How to remove gzip.exe

gzip.exe

The module gzip.exe has been detected as Spy.Zbot

gzip.exe
Remove gzip.exe

File Details

Product Name:

Gzip
Company Name:

GnuWin32 <http://gnuwin32.sourceforge.net>
MD5: 022980a303be6a7b1b7c519431c4fbc8
Size: 64 KB
First Published: 2018-05-10 09:04:09 (6 years ago)
Latest Published: 2018-06-05 07:05:49 (6 years ago)
Status: Spy.Zbot (on last analysis)
Analysis Date: 2018-06-05 07:05:49 (6 years ago)

Common Places:

%sysdrive%\$recycle.bin\s-1-5-21-2519879775-132912829-4008471905-500
%sysdrive%\500\all activation\bios\программы для прошивки
%sysdrive%\500\downloads\all activation windows (7-8-10) v13.5 2017\all activation\bios\программы для прошивки
%sysdrive%\500\act\all activation\bios\программы для прошивки
%sysdrive%\new folder\all activation windows 7-8-10 v10.5 + office activator [sadeempc]\all activation\bios\программы для прошивки
%sysdrive%\_old\all activation\all activation\bios\программы для прошивки
%profile%\videos\km\all activation\bios\программы для прошивки
%sysdrive%\all activation windows 7-8-10 v19.6.2018 [cracksnow]\all activation\bios\программы для прошивки
%programfiles%\all activation windows (7-8-10)\all activation\bios\ïðîãðàììû äëÿ ïðîøèâêè
%profile%\downloads

Geography:

23.5%
17.6%
11.8%
11.8%
5.9%
5.9%
5.9%
5.9%
5.9%
5.9%

OS Version:

Windows 10 64.7%
Windows 7 17.6%
Windows 8.1 11.8%
Windows Server 2012 R2 5.9%

Analysis

Subsystem: Windows CUI
PE Type: pe
OS Bitness: 32
Image Base: 0x00400000
Entry Address: 0x00001280

PE Sections:

Name Size of data MD5
.text 50176 1c6d897cf29737d1ddbffeb15a27c287
.data 3072 b2e679f3ad2c46673feb192ddb975d60
.rdata 5632 a795993ab4b0cb8f1fb6721dc4f17824
.bss 0 00000000000000000000000000000000
.idata 2048 3959c65435ec5fbe9318136e64326e7f
.rsrc 4096 93ae2b113805a28b9c13ad5418a32bab

More information:

Search on Virustotal
Download GridinSoft Anti-Malware - Removal tool for gzip.exe
copyright for information about gzip.exe