home

SystemCleaner.exe

System Cleaner

Pointstone Software, LLC

The application SystemCleaner.exe, “It is time to give your computer a good cleaning on the inside!” by Pointstone Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Pointstone Software, LLC  (signed and verified)

Product:
System Cleaner

Description:
It is time to give your computer a good cleaning on the inside!

Version:
5.9.4.359

MD5:
aef96db7e11d1d314908cc584967ef25

SHA-1:
de464dddbbe9b107298515408984f9538a6fd8fd

SHA-256:
4e2da982a686f8c37957c79614b4ff319dedee9a0203d701504c3e463801ce40

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 10:18:54 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.Pointstone
16.11.4.22

File size:
2.9 MB (3,012,400 bytes)

Product version:
5.9.0.0

Copyright:
Copyright © 1997 - 2011 Pointstone Software, LLC

Trademarks:
System Cleaner and Pointstone are either trademarks or registered trademarks of Pointstone Software, LLC

Original file name:
SystemCleaner.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\system cleaner 5\systemcleaner.exe

Digital Signature
Signed by:
Pointstone Software, LLC

Authority:
The USERTRUST Network

Valid from:
3/18/2010 2:00:00 AM

Valid to:
3/18/2012 1:59:59 AM

Subject:
CN="Pointstone Software, LLC", O="Pointstone Software, LLC", STREET=220 E. Delaware Avenue, L=Newark, S=Delaware, PostalCode=19711, C=US

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
39D522210A1786B5F689AF9B0415E163

File PE Metadata
Compilation timestamp:
9/1/2011 2:48:29 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:bMeRNlPi7QwZ2LFAkaOGx6rlYTFHYyLLvgQ8YKQr9WZUeZaw0fF+QoBYbGhaJqON:l3l6EwZ2LFAkaOHZYTNVjK88UeZutvAG

Entry address:
0x1000

Entry point:
68, 01, 60, A5, 00, E8, 01, 00, 00, 00, C3, C3, 1A, 99, 46, 60, A0, 00, CD, 15, 56, 3E, CD, 45, D3, F8, 7B, E8, 9C, B3, 1D, FC, 1D, 37, C4, 60, 14, 32, E5, F9, A5, 3D, 9D, A9, 56, 80, AD, B4, 4C, B6, 0B, 5F, 47, 99, 19, 17, EB, 1F, 48, 32, B6, 1F, 51, A9, 23, 93, 53, 73, 19, 54, 61, 24, AA, 60, AE, 16, 82, AB, DD, 30, 41, 7D, 03, 70, 7A, ED, B2, F8, FF, B2, C7, 11, 76, CF, 24, 2B, E4, 5A, BC, 9F, FC, 73, 8D, DB, DE, FF, 9D, A4, F7, C7, 0D, 03, 38, 41, 8F, 22, F8, D4, C2, BA, C8, 40, 92, CE, 23, 60, 6C, 23...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
3.7 MB (3,864,064 bytes)

Remove SystemCleaner.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.