1. /
  2. Security Response/
  3. DriveCleaner

DriveCleaner

Updated:
May 24, 2007 11:12:49 AM
Type:
Misleading Application
Version:
1.10.19.0
Publisher:
Drive Cleaner, Inc
Risk Impact:
Medium
Systems Affected:
Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Behaviour

The misleading application can be manually downloaded and installed, or it may be installed by a downloader, without the user's consent.

No EULA or Privacy Policy is presented to the user upon installation.

The application reports a number of exaggerated reports. For example it reports 'URL History' and 'Windows Clipboard History' as severe and critical violations.



The user is then prompted to pay for a full license of the application in order to remove the falsely reported threats.

Installation

When DriveCleaner is installed, it creates the following files and folders:
  • %ProgramFiles%\DriveCleaner 2006 Free\Activate.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\AE_CD_Cr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\AReadr4.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\AReadr5.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ASDSEEpv.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ASPack.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\BDelphi5.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Babylon.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CBuildr5.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CCGA.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CManager.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CatchUp.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CuteFTP4.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CuteHTML.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\DAcceler.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\DiscJug.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ECDCreat4.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FFTsks.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Far.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FlashFXP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FrntPage.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FrontPEx.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FtpEXP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FtpVoya.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\GetRight.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\GoZilla.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\GravMRU.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\H_TxtPad.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\HomeSite.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\HotDogPr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\IconExtr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ImgReady3.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\InsShExp.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\JASC_P_P.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\KaZaA.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\LView.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MMUnDisk.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MM_CON.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MPImaGal.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MPaint.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MPicPub.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSExplorer.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSRegEdit.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSWMP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSWordPad.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSoffice.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MacDir.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MacDrWea.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MicAng.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MicDes.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Morpheus.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\NTBackup.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Nero.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\NetShow.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\PHPCoder.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\PhotShel.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\PowerZIP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\RapidBr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\RealAuPl.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\RealDown.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\SL_BlWin.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\SecurCRT.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\SmartClr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Sonique.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\StuffIt.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\TelepPro.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UGifAnim.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UMedStud.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UPhImpV.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UPhotoEx.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UVidStud.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UltraEd.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\VNC.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WebFeret.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WebReap.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WinACE.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WinGate.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WiseInst.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\YahooPl.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ZipMagic.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\iMesh.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\InstHelp.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\ScanReport.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Schedule.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\UDC2006.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\UDC2006.xml
  • %ProgramFiles%\DriveCleaner 2006 Free\UDC6.url
  • %ProgramFiles%\DriveCleaner 2006 Free\UDCPChk.dll
  • %ProgramFiles%\DriveCleaner 2006 Free\UDCShell.dll
  • %ProgramFiles%\DriveCleaner 2006 Free\UDCShell.xml
  • %ProgramFiles%\DriveCleaner 2006 Free\UninstallPage.html
  • %ProgramFiles%\DriveCleaner 2006 Free\Updater.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\bnlink.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\img
  • %ProgramFiles%\DriveCleaner 2006 Free\img\button.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\button2.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\header.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\logo.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\spacer.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\top1.jpg
  • %ProgramFiles%\DriveCleaner 2006 Free\img\top2.jpg
  • %ProgramFiles%\DriveCleaner 2006 Free\img\top_line.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\lapv.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\license.rtf
  • %ProgramFiles%\DriveCleaner 2006 Free\manual.url
  • %ProgramFiles%\DriveCleaner 2006 Free\pv.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\pv.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\readme.rtf
  • %ProgramFiles%\DriveCleaner 2006 Free\sr.log
  • %ProgramFiles%\DriveCleaner 2006 Free\support.url
  • %ProgramFiles%\DriveCleaner 2006 Free\unins000.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\unins000.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\uninstall.ico
  • %ProgramFiles%\DriveCleaner 2006 Free\up.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\updater.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\vbpv.dat
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner 2006 HomePage.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner 2006 Online Manual.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner 2006.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner Online Support.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\Uninstall DriveCleaner 2006.lnk
  • %UserProfile%\Desktop\DriveCleaner 2006 Free.lnk
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905\accepted.txt
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905\installer.exe
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905\size.dat

Next, the program creates the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\{7EC618F2-C506-4221-9F56-792B92BF762E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22024DC7-D190-44ec-9D49-AEE5F244A466}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2BF3C5AD-F9EC-49d8-8568-D7DFFC77108B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7EC618F2-C506-4221-9F56-792B92BF762E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE84FF0C-BABD-4D91-92A1-AF75D2D02E6D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C4C4786C-9861-46d2-BB63-AC782AB07046}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A22FBA1E-CAAF-4E45-8EFF-4A821AF03E69}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0A89FF7F-1A12-42D9-ACCB-4217112DC7E0}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCPChk.UDCPChk
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCPChk.UDCPChk.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UDC6_is1
HKEY_LOCAL_MACHINE\SOFTWARE\DriveCleaner 2006 Free
HKEY_ALL_USERS\\Software\DriveCleaner 2006 Free

It also creates the following registry entry so that it executes whenever Windows starts:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"DriveCleaner 2006 Free" = ""C:\Program Files\DriveCleaner 2006 Free\UDC2006.exe" /min"
Summary| Technical Details| Removal

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver