System Healer
Posted: September 25, 2015
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Ranking: | 4,521 |
|---|---|
| Threat Level: | 1/10 |
| Infected PCs: | 102,350 |
| First Seen: | August 4, 2015 |
|---|---|
| Last Seen: | October 16, 2023 |
| OS(es) Affected: | Windows |
As the time passes, you may notice that your PC starts working slower and slower. This decreasing operating speed may occur due to some unnecessary 'junk' files burdening your system. These files need to be deleted, but you should not choose a program called System Healer for the job. This application is a Potentially Unwanted Program, and it will not provide you with the help you need. Since the users' feedback about System Healer is pretty negative, it is not surprising that its developers rely on some not too fair distribution methods. It is true that you can download this PUP from its official site, but it also may arrive in a set with other free applications. The people behind System Healer have done their best to create a persuasive official platform. They promise that their application will boost the operating speed of your PC although the majority of clients are unable to detect any positive changes.
To convince you that System Healer is worth it, its creators have even added some positive reviews. These opinions don't belong to real people as they are fabricated. You should also know that this PUP isn't freeware. As soon as it finishes the scanning process that may display highly exaggerated and misleading results, System Healer will encourage you to purchase its full version. It costs $30, but the PUP also promotes additional equally useless tools to charge you even more. If you agree to pay, you will just lose your money, so you should refuse it. In addition, the registration form requires your email address, and nothing guarantees it will not be used for some malicious operations. The best course of action is to delete System Healer, eradicate the junk files and fix the possible registry errors with actual system optimization software.
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\Program Files (x86)\SystemHealer\SystemHealer.exe
File name: SystemHealer.exeSize: 2.55 MB (2559688 bytes)
MD5: 55313fcc06e2a8bfedda160122c0e3fc
Detection count: 138
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\SystemHealer\SystemHealer.exe
Group: Malware file
Last Updated: January 21, 2023
C:\Program Files (x86)\SystemHealer\SystemHealer.exe
File name: SystemHealer.exeSize: 4.06 MB (4060832 bytes)
MD5: 6b47287182ee839e55808dc5663e58c4
Detection count: 131
File type: Executable File
Mime Type: unknown/exe
Path: C:\Program Files (x86)\SystemHealer\SystemHealer.exe
Group: Malware file
Last Updated: June 3, 2022
%TEMP%\8DO5XDn17QDWwK3Y\86\SystemHealer.exe
File name: SystemHealer.exeSize: 2.92 MB (2922248 bytes)
MD5: 784d708909831bb8fc8e41795d8ab466
Detection count: 85
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\8DO5XDn17QDWwK3Y\86
Group: Malware file
Last Updated: August 12, 2017
%TEMP%\systemhealer.exe
File name: systemhealer.exeSize: 5.04 MB (5045328 bytes)
MD5: 6e4edda2785b3c8680a473184b03006e
Detection count: 75
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: August 12, 2017
setup.exe
File name: setup.exeSize: 2.92 MB (2928024 bytes)
MD5: f351f0f1ba677786ed1c289de2a2e28e
Detection count: 74
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
%TEMP%\SystemHealer.exe
File name: SystemHealer.exeSize: 2.98 MB (2984528 bytes)
MD5: a44e85f734d2b3232d1d8eed39394b6f
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: August 12, 2017
file.exe
File name: file.exeSize: 3.76 MB (3766792 bytes)
MD5: 863711c57d9e173fb98467a97680ce90
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
%USERPROFILE%\Downloads\SystemHealer.exe
File name: SystemHealer.exeSize: 4.85 MB (4854664 bytes)
MD5: bd644b16da361f518072184619486c4f
Detection count: 60
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Downloads
Group: Malware file
Last Updated: August 12, 2017
%TEMP%\9a42977c1a57450cb2209f0f97887460\SystemHealer.exe
File name: SystemHealer.exeSize: 4.44 MB (4446120 bytes)
MD5: 2dfc4b182546068ace3d13dbb533c6af
Detection count: 46
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\9a42977c1a57450cb2209f0f97887460
Group: Malware file
Last Updated: August 12, 2017
%TEMP%\SystemHealer.exe
File name: SystemHealer.exeSize: 2.92 MB (2922248 bytes)
MD5: 1bb0336190ae1d77ac0ab8ee8f0a5916
Detection count: 45
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: August 12, 2017
file.exe
File name: file.exeSize: 4.7 MB (4703728 bytes)
MD5: 8a19d9a17038b664cd5479bddbd26c5e
Detection count: 43
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: March 21, 2016
%TEMP%\install_tmp3\SystemHealer.exe
File name: SystemHealer.exeSize: 5.04 MB (5045312 bytes)
MD5: b07a71b202343559d9d989f66ce4ff53
Detection count: 43
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\install_tmp3
Group: Malware file
Last Updated: August 12, 2017
%TEMP%\systemhealer.exe
File name: systemhealer.exeSize: 5.04 MB (5045328 bytes)
MD5: 8ad3383ec440ed25279c4d7021c1c9ca
Detection count: 42
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: August 12, 2017
%SYSTEMDRIVE%\AdwCleaner\FileQuarantine\C\Program Files (x86)\SystemHealer\SystemHealer.exe.vir
File name: SystemHealer.exe.virSize: 2.55 MB (2559688 bytes)
MD5: 6102120681700d55c34e575886a10582
Detection count: 28
Mime Type: unknown/vir
Path: %SYSTEMDRIVE%\AdwCleaner\FileQuarantine\C\Program Files (x86)\SystemHealer\SystemHealer.exe.vir
Group: Malware file
Last Updated: August 28, 2020
%TEMP%\mgpVFSYkDBdoL\12\SystemHealer.exe
File name: SystemHealer.exeSize: 2.98 MB (2984536 bytes)
MD5: 28941dccbd4178ded0c1a8df91f82e0f
Detection count: 25
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\mgpVFSYkDBdoL\12
Group: Malware file
Last Updated: August 12, 2017
%TEMP%\systemhealer.exe
File name: systemhealer.exeSize: 2.92 MB (2922264 bytes)
MD5: 691935738875c7ba4556c44acce45dcc
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: August 12, 2017
%PROGRAMFILES(x86)%\SystemHealer\SystemHealer.exe
File name: SystemHealer.exeSize: 2.55 MB (2559168 bytes)
MD5: b2bf4c574cf5f7f281a3b29e5679796c
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES(x86)%\SystemHealer
Group: Malware file
Last Updated: December 17, 2018
%PROGRAMFILES%\SystemHealer\SystemHealer.exe
File name: SystemHealer.exeSize: 4.06 MB (4060832 bytes)
MD5: 771cf5d6f4e0805ba9cf1c31575bd366
Detection count: 11
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\SystemHealer
Group: Malware file
Last Updated: August 12, 2017
setup.exe
File name: setup.exeSize: 2.92 MB (2922680 bytes)
MD5: fa90717bb176a42edd11e38411309dfc
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: August 23, 2018
%PROGRAMFILES%\SystemHealer\SystemHealer.exe
File name: SystemHealer.exeSize: 4.33 MB (4336800 bytes)
MD5: 90a6d75fa64023321f24658a8ef21eae
Detection count: 6
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\SystemHealer
Group: Malware file
Last Updated: August 12, 2017
%TEMP%\5db8897448cb45e39f5809dfb1debe6e\SystemHealer.exe
File name: SystemHealer.exeSize: 4.44 MB (4446120 bytes)
MD5: 7e8a9e320b0724606f0b40a5f8bed57d
Detection count: 2
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\5db8897448cb45e39f5809dfb1debe6e
Group: Malware file
Last Updated: August 12, 2017
C:\Program Files\systemhealer\SystemHealer.exe
File name: C:\Program Files\systemhealer\SystemHealer.exeMD5: ed948ed67e3b0d1b27f2abe2842c945
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\SystemHealer\Uninstaller.exe
File name: C:\Program Files\SystemHealer\Uninstaller.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
HealerConsole.exe
File name: HealerConsole.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
HealerCheckout.exe
File name: HealerCheckout.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
SHShellExtension.dll
File name: SHShellExtension.dllFile type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
More files
Registry Modifications
The following newly produced Registry Values are:
File name without pathhttp_systemhealer.com_0.localstoragehttp_systemhealer.com_0.localstorage-journalLaunch System Healer.lnksystemhealer[1].xmlRegexp file mask%WINDIR%\Prefetch\SYSTEMHEALER.exe[RANDOM CHARACTERS].pf%WINDIR%\System32\Tasks\System Healer Task%WINDIR%\System32\Tasks\System HealerPeriod%WINDIR%\System32\Tasks\System HealerStartUp%WINDIR%\System32\Tasks\System[RANDOM CHARACTERS]Healer[RANDOM CHARACTERS]%WINDIR%\System32\Tasks\SystemHealer Monitor%WINDIR%\System32\Tasks\SystemHealer Run Delay%WINDIR%\Tasks\System HealerPeriod.job%WINDIR%\Tasks\System HealerStartUp.job%WINDIR%\Tasks\System[RANDOM CHARACTERS]Healer[RANDOM CHARACTERS].jobHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\DOMStorage\systemhealer.comSoftware\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\HealerCheckout.exeSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer Period.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer Period.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer StartUp.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer StartUp.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerPeriod.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerPeriod.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerStartUp.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerStartUp.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer DelayedSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer MonitorSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer PeriodSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer StartUpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer TaskSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System HealerPeriodSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System HealerStartUpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer MonitorSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer Run DelaySOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer TaskSoftware\System HealerHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}SystemHealerSystemHealer_is1
File name without pathhttp_systemhealer.com_0.localstoragehttp_systemhealer.com_0.localstorage-journalLaunch System Healer.lnksystemhealer[1].xmlRegexp file mask%WINDIR%\Prefetch\SYSTEMHEALER.exe[RANDOM CHARACTERS].pf%WINDIR%\System32\Tasks\System Healer Task%WINDIR%\System32\Tasks\System HealerPeriod%WINDIR%\System32\Tasks\System HealerStartUp%WINDIR%\System32\Tasks\System[RANDOM CHARACTERS]Healer[RANDOM CHARACTERS]%WINDIR%\System32\Tasks\SystemHealer Monitor%WINDIR%\System32\Tasks\SystemHealer Run Delay%WINDIR%\Tasks\System HealerPeriod.job%WINDIR%\Tasks\System HealerStartUp.job%WINDIR%\Tasks\System[RANDOM CHARACTERS]Healer[RANDOM CHARACTERS].jobHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\DOMStorage\systemhealer.comSoftware\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\HealerCheckout.exeSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer Period.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer Period.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer StartUp.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer StartUp.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerPeriod.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerPeriod.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerStartUp.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerStartUp.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer DelayedSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer MonitorSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer PeriodSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer StartUpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer TaskSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System HealerPeriodSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System HealerStartUpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer MonitorSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer Run DelaySOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer TaskSoftware\System HealerHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}SystemHealerSystemHealer_is1
Additional Information
The following directories were created:
%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\System Healer%APPDATA%\System Healer%APPDATA%\SystemHealer%LOCALAPPDATA%\SystemHealer%PROGRAMFILES%\SystemHealer%PROGRAMFILES(x86)%\SystemHealer
The following URL's were detected:
www.supercleansystem.com
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.