JZip
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
Ranking: | 4,500 |
Threat Level: | 10 % (Normal) |
Infected Computers: | 17,339 |
First Seen: | November 3, 2015 |
Last Seen: | January 22, 2024 |
OS(es) Affected: | Windows |
The JZip software is promoted through free application platforms and hxxp://jzip[.]online/ as the "Most popular File Compression Utility For Windows." The official page for the JZip software consists of a single image with a short description, a logo that says "over 1 billion downloads!" and a simple download box that points to 'jzip_installer.exe' (MD5: 37dbceb025029a68b24cd2e17bec2f7f). What you should know is that hxxp://jzip[.]online/ was created on 2018-07-02 according to records at https://whois.icann.org/en/lookup?name=jzip.online maintained by ICANN (Internet Corporation for Assigned Names and Numbers). The JZip software was reported to travel with adware and bloatware twenty-five days later. We believe that the promotional statements at hxxp://jzip[.]online/ regarding the '1 billion downloads' might have been exaggerated.
Also, the 'File Version Information' section for 'jzip_installer.exe' says that it contains the product 'Maligefo Setup.' The Windows 10's software execution protection is known to block the users from loading 'jzip_installer.exe.' Lab tests showed that JZip features the publisher name 'Prssto Inc.,' which does not appear on the Internet. An interesting discovery was that the 'Help' menu of JZip shows that the application is based on the 7Zip file compression instrument by Igor Pavlov, which you can find at hxxps://www.7-zip[.]org. Another discovery made in lab conditions was that JZip loads seemingly blank pages in the Web browser from time to time. Upon closer inspection, we found that the pages were not blank entirely and featured hidden advertisements. The JZip software may be used to click on advertisements without the user's knowledge and expose you to links that point to harmful programs. In contrast, 7Zip is a respected utility that is offered free of charge and come with continuous support. JZip has poor presentations, uses code from another program, has no legitimate publisher and may introduce adware to your system. JZip is categorized as a Potentially Unwanted Program (PUP) by Prssto Inc. that may enable users to process some types of file archives. Running JZip on your system may cause browser redirects, and you may want to remove the program using a credible cybersecurity solution.
Table of Contents
SpyHunter Detects & Remove JZip
File System Details
# | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|---|
1. | jZip.exe | f7940a4ceb97dea8946df0d6cfea5ea4 | 129 |
2. | jZip.exe.vir | 58324c899be31006cff631030477b71b | 71 |
3. | JZIP.exe | fc2f0cf188153ad38e8af19c2985c242 | 32 |
4. | jZip.exe | 90ac66cf9fd16e0b5d7fd42011f3915b | 28 |
5. | jZip.exe | 3306c2483ed82c149a4d5c465c622571 | 26 |
6. | jZip.exe | 044416013423134658c763d2e23c441d | 19 |
7. | jZip.exe | 89717d787bf3a5d5529d81c518011388 | 18 |
8. | jZip.exe | 999ea7d95e52ff90b9a93678688527e7 | 17 |
9. | JZIP.exe | 28e04f0673ed9dfe04dee9b8d9dc9a5b | 16 |
10. | JZIP.exe.vir | 57b7379cc7397d0a89362b420d88ef59 | 11 |
11. | jZip.exe | 3674741d486047fd2b0ddef01dbd469e | 7 |
12. | jZip.exe | a3ab55316119b0aa6c22b22caea6927a | 6 |
13. | JZIP.exe | be33de67a600f385d0c9dc5729aabf53 | 6 |
14. | JZIP.exe | 3c32b076846964993f5dd4c51901ad28 | 4 |
15. | jZip.exe | 0d00430dccaa57957e6947647dac12cf | 3 |
16. | jZip.exe | 49782ab90419b1455ac33fb34370dc89 | 2 |
17. | jzip.exe | 87ce7b967bbcfcb619de3ead4856f30e | 1 |
18. | jZip.exe | 5b8213b29caa11e985add2d3670325cd | 1 |
19. | JZip.exe | 6bfaa96a02c392f782a1b2835a85e0c2 | 1 |
20. | jzip.exe | 629290fa6b607f7397f4a89ba008be63 | 1 |
21. | JZIP.exe | 94b200065926f35ae29acb60c0b8d8a0 | 1 |
22. | JZIP.exe | 116cbb925239ca423a2e73611c399f33 | 1 |
23. | JZIP.exe | b94f50351c203c18cb8e317a5cc2701e | 1 |
24. | JZIP.exe | c5a22f7c2ce73049bb5154ec5ce6563c | 1 |
25. | JZIP.exe | 948a11bc537ffce1e989974611ebcd72 | 1 |
26. | JZIP.exe | dc4d8f9f7f63d91c5e11e5b591472f61 | 1 |
27. | JZIP.exe | 1a151e39841c0d531f84529e62007813 | 1 |
28. | JZIP.exe | fd80302ac55f4989637c3177093ccf78 | 1 |
Registry Details
Directories
JZip may create the following directory or directories:
%LOCALAPPDATA%\imeshjzipmusictoolbar |
%LOCALAPPDATA%\jZip |
%PROGRAMFILES%\jZip |
%PROGRAMFILES(x86)%\SystemManager\Systemmgr |
%PROGRAMFILES(x86)%\jZip |
%Temp%\jZip |
%USERPROFILE%\AppData\LocalLow\imeshjzipmusictoolbar |
%USERPROFILE%\Application Data\imeshjzipmusictoolbar |
%UserProfile%\Local Settings\Application Data\imeshjzipmusictoolbar |
%UserProfile%\Local Settings\Application Data\jZip |