Should I block it?

No, this file is 100% safe to run.

VersionsAdditional versions

5.6.0.5210 2.50%
4.7.0.5133 2.50%
4.2.2.5081 22.50%
4.2.0.5075 7.50%
4.0.0.5025 40.00%
3.9.9.5004 12.50%
3.9.4.4945 12.50%

Relationships

Parent process
Child processes
Related files

PE structurePE file structure
Show functions
Import table
advapi32.dll
RegQueryValueExA, RegOpenKeyExA, RegCloseKey, RegSetValueA, RegFlushKey, RegEnumValueA, RegEnumKeyExA, RegDeleteKeyA, ReadEventLogA, OpenProcessToken, OpenEventLogA, NotifyChangeEventLog, LookupPrivilegeValueA, LookupPrivilegeNameA, LookupAccountSidA, GetTokenInformation, GetOldestEventLogRecord, GetNumberOfEventLogRecords, CloseEventLog, AdjustTokenPrivileges
comctl32.dll
_TrackMouseEvent, ImageList_SetIconSize, ImageList_GetIconSize, ImageList_Write, ImageList_Read, ImageList_GetDragImage, ImageList_DragShowNolock, ImageList_DragMove, ImageList_DragLeave, ImageList_DragEnter, ImageList_EndDrag, ImageList_BeginDrag, ImageList_GetIcon, ImageList_Remove, ImageList_DrawEx, ImageList_Replace, ImageList_Draw, ImageList_GetBkColor, ImageList_SetBkColor, ImageList_ReplaceIcon, ImageList_Add, ImageList_SetImageCount, ImageList_GetImageCount, ImageList_Destroy, ImageList_Create, InitCommonControls
comdlg32.dll
ChooseFontA, FindTextA, ChooseColorA, GetSaveFileNameA, GetOpenFileNameA
gdi32.dll
UnrealizeObject, StretchDIBits, StretchBlt, StartPage, StartDocA, SetWindowOrgEx, SetWinMetaFileBits, SetViewportOrgEx, SetTextColor, SetTextAlign, SetStretchBltMode, SetROP2, SetPixel, SetPaletteEntries, SetMapMode, SetEnhMetaFileBits, SetDIBColorTable, SetBrushOrgEx, SetBkMode, SetBkColor, SetAbortProc, SelectPalette, SelectObject, SelectClipRgn, SaveDC, RoundRect, RestoreDC, Rectangle, RectVisible, RealizePalette, Polyline, Polygon, PlayEnhMetaFile, PatBlt, OffsetRgn, MoveToEx, MaskBlt, LineTo, LPtoDP, IntersectClipRect, GetWindowOrgEx, GetWinMetaFileBits, GetViewportOrgEx, GetTextMetricsA, GetTextExtentPointA, GetTextExtentPoint32W, GetTextExtentPoint32A, GetTextColor, GetTextAlign, GetSystemPaletteEntries, GetStockObject, GetRgnBox, GetPixel, GetPaletteEntries, GetObjectA, GetNearestPaletteIndex, GetMapMode, GetEnhMetaFilePaletteEntries, GetEnhMetaFileHeader, GetEnhMetaFileDescriptionA, GetEnhMetaFileBits, GetDeviceCaps, GetDIBits, GetDIBColorTable, GetDCOrgEx, GetCurrentPositionEx, GetCurrentObject, GetClipBox, GetBrushOrgEx, GetBkColor, GetBitmapBits, GdiFlush, ExtTextOutW, ExtTextOutA, ExcludeClipRect, EndPage, EndDoc, Ellipse, DeleteObject, DeleteEnhMetaFile, DeleteDC, CreateSolidBrush, CreateRectRgnIndirect, CreateRectRgn, CreatePenIndirect, CreatePen, CreatePatternBrush, CreatePalette, CreateICA, CreateHalftonePalette, CreateFontIndirectA, CreateEnhMetaFileA, CreateDIBitmap, CreateDIBSection, CreateDCA, CreateCompatibleDC, CreateCompatibleBitmap, CreateBrushIndirect, CreateBitmap, CopyEnhMetaFileA, CombineRgn, CloseEnhMetaFile, BitBlt, GetRandomRgn
gdiplus.dll
GdipMeasureString, GdipDrawString, GdipDeleteFont, GdipCreateFont, GdipGetGenericFontFamilySansSerif, GdipDeleteFontFamily, GdipCreateFontFamilyFromName, GdipSetClipRectI, GdipFillClosedCurve, GdipFillEllipseI, GdipFillPolygonI, GdipFillPolygon, GdipFillRectangleI, GdipFillRectangle, GdipGraphicsClear, GdipDrawCurve, GdipDrawPolygonI, GdipDrawRectangleI, GdipDrawLines, GdipDrawLineI, GdipDrawLine, GdipSetTextRenderingHint, GdipSetSmoothingMode, GdipDeleteGraphics, GdipCreateFromHDC, GdipSetPenWidth, GdipDeletePen, GdipCreatePen1, GdipGetPathGradientPointCount, GdipSetPathGradientSurroundColorsWithCount, GdipSetPathGradientCenterColor, GdipCreatePathGradientI, GdipCreateSolidFill, GdipDeleteBrush, GdipCloneBrush, GdiplusShutdown, GdiplusStartup, GdipFree, GdipAlloc
iphlpapi.dll
GetIfTable, GetIpAddrTable
kernel32.dll
GetACP, Sleep, VirtualFree, VirtualAlloc, GetCurrentThreadId, InterlockedDecrement, InterlockedIncrement, VirtualQuery, WideCharToMultiByte, MultiByteToWideChar, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLastError, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, ExitProcess, ExitThread, CreateThread, CompareStringA, WriteFile, UnhandledExceptionFilter, SetFilePointer, SetEndOfFile, RtlUnwind, ReadFile, RaiseException, GetStdHandle, GetFileSize, GetFileType, CreateFileA, CloseHandle, TlsSetValue, TlsGetValue, LocalAlloc, lstrlenW, lstrcpyA, lstrcmpW, lstrcmpA, WritePrivateProfileStringW, WaitForSingleObject, WaitForMultipleObjects, VirtualProtect, SystemTimeToFileTime, SizeofResource, SetThreadLocale, SetLastError, SetFileTime, SetFileAttributesA, SetEvent, SetErrorMode, SearchPathW, SearchPathA, ResumeThread, ResetEvent, RemoveDirectoryA, ReadDirectoryChangesW, QueryPerformanceFrequency, QueryPerformanceCounter, QueryDosDeviceA, OutputDebugStringA, MulDiv, MoveFileW, MoveFileA, LockResource, LocalFileTimeToFileTime, LoadResource, LoadLibraryExW, LoadLibraryA, LeaveCriticalSection, IsValidLocale, InitializeCriticalSection, GlobalUnlock, GlobalSize, GlobalHandle, GlobalLock, GlobalFree, GlobalFindAtomA, GlobalDeleteAtom, GlobalAlloc, GlobalAddAtomA, GetVersionExA, GetVersion, GetUserDefaultLCID, GetTimeZoneInformation, GetTickCount, GetTempPathA, GetTempFileNameA, GetSystemInfo, GetShortPathNameW, GetShortPathNameA, GetProfileStringA, GetPrivateProfileStringW, GetModuleFileNameW, GetLocalTime, GetFullPathNameW, GetFullPathNameA, GetFileInformationByHandle, GetFileAttributesW, GetFileAttributesA, GetExitCodeThread, GetExitCodeProcess, GetDiskFreeSpaceA, GetDateFormatA, GetCurrentProcessId, GetCurrentProcess, GetComputerNameA, GetCommandLineW, GetCPInfo, FreeResource, InterlockedExchange, FormatMessageW, FormatMessageA, FindResourceA, FindNextFileW, FindNextFileA, FindFirstFileW, FileTimeToLocalFileTime, FileTimeToDosDateTime, ExpandEnvironmentStringsW, ExpandEnvironmentStringsA, EnumCalendarInfoA, EnterCriticalSection, DosDateTimeToFileTime, DeleteFileW, DeleteFileA, DeleteCriticalSection, CreateFileW, CreateEventA, CreateDirectoryA, CompareStringW
ole32.dll
CreateStreamOnHGlobal, IsAccelerator, ReleaseStgMedium, OleDraw, OleSetMenuDescriptor, OleGetClipboard, OleSetClipboard, DoDragDrop, RevokeDragDrop, RegisterDragDrop, OleUninitialize, OleInitialize, CreateDataAdviseHolder, CoTaskMemFree, CoTaskMemAlloc, CLSIDFromProgID, ProgIDFromCLSID, StringFromCLSID, CoCreateInstance, CoSetProxyBlanket, CoInitializeSecurity, CoGetClassObject, CoUninitialize, CoInitializeEx, CoInitialize, IsEqualGUID, CLSIDFromString
oleacc.dll
LresultFromObject
oleaut32.dll
SysFreeString, SysReAllocStringLen, SysAllocStringLen, GetErrorInfo, GetActiveObject, VariantChangeType, VariantClear, VariantInit, SafeArrayPtrOfIndex, SafeArrayPutElement, SafeArrayGetElement, SafeArrayUnaccessData, SafeArrayAccessData, SafeArrayGetUBound, SafeArrayGetLBound, SafeArrayCreate, VariantCopy
powrprof.dll
CallNtPowerInformation
shell32.dll
Shell_NotifyIconW, ShellExecuteExW, ShellExecuteExA, ShellExecuteW, ShellExecuteA, ExtractIconExW, DragQueryFileA, DragAcceptFiles, SHGetPathFromIDListA, SHGetDesktopFolder
shfolder.dll
SHGetFolderPathW
user32.dll
GetKeyboardType, DestroyWindow, LoadStringA, MessageBoxA, CharNextA, DllMain
version.dll
VerQueryValueA, GetFileVersionInfoSizeA, GetFileVersionInfoA
wininet.dll
InternetSetOptionA, InternetReadFile, InternetOpenA, InternetConnectA, InternetCloseHandle, HttpSendRequestA, HttpQueryInfoA, HttpOpenRequestA, HttpAddRequestHeadersA
winmm.dll
timeGetTime, timeEndPeriod, timeBeginPeriod
winspool.drv
OpenPrinterA, EnumPrintersA, DocumentPropertiesA, ClosePrinter
wsock32.dll
WSACleanup, WSAStartup, gethostname, gethostbyname, inet_ntoa

systemexplorer.exe

System Explorer by Miroslav Topolar (Signed)

Remove systemexplorer.exe
Version:   4.0.0.5025
MD5:   3402587bdbdb710c2ab586b331e1a11d
SHA1:   0fdfa5fe1b00cc34dc62754b609abdc94d130a81
SHA256:   bf11501f9490287145a19a5ca740b8e4faa3b7a16acb5344f7df9fc38ca55afa

Overview

systemexplorer.exe executes as a process with the local user's privileges usually within the context of Windows Explorer. It is set to be run when the PC boots and the user logs into Windows (added to the Run registry key for the current user). It is installed with a couple of know programs including System Explorer 4.0.0 published by Mister Group, System Explorer 2.0.7 from Mister Group and System Explorer 2.0.7 by Mister Group. The file is digitally signed by Miroslav Topolar which was issued by the GlobalSign nv-sa certificate authority (CA).

DetailsDetails

File name:systemexplorer.exe
Publisher:Mister Group
Product name:System Explorer
Typical file path:C:\Program Files\system explorer\systemexplorer.exe
File version:4.0.0.5025
Product version:4.0
Size:2.71 MB (2,846,168 bytes)
Certificate
Issued to:Miroslav Topolar
Authority (CA):GlobalSign nv-sa
Effective date:Friday, January 27, 2012
Expiration date:Wednesday, April 24, 2013
Digital DNA
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following programs will install this file
System Explorer
 Mister Group
3% remove
System Explorer is free , awards winning software for exploration and management of System Internals. This small software includes many usefull tools which help you Keep Your System Under Control . With System Explorer You get also fast access to File Database which help you to determine unwanted processes or threats . System Explorer is translated into 29 languages and is available for download in installer and portable version.

BehaviorsBehaviors

Startup files (user) run
Runs under the registry key 'HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'System Explorer' → C:\Program Files\System Explorer\SystemExplorer.exe
  • 'SystemExplorerAutoStart' → "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'SystemExplorerAutoStart' → "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
Scheduled tasks
  • The task '{0F9438C3-7065-4371-BE60-04F15D936F5C}' runs on registration in the path '\{0F9438C3-7065-4371-BE60-04F15D936F5C}'
  • The job 'SysExpl' runs in the path '\SysExpl'
Network connections
  • [TCP] systemexplorer.net (198.154.247.240:80)
  • [TCP] systemexplorer.net (74.53.175.181:80)

    • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.00345102%
    0.028634%
    Kernel CPU:0.00262646%
    0.013761%
    User CPU:0.00082456%
    0.014873%
    Kernel CPU time:3,875,814,382 ms/min
    100,923,805ms/min
    CPU cycles:13,265,082/sec
    17,470,203/sec
    Context switches:98/sec
    284/sec
    Memory
    Private memory:21.73 MB
    21.59 MB
    Private (maximum):11.86 MB
    Private (minimum):3.4 MB
    Non-paged memory:21.73 MB
    21.59 MB
    Virtual memory:144.85 MB
    140.96 MB
    Virtual memory (peak):180.15 MB
    169.69 MB
    Working set:9.05 MB
    18.61 MB
    Working set (peak):17.98 MB
    37.95 MB
    Page faults:1,611,914/min
    2,039/min
    I/O
    I/O read transfer:879.67 KB/sec
    1.02 MB/min
    I/O read operations:232/sec
    343/min
    I/O write transfer:2.15 KB/sec
    274.99 KB/min
    I/O write operations:14/sec
    227/min
    I/O other transfer:108.14 KB/sec
    448.09 KB/min
    I/O other operations:1,797/sec
    1,671/min
    Resource allocations
    Threads:11
    12
    Handles:288
    600
    GUI GDI count:741
    103
    GUI GDI peak:897
    142
    GUI USER count:312
    49
    GUI USER peak:395
    71

    BehaviorsProcess properties

    Tray notification:Yes
    Integrety level:Undefined
    Platform:32-bit
    Command lines:
    • "C:\Program Files\system explorer\systemexplorer.exe" /tray
    • "C:\Program Files\system explorer\systemexplorer.exe"
    • "C:\eigene dateien\akt downloads\auswahl\portable\systemexplorer\systemexplorer.exe"
    Owner:User
    Parent process:explorer.exe (Windows Explorer by Microsoft Corporation)

    ResourcesThreads

    Averages
     
    SystemExplorer.exe (main module)
    Total CPU:0.09618011%
    0.272967%
    Kernel CPU:0.04870082%
    0.107585%
    User CPU:0.04747929%
    0.165382%
    CPU cycles:1,890,798/sec
    5,741,424/sec
    Context switches:9/sec
    79/sec
    Memory:2.76 MB
    1.16 MB
    ntdll.dll
    Total CPU:0.00002643%
    Kernel CPU:0.00001586%
    User CPU:0.00001057%
    CPU cycles:1,318/sec
    Memory:1.66 MB
    gdiplus.dll
    Total CPU:0.00000690%
    Kernel CPU:0.00000690%
    User CPU:0.00000000%
    CPU cycles:68/sec
    Memory:1.56 MB

    Common loaded modules

    These are modules that are typiclaly loaded within the context of this process.

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Home Premium 51.28%
    Windows 7 Ultimate 17.95%
    Microsoft Windows XP 15.38%
    Windows Vista Home Premium 10.26%
    Windows 7 Professional 5.13%

    Distribution by countryDistribution by country

    United States installs about 33.33% of System Explorer.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    Lenovo 25.00%
    Toshiba 12.50%
    Acer 12.50%
    Hewlett-Packard 12.50%
    ASUS 12.50%
    Intel 12.50%
    Dell 12.50%
    Back to top
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE