We received the file SYSTEMBOOSTER.DLL and detected that SYSTEMBOOSTER.DLL is not good.
SYSTEMBOOSTER.DLL is Adware. You should remove the file SYSTEMBOOSTER.DLL.
Kill the process SYSTEMBOOSTER.DLL and remove SYSTEMBOOSTER.DLL from Windows.
Malware Analysis of SYSTEMBOOSTER.DLL
Full path on a computer: %Common Appdata%\System Booster\SystemBooster.dll
Detected by UnHackMe:
SYSTEMBOOSTER.DLL
Default location: %Common Appdata%\System Booster\SystemBooster.dll
Removal Results: Success
Number of reboot: 1
SYSTEMBOOSTER.DLL is known as:
Adware.SProtector.D
SYSTEMBOOSTER.DLL hash:
- MD5: 06df10ee7fc34b214f709b9032f46909
The file tries to connect to the dangerous web site.
How to quickly detect SYSTEMBOOSTER.DLL presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{39294157}\UninstallString: “”%SysDir%\RUNDLL32.EXE” “C:\DOCUME~1\ALLUSE~1\APPLIC~1\SYSTEM~1\SYSTEM~1.DLL”,_uninstall /un”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{39294157}\DisplayName: “System Booster”
- HKLM\System\CurrentControlSet\Services\39294157\ImagePath: “”%SysDir%\rundll32.exe” “c:\docume~1\alluse~1\applic~1\system~1\SystemBoosterSvc.dll”,service”
- HKLM\System\CurrentControlSet\Services\39294157\DisplayName: “System Booster”
- HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs: “c:\docume~1\alluse~1\applic~1\system~1\system~1.dll”
Folders:- %Common Appdata%\System Booster
Files:- %Temp%\__tmp_0e6b0c80
- %Common Appdata%\System Booster\SystemBooster.dll
- %Common Appdata%\System Booster\SystemBoosterSvc.dll