NoxOverFlow
06-05-2014, 19:44
Non mi intendo molto riguardante la rete, ma ciò che devo sapere lo so. Partiamo dall'inizio, volevo aprire un server di gioco cosi entro nel MediaAccess
Gateway del mio Technicolor TG788vn v2 ed apro le porte che mi servono associandole al mio PC. Risultato: Niente, rimangono chiuse, esse come qualsiasi porta provi ad aprire, in qualsiasi dispositivo connesso al mio router. Cosi, decido di effettuare un port-scan completo del mio PC e del router tramite Advanced Port-Scanner v1.3. Cosa trovo? Il mio computer, Linux.lan e il router (dsldevice.lan) hanno solo 3 porte aperte: 135, 139 ,445, tutte le altre sono chiuse e non apribili. Non mi intendo di rete ripeto, ma conosco la fama di queste porte, soprattutto la NetBios 139. Come faccio a rimuovere questo, sono sicuro al 100%, virus?
Router: Technicolor TG788vn v2
Provider: Fastweb
OS: Windows 8.1 64-bit
Adattatore di Rete: NETGEAR WNA1100 N150 Wireless USB Adapter
Browser: Mozilla Firefox
Firewall: Windows Firewall (Vista-7-8)
Antivirus: Kaspersky PURE 3.0
Log di Malwarebytes Anti-Malware:
<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2014/05/06 21:20:30 +0200</date>
<log>mbam-log-2014-05-06 (21-11-53).xml</log>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.00.1.1004</version>
<rules-database>v2014.05.06.09</rules-database>
<swissarmy-database>v2014.03.27.01</swissarmy-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<osversion>Windows 8.1</osversion>
<arch>x64</arch>
<username>SimoX</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>279707</objects>
<time>502</time>
<processes>2</processes>
<modules>0</modules>
<keys>11</keys>
<values>2</values>
<datas>2</datas>
<folders>9</folders>
<files>80</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<shuriken>enabled</shuriken>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
<process><path>C:\ProgramData\IePluginService\PLUGINSERVICE.EXE</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><pid>1552</pid><hash>bc75f45a7ffcf64061b5381cca37619f</hash></process>
<process><path>C:\ProgramData\WPM\WPROTECTMANAGER.EXE</path><vendor>PUP.Optional.WpManager</vendor><action>delete-on-reboot</action><pid>1632</pid><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></process>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginService</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>bc75f45a7ffcf64061b5381cca37619f</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Wpm</path><vendor>PUP.Optional.WpManager</vendor><action>success</action><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WPM</path><vendor>PUP.Optional.WpManager</vendor><action>success</action><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}</path><vendor>PUP.Optional.Wajam.A</vendor><action>success</action><hash>47ea95b9d5a658de144d10470200827e</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}</path><vendor>PUP.Optional.Wajam.A</vendor><action>success</action><hash>47ea95b9d5a658de144d10470200827e</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\RegClean Pro_is1</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></key>
<key><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}</path><vendor>PUP.Optional.Qone8</vendor><action>success</action><hash>9b9679d526552d09e46302af04ff14ec</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\qone8Software</path><vendor>PUP.Optional.Qone8.A</vendor><action>success</action><hash>9e935cf2d6a589ad45adffb00af9649c</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}</path><vendor>PUP.Optional.Qone8</vendor><action>success</action><hash>bb766be3e695ec4a71d6bff2976cab55</hash></key>
<key><path>HKU\S-1-5-21-465705066-463133334-3102995047-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader</path><vendor>PUP.Optional.Softonic.A</vendor><action>success</action><hash>df52400e0576dc5a028eee8fb84ac040</hash></key>
<key><path>HKU\S-1-5-21-465705066-463133334-3102995047-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\RegClean Pro</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>79b8a1add0abc07639fd2f7cf70cb64a</hash></key>
<value><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WPM</path><valuename>ImagePath</valuename><vendor>PUP.Optional.WpManager.A</vendor><action>success</action><valuedata>C:\ProgramData\WPM\wprotectmanager.exe -service</valuedata><hash>a0917fcfa0dbff37f13344727192ca36</hash></value>
<value><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS</path><valuename>C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\SEARCH SETTINGS\SEARCHSETTINGS.EXE</valuename><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><valuedata>1</valuedata><hash>70c152fc037883b360460272dd25cd33</hash></value>
<data><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES</path><valuename>DefaultScope</valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</valuedata><baddata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</baddata><gooddata>{0633EE93-D776-472f-A0FF-E1416B8B2E3A}</gooddata><hash>60d12925c3b867cfcb8961db18ec7789</hash></data>
<data><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES</path><valuename>DefaultScope</valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</valuedata><baddata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</baddata><gooddata>{0633EE93-D776-472f-A0FF-E1416B8B2E3A}</gooddata><hash>9d9455f9027948ee401443f9c53f27d9</hash></data>
<folder><path>C:\Program Files (x86)\REGCLEAN PRO</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></folder>
<folder><path>C:\Users\SimoX\AppData\Roaming\Systweak\REGCLEAN PRO</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></folder>
<folder><path>C:\Users\SimoX\AppData\Roaming\Systweak\REGCLEAN PRO\Version 6.1</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></folder>
<folder><path>C:\Users\SimoX\AppData\Roaming\Systweak\REGCLEAN PRO\VERSION 6.1\Partial Backups</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></folder>
<folder><path>C:\ProgramData\IEPLUGINSERVICE</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><hash>91a00c42d1aa91a563ee8ddfd23029d7</hash></folder>
<folder><path>C:\ProgramData\IEPLUGINSERVICE\update</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>91a00c42d1aa91a563ee8ddfd23029d7</hash></folder>
<folder><path>C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></folder>
<folder><path>C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Lang</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></folder>
<folder><path>C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Res</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></folder>
<file><path>C:\ProgramData\IePluginService\PLUGINSERVICE.EXE</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><hash>bc75f45a7ffcf64061b5381cca37619f</hash></file>
<file><path>C:\ProgramData\WPM\WPROTECTMANAGER.EXE</path><vendor>PUP.Optional.WpManager</vendor><action>delete-on-reboot</action><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\SupTab\SupTab.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>58d9d8760774e551de7042f3cc341ae6</hash></file>
<file><path>C:\Users\SimoX\AppData\Local\Temp\JKhk_B3Y.exe.part</path><vendor>PUP.Optional.InstallCore</vendor><action>success</action><hash>9e9353fb453640f6d83175babc4825db</hash></file>
<file><path>C:\Windows\Installer\1bc323.msi</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>b08171dd45367bbb9fe032f4e020837d</hash></file>
<file><path>C:\Windows\System32\roboot64.exe</path><vendor>PUP.Optional.PCPerformer.A</vendor><action>success</action><hash>e74a9fafdc9fd561dd34acddbe44748c</hash></file>
<file><path>C:\Windows\Tasks\REGCLEAN PRO_UPDATES.JOB</path><vendor>PUP.Optional.RegCleanerPro.J</vendor><action>success</action><hash>f33ea5a9fa81fe38872fe3ae2ed414ec</hash></file>
<file><path>C:\Windows\SysWOW64\Reg.reg</path><vendor>Malware.Trace</vendor><action>success</action><hash>ce6389c53f3c9b9b2877548c6f9351af</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\TRADITIONALCN_RCP_ZH-TW.INI</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Chinese_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\CleanSchedule.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Danish_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Dutch_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\eng_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Finnish_rcp_fi.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\French_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\German_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\greek_rcp_el.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\install_left_image.bmp</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\isxdl.dll</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Italian_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Japanese_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\korean_rcp_ko.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Norwegian_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\polish_rcp_pl.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\portugese_rcp_pt.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Portuguese_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\RCPUninstall.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\RegCleanPro.dll</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\russian_rcp_ru.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Spanish_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Swedish_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\systweakasp.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\turkish_rcp_tr.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\unins000.dat</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\unins000.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\unins000.msg</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\xmllite.dll</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Windows\Tasks\REGCLEAN PRO_DEFAULT.JOB</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>969b59f598e3a4923bda4e562ad94bb5</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\1387218893.reg</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\ExcludeList.rcp</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Italian_rcp.dat</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_04-27-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_04-29-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_04-30-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_05-02-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_05-04-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_05-06-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\rcpupdate.ini</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\results.rcp</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\summary2.bin</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\TempHLList.rcp</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000002.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000002.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000003.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000003.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000004.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000004.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\ProgramData\IePluginService\update\conf</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>91a00c42d1aa91a563ee8ddfd23029d7</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\config.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth163.dll</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\wthx163.dll</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1031.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1033.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1034.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1036.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1040.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
</items>
</mbam-log>
Gateway del mio Technicolor TG788vn v2 ed apro le porte che mi servono associandole al mio PC. Risultato: Niente, rimangono chiuse, esse come qualsiasi porta provi ad aprire, in qualsiasi dispositivo connesso al mio router. Cosi, decido di effettuare un port-scan completo del mio PC e del router tramite Advanced Port-Scanner v1.3. Cosa trovo? Il mio computer, Linux.lan e il router (dsldevice.lan) hanno solo 3 porte aperte: 135, 139 ,445, tutte le altre sono chiuse e non apribili. Non mi intendo di rete ripeto, ma conosco la fama di queste porte, soprattutto la NetBios 139. Come faccio a rimuovere questo, sono sicuro al 100%, virus?
Router: Technicolor TG788vn v2
Provider: Fastweb
OS: Windows 8.1 64-bit
Adattatore di Rete: NETGEAR WNA1100 N150 Wireless USB Adapter
Browser: Mozilla Firefox
Firewall: Windows Firewall (Vista-7-8)
Antivirus: Kaspersky PURE 3.0
Log di Malwarebytes Anti-Malware:
<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2014/05/06 21:20:30 +0200</date>
<log>mbam-log-2014-05-06 (21-11-53).xml</log>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.00.1.1004</version>
<rules-database>v2014.05.06.09</rules-database>
<swissarmy-database>v2014.03.27.01</swissarmy-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<osversion>Windows 8.1</osversion>
<arch>x64</arch>
<username>SimoX</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>279707</objects>
<time>502</time>
<processes>2</processes>
<modules>0</modules>
<keys>11</keys>
<values>2</values>
<datas>2</datas>
<folders>9</folders>
<files>80</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<shuriken>enabled</shuriken>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
<process><path>C:\ProgramData\IePluginService\PLUGINSERVICE.EXE</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><pid>1552</pid><hash>bc75f45a7ffcf64061b5381cca37619f</hash></process>
<process><path>C:\ProgramData\WPM\WPROTECTMANAGER.EXE</path><vendor>PUP.Optional.WpManager</vendor><action>delete-on-reboot</action><pid>1632</pid><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></process>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginService</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>bc75f45a7ffcf64061b5381cca37619f</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Wpm</path><vendor>PUP.Optional.WpManager</vendor><action>success</action><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WPM</path><vendor>PUP.Optional.WpManager</vendor><action>success</action><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}</path><vendor>PUP.Optional.Wajam.A</vendor><action>success</action><hash>47ea95b9d5a658de144d10470200827e</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}</path><vendor>PUP.Optional.Wajam.A</vendor><action>success</action><hash>47ea95b9d5a658de144d10470200827e</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\RegClean Pro_is1</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></key>
<key><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}</path><vendor>PUP.Optional.Qone8</vendor><action>success</action><hash>9b9679d526552d09e46302af04ff14ec</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\qone8Software</path><vendor>PUP.Optional.Qone8.A</vendor><action>success</action><hash>9e935cf2d6a589ad45adffb00af9649c</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}</path><vendor>PUP.Optional.Qone8</vendor><action>success</action><hash>bb766be3e695ec4a71d6bff2976cab55</hash></key>
<key><path>HKU\S-1-5-21-465705066-463133334-3102995047-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader</path><vendor>PUP.Optional.Softonic.A</vendor><action>success</action><hash>df52400e0576dc5a028eee8fb84ac040</hash></key>
<key><path>HKU\S-1-5-21-465705066-463133334-3102995047-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\RegClean Pro</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>79b8a1add0abc07639fd2f7cf70cb64a</hash></key>
<value><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WPM</path><valuename>ImagePath</valuename><vendor>PUP.Optional.WpManager.A</vendor><action>success</action><valuedata>C:\ProgramData\WPM\wprotectmanager.exe -service</valuedata><hash>a0917fcfa0dbff37f13344727192ca36</hash></value>
<value><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS</path><valuename>C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\SEARCH SETTINGS\SEARCHSETTINGS.EXE</valuename><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><valuedata>1</valuedata><hash>70c152fc037883b360460272dd25cd33</hash></value>
<data><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES</path><valuename>DefaultScope</valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</valuedata><baddata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</baddata><gooddata>{0633EE93-D776-472f-A0FF-E1416B8B2E3A}</gooddata><hash>60d12925c3b867cfcb8961db18ec7789</hash></data>
<data><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES</path><valuename>DefaultScope</valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</valuedata><baddata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</baddata><gooddata>{0633EE93-D776-472f-A0FF-E1416B8B2E3A}</gooddata><hash>9d9455f9027948ee401443f9c53f27d9</hash></data>
<folder><path>C:\Program Files (x86)\REGCLEAN PRO</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></folder>
<folder><path>C:\Users\SimoX\AppData\Roaming\Systweak\REGCLEAN PRO</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></folder>
<folder><path>C:\Users\SimoX\AppData\Roaming\Systweak\REGCLEAN PRO\Version 6.1</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></folder>
<folder><path>C:\Users\SimoX\AppData\Roaming\Systweak\REGCLEAN PRO\VERSION 6.1\Partial Backups</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></folder>
<folder><path>C:\ProgramData\IEPLUGINSERVICE</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><hash>91a00c42d1aa91a563ee8ddfd23029d7</hash></folder>
<folder><path>C:\ProgramData\IEPLUGINSERVICE\update</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>91a00c42d1aa91a563ee8ddfd23029d7</hash></folder>
<folder><path>C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></folder>
<folder><path>C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Lang</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></folder>
<folder><path>C:\Program Files (x86)\Common Files\Spigot\SEARCH SETTINGS\Res</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></folder>
<file><path>C:\ProgramData\IePluginService\PLUGINSERVICE.EXE</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><hash>bc75f45a7ffcf64061b5381cca37619f</hash></file>
<file><path>C:\ProgramData\WPM\WPROTECTMANAGER.EXE</path><vendor>PUP.Optional.WpManager</vendor><action>delete-on-reboot</action><hash>79b884caa1da1b1b5f0a08560ff2ab55</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\SupTab\SupTab.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>58d9d8760774e551de7042f3cc341ae6</hash></file>
<file><path>C:\Users\SimoX\AppData\Local\Temp\JKhk_B3Y.exe.part</path><vendor>PUP.Optional.InstallCore</vendor><action>success</action><hash>9e9353fb453640f6d83175babc4825db</hash></file>
<file><path>C:\Windows\Installer\1bc323.msi</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>b08171dd45367bbb9fe032f4e020837d</hash></file>
<file><path>C:\Windows\System32\roboot64.exe</path><vendor>PUP.Optional.PCPerformer.A</vendor><action>success</action><hash>e74a9fafdc9fd561dd34acddbe44748c</hash></file>
<file><path>C:\Windows\Tasks\REGCLEAN PRO_UPDATES.JOB</path><vendor>PUP.Optional.RegCleanerPro.J</vendor><action>success</action><hash>f33ea5a9fa81fe38872fe3ae2ed414ec</hash></file>
<file><path>C:\Windows\SysWOW64\Reg.reg</path><vendor>Malware.Trace</vendor><action>success</action><hash>ce6389c53f3c9b9b2877548c6f9351af</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\TRADITIONALCN_RCP_ZH-TW.INI</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Chinese_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\CleanSchedule.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Danish_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Dutch_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\eng_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Finnish_rcp_fi.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\French_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\German_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\greek_rcp_el.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\install_left_image.bmp</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\isxdl.dll</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Italian_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Japanese_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\korean_rcp_ko.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Norwegian_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\polish_rcp_pl.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\portugese_rcp_pt.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Portuguese_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\RCPUninstall.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\RegCleanPro.dll</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\russian_rcp_ru.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Spanish_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\Swedish_rcp.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\systweakasp.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\turkish_rcp_tr.ini</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\unins000.dat</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\unins000.exe</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\unins000.msg</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Program Files (x86)\RegClean Pro\xmllite.dll</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>db56f6583f3cd066c054653f1de606fa</hash></file>
<file><path>C:\Windows\Tasks\REGCLEAN PRO_DEFAULT.JOB</path><vendor>PUP.Optional.RegCleanPro.A</vendor><action>success</action><hash>969b59f598e3a4923bda4e562ad94bb5</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\1387218893.reg</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\ExcludeList.rcp</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Italian_rcp.dat</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_04-27-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_04-29-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_04-30-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_05-02-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_05-04-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_05-06-2014.log</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\rcpupdate.ini</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\results.rcp</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\summary2.bin</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\TempHLList.rcp</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000001.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000002.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000002.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000003.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000003.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000004.rmx</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\Users\SimoX\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\Partial Backups\00000004.rxb</path><vendor>PUP.Optional.RegCleanerPro.A</vendor><action>success</action><hash>e34ee36b1764d363ed136dfd956d55ab</hash></file>
<file><path>C:\ProgramData\IePluginService\update\conf</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>91a00c42d1aa91a563ee8ddfd23029d7</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\baidu_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\config.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\searchcom_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth163.dll</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\wthx163.dll</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yahoo_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ff.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\yandex_ie.xml</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1031.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1033.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1034.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1036.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
<file><path>C:\Program Files (x86)\Common Files\Spigot\Search Settings\Lang\res1040.ini</path><vendor>PUP.Optional.Spigot.A</vendor><action>success</action><hash>70c152fc037883b360460272dd25cd33</hash></file>
</items>
</mbam-log>