home

SystemCleaner.exe

System Cleaner

Pointstone Software, LLC

The application SystemCleaner.exe, “It is time to give your computer a good cleaning on the inside!” by Pointstone Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Pointstone Software, LLC  (signed and verified)

Product:
System Cleaner

Description:
It is time to give your computer a good cleaning on the inside!

Version:
5.7.3.230

MD5:
cbf1be50a8cd259c5b1f93b046d06b17

SHA-1:
b4a9c2f21702cf6f8ea1a8af4069fba460a7fbd7

SHA-256:
018af51756407c110be5c47ddadd6fe018d0ac99684d62577ea69cb5ce251a4b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/23/2024 2:28:13 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.Pointstone
16.8.29.1

File size:
2.7 MB (2,866,904 bytes)

Product version:
5.7.3.0

Copyright:
Copyright © 1997 - 2009 Pointstone Software, LLC

Trademarks:
System Cleaner and Pointstone are either trademarks or registered trademarks of Pointstone Software, LLC

Original file name:
SystemCleaner.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\pointstone\system cleaner 5\systemcleaner.exe

Digital Signature
Signed by:
Pointstone Software, LLC

Authority:
The USERTRUST Network

Valid from:
3/5/2008 1:00:00 AM

Valid to:
3/6/2010 12:59:59 AM

Subject:
CN="Pointstone Software, LLC", O="Pointstone Software, LLC", STREET=220 E. Delaware Avenue, L=Newark, S=Delaware, PostalCode=19711, C=US

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
0A38CECD27D24D5BABCE0D05DC3CDAF9

File PE Metadata
Compilation timestamp:
6/11/2009 3:33:46 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:xZkAKtNqbP6UY3yVAY11oJbmoFA5Sl2mxjXiBU6rXO29EVElblPv572T+sz6jVOz:x+9tcQ3A11oQfSp+BvO29EVc3572T+sb

Entry address:
0x1000

Entry point:
68, 01, F0, 9F, 00, E8, 01, 00, 00, 00, C3, C3, FE, 1E, 39, F0, 15, 05, 4B, F1, 8C, DF, 08, 7E, 7D, 59, 02, C4, 1B, 96, AB, 55, 27, 02, 0E, 2F, 2F, D4, 5A, 3A, 1D, BB, 90, E7, E2, 44, 59, D7, D5, C3, 9F, 26, 52, 56, DE, 6E, 11, 7F, 0B, 2D, 64, 69, 80, 39, F7, 9B, 8A, 80, 3F, F9, AE, B1, 41, AF, 8D, 90, 6E, 72, F3, AF, 5E, B2, CA, E2, 3B, 30, F6, B4, 40, 47, D5, CF, B0, 6C, 20, B2, F1, FD, 97, 67, EF, 3E, 15, 1E, FB, 27, BD, 08, 15, BA, E2, A0, 75, E3, 10, 13, 36, CF, A5, 97, 5B, 51, AC, 5B, 19, E9, 2E, F5...
 
[+]

Entropy:
7.9841

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
3.5 MB (3,672,576 bytes)

Remove SystemCleaner.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.