home

SystemCleaner.exe

System Cleaner

Pointstone Software, LLC

The application SystemCleaner.exe, “It is time to give your computer a good cleaning on the inside!” by Pointstone Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Pointstone Software, LLC  (signed and verified)

Product:
System Cleaner

Description:
It is time to give your computer a good cleaning on the inside!

Version:
5.8.0.250

MD5:
eadc3456b67cb08d5d26438240356126

SHA-1:
d6f927449be8b073d32dd81893f093b26cc76c88

SHA-256:
f4233911ad93958a5bde234707ace28d36707ead9795d6f07836afb21a7bde0b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 11:37:54 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.Pointstone
16.2.13.0

File size:
2.6 MB (2,725,080 bytes)

Product version:
5.8.0.0

Copyright:
Copyright © 1997 - 2009 Pointstone Software, LLC

Trademarks:
System Cleaner and Pointstone are either trademarks or registered trademarks of Pointstone Software, LLC

Original file name:
SystemCleaner.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\pointstone\system cleaner 5\systemcleaner.exe

Digital Signature
Signed by:
Pointstone Software, LLC

Authority:
The USERTRUST Network

Valid from:
3/5/2008 1:00:00 AM

Valid to:
3/6/2010 12:59:59 AM

Subject:
CN="Pointstone Software, LLC", O="Pointstone Software, LLC", STREET=220 E. Delaware Avenue, L=Newark, S=Delaware, PostalCode=19711, C=US

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
0A38CECD27D24D5BABCE0D05DC3CDAF9

File PE Metadata
Compilation timestamp:
10/23/2009 7:20:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:VT3fIHKIyfDblgsotqrA9/x+u+s/rW0O/7W/qvEuEEl55inkJ9ULz6jV2IiEq:RQqIWnGslAZ2D/7xMkcLCq

Entry address:
0x1000

Entry point:
68, 01, C0, A1, 00, E8, 01, 00, 00, 00, C3, C3, D0, 2B, 65, DD, 8A, 8B, CB, DF, 72, 2A, 5C, 11, F6, D3, 20, E2, DE, DF, F9, 64, D1, A5, AE, DC, CF, 92, 53, CD, B2, C1, 00, 36, 6E, 80, B3, 2D, 2D, BA, 23, 55, C4, 5F, 8C, 6C, 77, B6, 54, E2, E8, E6, 88, DD, 74, C9, 2E, F3, A4, 8E, 1E, 05, EF, 59, 66, 4D, AC, ED, 87, 82, EA, 4F, 3B, BB, 4D, FA, 11, D4, 04, 4F, 0D, 95, 36, 78, 5A, 01, FB, 90, A9, ED, B1, 47, 83, 8A, 63, A3, E8, BD, 39, 15, 1F, 7E, 71, 16, BF, 59, DF, 32, 1A, 20, 22, AD, A0, 05, 5E, 40, E9, A1...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
3.7 MB (3,835,904 bytes)

Remove SystemCleaner.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.