PUA

PUP.Optional.BundleInstaller.RU removal guide

Malware Removal

The PUP.Optional.BundleInstaller.RU is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUP.Optional.BundleInstaller.RU virus can do?

  • Presents an Authenticode digital signature
  • At least one IP Address, Domain, or File Name was found in a crypto call
  • Unconventionial binary language: Russian
  • Unconventionial language used in binary resources: Russian
  • Attempts to create or modify system certificates

Related domains:

crt.usertrust.com

How to determine PUP.Optional.BundleInstaller.RU?



File Info:

crc32: 7A64A1F8
md5: d7d10c723ae2c4bba51defa62bbcb0f7
name: msetup_27305565.exe
sha1: a2e1223f0d6a3d4e6c7df5fe0236f1cc02fe9e8d
sha256: c2cad0cffc948dfc127115518a477316a5d47068c293119e60a93ba413cd8fbc
sha512: 6db0567bdfc0ab9c508db28a0641dd748d2cedcf53c39ba069bea935cf4739f5b79a356d3fafddddd5162c2186db641a670b9c4e940bb33a9d39a8ed1f0393c8
ssdeep: 6144:beDMt8tYqA+L1d1VcCcBHwlPWgBQpRxiGnzniJKARf/5cb:be0+L1d1WCawlPWgBQp3fjiJK4f/5U
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2020 NBZ LTD.
InternalName: multi_setup.exe
FileVersion: 1.4.3.0
CompanyName: NBZ LTD.
ProductName: MultiSetup
ProductVersion: 1.4.3.0
FileDescription: MultiSetup
OriginalFilename: multi_setup.exe
Translation: 0x0419 0x04b0

PUP.Optional.BundleInstaller.RU also known as:

DrWebAdware.Elemental.17
McAfeeGenericRXAA-AA!D7D10C723AE2
MalwarebytesPUP.Optional.BundleInstaller.RU
SangforMalware
K7AntiVirusAdware ( 0055d3751 )
K7GWAdware ( 0055d3751 )
CyrenW32/Trojan.DXEE-4962
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/MSetupDownloader.A potentially unwanted
Paloaltogeneric.ml
Kasperskynot-a-virus:HEUR:Downloader.Win32.MulSetup.gen
EmsisoftApplication.Downloader (A)
ComodoApplicUnwnt@#387ev39opf0dl
Invinceaheuristic
McAfee-GW-EditionArtemis!PUP
FortinetRiskware/MulSetup
SophosGeneric PUA KC (PUA)
JiangminDownloader.MulSetup.p
Endgamemalicious (high confidence)
ZoneAlarmnot-a-virus:HEUR:Downloader.Win32.MulSetup.gen
MicrosoftPUA:Win32/Presenoker
VBA32Downloader.MulSetup
CylanceUnsafe
RisingPUF.MSetupDownloader!8.1152F (CLOUD)
WebrootW32.Adware.Gen

How to remove PUP.Optional.BundleInstaller.RU?

PUP.Optional.BundleInstaller.RU removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment