System Healer
Posted: September 25, 2015
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Ranking: | 5,993 |
|---|---|
| Threat Level: | 1/10 |
| Infected PCs: | 102,851 |
| First Seen: | August 4, 2015 |
|---|---|
| Last Seen: | March 7, 2025 |
| OS(es) Affected: | Windows |
As the time passes, you may notice that your PC starts working slower and slower. This decreasing operating speed may occur due to some unnecessary 'junk' files burdening your system. These files need to be deleted, but you should not choose a program called System Healer for the job. This application is a Potentially Unwanted Program, and it will not provide you with the help you need. Since the users' feedback about System Healer is pretty negative, it is not surprising that its developers rely on some not too fair distribution methods. It is true that you can download this PUP from its official site, but it also may arrive in a set with other free applications. The people behind System Healer have done their best to create a persuasive official platform. They promise that their application will boost the operating speed of your PC although the majority of clients are unable to detect any positive changes.
To convince you that System Healer is worth it, its creators have even added some positive reviews. These opinions don't belong to real people as they are fabricated. You should also know that this PUP isn't freeware. As soon as it finishes the scanning process that may display highly exaggerated and misleading results, System Healer will encourage you to purchase its full version. It costs $30, but the PUP also promotes additional equally useless tools to charge you even more. If you agree to pay, you will just lose your money, so you should refuse it. In addition, the registration form requires your email address, and nothing guarantees it will not be used for some malicious operations. The best course of action is to delete System Healer, eradicate the junk files and fix the possible registry errors with actual system optimization software.
Use SpyHunter to Detect and Remove PC Threats
If you are concerned that malware or PC threats similar to System Healer may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.
* See Free Trial offer below. EULA and Privacy/Cookie Policy.
Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\WINDOWS\System32\MRT\3AC662F4-BBD5-4771-B2A0-164912094D5D\FilesStash\69D5DBDE-E807-97DC-BEF3-1A91BFCF78F8
File name: 69D5DBDE-E807-97DC-BEF3-1A91BFCF78F8Size: 2.55 MB (2556960 bytes)
MD5: dfda1c3a9ef6864adcd0fbad67a2310f
Detection count: 176
Path: C:\WINDOWS\System32\MRT\3AC662F4-BBD5-4771-B2A0-164912094D5D\FilesStash\69D5DBDE-E807-97DC-BEF3-1A91BFCF78F8
Group: Malware file
Last Updated: December 11, 2022
%SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\166d4cb2\37361.ftf
File name: 37361.ftfSize: 4.69 MB (4692104 bytes)
MD5: 1acc37b400fd64ab6bd3bf510551645c
Detection count: 173
Mime Type: unknown/ftf
Path: %SYSTEMDRIVE%\Users\<username>\AppData\Local\Temp\166d4cb2\37361.ftf
Group: Malware file
Last Updated: August 8, 2023
file.exe
File name: file.exeSize: 3.76 MB (3766792 bytes)
MD5: 863711c57d9e173fb98467a97680ce90
Detection count: 66
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
%TEMP%\9a42977c1a57450cb2209f0f97887460\SystemHealer.exe
File name: SystemHealer.exeSize: 4.44 MB (4446120 bytes)
MD5: 2dfc4b182546068ace3d13dbb533c6af
Detection count: 46
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%\9a42977c1a57450cb2209f0f97887460
Group: Malware file
Last Updated: August 12, 2017
%SYSTEMDRIVE%\AdwCleaner\FileQuarantine\C\Program Files (x86)\SystemHealer\SystemHealer.exe.vir
File name: SystemHealer.exe.virSize: 2.55 MB (2559688 bytes)
MD5: 6102120681700d55c34e575886a10582
Detection count: 28
Mime Type: unknown/vir
Path: %SYSTEMDRIVE%\AdwCleaner\FileQuarantine\C\Program Files (x86)\SystemHealer\SystemHealer.exe.vir
Group: Malware file
Last Updated: August 28, 2020
C:\WINDOWS\System32\MRT\3AC662F4-BBD5-4771-B2A0-164912094D5D\FilesStash\ED8EEA84-DCCB-4249-302B-833231BF46C1
File name: ED8EEA84-DCCB-4249-302B-833231BF46C1Size: 2.55 MB (2557944 bytes)
MD5: 864a84d2d576a38190c54256fb449992
Detection count: 7
Path: C:\WINDOWS\System32\MRT\3AC662F4-BBD5-4771-B2A0-164912094D5D\FilesStash\ED8EEA84-DCCB-4249-302B-833231BF46C1
Group: Malware file
Last Updated: February 23, 2022
setup.exe
File name: setup.exeSize: 2.92 MB (2922680 bytes)
MD5: fa90717bb176a42edd11e38411309dfc
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: August 23, 2018
C:\WINDOWS\System32\MRT\E36D6367-DF23-4D09-B5B1-1FC38109F29C\FilesStash\75E034A7-DD69-4794-FE42-961E672AD329_1d2547759e7002c
File name: 75E034A7-DD69-4794-FE42-961E672AD329_1d2547759e7002cSize: 2.55 MB (2559688 bytes)
MD5: 91b8b84452162fd8332c30689dd74022
Detection count: 5
Path: C:\WINDOWS\System32\MRT\E36D6367-DF23-4D09-B5B1-1FC38109F29C\FilesStash\75E034A7-DD69-4794-FE42-961E672AD329_1d2547759e7002c
Group: Malware file
Last Updated: June 16, 2022
C:\Program Files\systemhealer\SystemHealer.exe
File name: C:\Program Files\systemhealer\SystemHealer.exeMD5: ed948ed67e3b0d1b27f2abe2842c945
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
C:\Program Files\SystemHealer\Uninstaller.exe
File name: C:\Program Files\SystemHealer\Uninstaller.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
HealerConsole.exe
File name: HealerConsole.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
HealerCheckout.exe
File name: HealerCheckout.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
SHShellExtension.dll
File name: SHShellExtension.dllFile type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
More files
Registry Modifications
File name without pathhttp_systemhealer.com_0.localstoragehttp_systemhealer.com_0.localstorage-journalLaunch System Healer.lnksystemhealer[1].xmlRegexp file mask%WINDIR%\Prefetch\SYSTEMHEALER.exe[RANDOM CHARACTERS].pf%WINDIR%\System32\Tasks\System Healer Task%WINDIR%\System32\Tasks\System HealerPeriod%WINDIR%\System32\Tasks\System HealerStartUp%WINDIR%\System32\Tasks\System[RANDOM CHARACTERS]Healer[RANDOM CHARACTERS]%WINDIR%\System32\Tasks\SystemHealer Monitor%WINDIR%\System32\Tasks\SystemHealer Run Delay%WINDIR%\Tasks\System HealerPeriod.job%WINDIR%\Tasks\System HealerStartUp.job%WINDIR%\Tasks\System[RANDOM CHARACTERS]Healer[RANDOM CHARACTERS].jobHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\DOMStorage\systemhealer.comSoftware\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\HealerCheckout.exeSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer Period.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer Period.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer StartUp.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System Healer StartUp.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerPeriod.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerPeriod.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerStartUp.jobSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures\System HealerStartUp.job.fpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer DelayedSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer MonitorSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer PeriodSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer StartUpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System Healer TaskSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System HealerPeriodSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\System HealerStartUpSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer MonitorSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer Run DelaySOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemHealer TaskSoftware\System HealerHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}SystemHealerSystemHealer_is1
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.