Updated: October 1, 2007 5:04:02 AM
Type: Misleading Application
Name: SmartFixer
Version: 2007
Publisher: UCleaner.com
Risk Impact: Medium
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Vista, Windows XP
BehaviorThis misleading application must be manually downloaded and installed.
InstallationWhen the program is executed, it creates the following folders:
- %UserProfile%\Application Data\Ultimate Cleaner
- %ProgramFiles%\UltimateCleaner 2007
- %ProgramFiles%\UltimateCleaner
It then creates the following files:
- %UserProfile%\Application Data\Ultimate Cleaner\settings.dat
- %UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Start UltimateCleaner 2007.lnk
- %UserProfile%\Desktop\UltimateCleaner 2007.lnk
- %ProgramFiles%\UltimateCleaner 2007\Register UltimateCleaner 2007.lnk
- %ProgramFiles%\UltimateCleaner 2007\Start UltimateCleaner 2007.lnk
- %ProgramFiles%\UltimateCleaner 2007\Uninstall UltimateCleaner 2007.lnk
- %ProgramFiles%\Ultimate Cleaner\com\ucsecuredelete.dll
- %ProgramFiles%\Ultimate Cleaner\UltimateCleaner.exe
- %ProgramFiles%\Ultimate Cleaner\Uninstall.exe
- %ProgramFiles%\Ultimate Cleaner\program.info
- %ProgramFiles%\Ultimate Cleaner\ucleaner.pkg
- %ProgramFiles%\Ultimate Cleaner\UltimateCleaner.db
The program then creates the following registry entry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\"{D0BD3D02-4A54-45D4-9502-7DB00F92392A}" = "UCSecureDelete"
Next the program creates the following registry subkeys:
- HKEY_ALL_USERS\Software\Ultimate Cleaner
- HKEY_CLASSES_ROOT\AllFilesystemObjects\shellex\ContextMenuHandlers\UCSecureDelete
- HKEY_CLASSES_ROOT\CLSID\{D0BD3D02-4A54-45D4-9502-7DB00F92392A}
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ultimate Cleaner
- HKEY_LOCAL_MACHINE\SOFTWARE\Ultimate Cleaner
Technorati
Digg
Delicious
Reddit
StumbleUpon
Facebook
Yahoo
Twitter
Faves
Newsvine
