JZip

By GoldSparrow in Potentially Unwanted Programs

Translate To:

Threat Scorecard

Ranking:	4,500
Threat Level:	10 % (Normal)
Infected Computers:	17,339

First Seen:	November 3, 2015
Last Seen:	January 22, 2024
OS(es) Affected:	Windows

The JZip software is promoted through free application platforms and hxxp://jzip[.]online/ as the "Most popular File Compression Utility For Windows." The official page for the JZip software consists of a single image with a short description, a logo that says "over 1 billion downloads!" and a simple download box that points to 'jzip_installer.exe' (MD5: 37dbceb025029a68b24cd2e17bec2f7f). What you should know is that hxxp://jzip[.]online/ was created on 2018-07-02 according to records at https://whois.icann.org/en/lookup?name=jzip.online maintained by ICANN (Internet Corporation for Assigned Names and Numbers). The JZip software was reported to travel with adware and bloatware twenty-five days later. We believe that the promotional statements at hxxp://jzip[.]online/ regarding the '1 billion downloads' might have been exaggerated.

Also, the 'File Version Information' section for 'jzip_installer.exe' says that it contains the product 'Maligefo Setup.' The Windows 10's software execution protection is known to block the users from loading 'jzip_installer.exe.' Lab tests showed that JZip features the publisher name 'Prssto Inc.,' which does not appear on the Internet. An interesting discovery was that the 'Help' menu of JZip shows that the application is based on the 7Zip file compression instrument by Igor Pavlov, which you can find at hxxps://www.7-zip[.]org. Another discovery made in lab conditions was that JZip loads seemingly blank pages in the Web browser from time to time. Upon closer inspection, we found that the pages were not blank entirely and featured hidden advertisements. The JZip software may be used to click on advertisements without the user's knowledge and expose you to links that point to harmful programs. In contrast, 7Zip is a respected utility that is offered free of charge and come with continuous support. JZip has poor presentations, uses code from another program, has no legitimate publisher and may introduce adware to your system. JZip is categorized as a Potentially Unwanted Program (PUP) by Prssto Inc. that may enable users to process some types of file archives. Running JZip on your system may cause browser redirects, and you may want to remove the program using a credible cybersecurity solution.

Table of Contents

SpyHunter Detects & Remove JZip

File System Details

JZip may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	jZip.exe	f7940a4ceb97dea8946df0d6cfea5ea4	129
Name: jZip.exe MD5: f7940a4ceb97dea8946df0d6cfea5ea4 Size: 3.77 MB (3777472 bytes) Detections: 129 Type: Executable File Path: D:\Misc Drive\Imp Tools\jZip\jZip.exe Group: Malware file Last Updated: July 22, 2023
2.	jZip.exe.vir	58324c899be31006cff631030477b71b	71
Name: jZip.exe.vir MD5: 58324c899be31006cff631030477b71b Size: 3.77 MB (3777472 bytes) Detections: 71 Path: %SYSTEMDRIVE%\AdwCleaner\Quarantine\C\Program Files (x86)\jZip\jZip.exe.vir Group: Malware file Last Updated: August 4, 2023
3.	JZIP.exe	fc2f0cf188153ad38e8af19c2985c242	32
Name: JZIP.exe MD5: fc2f0cf188153ad38e8af19c2985c242 Size: 1.69 MB (1691136 bytes) Detections: 32 Type: Executable File Path: %PROGRAMFILES%\JZIP\JZIP Group: Malware file Last Updated: April 14, 2016
4.	jZip.exe	90ac66cf9fd16e0b5d7fd42011f3915b	28
Name: jZip.exe MD5: 90ac66cf9fd16e0b5d7fd42011f3915b Size: 2.77 MB (2770368 bytes) Detections: 28 Type: Executable File Path: C:\Program Files (x86)\jZip\jZip.exe Group: Malware file Last Updated: August 17, 2023
5.	jZip.exe	3306c2483ed82c149a4d5c465c622571	26
Name: jZip.exe MD5: 3306c2483ed82c149a4d5c465c622571 Size: 2.78 MB (2782656 bytes) Detections: 26 Type: Executable File Path: C:\Program Files (x86)\jZip\jZip.exe Group: Malware file Last Updated: April 29, 2021
6.	jZip.exe	044416013423134658c763d2e23c441d	19
Name: jZip.exe MD5: 044416013423134658c763d2e23c441d Size: 2.78 MB (2782656 bytes) Detections: 19 Type: Executable File Path: C:\Program Files (x86)\jZip\jZip.exe Group: Malware file Last Updated: January 22, 2024
7.	jZip.exe	89717d787bf3a5d5529d81c518011388	18
Name: jZip.exe MD5: 89717d787bf3a5d5529d81c518011388 Size: 2.31 MB (2315712 bytes) Detections: 18 Type: Executable File Path: %PROGRAMFILES(x86)%\jZip Group: Malware file Last Updated: November 14, 2023
8.	jZip.exe	999ea7d95e52ff90b9a93678688527e7	17
Name: jZip.exe MD5: 999ea7d95e52ff90b9a93678688527e7 Size: 2.64 MB (2647488 bytes) Detections: 17 Type: Executable File Path: %PROGRAMFILES%\jZip Group: Malware file Last Updated: November 15, 2022
9.	JZIP.exe	28e04f0673ed9dfe04dee9b8d9dc9a5b	16
Name: JZIP.exe MD5: 28e04f0673ed9dfe04dee9b8d9dc9a5b Size: 1.69 MB (1691136 bytes) Detections: 16 Type: Executable File Path: %PROGRAMFILES(x86)%\JZIP\JZIP Group: Malware file Last Updated: February 6, 2019
10.	JZIP.exe.vir	57b7379cc7397d0a89362b420d88ef59	11
Name: JZIP.exe.vir MD5: 57b7379cc7397d0a89362b420d88ef59 Size: 1.69 MB (1692672 bytes) Detections: 11 Path: C:\COMPUTER TOOLS\AdwCleaner\Quarantine\C\Program Files (x86)\jZip\JZIP\JZIP.exe.vir Group: Malware file Last Updated: February 12, 2022
11.	jZip.exe	3674741d486047fd2b0ddef01dbd469e	7
Name: jZip.exe MD5: 3674741d486047fd2b0ddef01dbd469e Size: 3.77 MB (3777472 bytes) Detections: 7 Type: Executable File Path: %PROGRAMFILES(x86)%\jZip Group: Malware file Last Updated: September 29, 2020
12.	jZip.exe	a3ab55316119b0aa6c22b22caea6927a	6
Name: jZip.exe MD5: a3ab55316119b0aa6c22b22caea6927a Size: 3.77 MB (3777472 bytes) Detections: 6 Type: Executable File Path: %PROGRAMFILES%\jZip Group: Malware file Last Updated: January 4, 2020
13.	JZIP.exe	be33de67a600f385d0c9dc5729aabf53	6
Name: JZIP.exe MD5: be33de67a600f385d0c9dc5729aabf53 Size: 1.69 MB (1692672 bytes) Detections: 6 Type: Executable File Path: %PROGRAMFILES(x86)%\JZIP\JZIP Group: Malware file Last Updated: April 14, 2016
14.	JZIP.exe	3c32b076846964993f5dd4c51901ad28	4
Name: JZIP.exe MD5: 3c32b076846964993f5dd4c51901ad28 Size: 1.11 MB (1116730 bytes) Detections: 4 Type: Executable File Path: C:\Users\<username>\AppData\Local\Temp\JZIP.exe Group: Malware file Last Updated: November 16, 2021
15.	jZip.exe	0d00430dccaa57957e6947647dac12cf	3
Name: jZip.exe MD5: 0d00430dccaa57957e6947647dac12cf Size: 2.3 MB (2307520 bytes) Detections: 3 Type: Executable File Path: %PROGRAMFILES%\jZip Group: Malware file Last Updated: December 3, 2018
16.	jZip.exe	49782ab90419b1455ac33fb34370dc89	2
Name: jZip.exe MD5: 49782ab90419b1455ac33fb34370dc89 Size: 3.76 MB (3767655 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\jZip Group: Malware file Last Updated: April 14, 2016
17.	jzip.exe	87ce7b967bbcfcb619de3ead4856f30e	1
Name: jzip.exe MD5: 87ce7b967bbcfcb619de3ead4856f30e Size: 781.8 KB (781808 bytes) Detections: 1 Type: Executable File Path: %USERPROFILE%\Downloads Group: Malware file Last Updated: April 14, 2016
18.	jZip.exe	5b8213b29caa11e985add2d3670325cd	1
Name: jZip.exe MD5: 5b8213b29caa11e985add2d3670325cd Size: 838.85 KB (838856 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\{edcbac94-0c47-1db2-edcb-bac940c4b250} Group: Malware file Last Updated: April 14, 2016
19.	JZip.exe	6bfaa96a02c392f782a1b2835a85e0c2	1
Name: JZip.exe MD5: 6bfaa96a02c392f782a1b2835a85e0c2 Size: 1.08 MB (1080368 bytes) Detections: 1 Type: Executable File Path: %USERPROFILE%\Desktop Group: Malware file Last Updated: April 14, 2016
20.	jzip.exe	629290fa6b607f7397f4a89ba008be63	1
Name: jzip.exe MD5: 629290fa6b607f7397f4a89ba008be63 Size: 1.31 MB (1310208 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\{84d6e05a-2ea5-ddfe-84d6-6e05a2ea8168} Group: Malware file Last Updated: April 14, 2016
21.	JZIP.exe	94b200065926f35ae29acb60c0b8d8a0	1
Name: JZIP.exe MD5: 94b200065926f35ae29acb60c0b8d8a0 Size: 1.69 MB (1692672 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\JZIP\JZIP Group: Malware file Last Updated: April 14, 2016
22.	JZIP.exe	116cbb925239ca423a2e73611c399f33	1
Name: JZIP.exe MD5: 116cbb925239ca423a2e73611c399f33 Size: 1.11 MB (1116669 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: April 14, 2016
23.	JZIP.exe	b94f50351c203c18cb8e317a5cc2701e	1
Name: JZIP.exe MD5: b94f50351c203c18cb8e317a5cc2701e Size: 1.69 MB (1692672 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\JZIP\JZIP Group: Malware file Last Updated: April 14, 2016
24.	JZIP.exe	c5a22f7c2ce73049bb5154ec5ce6563c	1
Name: JZIP.exe MD5: c5a22f7c2ce73049bb5154ec5ce6563c Size: 1.11 MB (1116816 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: April 14, 2016
25.	JZIP.exe	948a11bc537ffce1e989974611ebcd72	1
Name: JZIP.exe MD5: 948a11bc537ffce1e989974611ebcd72 Size: 1.68 MB (1689600 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\JZIP\JZIP Group: Malware file Last Updated: April 14, 2016
26.	JZIP.exe	dc4d8f9f7f63d91c5e11e5b591472f61	1
Name: JZIP.exe MD5: dc4d8f9f7f63d91c5e11e5b591472f61 Size: 1.69 MB (1690112 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES(x86)%\JZIP\JZIP Group: Malware file Last Updated: April 14, 2016
27.	JZIP.exe	1a151e39841c0d531f84529e62007813	1
Name: JZIP.exe MD5: 1a151e39841c0d531f84529e62007813 Size: 1.11 MB (1115706 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: April 14, 2016
28.	JZIP.exe	fd80302ac55f4989637c3177093ccf78	1
Name: JZIP.exe MD5: fd80302ac55f4989637c3177093ccf78 Size: 1.11 MB (1116252 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: April 14, 2016

More files

Registry Details

JZip may create the following registry entry or registry entries:

CLSID

{3ED98568-A949-49CB-8ED0-3A703F6D4166}

{49C042E8-2509-41D4-A5C4-D06BA2E0E093}

{672B1330-7E4A-4D61-BE04-E2A132F04E1E}

{7523EAC7-936A-4636-B77B-FEFE20D2239B}

{7B286609-DA97-47E1-AC6B-33B8B4732C95}

{9175E343-1C41-4490-B178-14F36504F07E}

{94047607-3841-4CE6-AE4D-14FF23AF9458}

{9684C656-95A2-497D-9C8D-AD98DD1B48D0}

{C2FCC408-5801-4647-AA1D-A24D5FD6DB87}

{D5F850C7-FF97-4309-890D-3302499C3899}

{E677C7AD-2B66-4539-AA29-3771A1CFEDA9}

File name without path

JZIP.lnk

www.jzip[1].xml

HKEY..\..\..\..{RegistryKeys}

SOFTWARE\Bandoo Media Inc\jZip.exe

SOFTWARE\Classes\*\shellex\ContextMenuHandlers\JZContextMenuExt

SOFTWARE\Classes\*\shellex\ContextMenuHandlers\jZip

SOFTWARE\Classes\*\shellex\ContextMenuHandlers\JZipShlExt

SOFTWARE\Classes\*\shellex\PropertySheetHandlers\{7523EAC7-936A-4636-B77B-FEFE20D2239B}

SOFTWARE\Classes\.zip\jZip.file

SOFTWARE\Classes\AppID\jZipShell.DLL

SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\JZipShlExt

SOFTWARE\Classes\Directory\shellex\DragDropHandlers\JZHardLinkShlExt

SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\JZipShlExt

SOFTWARE\Classes\Drive\shellex\DragDropHandlers\JZHardLinkShlExt

SOFTWARE\Classes\Folder\ShellEx\ContextMenuHandlers\jZip

SOFTWARE\Classes\Folder\ShellEx\DragDropHandlers\JZHardLinkShlExt

SOFTWARE\Classes\jZip.exe

SOFTWARE\Classes\jZip.file

SOFTWARE\Classes\jZipShell.jZipShellExt

SOFTWARE\Classes\Wow6432Node\AppID\jZipShell.DLL

Software\imeshjzipmusictoolbar

SOFTWARE\JZIP

Software\Microsoft\Internet Explorer\DOMStorage\jzip.com

Software\Microsoft\Internet Explorer\DOMStorage\www.jzip.com

SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}

SOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\jzip.com

SOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.jzip.com

SOFTWARE\Microsoft\Windows\CurrentVersion\AppPath\jZip.exe

SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\JzShlobj

SOFTWARE\RegisteredApplications\jZip

SOFTWARE\RegisteredApplications\jZip.exe

SOFTWARE\Wow6432Node\Classes\AppID\jZipShell.DLL

SOFTWARE\Wow6432Node\JZIP

SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}

SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\AppPath\jZip.exe

SOFTWARE\Wow6432Node\RegisteredApplications\jZip

SOFTWARE\WOW6432Node\RegisteredApplications\jZip.exe

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

jZip

Directories

JZip may create the following directory or directories:

%LOCALAPPDATA%\imeshjzipmusictoolbar

%LOCALAPPDATA%\jZip

%PROGRAMFILES%\jZip

%PROGRAMFILES(x86)%\SystemManager\Systemmgr

%PROGRAMFILES(x86)%\jZip

%Temp%\jZip

%USERPROFILE%\AppData\LocalLow\imeshjzipmusictoolbar

%USERPROFILE%\Application Data\imeshjzipmusictoolbar

%UserProfile%\Local Settings\Application Data\imeshjzipmusictoolbar

%UserProfile%\Local Settings\Application Data\jZip

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

JZip

Threat Scorecard

EnigmaSoft Threat Scorecard

SpyHunter Detects & Remove JZip

File System Details

Registry Details

Directories

Submit Comment

Related Posts

Search.jzip.com

Trending

Search Soar USA Browser Extension

Unicom Malware

Noxert.xyz

Most Viewed

Discord Shows Black Screen when Sharing Screen

How To Fix 'Printer Driver is Unavailable' Error

What is Msedge.exe?