放大镜

PUP.Optional.WinZipDriverUpdater

简短的个人介绍

PUP.Optional.WinZipDriverUpdater是Mal必威平台APPwarebytes对Corel Corporation发布的驱动更新程序的检测名称。

GUI WinZip DriverUpdater

GUI WinZip DriverUpdater

症状

用户在安装过程中可能会看到这个警告:

安装程序WinZip DriverUpdater

安装程序WinZip DriverUpdater

这些计划任务在他们的任务调度程序:

计划任务WinZip DriverUpdater

计划任务WinZip DriverUpdater

以及已安装的程序和功能列表中的以下条目:

安装WinZip DriverUpdater

安装WinZip DriverUpdater

他们可能会在操作过程中看到这些警告:

感染类型及来源

驱动程序更新器被认为是一个“系统优化器”。这些所谓的“系统优化者”有时会故意使用假阳性来说服用户他们的系统存在问题。然后他们试图卖给你他们的软件,声称它会消除这些问题。

保护

必威平台APPMalwarebytes通过使用实时保护来保护用户免受PUP.Optional.WinZipDriverUpdater的攻击。

块PUP.Optional.WinZipDriverUpdater

必威平台APP伪块PUP.Optional.WinZipDriverUpdater

修复

必威平台APPMalwarebytes可以检测和删除PUP.Optional.WinZipDriverUpdater,而无需进一步的用户交互。

  1. 下载伪必威平台APP你的桌面。
  2. 双击MBSetup.exe然后按照提示安装程序。
  3. 当你的必威平台APP伪的窗户安装完成后,程序打开到欢迎Malwarebytes屏幕。必威平台APP
  4. 点击开始按钮。
  5. 点击扫描开始威胁扫描
  6. 点击检疫移除发现的威胁。
  7. 如果提示完成删除过程,请重新启动系统。

必威平台APP伪删除日志

Ma必威平台APPlwarebytes的删除日志如下所示:

必威平台APPMalwarebytes www.Malwarebytes.com-日志详细信息-扫描日期:8/10/18扫描时间:12:22 PM日志文件:406eb921-9c87-11e8-9457-00ffdcc6fdfc.json管理员:是-软件信息-版本:3.5.1.2522组件版本:1.0.391更新包版本:1.0.6285许可证:高级-系统信息-操作系统:Windows 7 Service Pack 1 CPU:x64文件系统:NTFS用户:{computername}\{username}-扫描摘要-扫描类型:威胁扫描发起人:手动结果:扫描完成的对象:251343检测到的威胁:91隔离的威胁:89时间:3分钟,54秒-扫描选项-内存:启用启动:启用文件系统:启用存档:启用根工具包:启用启发式:启用PUP:检测PUM:检测-扫描详细信息-进程:3 PUP.Optional.WinZipDriverUpdater,C:\Program Files\WinZip Driver Updater\DriverUpdater.exe,隔离,[1603],[364824],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite,C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe,隔离,[1604],[456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite,C:\Program Files\WinZip Smart Monitor\WinZipSmartMonitor.exe,隔离,[1604],[456267],1.0.6285模块:9 PUP.Optional.WinZipDriverUpdater,C:\Program Files\WinZip Driver Updater\DriverUpdater.exe,隔离,[1603],[364824],1.0.6285 PUP.Optional.Winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\msvcp100.dll,隔离,[1604],[456267],1.0.6285 PUP.Optional.Winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\msvcp100.dll,隔离,[1604],[456267],1.0.6285 PUP.Optional.winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\msvcr100.dll,隔离,[1604],[456267],1.0.6285 PUP.Optional.winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\msvcr100.dll,隔离,[1604],[456267],1.0.6285 PUP.Optional.winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\SystemInfo-vc100-mt.dll,隔离,[1604],[456267],1.0.6285 PUP.Optional.winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\SystemInfo-vc100-mt.dll,隔离,[1604],[456267],1.0.6285 PUP.Optional.winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe,隔离,[1604],[456267],1.0.6285 PUP.Optional.winzipsystemutilities套件,C:\Program Files\WinZip Smart Monitor\WinZipSmartMonitor.exe,隔离,[1604],[456267],1.0.6285注册表项:11 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Start WinZip驱动程序更新程序,用于{computername}{username}(登录),隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKCACHE\TASKS\{3E6BA1EC-1D92-4073-A7DF-EADE11A17FB29},隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{3E6BA1EC-1D92-4073-A7DF-EADE117FB29},隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Start WinZip驱动程序更新程序时间表,隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKCACHE\TASKS\{E2140951-A5BB-4ED9-A854-C4660836C649},隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{E2140951-A5BB-4ED9-A854-C4660836C649},隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Start WinZip驱动程序更新程序,隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKCACHE\TASKS\{91A08D31-A6DA-4E07-8567-11463B0EC0FD},隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{91A08D31-A6DA-4E07-8567-11463B0EC0FD},隔离,[1603],[307837],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WinZip驱动程序更新程序,隔离,[1603],[364824],1.0.6285 PUP.Optional.WinzipSystemUtility套件,HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinZip智能监控服务,隔离,[1604],[456267],1.0.6285注册表值:3 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3E6BA1EC-1D92-4073-A7DF-EADE11A17FB29}路径,隔离,[1603],[307843],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKCACHE\TASKS\{91A08D31-A6DA-4E07-8567-11463B0EC0FD}路径,隔离[1603],[307843],1.0.6285 PUP.Optional.WinZipDriverUpdater,HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E2140951-A5BB-4ED9-A854-C4660836C649}路径,检疫d, [1603], [307843],1.0.6285 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 9 PUP.Optional.WinZipDriverUpdater, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\WINZIP\WINZIP DRIVER UPDATER, Quarantined, [1603], [310354],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\S-1-5-21-1350903546-318028887-1286703239-1003, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\backups, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\PROGRAMDATA\WINZIP\WINZIP DRIVER UPDATER, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\PROGRAM FILES\WinZip Driver Updater, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\PROGRAM FILES\WINZIP SMART MONITOR, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\ProgramData\WinZip\WinZip Smart Monitor\S-1-5-21-1350903546-318028887-1286703239-1003, Removal Failed, [1604], [458272],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\PROGRAMDATA\WINZIP\WINZIP SMART MONITOR, Removal Failed, [1604], [458272],1.0.6285 File: 56 PUP.Optional.WinZipDriverUpdater, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\WINZIP\WINZIP DRIVER UPDATER\WINZIP DRIVER UPDATER.LNK, Quarantined, [1603], [310354],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\WinZip Driver Updater\Uninstall.lnk, Quarantined, [1603], [310354],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\WINDOWS\SYSTEM32\TASKS\Start WinZip Driver Updater for {computername}@{username}(logon), Quarantined, [1603], [307837],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\WINDOWS\SYSTEM32\TASKS\Start WinZip Driver Updater Schedule, Quarantined, [1603], [307837],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\WINDOWS\SYSTEM32\TASKS\Start WinZip Driver Updater Update, Quarantined, [1603], [307837],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\USERS\PUBLIC\DESKTOP\WINZIP DRIVER UPDATER.LNK, Quarantined, [1603], [310353],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\WINDOWS\TASKS\Start WinZip Driver Updater for {computername}@{username}(logon).job, Quarantined, [1603], [307836],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\backups\BackupInfo.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Brazilian.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Danish.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Dutch.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\English.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Finnish.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\French.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\German.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Italian.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Japanese.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Norwegian.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Russian.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Spanish.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Swedish.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\TradChinese.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\Language\Turkish.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\S-1-5-21-1350903546-318028887-1286703239-1003\AppSettings.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\S-1-5-21-1350903546-318028887-1286703239-1003\app_log.log, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\S-1-5-21-1350903546-318028887-1286703239-1003\DRmanager_log.log, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\S-1-5-21-1350903546-318028887-1286703239-1003\du_statistic, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\S-1-5-21-1350903546-318028887-1286703239-1003\Request.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\S-1-5-21-1350903546-318028887-1286703239-1003\Response.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\CommonSettings.xml, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\ProgramData\WinZip\WinZip Driver Updater\freeDriver, Quarantined, [1603], [307835],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\7za.exe, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\DriverUpdater.exe, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\DriverUpdater.mab, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\DriverUpdaterUpdater.exe, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\DriverUpdaterUpdater.mab, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\lci.lci, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\notifier.exe, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\notifier.mab, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\tray.exe, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\tray.mab, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\Program Files\WinZip Driver Updater\Uninstall.exe, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\WinZip Driver Updater.lnk, Quarantined, [1603], [364824],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\apps, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\msvcp100.dll, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\msvcr100.dll, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\SystemInfo-vc100-mt.dll, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\SystemInfo-vc100-mt.mab, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\Uninstall.exe, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.mab, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\WinZipSmartMonitor.exe, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\Program Files\WinZip Smart Monitor\WinZipSmartMonitor.mab, Quarantined, [1604], [456267],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\ProgramData\WinZip\WinZip Smart Monitor\S-1-5-21-1350903546-318028887-1286703239-1003\settings.data, Quarantined, [1604], [458272],1.0.6285 PUP.Optional.WinzipSystemUtilitiesSuite, C:\ProgramData\WinZip\WinZip Smart Monitor\S-1-5-21-1350903546-318028887-1286703239-1003\smsettings, Quarantined, [1604], [458272],1.0.6285 PUP.Optional.WinZipDriverUpdater, C:\USERS\{username}\DESKTOP\WZDU34.EXE, Quarantined, [1603], [484645],1.0.6285 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)

添加一个排斥

如果用户希望保留该程序并在以后的扫描中排除它,他们可以将该程序添加到排除列表中。以下是如何做到这一点。

  • 打开Win必威平台APPdows恶意软件。
  • 单击检测的历史
  • 单击允许列表
  • 将项添加到允许列表,点击添加
  • 选择排除类型允许一个文件或文件夹并使用选择一个文件夹按钮以选择要保留的软件的主文件夹。
  • 对属于该软件的任何辅助文件或文件夹重复此操作。

如果您希望允许程序连接到Internet,例如获取更新,还需要添加类型的排除允许应用程序连接到互联网并使用浏览按钮以选择您希望授予访问权限的文件。

跟踪/国际石油公司

您可能会在FRST日志中看到这些条目:

() C:\Program Files\WinZip SmartMonitor \WinZipSmartMonitor Service.exe (Corel Corporation) C:\Program Files\WinZip DriverUpdater \DriverUpdater.exe (Corel Corporation) C:\Program Files\WinZip SmartMonitor \WinZipSmartMonitor.exe R2 WinZipSmartMonitor Service;C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe [816896 2017-12-04] () c:\ windows \ system32 \任务\ start WinZip Driver Updater Schedule c:\ windows \ system32 \任务\ start WinZip Driver Updater for {computername}@{username}(login) C:\Users\Public\Desktop\WinZip DriverC:\Windows\Tasks\Start WinZip Driver Updater for {computername}@{username}(logon)。C:\ProgramData\WinZip C:\Program Files\WinZip Smart Monitor C:\Program Files\WinZip Driver Updater WinZip Driver Updater (HKLM\…\WinZip DriverUpdater)(版本:1.3.6.1.4.1.2011.5.25.3.6 - Corel Corporation) Task: {3e6ba1eco - 1d92 -4073- a7df - eade1a17fb29} - System32\Tasks\Start WinZip DriverUpdater for {computername}@{username}(logon) => C:\Program Files\WinZip DriverUpdater \DriverUpdater.exe [2018-01-22] (Corel Corporation) Task:{91A08D31-A6DA-4E07-8567-11463B0EC0FD} - System32\Tasks\Start WinZip DriverUpdater Update => C:\Program Files\WinZip DriverUpdater \DriverUpdater.exe [2018-01-22] (Corel Corporation) Task:{E2140951-A5BB-4ED9-A854-C4660836C649} - System32\Tasks\Start WinZip Driver update => C:\Program Files\WinZip DriverUpdater \DriverUpdater.exe [2018-01-22] (Corel Corporation)job => C:\Program Files\WinZip DriverUpdater \DriverUpdater.exe

相关的威胁

  • PUP.Optional.WinzipSystemUtilitiesSuite

相关的博客内容

必威平台APP恶意软件对PUPs变得更严厉

如何避免可能不想要的程序

驱动程序更新:数字蛇油,第2部分

选择你的语言