2\Google

======= C: =====

====== C:\Users\aaron\AppData\Roaming ======

2014-01-16 16:27:10 FDFB3F1A658A2BC272F7D57A7E006757 723312 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat

2014-01-04 19:40:59 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Torch

2014-01-04 19:40:59 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Google

2014-01-04 19:40:59 -------- d-----w- C:\Users\HomeGroupUser$\AppData\Local\Comodo

2014-01-04 19:40:59 -------- d-----w- C:\Users\Gast\AppData\Local\Torch

2014-01-04 19:40:59 -------- d-----w- C:\Users\Gast\AppData\Local\Google

2014-01-04 19:40:59 -------- d-----w- C:\Users\Gast\AppData\Local\Comodo

2014-01-04 19:40:59 -------- d-----w- C:\Users\Administrator\AppData\Local\Torch

2014-01-04 19:40:59 -------- d-----w- C:\Users\Administrator\AppData\Local\Google

2014-01-04 19:40:59 -------- d-----w- C:\Users\Administrator\AppData\Local\Comodo

2014-01-04 19:40:59 -------- d-----w- C:\Users\aaron\AppData\Local\Torch

2014-01-04 19:40:59 -------- d-----w- C:\Users\aaron\AppData\Local\Comodo

2013-12-26 14:28:55 -------- d-----w- C:\Users\aaron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KeyTweak

2013-12-25 12:04:04 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Google

====== C:\Users\aaron ======

2014-01-16 19:49:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin

2014-01-16 14:50:33 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\aaron\Desktop\RSITx64.exe

2014-01-12 14:24:41 04416F31A7CC3147BA0E3A1481D7E485 356352 ----a-w- C:\Users\aaron\Downloads\Minecraft.exe

2014-01-04 19:40:59 -------- d-----w- C:\Users\HomeGroupUser$\AppData

2014-01-04 19:40:59 -------- d-----w- C:\Users\Gast\AppData

2014-01-04 19:40:59 -------- d-----w- C:\Users\Administrator\AppData

2013-12-26 14:28:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyTweak

2013-12-25 11:59:24 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

====== C: exe-files ==

2014-01-16 20:09:18 1D0A1FF655C6CF2EA2DE4FB6AA8246AD 9046696 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\32.0.1700.76\32.0.1700.76_31.0.1650.63_chrome_updater.exe

2014-01-16 19:49:32 9A401A073BFF58BC23C6FEF90D4D7FF4 120508 ----a-w- C:\Program Files\Dolphin\uninst.exe

2014-01-16 19:45:55 0E5B3FDB17DE1527807ED81C3E344DFD 10147624 ----a-w- C:\Users\aaron\Desktop\dolphin\dolphin-x64-4.0.1.exe

2014-01-16 14:52:26 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\aaron.exe

2014-01-16 14:50:33 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\aaron\Desktop\RSITx64.exe

2014-01-16 14:50:15 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\aaron\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B9JDSM6K\RSITx64.exe

2014-01-15 17:49:50 DDCE338BB173B32024679D61FB4F2BA6 537432 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\DirectX\DXSETUP.exe

2014-01-15 17:49:50 BF3F290275C21BDD3951955C9C3CF32C 517976 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\_CommonRedist\DirectX\Jun2010\DXSETUP.exe

2014-01-15 17:49:50 B88228D5FEF4B6DC019D69D4471F23EC 5073240 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\vcredist_x86.exe

2014-01-15 17:49:50 2DB8FBECA25F78DE7D632CA9FBD5B362 6069760 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\CelebrityPoker.exe

2014-01-12 14:24:41 04416F31A7CC3147BA0E3A1481D7E485 356352 ----a-w- C:\Users\aaron\Downloads\Minecraft.exe

2014-01-12 14:24:13 04FDC748F52A59753338E1B33C77EC59 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-2869904857-490622628-13293081-1001\$IYMBOBR.exe

2014-01-12 14:24:03 C0D13FFAF4DE516192B05BB71FE2EE8B 148704 ----a-w- C:\$Recycle.Bin\S-1-5-21-2869904857-490622628-13293081-1001\$RYMBOBR.exe

=== C: other files ==

2014-01-16 19:50:13 E8ADFF0F544A33DA720D119483A1D3D0 12 ----a-w- C:\Users\aaron\Documents\Dolphin Emulator\Wii\sys\uid.sys

2014-01-15 14:57:08 AE3786294CC246A5403783E1B86A0168 100696 ----a-w- C:\Windows\System32\Drivers\disk.sys

2014-01-15 14:57:06 4CCBBD4944777CA100B9A6C2F149A46F 74752 ----a-w- C:\Windows\System32\Drivers\mpsdrv.sys

2014-01-13 20:27:10 0599B606222DDC76446FC07B168528F0 632160 ----a-w- C:\Users\aaron\Downloads\broeselhud 2.7.zip

2014-01-12 14:25:13 7A85C39C1A5FA0D7855E90AB089ACE8F 108308729 ----a-w- C:\Users\aaron\AppData\Roaming\.minecraft\gamefiles.zip

2014-01-12 14:13:02 E78DAFF9D92E372E038BDC046B243E4D 11191231 ----a-w- C:\Users\aaron\Downloads\WeepCraft_6.8.zip

2014-01-12 13:45:57 0BA0F675B6FBD710D0F24162E61B610E 19176250 ----a-w- C:\Users\aaron\Downloads\prometheus.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2869904857-490622628-13293081-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"Adobe Creative Cloud"="C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --showwindow=false --onOSstartup=true"

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Steam"="C:\Program Files (x86)\Steam\Steam.exe -silent"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"EA Core"="C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [25-12-2013 12:59]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [25-12-2013 12:59]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]

==== Chrome Look ======================

Google Docs - aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

greatsaver - aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

Google Search - aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Wallet - aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

greatsaver - aaron\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - aaron\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - aaron\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Administrator\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Gast\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

greatsaver - HomeGroupUser$\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi

==== Chrome Fix ======================

C:\Users\aaron\AppData\Local\Google\Chrome\User Data\default\Local Storage\http_continuetosave.info_0.localstorage deleted successfully

C:\Users\aaron\AppData\Local\Google\Chrome\User Data\default\Local Storage\http_continuetosave.info_0.localstorage-journal deleted successfully

C:\Users\aaron\AppData\Local\Google\Chrome\User Data\default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\aaron\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\aaron\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\aaron\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Administrator\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Gast\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\Gast\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\HomeGroupUser$\AppData\Local\COMODO\Dragon\User Data\Default\Extensions\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

C:\Users\aaron\AppData\Local\Google\Chrome\User Data\default\Local Storage\chrome-extension_cgbdpndbdhdbmggophjcpiihcimdgbdi_0.localstorage deleted successfully

C:\Users\aaron\AppData\Local\Google\Chrome\User Data\default\Local Storage\chrome-extension_cgbdpndbdhdbmggophjcpiihcimdgbdi_0.localstorage-journal deleted successfully

C:\Users\aaron\AppData\Local\Google\Chrome\User Data\default\Local Extension Settings\cgbdpndbdhdbmggophjcpiihcimdgbdi deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{EF668BEB-F0C2-45A0-8745-FB402919BDE6}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

{EF668BEB-F0C2-45A0-8745-FB402919BDE6} Google Url="{searchTerms - Google zoeken}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DMUninstaller deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\aaron\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\aaron\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\aaron\AppData\Local\Google\Chrome\User Data\default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=155 folders=74 2527441 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Users\aaron\AppData\Local\Temp will be emptied at reboot

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\aaron\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on za 18-01-2014 at 20:09:34,88 ======================

[kape]

Hiermee is behoorlijk wat rotzooi van de PC gehaald. Krijg je nu nog ongewenste pop-ups of virusmeldingen ?

[poonkje112]

Nergens meer last van heel erg bedankt!

[kape]

Vergeet dan niet de gebruikte tools te verwijderen:

Download Delfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

• Remove disinfection tools
  
• Purge System Restore
  
• Reset system settings
  

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.