Exterminate It! Antimalware

malpedia

Known threats:695,275 Last Update:March 17, 11:57

Testimonials

Dear Exterminate It,
I just wanted to take a moment to say thank you.
Your response and the update has fixed my problem.
I have spent several weeks fiddling around trying to resolve it, and could not and my previous Anti-Virus program could find it but not fix it.

THANK YOU, THANK YOU, THANK YOU!!!

Sincerely yours,
Bountiful, Utah

David S. B.

File: System HealerStartUp

Location of System HealerStartUp and Associated Malware

Check whether System HealerStartUp is present in the following locations:

System HealerStartUp file locations that are Windows version independent:

  • C:\Windows\System32\Tasks\System HealerStartUp

If you find System HealerStartUp file in any of these locations, your computer is very likely to be infected with the following malware:

IMPORTANT: Malware files can be camouflaged with the same file names as legitimate files. The System HealerStartUp file is associated with malware only if found in the locations listed above.

Notes:

Different Variations of System HealerStartUp File^

File SizeFile Md5Last Seen
2620013DB0FE9DB736F7E4C290240F3ABC48Nov 13, 2015
26083C8F348EF72A283F24A47C1C1903418EApr 8, 2016
26203C4BE1D932C5963120266D6313ECC251May 13, 2016
25301A24035A9B7AEC454C4B7609086A9B4CJun 1, 2016
26223A0BB41D93DC823F748F4E35201D40BBJun 22, 2016
2622A48C14A72D9C83632165984AD7053081Aug 10, 2016
260479E9FD14B90A72D919B31D9C324B0B82Aug 26, 2016
2556104F57020790EBBCE301FCC983A38820Dec 24, 2016
2542033155B5504F439FDD80B081EE18E9D7Jan 19, 2017
25887FCC4F77270177ADF99D8CE3B50CA41FMar 17, 2017
253438BC8C229ED2DAF0C6712E567018B697Apr 9, 2017
2534023AD64A163763FD1D00A936458B6C6AApr 24, 2017
256623CA950681C901C0358289E67C94411AApr 24, 2017

Why Is It Important to Remove Malware Files?^

It is imperative that you delete malware-associated files as soon as possible because they can be used - or are already being used - to inflict serious damage on your PC, including:

  • Disrupting the normal functioning of the operating system or rendering it completely useless.
  • Hijacking valuable private information (credit card numbers, passwords, PIN codes, etc.)
  • Directing all your Web searches to the same unwanted or malicious sites.
  • Dramatically slowing down your computer.
  • Gaining total control of your PC to spread viruses and trojans and send out spam.

How to Remove System HealerStartUp^

  1. To enable deleting the System HealerStartUp file, terminate the associated process in the Task Manager as follows:
    • Right-click in the Windows taskbar (a bar that appears along the bottom of the Windows screen) and select Task Manager on the menu.
    • In the Tasks Manager window, click the Processes tab.
    • On the Processes tab, select System HealerStartUp and click End Process.
  2. Using your file explorer, browse to the file using the paths listed in Location of System HealerStartUp and Associated Malware.
  3. Select the file and press SHIFT+Delete on the keyboard.
  4. Click Yes in the confirm deletion dialog box.
  5. Repeat steps 2-4 for each location listed in Location of System HealerStartUp and Associated Malware.
  6. Notes:

    • The deletion of System HealerStartUp will fail if it is locked; that is, it is in use by some application (Windows will display a corresponding message). For instructions on deleting locked files, see Deleting Locked Files.
    • The deletion of System HealerStartUp will fail if your Windows uses the NT File System (NTFS) and you have no write rights for the file. Request your system administrator to grant you write rights for the file.

Deleting Locked Files^

You can delete locked files with the RemoveOnReboot utility. You can install the RemoveOnReboot utility from here.

After you delete a locked file, you need to delete all the references to the file in Windows registry.

To delete a locked file:

  1. Right-click on the file and select Send To -> Remove on Next Reboot on the menu.
  2. Restart your computer.

The file will be deleted on restart.

Note: In the case of complex viruses that can replicate themselves, malware files can reappear in the same locations even after you have deleted those files and restarted your computer. Exterminate It! Antimalware can effectively eradicate such viruses from your computer.

To remove all registry references to a System HealerStartUp malware file:

  1. On the Windows Start menu, click Run.
  2. In the Open box, type regedit and click OK. The Registry Editor window opens.
  3. On the Edit menu, select Find.
  4. In the Find dialog box, type System HealerStartUp. The name of the first found registry value referencing System HealerStartUp is highlighted in the right pane of the Registry Editor window.
  5. Right-click the registry value name and select Delete on the menu.
  6. Click Yes in the Confirm Value Delete dialog box.
  7. To delete all other references to System HealerStartUp, repeat steps 4-6.
IMPORTANT: Malware files can masquerade as legitimate files by using the same file names. To avoid deleting a harmless file, ensure that the Value column for the registry value displays exactly one of the paths listed in Location of System HealerStartUp and Associated Malware.