home

zlib.dll

ZLib.DLL

Product:
ZLib.DLL

Description:
zlib data compression library

Version:
1.1.4.0

MD5:
4965107d112666d3835308a831a29274

SHA-1:
50439b99ce525ecb74c554e1dc43ddb39481dfa4

SHA-256:
105280995cd5746078d67b8651dfe4ad2abcd532d7ad528d3100c535b0b538af

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 12:04:29 PM UTC  (today)

File size:
52 KB (53,248 bytes)

Copyright:
(C) 1995-2002 Jean-loup Gailly & Mark Adler

Original file name:
zlib.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\ojprol7x00_full_14\util\ccc\diagnostics\zlib.dll

File PE Metadata
Compilation timestamp:
3/13/2002 11:46:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.0

CTPH (ssdeep):
768:MX8TJyuiie4tVkIuCE8U8tOF5GqqQhGbY5ma78ct+Jn0r25mSSIjpe5uw+/Bz4o1:MXGJxIIuCE8U8tOF5pUB0wEo+X

Entry address:
0xA5E0

Entry point:
55, 8B, EC, 56, 57, BF, 01, 00, 00, 00, 8B, 75, 0C, 85, F6, 75, 0D, 83, 3D, D0, E1, 00, 10, 00, 75, 04, 33, C0, EB, 47, 83, FE, 01, 74, 05, 83, FE, 02, 75, 0E, FF, 75, 10, 56, FF, 75, 08, E8, 80, FE, FF, FF, 8B, F8, 85, FF, 74, 0E, FF, 75, 10, 56, FF, 75, 08, E8, 2C, 00, 00, 00, 8B, F8, 85, F6, 74, 05, 83, FE, 03, 75, 12, FF, 75, 10, 56, FF, 75, 08, E8, 57, FE, FF, FF, 85, C0, 75, 02, 33, FF, 8B, C7, 5F, 5E, 5D, C2, 0C, 00, CC, FF, 25, 44, B0, 00, 10, B8, 01, 00, 00, 00, C2, 0C, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.1379

Developed / compiled with:
Microsoft Visual C++

Code size:
38 KB (38,912 bytes)

The file zlib.dll has been discovered within the following programs.

DAP Plug-in for 64 Bit IE  by SpeedBit Ltd.
Publisher's description - “In order to use DAP with the 64-bit version of Internet Explorer you must download and install an additional plug-in. When you install DAP, it performs a test to see if you are using a 64-bit version of Windows.”
www.speedbit.com/dap-help/64bit-internet-explorer
53% remove it
Download Accelerator Plus (DAP)  by SpeedBit Ltd.
Download Accelerator Plus (also referred to as DAP) is a download manager for Microsoft Windows. It uses multipart download to increase speeds, creating multiple connections of different file segments to speed up downloads.
redir.speedbit.com/redir.asp?ID=7064
22% remove it
FlashGet 2.0  by Trend Media Corporation Limited
www.FlashGet.com
41% remove it
GameShadow
Publisher's description - “GameShadow checks with the server every 15 minutes for any remote downloads, so it may take up to 15 minutes to start the download on the remote PC running GameShadow.”
www.gameshadow.com
25% remove it
iQ Browser 0.9.8  by myiq, Inc.
www.myiq.cn
About 6% of users remove it
Lorex Auto Port Forwarding  by Lorex Technology
www.lorextechnology.com
About 6% of users remove it
PDF reDirect (remove only)  by EXP Systems LLC
Publisher's description - “PDF ReDirect is a fast, free, and easy-to-use PDF creator. It has no restrictions, no watermarks, no spyware, no adware, and no pop-up advertisements. Create PDFs, Apply Stamps, Merge and Optimize. Lock your PDFs. Enter Metadata and set Font Options.”
www.exp-systems.com
8% remove it
SmartSound Quicktracks Plugin  by SmartSound Software Inc
Publisher's description - “Enjoy the speed and convenience of downloading SmartSound's customizable music right from your web browser. Quicktracks' Award Winning customization gives you unlimited downloads of music customized to the exact length you need.”
www.smartsound.com
5% remove it
Verizon Media Manager  by Verizon
Publisher's description - “Media Manager is a Verizon service that lets you access media content that either resides on or is streamed from your PC. If you have a Verizon-provided DVR, you can download the Media Manager software by selecting the Download button below.”
www.verizon.com
21% remove it
 
Powered by Should I Remove It?

The file zlib.dll has been seen being distributed by the following 6 URLs.

http://s10001.chomikuj.pl/File.aspx?e=T4BdsehFZkMVguwXK9Wr0IMVmOxBtul5RhsNNFMhI98gRVtkUHuLWlMU8f8Bipz5V4wHV9CZby_p3TGLmDIH6vQvjdcpy9k6Rw3ClmuWUB3dhNuGZ-vxMZlITq_H9VPi&pv=2

http://qss.fileburst.com/release/gold/.../zlib.dll

http://www.aodrag.es/updater/.../zlib.dll

http://www.aodrag.es/updater/.../zlib.dll

https://mega.nz/temporary/.../JMUFiZKJ

https://mega.nz/persistent/.../JMUFiZKJ

Scan zlib.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.