home

www.pcbooster.com

WHOISGUARD, INC.  (Proxy Registrant)

Domain Information

The domain www.pcbooster.com is registered by proxy through ENOM, INC. and was originally registered in December of 2003. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Phoenix, Arizona within the United States which resides on the CloudFlare, Inc. network. The domain uses the CloudFlare CDN, a distributed domain name server service which utilizes a number of reverse proxy IP Addresses (see below).
Registrar:
ENOM, INC.

Server location:
Arizona, United States (US)

Create date:
Tuesday, December 16, 2003

Expires date:
Saturday, December 16, 2017

Updated date:
Saturday, April 11, 2015

ASN:
AS13335 CLOUDFLARENET - CloudFlare, Inc.,US

Root domain:
pcbooster.com

Whois:
2 pcbooster.com records

Scanner detections:
Detections  (80% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Installer.O, Win32.Generic.EnergizerSoftechPvt.Meta, Win32.Generic.EnergizerSoftechPvt.Installer.Meta
100.00%

Sophos
Energizer Softech Installer, PUA 'Energizer Softech Installer' (of type Adware), Energizer Softech Installer (PUA)
75.00%

ESET NOD32
MSIL/MyPCBackup, Win32/MyPCBackup
50.00%

Trend Micro House Call
Suspicious_GEN.F47V1211, Suspicious_GEN.F47V0414
50.00%

Dr.Web
Trojan.DownLoader11.45558
50.00%

VIPRE Antivirus
Trojan.Win32.Generic
25.00%

avast!
Win32:Malware-gen
25.00%

McAfee
Artemis!1715EA715159
25.00%

AVG
Generic
25.00%

Bkav FE
W32.HfsAdware
25.00%

The domain www.pcbooster.com has been seen to resolve to the following 7 IP addresses.

104.20.70.90
November 7, 2015

104.20.69.90
November 7, 2015

190.93.242.62
September 28, 2014

190.93.241.62
September 28, 2014

141.101.113.63
September 28, 2014

141.101.112.63
September 28, 2014

190.93.243.62
September 28, 2014

File downloads found at URLs served by www.pcbooster.com.

9 / 68      (PUP)
http://www.pcbooster.com/.../download.php  (pcboostersetup.exe)

9 / 68      (PUP)
http://www.pcbooster.com/download.php  (pcboostersetup.exe)

0 / 68
http://www.pcbooster.com/.../index.php?t202id=51108&c1=${VURLID}&c2=recommended4  (index.htm)

3 / 68      (PUP)
http://www.pcbooster.com/.../download.php  (driverboosterinstaller.exe)

4 / 68      (PUP)
http://www.pcbooster.com/download.php  (pcboostersetup.exe)

2 / 68      (PUP)
http://www.pcbooster.com/download.php  (pcboostersetup.exe)

2 / 68      (PUP)
http://www.pcbooster.com/.../download.php  (pcboostersetup.exe)

URL:
http://www.pcbooster.com/

Google Analytics:
UA-22450157

Title:
“PC Booster | Tune-up and Speed up your PC today | Official Site”

Description:
“PC Booster repairs everyday PC problems such as slowdowns, crashes, and freezes, helping users to breathe life into their PC. PC Booster quickly optimizes”

SSL certificate subject:
CN=ssl321218.cloudflaressl.com, OU=PositiveSSL Multi-Domain, OU=Domain Control Validated

SSL certificate issuer:
CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Web server:
cloudflare-nginx

Facebook:
Likes:  1,665
Shares:  274
Comments:  24,279

Statistics are for the previous month.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.