home

PCBoosterCMenu.dll

PC Booster Context Menu

Energizer Softech Pvt ltd

The module PCBoosterCMenu.dll, “PC Booster Context Menu Module” by Energizer Softech Pvt ltd has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is registered as a context menu handler (displays a menu when right-clicked in Explorer) named “PCBoosterCMenu”.
Publisher:
PC Booster  (signed by Energizer Softech Pvt ltd)

Product:
PC Booster Context Menu

Description:
PC Booster Context Menu Module

Version:
1, 0, 0, 2

MD5:
f9e3c9193e5919bb81f54c03432ba928

SHA-1:
763f6c120e61048b6492fbb6d81816b9ec242f70

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/16/2024 2:50:26 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.11.27.12

File size:
630.5 KB (645,616 bytes)

Product version:
1, 0, 0, 2

Copyright:
(c)PC Booster Copyright 2009

Original file name:
PCBoosterCMenu.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\pc booster\pcboostercmenu.dll

Digital Signature
Signed by:
Energizer Softech Pvt ltd

Authority:
COMODO CA Limited

Valid from:
7/20/2011 5:00:00 PM

Valid to:
7/20/2016 4:59:59 PM

Subject:
CN=Energizer Softech Pvt ltd, O=Energizer Softech Pvt ltd, STREET=13/267 Geeta Colony, L=Delhi, S=Delhi, PostalCode=110031, C=IN

Issuer:
CN=COMODO Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
209A749E9EB13B3BCA0002A965947A5D

Registration
CLSID:
{92BC9DAD-8BC5-4B9A-BC65-2A2FF3302B8C}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
11/21/2010 10:23:51 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:EeunRbWn27NpAaDU1/ehhzD7Lb9uO88uR4vNBJANrf6D:EekS27NpAYCYhzzbAO88uRCZtD

Entry address:
0x3AD39

Entry point:
E9, E2, 7D, 02, 00, E9, CD, 3A, 07, 00, E9, C8, 2F, 01, 00, E9, E3, C4, 02, 00, E9, CE, C3, 00, 00, E9, C9, 83, 02, 00, E9, B4, 99, 01, 00, E9, B7, 3B, 07, 00, E9, 7A, CB, 05, 00, E9, 05, 7C, 01, 00, E9, 60, 0B, 03, 00, E9, 2B, E4, 00, 00, E9, 76, 9E, 05, 00, E9, 51, B1, 01, 00, E9, AC, 8F, 01, 00, E9, 47, 3B, 02, 00, E9, 32, 5F, 00, 00, E9, 7D, A1, 06, 00, E9, 28, 64, 02, 00, E9, B3, CC, 03, 00, E9, 5E, E1, 01, 00, E9, D9, DA, 01, 00, E9, DA, 37, 03, 00, E9, 7F, D0, 01, 00, E9, 8A, AA, 01, 00, E9, A5, 6D...
 
[+]

Entropy:
5.7035

Developed / compiled with:
Microsoft Visual C++ 8.0 (Debug)

Code size:
484 KB (495,616 bytes)

Context Menu Handler
Display name:
PCBoosterCMenu

CLSID:
{92BC9DAD-8BC5-4B9A-BC65-2A2FF3302B8C}

CLSID name:
MenuItem Class


Remove PCBoosterCMenu.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.