PUP.YAC (Yet Another Cleaner)

By CagedTech in Potentially Unwanted Programs

Threat Scorecard

Ranking:	1,470
Threat Level:	10 % (Normal)
Infected Computers:	221,321

First Seen:	December 27, 2013
Last Seen:	June 19, 2025
OS(es) Affected:	Windows

Table of Contents

File System Details

PUP.YAC (Yet Another Cleaner) may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	aerdl.dll	0750556e1471fc9d823c30bc99b77a38	3,088
Name: aerdl.dll MD5: 0750556e1471fc9d823c30bc99b77a38 Size: 835.84 KB (835848 bytes) Detections: 3,088 Type: Dynamic link library Path: %PROGRAMFILES(x86)%\ScanGuard\SAVAPI\aerdl.dll Group: Malware file Last Updated: June 19, 2025
2.	aedroid.dll	b2987d8a627afce56302498d912161f7	1,468
Name: aedroid.dll MD5: b2987d8a627afce56302498d912161f7 Size: 2.8 MB (2801640 bytes) Detections: 1,468 Type: Dynamic link library Path: %PROGRAMFILES(x86)%\ScanGuard\SAVAPI\aedroid.dll Group: Malware file Last Updated: June 19, 2025
3.	aeheur.dll	edf1ff20c2277e9af3778757c987d14c	1,160
Name: aeheur.dll MD5: edf1ff20c2277e9af3778757c987d14c Size: 11.67 MB (11670584 bytes) Detections: 1,160 Type: Dynamic link library Group: Malware file Last Updated: June 19, 2025
4.	aescript.dll	9a639617aeeb415832e659714053fcab	1,082
Name: aescript.dll MD5: 9a639617aeeb415832e659714053fcab Size: 960.53 KB (960536 bytes) Detections: 1,082 Type: Dynamic link library Path: %PROGRAMFILES(x86)%\Glarysoft\Malware Hunter\Avira\aescript.dll Group: Malware file Last Updated: June 19, 2025
5.	aeoffice.dll	223b886130b8e2e03a3702dc92efe5a4	1,066
Name: aeoffice.dll MD5: 223b886130b8e2e03a3702dc92efe5a4 Size: 657.14 KB (657144 bytes) Detections: 1,066 Type: Dynamic link library Path: %PROGRAMFILES(x86)%\Glarysoft\Malware Hunter\Avira\aeoffice.dll Group: Malware file Last Updated: June 19, 2025
6.	aeexp.dll	16652e6d9b7d961e9f1ca93c94fcecb0	895
Name: aeexp.dll MD5: 16652e6d9b7d961e9f1ca93c94fcecb0 Size: 382.84 KB (382848 bytes) Detections: 895 Type: Dynamic link library Path: %PROGRAMFILES(x86)%\Glarysoft\Malware Hunter\Avira\aeexp.dll Group: Malware file Last Updated: June 19, 2025
7.	aemobile.dll	f3b78103c2bbceaeb933727049bcc5d4	835
Name: aemobile.dll MD5: f3b78103c2bbceaeb933727049bcc5d4 Size: 346.99 KB (346992 bytes) Detections: 835 Type: Dynamic link library Path: %SYSTEMDRIVE%\$SysReset\OldOS\AdwCleaner\Quarantine\files\phdmqrhzkfedfxpirssmmwirohtdflyo\AV\aemobile.dll Group: Malware file Last Updated: August 27, 2024
8.	bas.dat	46721a65cc7400788bf58072f5ff70a6	804
Name: bas.dat MD5: 46721a65cc7400788bf58072f5ff70a6 Size: 87.04 KB (87040 bytes) Detections: 804 Type: Data file Group: Malware file Last Updated: June 10, 2025
9.	adb.dat	d08eb2854b761c9ec1e36d590790f776	749
Name: adb.dat MD5: d08eb2854b761c9ec1e36d590790f776 Size: 3.3 MB (3307995 bytes) Detections: 749 Type: Data file Group: Malware file Last Updated: June 10, 2025
10.	rms.dat	649172d71d4aca8496fba5e53fe940bc	743
Name: rms.dat MD5: 649172d71d4aca8496fba5e53fe940bc Size: 73.72 KB (73728 bytes) Detections: 743 Type: Data file Group: Malware file Last Updated: June 10, 2025
11.	index.dat	a4c186fe42f4e798b3e2741822091b33	718
Name: index.dat MD5: a4c186fe42f4e798b3e2741822091b33 Size: 24B (24 bytes) Detections: 718 Type: Data file Group: Malware file Last Updated: June 10, 2025
12.	nlu.dat	b6b096e15554281027b0ffe59e94a0b9	650
Name: nlu.dat MD5: b6b096e15554281027b0ffe59e94a0b9 Size: 28.67 KB (28672 bytes) Detections: 650 Type: Data file Group: Malware file Last Updated: June 10, 2025
13.	mic.dat	bf771c93b7f109934054742a262573e5	648
Name: mic.dat MD5: bf771c93b7f109934054742a262573e5 Size: 582.65 KB (582656 bytes) Detections: 648 Type: Data file Group: Malware file Last Updated: June 10, 2025
14.	bs.dat	649a07a151c973d009eb055ed02af399	591
Name: bs.dat MD5: 649a07a151c973d009eb055ed02af399 Size: 4.09 KB (4096 bytes) Detections: 591 Type: Data file Group: Malware file Last Updated: June 10, 2025
15.	stu.dat	3c13507f1e9bf138714daa4e04d98cfd	574
Name: stu.dat MD5: 3c13507f1e9bf138714daa4e04d98cfd Size: 394.24 KB (394240 bytes) Detections: 574 Type: Data file Group: Malware file Last Updated: June 10, 2025
16.	uis.dat	0744e7ed95e05352e420f290614ddf3d	573
Name: uis.dat MD5: 0744e7ed95e05352e420f290614ddf3d Size: 34.81 KB (34816 bytes) Detections: 573 Type: Data file Group: Malware file Last Updated: June 10, 2025
17.	aescn.dll	7a09731d5c7c6c6c97cb01ced6544e2b	527
Name: aescn.dll MD5: 7a09731d5c7c6c6c97cb01ced6544e2b Size: 158.41 KB (158416 bytes) Detections: 527 Type: Dynamic link library Path: %SYSTEMDRIVE%\RECOVERED DATA\Program Files (x86)\Avira\Antivirus\FAILSAFE\aescn.dll Group: Malware file Last Updated: May 13, 2025
18.	bwd.dat	21c4dd4e2c6f525aff8cb2f14deed567	219
Name: bwd.dat MD5: 21c4dd4e2c6f525aff8cb2f14deed567 Size: 12.28 KB (12288 bytes) Detections: 219 Type: Data file Group: Malware file Last Updated: July 11, 2024
19.	A0585417.dll	4641639cbf2195019f386db9b9ba203e	55
Name: A0585417.dll MD5: 4641639cbf2195019f386db9b9ba203e Size: 800.56 KB (800560 bytes) Detections: 55 Type: Dynamic link library Path: D:\System Volume Information\_restore{380C7F81-C99B-438A-96AC-F76DE55F57A1}\RP757\A0585417.dll Group: Malware file Last Updated: February 18, 2024
20.	A0330162.dll	109b39ad96c36a7d456f3584ac738b0e	52
Name: A0330162.dll MD5: 109b39ad96c36a7d456f3584ac738b0e Size: 571.3 KB (571304 bytes) Detections: 52 Type: Dynamic link library Path: C:\System Volume Information\_restore{6AFF8BEB-4AB5-4822-9D62-D99671146974}\RP1500\A0330162.dll Group: Malware file Last Updated: October 9, 2022
21.	A0330159.dll	f657b8fbd27fb83cd3e594e5ec84d012	51
Name: A0330159.dll MD5: f657b8fbd27fb83cd3e594e5ec84d012 Size: 637.8 KB (637808 bytes) Detections: 51 Type: Dynamic link library Path: C:\System Volume Information\_restore{6AFF8BEB-4AB5-4822-9D62-D99671146974}\RP1500\A0330159.dll Group: Malware file Last Updated: October 9, 2022
22.	aegen.dll	266b1c726a11c338b3d30e5759ad9cb5	46
Name: aegen.dll MD5: 266b1c726a11c338b3d30e5759ad9cb5 Size: 702.86 KB (702864 bytes) Detections: 46 Type: Dynamic link library Path: %PROGRAMFILES(x86)%\Avira\AntiVir Desktop\aegen.dll Group: Malware file Last Updated: November 3, 2023
23.	A0023360.dll	d8e6dff3afe4138bd9b040af30f85918	26
Name: A0023360.dll MD5: d8e6dff3afe4138bd9b040af30f85918 Size: 914.81 KB (914816 bytes) Detections: 26 Type: Dynamic link library Path: C:\System Volume Information\_restore{E7314C0F-7E3D-4C97-B4A4-CBBE005B05D7}\RP41\A0023360.dll Group: Malware file Last Updated: February 28, 2023
24.	A0326620.dll	a602d49140782f96cf8acfb8b9be3bfa	14
Name: A0326620.dll MD5: a602d49140782f96cf8acfb8b9be3bfa Size: 624.55 KB (624552 bytes) Detections: 14 Type: Dynamic link library Path: C:\System Volume Information\_restore{6AFF8BEB-4AB5-4822-9D62-D99671146974}\RP1485\A0326620.dll Group: Malware file Last Updated: June 14, 2022
25.	A0326627.dll	8e45efe2779df04f0809ad93633e4fd6	14
Name: A0326627.dll MD5: 8e45efe2779df04f0809ad93633e4fd6 Size: 730.92 KB (730928 bytes) Detections: 14 Type: Dynamic link library Path: C:\System Volume Information\_restore{6AFF8BEB-4AB5-4822-9D62-D99671146974}\RP1485\A0326627.dll Group: Malware file Last Updated: June 14, 2022
26.	iSafeNetFilter.sys	702d15a8ba2cc13b31865ce1ea11baf7	7
Name: iSafeNetFilter.sys MD5: 702d15a8ba2cc13b31865ce1ea11baf7 Size: 52.39 KB (52392 bytes) Detections: 7 Type: System file Path: %WINDIR%\System32\drivers Group: Malware file Last Updated: February 6, 2020
27.	iSafeKrnlBoot.sys	67808f55a8590f2843aa9b9935089d29	5
Name: iSafeKrnlBoot.sys MD5: 67808f55a8590f2843aa9b9935089d29 Size: 48.78 KB (48784 bytes) Detections: 5 Type: System file Path: %WINDIR%\System32\drivers Group: Malware file Last Updated: February 6, 2020
28.	eas.dat	7c0ce536cb12533f3d54cd23f56c1dad	3
Name: eas.dat MD5: 7c0ce536cb12533f3d54cd23f56c1dad Size: 86.01 KB (86016 bytes) Detections: 3 Type: Data file Group: Malware file Last Updated: April 11, 2020
29.	yac_setup.exe	1a126b528993fd081e9a1cda4ca2a96a	1
Name: yac_setup.exe MD5: 1a126b528993fd081e9a1cda4ca2a96a Size: 26.57 MB (26573648 bytes) Detections: 1 Type: Executable File Path: %SYSTEMDRIVE%\Users\<username>\desktop\utilità\yac setup funzionante Group: Malware file Last Updated: May 25, 2023
30.	aevdf.dat	3b8ce109a27ee673b8e265bcfdab5cf2	0
Name: aevdf.dat MD5: 3b8ce109a27ee673b8e265bcfdab5cf2 Size: 5.48 KB (5486 bytes) Detections: 0 Type: Data file Group: Malware file Last Updated: February 6, 2020

More files

Registry Details

PUP.YAC (Yet Another Cleaner) may create the following registry entry or registry entries:

CLSID

{0EB9B9FE-3CEF-43E1-882A-853FC80021CE}

{5411D116-5A37-47D4-B154-5F7FCD9062F0}

File name without path

YAC.lnk

Regexp file mask

%AppData%\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Depth clean up junk files.lnk

%WINDIR%\System32\drivers\iSafeKrnlBoot.sys

%WINDIR%\System32\drivers\iSafeNetFilter.sys

%WinDir%\System32\log\iSafeKrnlCall.log

HKEY..\..\..\..{RegistryKeys}

*\shellex\ContextMenuHandlers\iSafeRKScan

CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shell\iSafeRKScan

CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\iSafeRKScan

Directory\shellex\ContextMenuHandlers\iSafeRKScan

Folder\ShellEx\ContextMenuHandlers\iSafeRKScan

lnkfile\shellex\ContextMenuHandlers\iSafeRKScan

SOFTWARE\Classes\*\shellex\ContextMenuHandlers\iSafeRKScan

SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shell\iSafeRKScan

SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\iSafeRKScan

SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\iSafeRKScan

SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\iSafeRKScan

SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\iSafeRKScan

SOFTWARE\Elex-tech

SOFTWARE\iSafe

SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{0EB9B9FE-3CEF-43E1-882A-853FC80021CE}

SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{5411D116-5A37-47D4-B154-5F7FCD9062F0}

SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe

SOFTWARE\Wow6432Node\Elex-tech

SOFTWARE\Wow6432Node\iSafe

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iSafe

SYSTEM\ControlSet001\Control\iSafeKrnlBoot

SYSTEM\ControlSet001\Enum\Root\LEGACY_ISAFEKRNL

SYSTEM\ControlSet001\Enum\Root\LEGACY_ISAFEKRNLKIT

SYSTEM\ControlSet001\Enum\Root\LEGACY_ISAFEKRNLR3

SYSTEM\ControlSet001\Enum\Root\LEGACY_ISAFENETFILTER

SYSTEM\ControlSet001\services\iSafeKrnl

SYSTEM\ControlSet001\services\iSafeKrnlBoot

SYSTEM\ControlSet001\services\iSafeKrnlKit

SYSTEM\ControlSet001\services\iSafeKrnlR3

SYSTEM\ControlSet001\services\iSafeNetFilter

SYSTEM\ControlSet001\services\iSafeService

SYSTEM\ControlSet002\Control\iSafeKrnlBoot

SYSTEM\ControlSet002\Enum\Root\LEGACY_ISAFEKRNL

SYSTEM\ControlSet002\Enum\Root\LEGACY_ISAFEKRNLKIT

SYSTEM\ControlSet002\Enum\Root\LEGACY_ISAFEKRNLR3

SYSTEM\ControlSet002\Enum\Root\LEGACY_ISAFENETFILTER

SYSTEM\ControlSet002\services\iSafeKrnl

SYSTEM\ControlSet002\services\iSafeKrnlBoot

SYSTEM\ControlSet002\services\iSafeKrnlKit

SYSTEM\ControlSet002\services\iSafeKrnlR3

SYSTEM\ControlSet002\services\iSafeNetFilter

SYSTEM\ControlSet002\services\iSafeService

SYSTEM\CurrentControlSet\Control\iSafeKrnlBoot

SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ISAFEKRNL

SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ISAFEKRNLKIT

SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ISAFEKRNLR3

SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ISAFENETFILTER

SYSTEM\CurrentControlSet\services\iSafeKrnl

SYSTEM\CurrentControlSet\services\iSafeKrnlBoot

SYSTEM\CurrentControlSet\services\iSafeKrnlKit

SYSTEM\CurrentControlSet\services\iSafeKrnlR3

SYSTEM\CurrentControlSet\services\iSafeNetFilter

SYSTEM\CurrentControlSet\services\iSafeService

Directories

PUP.YAC (Yet Another Cleaner) may create the following directory or directories:

%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\YAC

%APPDATA%\Elex-tech

%AppData%\eCyber

%AppData%\iSafe

%PROGRAMFILES%\Elex-tech

%PROGRAMFILES%\iSafe

%PROGRAMFILES(x86)%\Elex-tech

%PROGRAMFILES(x86)%\iSafe

%TEMP%\iSafeRightKeyScan

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

PUP.YAC (Yet Another Cleaner)

Threat Scorecard

EnigmaSoft Threat Scorecard

File System Details

Registry Details

Directories

Submit Comment

Trending

Mikel Ransomware

Lepigthree.xyz

PARKER Ransomware

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen

Discord Is Stuck on Gray Screen