What is bootmenu.exe?
bootmenu.exe is a legitimate process file popularly known as BootMenu. It belongs to BootMenu, developed by Ares, Inc. It is located in C:\Windows\System32 by default.
Malware programmers write virus files with malicious scripts and save them as bootmenu.exe with an intention to spread virus on the internet.
Affected Platforms: Windows OS
How to determine if your computer is infected with bootmenu.exe malware?
Look out for these symptoms to check if your PC is infected with bootmenu.exe malware:
- Unstable internet connection
- bootmenu.exe occupies extra CPU space
- PC processing speed slows down
- Browser often redirects to irrelevant websites
- Browser is bombarded with hordes of popup ads
- Computer screen freezes repeatedly
Take the following steps to diagnose your PC for possible bootmenu.exe malware attack:
Step 1: Simultaneously press CTRL+ALT+DEL keys to open Task Manager.
Step 2: If you notice the file located outside C:\Windows\System32, perform an antivirus scan to get rid of the malware.
How to remove bootmenu.exe malware from system using Comodo Antivirus?
Step 1: Download our award-winning Free Antivirus.
Step 2: Installation configuration frames will be displayed. Select the configuration you would like to apply.
Step 3: Select Customize Configuration option and arrange installers, configuration, and file location.
Step 4: Restart your PC after the installation gets over
Step 5: Wait for Comodo Internet Security to update the antivirus.
Step 6: Proceed with the quick scan that automatically begins after the update.
Step 7: If threats are found during the scanning, you will be notified through an alert screen.
Step 8: Comodo Antivirus will remove bootmenu.exe malware from your computer including all other malwares!
| No. | Company | File Type | SHA1 | MD5 | Malware Name |
Digitally Signed |
File Version |
Product Version |
Submitted From |
Malware Behavior |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | Ares Inc. | Executable | cf84d44b6e4ee0d0 2d475f2a8433095a 4f9a7488 |
4269cf960fffcb33 55f19383fb3e4fb8 |
Virus.Win32. Sality.gen |
No | 1.1.0.4 | 1.1.0.4 |  Taiwan |
N/A |
| 2 | N/A | Executable | a953241bc23d414c bb2046a974545370 4ee79a84 |
df9ab26d667c8ab3 0b3cb15d144ed71a |
Virus.Win32. Sality.gen |
No | N/A | N/A | Taiwan |
N/A |
| 3 | Ares Inc. | Executable | 8c59f4d1ac0757d9 9b8f8d7a8446205b e9aafaf8 |
b110b1d47e0fb466 d6400027ec7b8a21 |
Virus.Win32. Sality.gen |
No | 1.1.0.4 | 1.1.0.4 | Taiwan |
N/A |
| 4 | N/A | Non-executable | f8d9ff2a8fc7b214 bf6efff5cef7879f cc9791bd |
9a45d47326881b55 5aadd6bf9dc71141 |
N/A | No | N/A | N/A |  France |
N/A |
- 4 items per page
- 8 items per page
- 16 items per page
- 32 items per page
| No. | Company | File Type | SHA1 | MD5 | Digitally Signed |
File Version |
Product Version |
Submitted From |
|---|---|---|---|---|---|---|---|---|
| 1 | N/A | Executable | 481ee83b6fb72ab6 9bf91bee118ab76b 53681845 |
c3c76f71b2f45eff 6dd1081fe0e8c644 |
No | N/A | N/A |  Bulgaria |
| 2 | N/A | Executable | b1eadebaa1534577 878ee79723e2712d e43dfba6 |
6b563f2a507e2e97 e2916785e4344b94 |
No | N/A | N/A |  Spain |
| 3 | N/A | Executable | 6258f02accfd9196 e2769737ee1f8718 9b30122a |
0b1c065c7a2384b7 bb58eff6ca92288d |
No | N/A | N/A | Taiwan |
| 4 | Zoho | Executable | ff461cf9b958648a 6af2cf41bf8921ae 1b7fc72a |
f9d84ec1573d2f05 cabc4e78a7c7a5a4 |
Yes | 5,0,0,3124 | 5,0,0,3124 |  10.100.130.251/32 |
Italy
South Africa
Japan
Austria
Germany
Russian Federation
Macau
Belgium
Canada
United Kingdom
Netherlands
Portugal
Australia
Israel
New Zealand
Singapore
United States
