Avira Virus Lab

PUA/AD.InstallCore.B

  • Nome
    PUA/AD.InstallCore.B
  • Scoperto
    11/nov/2017
  • Tipo
    Potential Unwanted Application
  • Impatto
    Livello basso 
  • Infezioni segnalate
    Livello elevato 
  • Sistema operativo
    Windows
  • Versione VDF
    7.14.34.24 (2017-11-11 11:45)

Questa classe di rilevamento, applicazioni potenzialmente indesiderate (PUA), può compromettere la privacy dell'utente e la sicurezza del sistema locale. Queste sono applicazioni legittime che cercano spesso di utilizzare l'ingegneria sociale per indurre l'utente a installare offerte aggiuntive durante l'installazione del software inizialmente scelto. Una classificazione PUA di un'applicazione è il risultato di software, un annuncio o un sito web che presentano uno o più comportamenti e/o proprietà illeciti. Una lista PUA completa è disponibile su http://www.avira.com/en/potentially-unwanted-applications. Questo rilevamento non significa che il file sia dannoso. Tuttavia, se il file è stato installato sul sistema a insaputa dell'utente, la privacy o la sicurezza del sistema dell'utente potrebbero essere compromessi. Disabilitare questo rilevamento è consigliato solo agli utenti avanzati che comprendono i rischi e la modalità di utilizzo di queste applicazioni.

  • VDF
    7.14.34.24 (2017-11-11 11:45)
  • Schermate
  • Attività di rete
    • rp.quickcl*****.com/
  • Processi
    • %executed_sample%
  • File
    Sono stati creati i seguenti file:
    • %TEMPDIR%\00032451.log
    • %TEMPDIR%\inH2059211918\csshover3.htc
    • %TEMPDIR%\inH2059211918\form.bmp.Mask
    • %TEMPDIR%\inH2059211918\css\ie6_main.css
    • %TEMPDIR%\inH2059211918\css\main.css
    • %TEMPDIR%\inH2059211918\css\sdk-ui\browse.css
    • %TEMPDIR%\inH2059211918\css\sdk-ui\button.css
    • %TEMPDIR%\inH2059211918\css\sdk-ui\checkbox.css
    • %TEMPDIR%\inH2059211918\css\sdk-ui\progress-bar.css
    • %TEMPDIR%\inH2059211918\css\sdk-ui\images\button-bg.png
    • %TEMPDIR%\inH2059211918\css\sdk-ui\images\progress-bg-corner.png
    • %TEMPDIR%\inH2059211918\css\sdk-ui\images\progress-bg.png
    • %TEMPDIR%\inH2059211918\css\sdk-ui\images\progress-bg2.png
    • %TEMPDIR%\inH2059211918\images\BG.png
    • %TEMPDIR%\inH2059211918\images\Close.png
    • %TEMPDIR%\inH2059211918\images\Close_Hover.png
    • %TEMPDIR%\inH2059211918\images\Color_Button.png
    • %TEMPDIR%\inH2059211918\images\Color_Button_Hover.png
    • %TEMPDIR%\inH2059211918\images\Grey_Button.png
    • %TEMPDIR%\inH2059211918\images\Grey_Button_Hover.png
    • %TEMPDIR%\inH2059211918\images\Icon_Generic.png
    • %TEMPDIR%\inH2059211918\images\Loader.gif
    • %TEMPDIR%\inH2059211918\images\Minimize.png
    • %TEMPDIR%\inH2059211918\images\Minimize_Hover.png
    • %TEMPDIR%\inH2059211918\images\Pause_Button.png
    • %TEMPDIR%\inH2059211918\images\Progress.png
    • %TEMPDIR%\inH2059211918\images\ProgressBar.png
    • %TEMPDIR%\inH2059211918\images\Quick_Specs.png
    • %TEMPDIR%\inH2059211918\images\Resume_Button.png
    • %TEMPDIR%\inH2059211918\images\sponsored.png
    • %TEMPDIR%\inH2059211918\locale\CS.locale
    • %TEMPDIR%\inH2059211918\locale\DA.locale
    • %TEMPDIR%\inH2059211918\locale\DE.locale
    • %TEMPDIR%\inH2059211918\locale\EL.locale
    • %TEMPDIR%\inH2059211918\locale\EN.locale
    • %TEMPDIR%\inH2059211918\locale\ES.locale
    • %TEMPDIR%\inH2059211918\locale\FR.locale
    • %TEMPDIR%\inH2059211918\locale\ID.locale
    • %TEMPDIR%\inH2059211918\locale\IT.locale
    • %TEMPDIR%\inH2059211918\locale\JA.locale
    • %TEMPDIR%\inH2059211918\locale\KO.locale
    • %TEMPDIR%\inH2059211918\locale\NL.locale
    • %TEMPDIR%\inH2059211918\locale\NO.locale
    • %TEMPDIR%\inH2059211918\locale\PL.locale
    • %TEMPDIR%\inH2059211918\locale\PT.locale
    • %TEMPDIR%\inH2059211918\locale\RU.locale
    • %TEMPDIR%\inH2059211918\locale\SV.locale
    • %TEMPDIR%\inH2059211918\locale\TR.locale
    • %TEMPDIR%\inH2059211918\locale\ZH.locale
    • %TEMPDIR%\00036038.log
    • %TEMPDIR%\inH2059211918\bootstrap_54420.html
    • %TEMPDIR%\is-SNPGB.tmp\%executed_sample_name%.tmp
    • %TEMPDIR%\is-VCUH4.tmp\_isetup\_setup64.tmp
    • %TEMPDIR%\is-VCUH4.tmp\_isetup\_shfoldr.dll
    • %PROGRAM FILES% (x86)\Dicesehor\is-MGIBJ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0O0G5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KG686.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EH66I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-ICTTQ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-PGKE8.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-04CDN.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P2HD9.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0CJMC.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-2ILS0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KJQHF.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P8QR0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-G4H20.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0BFP5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EOVI5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-OV59G.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-BDS1E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-MHO9E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-N122I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-7I9MG.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\unins000.dat
    Sono stati modificati i seguenti file:
    • %APPDATA%\Local\Microsoft\Internet Explorer\MSIMGSIZ.DAT
    • %TEMPDIR%\is-SNPGB.tmp\%executed_sample_name%.tmp
    • %TEMPDIR%\is-VCUH4.tmp\_isetup\_setup64.tmp
    • %TEMPDIR%\is-VCUH4.tmp\_isetup\_shfoldr.dll
    • %PROGRAM FILES% (x86)\Dicesehor\is-MGIBJ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0O0G5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KG686.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EH66I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-ICTTQ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-PGKE8.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-04CDN.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P2HD9.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0CJMC.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-2ILS0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KJQHF.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P8QR0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-G4H20.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0BFP5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EOVI5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-OV59G.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-BDS1E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-MHO9E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-N122I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-7I9MG.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\unins000.dat
    Sono stati eliminati i seguenti file:
    • %TEMPDIR%\00032451.log
    • %TEMPDIR%\00036038.log
    Sono stati caricati i seguenti driver:
    • \Device\KsecDD
    • %SYSDIR%
    • %WINDIR%\winsxs\FileMaps\program_files_x86_dicesehor_b65ff3c479df97a8.cdf-ms
    • %PROGRAM FILES% (x86)\Dicesehor\is-MGIBJ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0O0G5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KG686.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EH66I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-ICTTQ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-PGKE8.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-04CDN.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P2HD9.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0CJMC.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-2ILS0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KJQHF.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P8QR0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-G4H20.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0BFP5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EOVI5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-OV59G.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-BDS1E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-MHO9E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-N122I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-7I9MG.tmp
    • %TEMPDIR%\%executed_sample%
    • %WINDIR%\SysWOW64\en-US\KERNELBASE.dll.mui
    • %SYSDIR%\netmsg.dll
    • %TEMPDIR%\is-SNPGB.tmp\%executed_sample_name%.tmp
    • %WINDIR%\Globalization\Sorting\sortdefault.nls
    • %SYSDIR%\imageres.dll
    • %SYSDIR%\shell32.dll
    • %PROGRAM FILES% (x86)\Dicesehor\Pederabot.exe
    • %PROGRAM FILES% (x86)\Dicesehor\unins000.dat
    • %APPDATA%\Local\Microsoft\Windows\WER\ERC\statecache.lock
    • %APPDATA%\Local\Microsoft\Windows\WER\ReportArchive
    • %PROGRAMDATA%\Microsoft\Windows\WER\ReportArchive
    • %APPDATA%\Local\Microsoft\Windows\WER\ERC
    Sono in esecuzione i seguenti file:
    • \Device\KsecDD
    • %SYSDIR%
    • %WINDIR%\winsxs\FileMaps\program_files_x86_dicesehor_b65ff3c479df97a8.cdf-ms
    • %PROGRAM FILES% (x86)\Dicesehor\is-MGIBJ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0O0G5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KG686.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EH66I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-ICTTQ.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-PGKE8.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-04CDN.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P2HD9.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0CJMC.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-2ILS0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-KJQHF.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-P8QR0.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-G4H20.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-0BFP5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-EOVI5.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-OV59G.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-BDS1E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-MHO9E.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-N122I.tmp
    • %PROGRAM FILES% (x86)\Dicesehor\is-7I9MG.tmp
    • %TEMPDIR%\%executed_sample%
    • %WINDIR%\SysWOW64\en-US\KERNELBASE.dll.mui
    • %SYSDIR%\netmsg.dll
    • %TEMPDIR%\is-SNPGB.tmp\%executed_sample_name%.tmp
    • %WINDIR%\Globalization\Sorting\sortdefault.nls
    • %SYSDIR%\imageres.dll
    • %SYSDIR%\shell32.dll
    • %PROGRAM FILES% (x86)\Dicesehor\Pederabot.exe
    • %PROGRAM FILES% (x86)\Dicesehor\unins000.dat
    • %APPDATA%\Local\Microsoft\Windows\WER\ERC\statecache.lock
    • %APPDATA%\Local\Microsoft\Windows\WER\ReportArchive
    • %PROGRAMDATA%\Microsoft\Windows\WER\ReportArchive
    • %APPDATA%\Local\Microsoft\Windows\WER\ERC
  • Registro
    Vengono aggiunte le seguenti entità di registro:
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings (""ProxyEnable"": "dword:00000000") ("ProxyServer": "-") ("ProxyOverride": "-") ("AutoConfigURL": "-")
    • HKEY_CLASSES_ROOT\Local Settings\MuiCache\2D\52C64B7E (""LanguageList"": ""en-US;en;"")
    • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\%executed_sample_name%_RASAPI32 (""EnableFileTracing"": "dword:00000000") (""EnableConsoleTracing"": "dword:00000000") (""FileTracingMask"": "dword:ffff0000") (""ConsoleTracingMask"": "dword:ffff0000") (""MaxFileSize"": "dword:00100000") (""FileDirectory"": ""%windir%\\tracing"")
    • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\%executed_sample_name%_RASMANCS (""EnableFileTracing"": "dword:00000000") (""EnableConsoleTracing"": "dword:00000000") (""FileTracingMask"": "dword:ffff0000") (""ConsoleTracingMask"": "dword:ffff0000") (""MaxFileSize"": "dword:00100000") (""FileDirectory"": ""%windir%\\tracing"")
    • HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\Location Awareness
    • HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters
    • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap ("ProxyBypass": "-") ("IntranetName": "-")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{58BF48AF-81A4-472D-9931-7D3DA8432D34} (""WpadDecisionReason"": "dword:00000001") (""WpadDecisionTime"": "%hex_values%") (""WpadDecision"": "dword:00000000") (""WpadNetworkName"": ""Network 2"")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\{58BF48AF-81A4-472D-9931-7D3DA8432D34}\00-23-7d-29-a4-a9
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad\00-23-7d-29-a4-a9 (""WpadDecisionReason"": "dword:00000001") (""WpadDecisionTime"": "%hex_values%") (""WpadDecision"": "dword:00000000")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Wpad (""WpadLastNetwork"": ""{58BF48AF-81A4-472D-9931-7D3DA8432D34}"")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("Owner": "D [")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("SessionHash": "D(<ss`%$1uR#+8")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("Sequence": "1")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFiles0000": "")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFiles0000": "%PROGRAM FILES% (x86)\Dicesehor\Pederabot.exe")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFilesHash": "iWqa?[XaT/g=k")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFiles0001": "")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegSvcs0000": "")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegProcs0000": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.106 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.106
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.101 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.101 ("CheckSetting": "#ACBlobN[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.101.2-13435003312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.103 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.103
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.103 ("CheckSetting": "#ACBlobN[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.103.2-13435003312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.100 ("CheckSetting": "#ACBlobN[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.100.1-13435003312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.102 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.102
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.102 ("CheckSetting": "#ACBlob7[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.102.2-13435153312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.104 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.104
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.100 ("CheckSetting": "#ACBlobt")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting ("LastQueuePesterTime": "131153085856669921")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.100 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.101 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.101 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{C8E6F269-B90A-4053-A3BE-499AFCEC98C4}.check.0 ("CheckSetting": "#ACBlobtem")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{C8E6F269-B90A-4053-A3BE-499AFCEC98C4}.check.0
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{01979c6a-42fa-414c-b8aa-eee2c8202018} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{01979c6a-42fa-414c-b8aa-eee2c8202018}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.100 ("CheckSetting": "#ACBlobdmk:[{01979c6a-42fa-414c-b8aa-eee2c8202018}.notification.0er.txt")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.101 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{945a8954-c147-4acd-923f-40c45405a658} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{945a8954-c147-4acd-923f-40c45405a658}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{945a8954-c147-4acd-923f-40c45405a658}.check.42 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{945a8954-c147-4acd-923f-40c45405a658}.check.42
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{DAB69A6A-4D2A-4D44-94BF-E0091898C881} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{DAB69A6A-4D2A-4D44-94BF-E0091898C881}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{DAB69A6A-4D2A-4D44-94BF-E0091898C881}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{DAB69A6A-4D2A-4D44-94BF-E0091898C881}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78}.check.101 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{C8E6F269-B90A-4053-A3BE-499AFCEC98C4}.check.0 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\26\52C64B7E ("LanguageList": "en-USen")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: Setup Version": "5.5.5 (a)")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: App Path": "%PROGRAM FILES% (x86)\Dicesehor")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("InstallLocation": "%PROGRAM FILES% (x86)\Dicesehor\")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: Icon Group": "Dicesehor")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: User": "Administrator")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: Language": "default")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("DisplayName": "Dicesehor version 1.3")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("UninstallString": ""%PROGRAM FILES% (x86)\Dicesehor\unins000.exe"")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("QuietUninstallString": ""%PROGRAM FILES% (x86)\Dicesehor\unins000.exe" /SILENT")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("DisplayVersion": "1.3")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("NoModify": "1")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("NoRepair": "1")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("InstallDate": "20171111")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("MajorVersion": "1")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("MinorVersion": "3")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("EstimatedSize": "816")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1
    Vengono cambiate le seguenti entità di registro:
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("Owner": "D [")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("SessionHash": "D(<ss`%$1uR#+8")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("Sequence": "1")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFiles0000": "")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFiles0000": "%PROGRAM FILES% (x86)\Dicesehor\Pederabot.exe")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFilesHash": "iWqa?[XaT/g=k")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegFiles0001": "")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegSvcs0000": "")
    • HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000 ("RegProcs0000": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.106 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.106
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.101 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.101 ("CheckSetting": "#ACBlobN[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.101.2-13435003312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.103 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.103
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.103 ("CheckSetting": "#ACBlobN[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.103.2-13435003312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.100 ("CheckSetting": "#ACBlobN[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.100.1-13435003312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.102 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.102
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.102 ("CheckSetting": "#ACBlob7[{E8433B72-5842-4d43-8645-BC2C35960837}.notification.102.2-13435153312")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.104 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{E8433B72-5842-4d43-8645-BC2C35960837}.check.104
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.100 ("CheckSetting": "#ACBlobt")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting ("LastQueuePesterTime": "131153085856669921")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\Windows Error Reporting
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.100 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.101 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{852FB1F8-5CC6-4567-9C0E-7C330F8807C2}.check.101 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{C8E6F269-B90A-4053-A3BE-499AFCEC98C4}.check.0 ("CheckSetting": "#ACBlobtem")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{C8E6F269-B90A-4053-A3BE-499AFCEC98C4}.check.0
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{01979c6a-42fa-414c-b8aa-eee2c8202018} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{01979c6a-42fa-414c-b8aa-eee2c8202018}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.100 ("CheckSetting": "#ACBlobdmk:[{01979c6a-42fa-414c-b8aa-eee2c8202018}.notification.0er.txt")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.101 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{01979c6a-42fa-414c-b8aa-eee2c8202018}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{945a8954-c147-4acd-923f-40c45405a658} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{945a8954-c147-4acd-923f-40c45405a658}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{945a8954-c147-4acd-923f-40c45405a658}.check.42 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{945a8954-c147-4acd-923f-40c45405a658}.check.42
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{DAB69A6A-4D2A-4D44-94BF-E0091898C881} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{DAB69A6A-4D2A-4D44-94BF-E0091898C881}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{DAB69A6A-4D2A-4D44-94BF-E0091898C881}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{DAB69A6A-4D2A-4D44-94BF-E0091898C881}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78}.check.101 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{11CD958A-C507-4EF3-B3F2-5FD9DFBD2C78}.check.101
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A} ("LastKnownState": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Providers\EventLog\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A}
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A}.check.100 ("CheckSetting": "")
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{A5268B8E-7DB5-465b-BAB7-BDCDA39A394A}.check.100
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Action Center\Checks\{C8E6F269-B90A-4053-A3BE-499AFCEC98C4}.check.0 ("CheckSetting": "#ACBlob")
    • HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\26\52C64B7E ("LanguageList": "en-USen")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: Setup Version": "5.5.5 (a)")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: App Path": "%PROGRAM FILES% (x86)\Dicesehor")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("InstallLocation": "%PROGRAM FILES% (x86)\Dicesehor\")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: Icon Group": "Dicesehor")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: User": "Administrator")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("Inno Setup: Language": "default")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("DisplayName": "Dicesehor version 1.3")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("UninstallString": ""%PROGRAM FILES% (x86)\Dicesehor\unins000.exe"")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("QuietUninstallString": ""%PROGRAM FILES% (x86)\Dicesehor\unins000.exe" /SILENT")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("DisplayVersion": "1.3")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("NoModify": "1")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("NoRepair": "1")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("InstallDate": "20171111")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("MajorVersion": "1")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("MinorVersion": "3")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1 ("EstimatedSize": "816")
    • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dicesehor_is1
    I valori delle seguenti chiavi di registro vengono rimossi:
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings (""ProxyEnable"": "dword:00000000") ("ProxyServer": "-") ("ProxyOverride": "-") ("AutoConfigURL": "-")
    • HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap ("ProxyBypass": "-") ("IntranetName": "-")
  • Aliases
    ESET: Win32/InstallCore.Gen.A potentially unwanted application
    Kaspersky Lab: not-a-virus:AdWare.Win32.DealPly.cnpkr

Aiutaci a rendere il web più sicuro: inviaci i file/URL sospetti da analizzare.

Invia il tuo file/URL oppure Vai ad Avira Answers

Perché inviare un file sospetto?

Se ti imbatti in un file o sito Web sospetto che non è presente nel nostro database, lo analizzeremo per stabilire se è dannoso. I risultati saranno quindi distribuiti ai milioni di nostri utenti non appena eseguiranno l'aggiornamento del database dei virus. Se utilizzi Avira, anche tu riceverai l'aggiornamento. Non avete Avira? Scaricalo dalla nostra home page.

Che cos'è Avira Answers?

È la nostra fiorente comunità di tecnici professionisti ed esperti part-time che collaborano per risolvere i problemi tecnici. È il luogo ideale per porre le tue domande a una comunità di altri utenti Avira.