PUA

PUP.Optional.SoftwareInformer removal

Malware Removal

The PUP.Optional.SoftwareInformer is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUP.Optional.SoftwareInformer virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Performs HTTP requests potentially not found in PCAP.
  • Reads data out of its own binary image
  • Unconventionial language used in binary resources: Russian
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Anomalous binary characteristics

How to determine PUP.Optional.SoftwareInformer?



File Info:

name: 67F654EBB9F92D6793C7.mlw
path: /opt/CAPEv2/storage/binaries/811e9b82106996007ccb774681be40413078a576c4667fff23ff8d1139f6aaba
crc32: 0B349D6C
md5: 67f654ebb9f92d6793c75bc26f0e52a8
sha1: e8205dc91a055e9c08d5f18a57d016f9e224145c
sha256: 811e9b82106996007ccb774681be40413078a576c4667fff23ff8d1139f6aaba
sha512: 2d450d356a11e27628decf9844ab04c89cd5377ec33453e4980a6d272357291008c3cfa34d6ce860fd55f55f2a2a2308dbe41429c5bb29022fead00756e2804a
ssdeep: 12288:iXYbDzlafCXV4m8Fe4+1hWIV0CzHWy3gPyoZ7:iXYbDzEf84mv4qVZDWywPyc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16BC49D21F782E032D1A315309E7997BA647DA5301B3502D7BBD80F6E6EF46D2AA35307
sha3_384: 6a4478b6b1df74f780a9257f54e44b2837289490477a6991f4973aaf25c0df3487a44a8e9ad83f0be514b95043cd9cbe
ep_bytes: e8355f0000e989feffff8bff558bec51
timestamp: 2011-11-15 06:41:44


Version Info:

CompanyName: SoftDeluxe
FileVersion: 0.9.89.0
LegalCopyright: Copyright (C) 2011
ProductName: SoftDeluxe Downloader
ProductVersion: 0.9.89.0
Translation: 0x0409 0x04b0

PUP.Optional.SoftwareInformer also known as:

BkavW32.Common.04A57808
LionicTrojan.Win32.Generic.lsfv
Elasticmalicious (high confidence)
FireEyeGeneric.mg.67f654ebb9f92d67
CAT-QuickHealPua.Softwareinformer.34617
SkyhighGenericRXFL-AH!67F654EBB9F9
McAfeeGenericRXFL-AH!67F654EBB9F9
Cylanceunsafe
ZillyaAdware.SoftwareInformer.Win32.70
SangforAdware.Win32.Swinformer.Vcos
K7AntiVirusRiskware ( 0040eff71 )
AlibabaAdWare:Win32/SoftwareInformer.f977a8c3
K7GWRiskware ( 0040eff71 )
VirITAdware.Win32.Downware.DL
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/SWInformer potentially unwanted
CynetMalicious (score: 99)
ClamAVWin.Adware.Softwareinformer-14
Kasperskynot-a-virus:AdWare.Win32.SoftwareInformer.vkn
NANO-AntivirusRiskware.Win32.SoftwareInformer.eehzve
SUPERAntiSpywarePUP.SoftwareInformer/Variant
AvastWin32:Malware-gen
TencentMalware.Win32.Gencirc.10bf6199
EmsisoftApplication.AdSoft (A)
F-SecureProgram.APPL/SoftInformer8
DrWebAdware.Downware.89
TrendMicroTROJ_GEN.R002C0PKQ23
SophosGeneric Reputation PUA (PUA)
Ikarusnot-a-virus:AdWare.Win32.SoftwareInformer
JiangminAdWare/SoftwareInformer.el
WebrootW32.Malware.Gen
VaristW32/ABRisk.QHVM-0799
AviraAPPL/SoftInformer8
Kingsoftmalware.kb.a.948
MicrosoftPUA:Win32/Puwaders.C!ml
ZoneAlarmnot-a-virus:AdWare.Win32.SoftwareInformer.vkn
GDataWin32.Application.Agent.2EBJV5
GoogleDetected
VBA32BScope.Trojan.Vigorf
MalwarebytesPUP.Optional.SoftwareInformer
TrendMicro-HouseCallTROJ_GEN.R002C0PKQ23
RisingPUF.SWInformer!8.257E (TFE:5:2HvQUMcZnyF)
YandexTrojan.GenAsa!GtpZDl1J3Sg
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.74518587.susgen
FortinetRiskware/SWInformer
AVGWin32:Malware-gen
DeepInstinctMALICIOUS
CrowdStrikewin/grayware_confidence_100% (W)

How to remove PUP.Optional.SoftwareInformer?

PUP.Optional.SoftwareInformer removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment