PUP.WinZipper

By CagedTech in Potentially Unwanted Programs

Threat Scorecard

Ranking:	4,167
Threat Level:	10 % (Normal)
Infected Computers:	168,387

First Seen:	March 23, 2015
Last Seen:	April 1, 2025
OS(es) Affected:	Windows

Table of Contents

Aliases

5 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
McAfee	Artemis!FD4518DBC764
McAfee-GW-Edition	Artemis
AVG	Taishumu.511
DrWeb	Adware.Mutabaha.343
Symantec	PUA.WinZipper

SpyHunter Detects & Remove PUP.WinZipper

File System Details

PUP.WinZipper may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	A0056866.exe	1349aa702ed846d801971837fb4354c9	257
Name: A0056866.exe MD5: 1349aa702ed846d801971837fb4354c9 Size: 1.55 MB (1559216 bytes) Detections: 257 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP126\A0056866.exe Group: Malware file Last Updated: September 23, 2023
2.	A0077943.exe	538ad7c45fd01c52196b6756034ab914	234
Name: A0077943.exe MD5: 538ad7c45fd01c52196b6756034ab914 Size: 1.69 MB (1698312 bytes) Detections: 234 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP144\A0077943.exe Group: Malware file Last Updated: October 9, 2021
3.	A0126475.exe	df667a225fad7706c3dc45fcc01314cc	176
Name: A0126475.exe MD5: df667a225fad7706c3dc45fcc01314cc Size: 2.92 MB (2921072 bytes) Detections: 176 Type: Executable File Path: %SYSTEMDRIVE%\System Volume Information\_restore{4EC8B925-B0B0-414B-9CB6-B2AB003E7B01}\RP193\A0126475.exe Group: Malware file Last Updated: April 1, 2025
4.	A0035920.exe	53f45b558a0aebd79f9edc2142fa26da	175
Name: A0035920.exe MD5: 53f45b558a0aebd79f9edc2142fa26da Size: 1.65 MB (1657520 bytes) Detections: 175 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP112\A0035920.exe Group: Malware file Last Updated: January 30, 2025
5.	zip_update_v1.5.108.exe	25ccadd3c0b567c69123fffb8010e65b	164
Name: zip_update_v1.5.108.exe MD5: 25ccadd3c0b567c69123fffb8010e65b Size: 414.72 KB (414720 bytes) Detections: 164 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.108.exe Group: Malware file Last Updated: April 1, 2025
6.	zip_update_v1.5.111.exe	6178eca2e4599943a7f417abc077882c	136
Name: zip_update_v1.5.111.exe MD5: 6178eca2e4599943a7f417abc077882c Size: 414.72 KB (414720 bytes) Detections: 136 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.111.exe Group: Malware file Last Updated: March 12, 2024
7.	zip_update_v1.5.132.exe.vir	24ad81381458213d104bdd85d310b177	109
Name: zip_update_v1.5.132.exe.vir MD5: 24ad81381458213d104bdd85d310b177 Size: 432.12 KB (432128 bytes) Detections: 109 Path: C:\AdwCleaner\Quarantine\C\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.132.exe.vir Group: Malware file Last Updated: August 8, 2024
8.	TrayDownloader.exe	0027b788c35ab4f094cb8e5a84de8b0d	106
Name: TrayDownloader.exe MD5: 0027b788c35ab4f094cb8e5a84de8b0d Size: 171.66 KB (171664 bytes) Detections: 106 Type: Executable File Path: C:\Users\<username>\AppData\Local\Temp\d207598268\omigazip\TrayDownloader.exe Group: Malware file Last Updated: October 29, 2023
9.	dup.exe.vir	876835484175718816c18eeac0239705	98
Name: dup.exe.vir MD5: 876835484175718816c18eeac0239705 Size: 407.72 KB (407728 bytes) Detections: 98 Path: %SYSTEMDRIVE%\AdwCleaner\FileQuarantine\C\Program Files (x86)\WinZipper\dup.exe.vir Group: Malware file Last Updated: February 27, 2023
10.	zip_update_v1.5.113.exe	937c7f63819d0cc61349a1b38a9c4235	96
Name: zip_update_v1.5.113.exe MD5: 937c7f63819d0cc61349a1b38a9c4235 Size: 432.64 KB (432640 bytes) Detections: 96 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.113.exe Group: Malware file Last Updated: June 16, 2023
11.	A0056875.exe	339d68e8f09c4471019055156b3e3650	92
Name: A0056875.exe MD5: 339d68e8f09c4471019055156b3e3650 Size: 731.82 KB (731824 bytes) Detections: 92 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP126\A0056875.exe Group: Malware file Last Updated: November 12, 2022
12.	eUninstall.exe	13ebfe2057da6714f6e81825dde240ab	82
Name: eUninstall.exe MD5: 13ebfe2057da6714f6e81825dde240ab Size: 1.17 MB (1172624 bytes) Detections: 82 Type: Executable File Path: C:\Users\<username>\AppData\Local\Temp\d207598268\omigazip\eUninstall.exe Group: Malware file Last Updated: October 29, 2023
13.	zip_update_v1.5.119.exe	85f35698a5388c4c3fa0faf2d2455c15	61
Name: zip_update_v1.5.119.exe MD5: 85f35698a5388c4c3fa0faf2d2455c15 Size: 432.64 KB (432640 bytes) Detections: 61 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.119.exe Group: Malware file Last Updated: February 27, 2023
14.	wzp2yac_201512096_out[1].exe	9fe6a872aac4e8164a94cbff70b1356c	56
Name: wzp2yac_201512096_out[1].exe MD5: 9fe6a872aac4e8164a94cbff70b1356c Size: 434.68 KB (434688 bytes) Detections: 56 Type: Executable File Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JPKN15LY\wzp2yac_201512096_out[1].exe Group: Malware file Last Updated: September 18, 2023
15.	A0046663.exe	64551e1f5a559f95afe182314736bf6d	54
Name: A0046663.exe MD5: 64551e1f5a559f95afe182314736bf6d Size: 711.34 KB (711344 bytes) Detections: 54 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP118\A0046663.exe Group: Malware file Last Updated: June 6, 2022
16.	A0035933.exe	ac635d9c14f825f18a5752b537e13c3e	46
Name: A0035933.exe MD5: ac635d9c14f825f18a5752b537e13c3e Size: 711.34 KB (711344 bytes) Detections: 46 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP112\A0035933.exe Group: Malware file Last Updated: January 30, 2025
17.	zip_update_v1.5.121.exe	88448604583fa0c199acd89e847ee088	44
Name: zip_update_v1.5.121.exe MD5: 88448604583fa0c199acd89e847ee088 Size: 432.64 KB (432640 bytes) Detections: 44 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.121.exe Group: Malware file Last Updated: September 23, 2023
18.	A0077958.exe	4bfaf6d7fb8e99ce5dc93bb121235567	41
Name: A0077958.exe MD5: 4bfaf6d7fb8e99ce5dc93bb121235567 Size: 399.36 KB (399360 bytes) Detections: 41 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP144\A0077958.exe Group: Malware file Last Updated: October 10, 2023
19.	BC35F18B-8C50-2682-0217-29C3DBAA9980	2e615af5bd3caa1f655aa9f1f112ce83	35
Name: BC35F18B-8C50-2682-0217-29C3DBAA9980 MD5: 2e615af5bd3caa1f655aa9f1f112ce83 Size: 701.96 KB (701960 bytes) Detections: 35 Path: C:\Windows\System32\MRT\3AC662F4-BBD5-4771-B2A0-164912094D5D\FilesStash\BC35F18B-8C50-2682-0217-29C3DBAA9980 Group: Malware file Last Updated: October 8, 2022
20.	A0071790.exe	7e79795cd725101b851d6f011660883c	31
Name: A0071790.exe MD5: 7e79795cd725101b851d6f011660883c Size: 707.24 KB (707248 bytes) Detections: 31 Type: Executable File Path: %SYSTEMDRIVE%\System Volume Information\_restore{A58C76DC-10AB-48F7-AAAE-F0C98F4C86F5}\RP276\A0071790.exe Group: Malware file Last Updated: September 11, 2022
21.	dup.exe	dbe8b7379813789ad09dae023a53db9f	26
Name: dup.exe MD5: dbe8b7379813789ad09dae023a53db9f Size: 363.69 KB (363696 bytes) Detections: 26 Type: Executable File Path: C:\Program Files\WinZipper\dup.exe Group: Malware file Last Updated: September 28, 2022
22.	zip_update_v1.5.123.exe	00aa201560cc97a90e8e2e6fe4f96fa6	24
Name: zip_update_v1.5.123.exe MD5: 00aa201560cc97a90e8e2e6fe4f96fa6 Size: 432.64 KB (432640 bytes) Detections: 24 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.123.exe Group: Malware file Last Updated: November 17, 2022
23.	A0046654.exe	491fbc8fbb2041485c9ff136665040ef	23
Name: A0046654.exe MD5: 491fbc8fbb2041485c9ff136665040ef Size: 1.65 MB (1657520 bytes) Detections: 23 Type: Executable File Path: C:\System Volume Information\_restore{61313432-71E1-41E4-9839-B12335D1664E}\RP118\A0046654.exe Group: Malware file Last Updated: June 10, 2022
24.	zip_update_v1.5.101.exe	a3f811d9d4d08c8659d06144c7b35701	21
Name: zip_update_v1.5.101.exe MD5: a3f811d9d4d08c8659d06144c7b35701 Size: 220.31 KB (220311 bytes) Detections: 21 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\WinZipper\update\zip_update_v1.5.101.exe Group: Malware file Last Updated: June 16, 2023
25.	wzpup_2015.07.24_out_2[1].exe	3002d57cf4a704f05e95ace6df9fcb65	10
Name: wzpup_2015.07.24_out_2[1].exe MD5: 3002d57cf4a704f05e95ace6df9fcb65 Size: 230.82 KB (230829 bytes) Detections: 10 Type: Executable File Path: C:\Users\<username>\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PYPAJ0PG\wzpup_2015.07.24_out_2[1].exe Group: Malware file Last Updated: January 15, 2022
26.	wzpup_2015.07.24_out_1[1].exe	b3d302edf42d0268b943c6a8061115e8	7
Name: wzpup_2015.07.24_out_1[1].exe MD5: b3d302edf42d0268b943c6a8061115e8 Size: 230.8 KB (230801 bytes) Detections: 7 Type: Executable File Path: C:\Users\<username>\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BTE287GX\wzpup_2015.07.24_out_1[1].exe Group: Malware file Last Updated: October 19, 2022
27.	winzipersvc.exe	258bd28e3f00871d59cf0f4cd0e7d250	2
Name: winzipersvc.exe MD5: 258bd28e3f00871d59cf0f4cd0e7d250 Size: 708.24 KB (708248 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\WinZipper Group: Malware file Last Updated: March 26, 2016
28.	WinZipper.exe	fd2b67cc95adb0dfd9e1fd4a919219c8	1
Name: WinZipper.exe MD5: fd2b67cc95adb0dfd9e1fd4a919219c8 Size: 1.65 MB (1657520 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\WinZipper Group: Malware file Last Updated: February 11, 2016

More files

Registry Details

PUP.WinZipper may create the following registry entry or registry entries:

CLSID

{4F622628-7632-4B28-B184-D7BA0CA3273B}

{DC638EEA-2BA2-4459-9C46-85A2F0BE6040}

HKEY..\..\..\..{RegistryKeys}

SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper

SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper

SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\WinZipper

SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper

Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cab\OpenWithProgids\WinZipper.cab

Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.zip\OpenWithProgids\WinZipper.zip

SOFTWARE\WinZiper

SOFTWARE\winzipersvc

SOFTWARE\Wow6432Node\WinZiper

SOFTWARE\Wow6432Node\winzipersvc

SYSTEM\ControlSet001\services\eventlog\Application\winzipersvc

SYSTEM\ControlSet001\services\winzipersvc

SYSTEM\ControlSet002\services\eventlog\Application\winzipersvc

SYSTEM\ControlSet002\services\winzipersvc

SYSTEM\CurrentControlSet\services\eventlog\Application\winzipersvc

SYSTEM\CurrentControlSet\services\winzipersvc

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

WinZipper

Directories

PUP.WinZipper may create the following directory or directories:

%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\WinZipper

%ALLUSERSPROFILE%\Start Menu\Programs\WinZipper

%APPDATA%\WinZiper

%APPDATA%\WinZipper

%PROGRAMFILES%\WinZipper

%PROGRAMFILES(x86)%\WinZipper

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

PUP.WinZipper

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove PUP.WinZipper

File System Details

Registry Details

Directories

Submit Comment

Trending

Curestin.co.in

News-pekota.cc

Oursearching.com

Most Viewed

Discord Is Stuck on Gray Screen

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen