FrankNL

[ATTACH]30371[/ATTACH]Hi Kape, Zoals gevraagd hierbij als bijlage het log van JRT. Het lijkt me erg weinig, maar wellicht..... ik ben gefrustreerd aan het raken van het niet kunnen versturen van email :-( Graag hoor ik van je wat de evt. volgende stap is. Groeten uit Roemenie. Frank JRT.txt

Hi Kape, Ik ben benieuwd naar je bevindingen, hieronder het log van adwcleaner: # AdwCleaner v3.018 - Bericht erstellt am 14/02/2014 um 22:43:34 # Updated 28/01/2014 von Xplode # Betriebssystem : Windows 7 Home Premium (64 bits) # Benutzername : Mirela - MIRELA-VAIO # Gestartet von : C:\Users\Mirela\Desktop\adwcleaner.exe # Option : Löschen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32 Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780} Schlüssel Gelöscht : HKCU\Software\OCS Schlüssel Gelöscht : HKLM\Software\DeviceVM Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DeviceVM ***** [ Browser ] ***** -\\ Internet Explorer v9.0.8112.16506 -\\ Google Chrome v32.0.1700.107 [ Datei : C:\Users\Mirela\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1193 octets] - [14/02/2014 22:40:50] AdwCleaner[s0].txt - [1064 octets] - [14/02/2014 22:43:34] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1124 octets] ##########

Goedenavond Kape, Hieronder het log van zoek: Wederom bedankt. Zoek.exe v5.0.0.0 Updated 13-February-2014 Tool run by Mirela on 14.02.2014 at 20:10:06,79. Microsoft Windows 7 Home Premium 6.1.7600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Mirela\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-02-14-114944.log 19485 bytes ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2338998092-1540104426-3543234043-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0FB57576-6155-4614-99E6-5AC99EBB82E5} deleted successfully HKEY_USERS\S-1-5-21-2338998092-1540104426-3543234043-1000\Software\Microsoft\Internet Explorer\SearchScopes\{42771F5B-B29C-457A-AD0A-8CA4E375D450} deleted successfully HKEY_USERS\S-1-5-21-2338998092-1540104426-3543234043-1000\Software\Microsoft\Internet Explorer\SearchScopes\{63394262-85B2-436A-9E35-05161E637256} deleted successfully HKEY_USERS\S-1-5-21-2338998092-1540104426-3543234043-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33F31DBA-F63E-49C8-8F16-F0AD65A43375} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[26.01.2014 15:53] avast Online Security - Mirela\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Default_Page_URL"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!" "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mirela\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mirela\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Mirela\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2 folders=1 1932 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\Mirela\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Mirela\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Mirela\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on 14.02.2014 at 20:28:03,76 ==================

Hi Kape, Hieronder het log van Zoek. Wederom bedankt voor je aandacht Zoek.exe v5.0.0.0 Updated 13-February-2014 Tool run by Mirela on 14.02.2014 at 13:06:10,47. Microsoft Windows 7 Home Premium 6.1.7600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Mirela\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 14.02.2014 13:08:24 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\GUM1C24.tmp deleted successfully C:\ProgramData\Oracle deleted successfully C:\Users\Mirela\AppData\Local\VirtualStore deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2338998092-1540104426-3543234043-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] ==== Deleting Files \ Folders ====================== C:\ProgramData\Partner deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Mirela\AppData\Local\Temp ==== 2014-02-13 09:16:06 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Mirela\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\6706c2b55493c5749541ac3b5e7c2faa\mbam-setup-1.75.0.1300.exe 2014-02-13 09:15:33 317EC5F92CFBF04A53E8125B66B3B4AF 294912 ----a-w- C:\Users\Mirela\AppData\Local\Temp\OCS\ocs_v71a.exe 2014-02-13 09:15:33 0B3B4E8D1DE31F844E466D61CF7937B5 192512 ----a-w- C:\Users\Mirela\AppData\Local\Temp\OCS\ICSharpCode.SharpZipLib.dll ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-02-13 10:47:40 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe 2014-02-13 10:47:30 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe 2014-02-13 10:47:30 A7871E39687EC6EE9712209DAE248B3A 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-13 10:47:30 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Windows\SysWOW64\java.exe ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== 2014-02-13 09:19:42 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-02-13 11:31:55 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2014-02-13 10:47:14 -------- d-----w- C:\PROGRA~2\Java 2014-02-13 10:23:45 -------- d-----w- C:\PROGRA~2\Adobe 2014-02-04 21:07:32 -------- d-----w- C:\PROGRA~2\Mozilla Maintenance Service 2014-02-04 21:07:26 -------- d-----w- C:\PROGRA~2\Mozilla Thunderbird ======= C: ===== ====== C:\Users\Mirela\AppData\Roaming ====== 2014-02-13 15:55:17 -------- d-----w- C:\Users\Mirela\AppData\Locallow\Adobe 2014-02-04 21:07:37 -------- d-----w- C:\Users\Mirela\AppData\Roaming\Thunderbird 2014-02-04 21:07:37 -------- d-----w- C:\Users\Mirela\AppData\Roaming\Mozilla 2014-02-04 21:07:37 -------- d-----w- C:\Users\Mirela\AppData\Local\Thunderbird 2014-02-04 20:53:09 -------- d-----w- C:\Users\Mirela\AppData\Local\ElevatedDiagnostics 2014-01-18 23:49:39 -------- d-----w- C:\Users\Mirela\AppData\Local\Microsoft Games ====== C:\Users\Mirela ====== 2014-02-13 13:20:40 EB6EE1BE2E66B6092C9D547F911DDCD1 6507816 ----a-w- C:\Users\Mirela\Downloads\disk-defrag-setup (1).exe 2014-02-13 10:44:36 1AF9E2AA8264B023404A76D3FB6751FE 29141928 ----a-w- C:\Users\Mirela\Downloads\jre-7u51-windows-i586.exe 2014-02-13 10:43:50 66214913C51C9F7589E8FE3BCF66B05F 18126032 ----a-w- C:\Users\Mirela\Downloads\AdobeAIRInstaller.exe 2014-02-13 09:18:49 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Mirela\Downloads\mbam-setup-1.75.0.1300.exe 2014-02-04 21:07:32 -------- d-----w- C:\ProgramData\Mozilla 2014-02-04 21:00:22 BAA6F47C5D42F6DC4AC61B517251AD0E 508240 ----a-w- C:\Users\Mirela\Downloads\ie6setupOe.exe ====== C: exe-files == 2014-02-13 13:20:40 EB6EE1BE2E66B6092C9D547F911DDCD1 6507816 ----a-w- C:\Users\Mirela\Downloads\disk-defrag-setup (1).exe 2014-02-13 11:31:56 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Mirela.exe 2014-02-13 10:47:40 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe 2014-02-13 10:47:30 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe 2014-02-13 10:47:30 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Windows\SysWOW64\java.exe 2014-02-13 10:47:21 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\pack200.exe 2014-02-13 10:47:21 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\servertool.exe 2014-02-13 10:47:21 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- C:\Program Files (x86)\Java\jre7\bin\unpack200.exe 2014-02-13 10:47:21 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe 2014-02-13 10:47:21 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe 2014-02-13 10:47:21 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmid.exe 2014-02-13 10:47:21 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\policytool.exe 2014-02-13 10:47:21 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\orbd.exe 2014-02-13 10:47:21 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe 2014-02-13 10:47:20 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ktab.exe 2014-02-13 10:47:20 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jqs.exe 2014-02-13 10:47:20 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\klist.exe 2014-02-13 10:47:20 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\keytool.exe 2014-02-13 10:47:20 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\kinit.exe 2014-02-13 10:47:19 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javacpl.exe 2014-02-13 10:47:19 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaw.exe 2014-02-13 10:47:19 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe 2014-02-13 10:47:19 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaws.exe 2014-02-13 10:47:18 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe 2014-02-13 10:47:18 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java.exe 2014-02-13 10:47:18 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe 2014-02-13 10:44:51 E860B45A8816984E6C602A5059117B26 103272 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2014-02-13 10:44:51 E3114A41F10D3E8C8BB668767DFA19CB 130408 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2014-02-13 10:44:51 9CEC1614A59CECACD3D31274BF00A37F 54632 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2014-02-13 10:44:51 9CEC1614A59CECACD3D31274BF00A37F 54632 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe 2014-02-13 10:44:51 6634C66E5039D6DCF99BA1F4070889A4 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2014-02-13 10:44:36 1AF9E2AA8264B023404A76D3FB6751FE 29141928 ----a-w- C:\Users\Mirela\Downloads\jre-7u51-windows-i586.exe 2014-02-13 10:43:50 66214913C51C9F7589E8FE3BCF66B05F 18126032 ----a-w- C:\Users\Mirela\Downloads\AdobeAIRInstaller.exe 2014-02-13 09:18:49 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Mirela\Downloads\mbam-setup-1.75.0.1300.exe 2014-02-13 09:16:06 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Mirela\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\6706c2b55493c5749541ac3b5e7c2faa\mbam-setup-1.75.0.1300.exe 2014-02-13 09:15:33 317EC5F92CFBF04A53E8125B66B3B4AF 294912 ----a-w- C:\Users\Mirela\AppData\Local\Temp\OCS\ocs_v71a.exe === C: other files == 2014-02-13 10:47:21 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip 2014-02-13 09:19:42 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2338998092-1540104426-3543234043-1000\Software\Microsoft\Windows\CurrentVersion\Run] "EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE /EPT EPLTarget\P0000000000000000 /M L355 Series" "Facebook Update"="C:\Users\Mirela\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" "ISBMgr.exe"="C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" "StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "EEventManager"="C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "EPLTarget\P0000000000000000"="C:\Windows\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE /EPT EPLTarget\P0000000000000000 /M L355 Series" "Facebook Update"="C:\Users\Mirela\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3 " "Apoint"="%ProgramFiles%\Apoint\Apoint.exe " ==== Startup Folders ====================== 2013-10-03 12:36:48 1012 ----a-w- C:\Users\Mirela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2013-10-01 16:08:09 834 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06.02.2014 09:18] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2338998092-1540104426-3543234043-1000Core.job --a------ C:\Users\Mirela\AppData\Local\Facebook\Update\FacebookUpdate.exe [30.11.2013 22:51] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2338998092-1540104426-3543234043-1000UA.job --a------ C:\Users\Mirela\AppData\Local\Facebook\Update\FacebookUpdate.exe [30.11.2013 22:51] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01.10.2013 18:27] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01.10.2013 18:27] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2338998092-1540104426-3543234043-1000Core" [C:\Users\Mirela\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2338998092-1540104426-3543234043-1000UA" [C:\Users\Mirela\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{95E81CF1-7CE8-461B-BDFD-FDF71A07096E}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\VAIO Care" ["%ProgramFiles%\Sony\VAIO Care\VCsystray.exe"] "C:\Windows\SysNative\tasks\VAIO Care Support" ["%ProgramFiles%\Sony\VAIO Care\VCSpt.exe"] "C:\Windows\SysNative\tasks\SONY\Remote Keyboard with PlayStation 3\Remote Keyboard with PlayStation 3" ["%ProgramFiles%\Sony\Remote Keyboard with PlayStation 3\VBTKBUtil.exe"] "C:\Windows\SysNative\tasks\SONY\SUS-BCF\Level4Daily" [C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe] "C:\Windows\SysNative\tasks\SONY\SUS-BCF\Level4Month" [C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Gate\StartExecuteProxy" ["%programfiles%\Sony\VAIO Gate\ExecutionProxy.exe"] "C:\Windows\SysNative\tasks\SONY\VAIO Gate\VAIO Gate" [C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Power Management\VPM Logon Start" [C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Power Management\VPM Session Change" [C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Power Management\VPM Unlock" [C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] "C:\Windows\SysNative\tasks\SONY\VAIO Update\VAIO Update 5" ["C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe"] "C:\Windows\SysNative\tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool" [C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[26.01.2014 15:53] avast Online Security - Mirela\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Google Wallet - Mirela\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0FB57576-6155-4614-99E6-5AC99EBB82E5} Zinio Url="Page Not Found" {33F31DBA-F63E-49C8-8F16-F0AD65A43375} Bing Url="{searchTerms} - Bing" {42771F5B-B29C-457A-AD0A-8CA4E375D450} Shopping.com Url="Shopping.com Deutschland - der große Produkt- und Preisvergleich" {63394262-85B2-436A-9E35-05161E637256} eBay Url="{searchTerms | eBay}" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mirela\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Mirela\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Mirela\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2 folders=1 1932 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\Mirela\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Mirela\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Mirela\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on 14.02.2014 at 13:49:44,87 ======================

Hi Kape, Inderdaad, niet gelijk naast de deur maar ik lees toch liever in mijn eigen taal ;-) Nogmaals bedankt voor je hulp. Ik heb ook zoals eerder aangegeven een nieuw topic aangemaakt voor de laptop. Ik hoop dat deze de veroorzaker is en dat ik spoedig vrij ben van deze ellende, het is een drama als je geen mails kunt versturen. Bedankt, Frank

Beste Kape, Zoals ik je in mijn andere topic aangaf hebben we problemen met ons IP adres, dit is geblokkeerd op meerdere internationale internationale emailservers. In het andere topic hielp je me met mijn PC, maar zoals je aangaf had deze wel wat malware maar was deze niet de verzender van grote hoeveelheden spam. Vandaar nu dus zoals ik je aangaf een nieuw topic voor de laptop van mijn vrouw en dochter. Ook de laptop heeft Avast en Malware Bytes Anti Malware heb ik deze ochtend geinstalleerd. Beide programma's heb ik uitgebreid laten scannen, Avast kwam met de melding alles ok, en MBAM had wat bedreigingen (3) die ik vervolgens verwijderd heb. Helaas loste dit niet (zoals al verwacht) de problemen op, en komt nog steeds de 503 Valid command must preceed melding van Outlook. Ik heb RSIT gedownload en de 2 logjes die hieruit voortkomen bijgevoegd. Wederom hoop ik van harte dat je mijn probleem kan vinden en me richting de oplossing kan leiden. Alvast bedankt !!! info.txt log.txt

Hi Kape, Dan ga ik ervan uit dat met je geweldige hulp dit nu verholpen is. Hoe kan ik dit voorblijven ? Is het regelmatig laten draaien van adwcleaner een goed idee ? Ik heb Avast en Malware Bytes Anti Malware permanent lopen. Moet ik nog iets anders doen ? Groeten uit Roemenië

Hi Kape, Internet Explorer lijkt prima te werken. Outlook heeft nog steeds last van die 503 RCPT melding, echter..... Ik heb begrepen van mijn ISP dat mijn IP geblokkeerd is op meerdere Emailservers. Dit omdat mijn pc of mijn vrouw's laptop spam verstuurd. Ik weet niet of je uit de rapportjes iets op hebt kunnen maken in die geest. Anders wil ik je vragen of ik diezelfde procedure ook mag doen met de laptop van mijn vrouw, of maak ik daar een aparte post voor aan ? Mijn ISP kan pas iets doen in de zin van deblokkeren als ik beide machines schoon heb :-( Daarmee ook gelijk de volgende vraag... hoe hou ik dit buiten ? Alvast enorm bedankt voor je hulp !!!

Hi Kape, Hieronder het logbericht van AdwCleaner: # AdwCleaner v3.018 - Report created 12/02/2014 at 00:05:35 # Updated 28/01/2014 by Xplode # Operating System : Windows 8.1 Pro (64 bits) # Username : Frank - FRANK-PC # Running from : C:\Users\Frank\Desktop\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F0B76E1-4E46-427B-B55B-B90593468AC6} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6} Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98} Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71} Key Deleted : HKCU\Software\MapsGalaxy_39 Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\AppDataLow\Software\MapsGalaxy_39 Key Deleted : HKLM\Software\Default Tab Key Deleted : HKLM\Software\DefaultTab Key Deleted : HKLM\Software\MapsGalaxy_39 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.16384 -\\ Google Chrome v32.0.1700.107 [ File : C:\Users\Frank\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1723 octets] - [12/02/2014 00:03:33] AdwCleaner[s0].txt - [1573 octets] - [12/02/2014 00:05:35] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1633 octets] ##########

Beste Kape, Allereerst bedankt voor de tijd die je neemt om te helpen Hieronder het gevraagde log: Zoek.exe v5.0.0.0 Updated 10-February-2014 Tool run by Frank on di 11-02-2014 at 20:34:27,46. Microsoft Windows 8.1 Pro 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Frank\Desktop\zoek.exe [scan all users] [script inserted] [Checkboxes used] ==== System Restore Info ====================== 11-2-2014 20:35:53 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\PROGRA~2\USB Server 2 deleted successfully C:\PROGRA~2\VideoLAN deleted successfully C:\ProgramData\ALM deleted successfully C:\ProgramData\clone.AD deleted successfully C:\ProgramData\Garmin deleted successfully C:\ProgramData\Oracle deleted successfully C:\Users\Frank\AppData\Roaming\DefaultTab deleted successfully C:\Users\Frank\AppData\Roaming\Download Manager deleted successfully C:\Users\Frank\AppData\Roaming\FileMaker Pro Advanced deleted successfully C:\Users\Frank\AppData\Local\PSU deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistPub deleted successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\PeerDistRepub deleted successfully ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-2143012085-2670831206-1802322295-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Registry Fix Code x64 ====================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- ==== Deleting Files \ Folders ====================== C:\Users\Frank\AppData\Roaming\DefaultTab not found C:\Users\Frank\AppData\Roaming\convertaudiofree deleted C:\Program Files (x86)\Mobogenie deleted C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 deleted C:\Users\Frank\daemonprocess.txt deleted C:\Users\Frank\.android deleted C:\Users\Frank\AppData\Roaming\Common deleted C:\Users\Frank\AppData\Roaming\Yahoo! deleted C:\ProgramData\Yahoo! deleted C:\ProgramData\Package Cache deleted C:\Users\Frank\AppData\Local\cache deleted C:\WINDOWS\Syswow64\SET1639.tmp deleted C:\WINDOWS\Syswow64\SETFF8.tmp deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Frank\AppData\Local\Temp ==== 2014-02-11 14:00:41 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\Frank\AppData\Local\Temp\SDIAG_8be2ae01-c366-4164-98e8-e5915e3c5f91\NetworkDiagnosticSnapIn.dll 2014-02-11 09:50:26 ED6A10D0D6A666A679799DEBDACA2E17 32865 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\6d48952f.dll 2014-02-11 09:50:23 C728D4945A96C0A85448A2DA70B2D76D 24674 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\671d8b64.dll 2014-02-11 09:50:23 9E4E2D0D447AFB0B163DAFF79483AD26 86133 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\34bdba63.dll 2014-02-11 09:50:23 89F4AC43BA2B792785D9D472365E562B 24665 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\278090af.dll 2014-02-11 09:50:23 74E6EC5AFD643B837BCBD5FE1B782D14 28770 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\4a2ee9db.dll 2014-02-11 09:50:23 44ABDE5DE65F3F034FAAC2C132713018 24671 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\9a6a9a93.dll 2014-02-11 09:50:23 42DB37DADB779DBFC5DA8BDD7EC61C52 20571 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\d183fe29.dll 2014-02-11 09:50:22 153A64F0FBF1D066ACCCC90BB95E9471 815185 ----a-w- C:\Users\Frank\AppData\Local\Temp\par-Frank\cache-exiftool-9.02\perl58.dll 2014-02-10 08:59:02 A210F1AC135E5331C314CE5F394FB5A5 413276 ----a-w- C:\Users\Frank\AppData\Local\Temp\be29e7f1-71ae-4703-50cb-1d52be512f51\twapi-be29e7f1-71ae-4703-50cb-1d52be512f51.dll 2014-02-09 16:06:57 40395C175553CB14D2050888EFCCDF00 4961800 ----a-w- C:\Users\Frank\AppData\Local\Temp\vcredist_x64.exe 2014-02-09 16:05:32 7FDAD786312276430211316EC21B2874 16741957 ----a-w- C:\Users\Frank\AppData\Local\Temp\6_Offer_3.exe 2014-02-09 16:04:43 0B850AE758CE934804D120213DF365D9 10363168 ----a-w- C:\Users\Frank\AppData\Local\Temp\BackupSetup.exe ====== Java Cache ===== ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-01-31 13:09:03 88369A29F105499230C78B162BB04F32 466432 ----a-w- C:\WINDOWS\Sysnative\esxw2ud.dll 2014-01-31 13:09:03 20ECD0A490A121CB34F553FAD1DBBD39 135824 ----a-w- C:\WINDOWS\Sysnative\escsvc64.exe ====== C:\WINDOWS\Sysnative\drivers ===== ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2014-02-11 15:22:28 -------- d-----w- C:\Program Files\trend micro 2014-02-05 20:49:20 -------- d-----w- C:\Program Files\iPod 2014-02-05 20:49:19 -------- d-----w- C:\Program Files\iTunes ======= C:\PROGRA~2 ===== 2014-02-09 16:06:10 -------- d-----w- C:\PROGRA~2\convertaudiofree 2014-02-05 20:49:19 -------- d-----w- C:\PROGRA~2\iTunes 2014-01-30 09:24:38 -------- d-----w- C:\PROGRA~2\TeamViewer 2014-01-22 08:25:14 -------- d-----w- C:\PROGRA~2\Yahoo! 2014-01-14 14:47:57 -------- d-----w- C:\PROGRA~2\Uconomix ======= C: ===== ====== C:\Users\Frank\AppData\Roaming ====== 2014-02-11 09:57:10 -------- d-----w- C:\Users\Frank\AppData\Roaming\uMark 2014-02-09 16:25:17 -------- d-----w- C:\Users\Frank\AppData\Local\MajorSilence 2014-02-09 16:08:28 -------- d-----w- C:\Users\Frank\AppData\Local\fontconfig 2014-02-09 16:06:46 7DBF25ED210AD422D5227E346B7340F1 85 ----a-w- C:\Users\Frank\AppData\Roaming\settings.xml 2014-02-09 16:06:45 -------- d-----w- C:\Users\Frank\AppData\Local\SkinSoft 2014-02-09 15:59:53 -------- d-----w- C:\Users\Frank\AppData\Local\clone.AD 2014-02-05 17:13:09 -------- d-----w- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Roaming\Microsoft 2014-01-31 09:46:36 -------- d-----w- C:\Users\Frank\AppData\Roaming\TeamViewer ====== C:\Users\Frank ====== 2014-02-11 15:53:26 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2014-02-09 16:06:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free MP4 To AVI Converter 2014-02-05 20:49:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2014-02-05 17:13:09 -------- d-----r- C:\WINDOWS\sysWoW64\config\systemprofile\Desktop 2014-01-30 10:58:59 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-01-22 08:26:14 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger 2014-01-14 14:47:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uMark 4 ====== C: exe-files == 2014-02-11 15:22:29 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Frank.exe 2014-02-11 15:22:00 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Frank\AppData\Local\Microsoft\Windows\INetCache\IE\PZJTJL6K\RSITx64.exe 2014-02-09 16:06:57 40395C175553CB14D2050888EFCCDF00 4961800 ----a-w- C:\Users\Frank\AppData\Local\Temp\vcredist_x64.exe 2014-02-09 16:05:35 9CAE9C4F3A749FE82B2AB1CB8A28B6DD 1294944 ----a-w- C:\Windows\Temp\dtsC229\deftabupdate.exe 2014-02-09 16:05:32 7FDAD786312276430211316EC21B2874 16741957 ----a-w- C:\Users\Frank\AppData\Local\Temp\6_Offer_3.exe 2014-02-09 16:04:43 0B850AE758CE934804D120213DF365D9 10363168 ----a-w- C:\Users\Frank\AppData\Local\Temp\BackupSetup.exe 2014-02-05 20:40:35 58372D53C6EFA49F9F2127AD786FE37A 77136 ----a-w- C:\ProgramData\Apple Computer\Installer Cache\iTunes 11.1.4.62\SetupAdmin.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-2143012085-2670831206-1802322295-1001\Software\Microsoft\Windows\CurrentVersion\Run] "VoipBuster"="C:\Program Files (x86)\VoipBuster.com\VoipBuster\voipbuster.exe -nosplash -minimized" "DisplayFusion"="C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "JustVoip"="C:\Program Files (x86)\JustVoip.com\JustVoip\justvoip.exe -nosplash -minimized" "AppleIEDAV"="C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe" "Xvid"="C:\Program Files (x86)\Xvid\CheckUpdate.exe" "EPLTarget\P0000000000000000"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE /EPT EPLTarget\P0000000000000000 /M L355 Series /EF HKCU" "Messenger (Yahoo\PROGRA~2\Yahoo\Messenger\YahooMessenger.exe -quiet" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "EEventManager"="C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" "SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" "AdobeCS6ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin" "Adobe Acrobat Speed Launcher"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" "Acrobat Assistant 8.0"="C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "VoipBuster"="C:\Program Files (x86)\VoipBuster.com\VoipBuster\voipbuster.exe -nosplash -minimized" "DisplayFusion"="C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe" "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "JustVoip"="C:\Program Files (x86)\JustVoip.com\JustVoip\justvoip.exe -nosplash -minimized" "AppleIEDAV"="C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe" "Xvid"="C:\Program Files (x86)\Xvid\CheckUpdate.exe" "EPLTarget\P0000000000000000"="C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATII4E.EXE /EPT EPLTarget\P0000000000000000 /M L355 Series /EF HKCU" "Messenger (Yahoo\PROGRA~2\Yahoo\Messenger\YahooMessenger.exe -quiet" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch" "Seagull Drivers"="ssdal_nc.exe startup" "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" "Acronis Scheduler2 Service"="C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" "AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="C:\\PROGRA~2\\NVIDIA~1\\3DVISI~1\\NVSTIN~1.DLL" ==== Startup Folders ====================== 2013-02-06 15:26:07 1107 ----a-w- C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13-09-2013 15:06] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [13-09-2013 15:06] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\AdobeAAMUpdater-1.0-Frank-PC-Frank" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe] "C:\WINDOWS\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\BrowserChoice\browserchoice.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\User_Feed_Synchronization-{FE560EC2-C858-4ABB-9E39-2006B4E6B984}" [C:\WINDOWS\system32\msfeedssync.exe] "C:\WINDOWS\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\WINDOWS\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "e-webprint@epson.com"="C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on" [31-01-2014 16:39] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions edaibbiobngpbmeonadpbfafbkimjbdd - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx[04-11-2012 18:46] gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[24-01-2014 10:31] kdidombaedgpfiiedeimiebkmbilgmlc - C:\Program Files (x86)\DefaultTab\DefaultTab.crx[] Logitech SetPoint - Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\edaibbiobngpbmeonadpbfafbkimjbdd avast Online Security - Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki Google Wallet - Frank\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda DefaultTab - C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc ==== Chrome Fix ====================== C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{2DC62AF6-4149-464E-A1DD-257B7B70C93E}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {2DC62AF6-4149-464E-A1DD-257B7B70C93E} Google Url="{searchTerms} - Google zoeken=" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc deleted successfully ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Frank\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Frank\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Frank\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=212 folders=42 38800144 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\Frank\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\Users\Frank\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 11-02-2014 at 20:45:10,13 ====================== - - - Updated - - - Het enige wat ik overigens nog toe wou voegen is dat sinds enge tijd (tot nu toe vermoede ik dat het door de update van windows 8 naar windows 8.1 kwam) Epon scan niet meer werkt. Het programma start op in de taakbalk, maar het programma zelf is nergens te vinden. Bedankt

Beste Leden, Helaas heb ik niet zo heel veel ervaring met het oplossen van problemen met computers. Vandaar mijn oproep aan jullie. Ik heb over dit forum gelezen in een rtikel op internet over het virus en probleemvrij maken van computers. Daarin werd gesproken over het gebruik van Avast (heb ik) en Malware Bytes Anti Malware (Heb ik ook) Beide programma's heb ik uitgebreid laten scannen, Avast kwam met de melding alles ok, en MBAM had wat bedreigingen die ik vervolgens verwijderd heb. Helaas loste dit niet de problemen op, soms werkt mijn Internet Explorer niet en vrijwel zonder uitzondering krijg ik een 503 Valid command must preceed melding van Outlook. Na enig zoeken op google worden beide problemen waarschijnlijk veroorzaakt door iets op de pc wat er niet thuis hoort te zijn. In het artikel wat ik las stond iets over het plaatsen van logjes waarmee mensen hier kunnen zien wat er fout is. Ik heb RSIT gedownload en de 2 logjes die hieruit voortkomen bijgevoegd. Ik hoop van harte dat iemand mijn probleem kan vinden en me richting de oplossing kan leiden. Alvast bedankt !!! info.txt log.txt