PUA

PUABundler:Win32/YTDVideoDownload removal instruction

Malware Removal

The PUABundler:Win32/YTDVideoDownload is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUABundler:Win32/YTDVideoDownload virus can do?

  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine PUABundler:Win32/YTDVideoDownload?



File Info:

name: E639422D061D9E7ACD54.mlw
path: /opt/CAPEv2/storage/binaries/1f6fc0e23ea9bb4661cd75312bc2a3fbdd99bc27b7edec3355b03ce9e1ed774c
crc32: 1BFEF249
md5: e639422d061d9e7acd54b9d22f2f280a
sha1: 789400ca59d6e4d92049135d15b1e58e145bca78
sha256: 1f6fc0e23ea9bb4661cd75312bc2a3fbdd99bc27b7edec3355b03ce9e1ed774c
sha512: 031f83d9e94d8829fbe6dbc84e6c26af538e268c0cd234c5e9f6be354d626b0c769457ac84988c2bc0eec2d36f09a9799bb71863096abb041abb385e6ba4e233
ssdeep: 98304:Qj07VqIjNzayzADkTZoBmQejCHINno9vnwZ4ZX:QjcLNzayz9ZoBPeesK/44J
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13F0633CBDFA4C89BC2ADCCB92AF273145E19BD450C609BEEF61C6616BD304973A45321
sha3_384: 931f30cfed246dfa2f35cead7a8763315204da98be605f181bcf5a599c3dc6dfd3f3a5ee654be20f46924fce069fd8e5
ep_bytes: 81ecd40200005356576a205f33db6801
timestamp: 2018-12-15 22:24:36


Version Info:

FileDescription: YTD Video Downloader Application
FileVersion: 5.9.21.1
LegalCopyright: Copyright © 2007-2020 GreenTree Applications SRL
OriginalFilename: Setup.exe
ProductName: YTD Video Downloader Application
ProductVersion: 5.9.21.1
Translation: 0x0409 0x04e4

PUABundler:Win32/YTDVideoDownload also known as:

Elasticmalicious (high confidence)
MalwarebytesPUP.Optional.YTDVideoDownloader
SangforPUABundler.Win32.YTDVideoDownload.mt
CrowdStrikewin/grayware_confidence_100% (D)
K7GWAdware ( 005842d91 )
K7AntiVirusAdware ( 005842d91 )
BitDefenderThetaGen:NN.ZedlaF.34212.zu4@aSsoCKni
SymantecTrojan.Gen.2
ESET-NOD32a variant of Win32/YTDDownloader.H potentially unwanted
RisingPUF.YTDDownloader!8.EB60 (TFE:5:mmmdVptmHGQ)
SophosGeneric PUA HI (PUA)
DrWebAdware.Downware.19948
McAfee-GW-EditionBehavesLike.Win32.Generic.wc
SentinelOneStatic AI – Malicious PE
GridinsoftRansom.Win32.Miner.sa
MicrosoftPUABundler:Win32/YTDVideoDownload
GDataWin32.Adware.YTDownloader.B
CynetMalicious (score: 100)
VBA32BScope.Adware.Downware
CylanceUnsafe
FortinetAdware/YTDVideoDownloader

How to remove PUABundler:Win32/YTDVideoDownload?

PUABundler:Win32/YTDVideoDownload removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment