PUP.Optional.WinYahoo removal

Malware Removal

The PUP.Optional.WinYahoo is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What PUP.Optional.WinYahoo virus can do?

  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine PUP.Optional.WinYahoo?


File Info:

crc32: B24E5AD2
md5: 9436fa9f81140e9fece6b97808f70210
name: 9436FA9F81140E9FECE6B97808F70210.mlw
sha1: 53509d61548a7a2b650fd85d191ce38bd5aef5d6
sha256: 2cf1f174a0d0ff615d159b1b57a93c173dfd0a1f29851f278742b3d135b967d5
sha512: 2991e6f4cd53b0ee68a5dbb561137ffe8e32bfd1286081499facf80399866d5f9f30378672b9285dab8d3857adf79eb8f5b1c420f8431111450c3a697f432eea
ssdeep: 12288:h4HySaIlkATX10DGuIC04Xn+yYTHZQcRaYUk1x+32S:cz1RTX10DGg08DYTHeVYc32S
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Pebamidocufu xa9 2009-2017
InternalName: Rube
FileVersion: 3.3.39.71
CompanyName: Pebamidocufu
LegalTrademarks: Pebamidocufu 2010-2017
ProductName: Sonus Mafebosob
ProductVersion: 2.7.5.10
FileDescription: Milek Kifelu
OriginalFilename: RubeBarocom.exe

PUP.Optional.WinYahoo also known as:

BkavW32.AIDetect.malware1
K7AntiVirusAdware ( 005393151 )
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CylanceUnsafe
ZillyaTool.Bundler.Win32.7502
SangforVirus.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
K7GWAdware ( 005393151 )
Cybereasonmalicious.f81140
CyrenW32/DealPly.U.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/DealPly.WC potentially unwanted
APEXMalicious
AvastWin32:DealPly-AJ [Adw]
Kasperskynot-a-virus:AdWare.Win32.DealPly.dfptj
BitDefenderAdware.DealPly.1.Gen
NANO-AntivirusRiskware.Win32.DealPly.ezbruy
MicroWorld-eScanAdware.DealPly.1.Gen
TencentMalware.Win32.Gencirc.10b2280a
Ad-AwareAdware.DealPly.1.Gen
SophosDealPly Updater (PUA)
ComodoApplication.Win32.Dealply.AT@8shl2r
BitDefenderThetaGen:NN.ZelphiF.34170.GK0@aKrT5Gji
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.AdwareDealPly.hh
FireEyeGeneric.mg.9436fa9f81140e9f
EmsisoftAdware.DealPly.1.Gen (B)
SentinelOneStatic AI – Malicious PE
JiangminAdWare.DealPly.hwbz
WebrootW32.Adware.Gen
AviraHEUR/AGEN.1125467
Antiy-AVLTrojan/Generic.ASMalwS.24E869E
MicrosoftTrojan:Win32/Wacatac.A!ml
SUPERAntiSpywarePUP.DealPly/Variant
ZoneAlarmnot-a-virus:HEUR:AdWare.Win32.DealPly.gen
GDataAdware.DealPly.1.Gen
AhnLab-V3PUP/Win32.DealPly.R223669
Acronissuspicious
McAfeeGenericRXAA-AA!9436FA9F8114
MAXmalware (ai score=99)
VBA32TScope.Trojan.Delf
MalwarebytesPUP.Optional.WinYahoo
PandaTrj/Genetic.gen
RisingAdware.DealPly!1.AA42 (CLASSIC)
YandexRiskware.Agent!agywyOWvqBM
IkarusPUA.DealPly
FortinetAdware/DealPly
AVGWin32:DealPly-AJ [Adw]
Paloaltogeneric.ml

How to remove PUP.Optional.WinYahoo?

PUP.Optional.WinYahoo removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment