1. Symantec/
  2. Security Response/
  3. DriveCleaner

DriveCleaner

Updated:
May 24, 2007 11:12:49 AM
Type:
Misleading Application
Version:
1.10.19.0
Publisher:
Drive Cleaner, Inc
Risk Impact:
Medium
Systems Affected:
Windows
Behaviour

The misleading application can be manually downloaded and installed, or it may be installed by a downloader, without the user's consent.

No EULA or Privacy Policy is presented to the user upon installation.

The application reports a number of exaggerated reports. For example it reports 'URL History' and 'Windows Clipboard History' as severe and critical violations.



The user is then prompted to pay for a full license of the application in order to remove the falsely reported threats.

Installation

When DriveCleaner is installed, it creates the following files and folders:
  • %ProgramFiles%\DriveCleaner 2006 Free\Activate.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\AE_CD_Cr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\AReadr4.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\AReadr5.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ASDSEEpv.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ASPack.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\BDelphi5.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Babylon.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CBuildr5.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CCGA.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CManager.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CatchUp.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CuteFTP4.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\CuteHTML.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\DAcceler.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\DiscJug.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ECDCreat4.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FFTsks.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Far.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FlashFXP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FrntPage.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FrontPEx.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FtpEXP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\FtpVoya.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\GetRight.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\GoZilla.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\GravMRU.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\H_TxtPad.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\HomeSite.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\HotDogPr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\IconExtr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ImgReady3.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\InsShExp.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\JASC_P_P.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\KaZaA.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\LView.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MMUnDisk.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MM_CON.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MPImaGal.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MPaint.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MPicPub.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSExplorer.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSRegEdit.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSWMP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSWordPad.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MSoffice.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MacDir.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MacDrWea.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MicAng.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\MicDes.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Morpheus.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\NTBackup.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Nero.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\NetShow.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\PHPCoder.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\PhotShel.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\PowerZIP.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\RapidBr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\RealAuPl.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\RealDown.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\SL_BlWin.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\SecurCRT.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\SmartClr.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\Sonique.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\StuffIt.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\TelepPro.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UGifAnim.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UMedStud.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UPhImpV.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UPhotoEx.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UVidStud.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\UltraEd.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\VNC.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WebFeret.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WebReap.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WinACE.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WinGate.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\WiseInst.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\YahooPl.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\ZipMagic.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Appbase\iMesh.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\InstHelp.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\ScanReport.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\Schedule.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\UDC2006.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\UDC2006.xml
  • %ProgramFiles%\DriveCleaner 2006 Free\UDC6.url
  • %ProgramFiles%\DriveCleaner 2006 Free\UDCPChk.dll
  • %ProgramFiles%\DriveCleaner 2006 Free\UDCShell.dll
  • %ProgramFiles%\DriveCleaner 2006 Free\UDCShell.xml
  • %ProgramFiles%\DriveCleaner 2006 Free\UninstallPage.html
  • %ProgramFiles%\DriveCleaner 2006 Free\Updater.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\bnlink.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\img
  • %ProgramFiles%\DriveCleaner 2006 Free\img\button.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\button2.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\header.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\logo.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\spacer.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\img\top1.jpg
  • %ProgramFiles%\DriveCleaner 2006 Free\img\top2.jpg
  • %ProgramFiles%\DriveCleaner 2006 Free\img\top_line.gif
  • %ProgramFiles%\DriveCleaner 2006 Free\lapv.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\license.rtf
  • %ProgramFiles%\DriveCleaner 2006 Free\manual.url
  • %ProgramFiles%\DriveCleaner 2006 Free\pv.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\pv.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\readme.rtf
  • %ProgramFiles%\DriveCleaner 2006 Free\sr.log
  • %ProgramFiles%\DriveCleaner 2006 Free\support.url
  • %ProgramFiles%\DriveCleaner 2006 Free\unins000.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\unins000.exe
  • %ProgramFiles%\DriveCleaner 2006 Free\uninstall.ico
  • %ProgramFiles%\DriveCleaner 2006 Free\up.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\updater.dat
  • %ProgramFiles%\DriveCleaner 2006 Free\vbpv.dat
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner 2006 HomePage.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner 2006 Online Manual.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner 2006.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\DriveCleaner Online Support.lnk
  • C:\Documents and Settings\All Users\Start Menu\Programs\DriveCleaner 2006 Free\Uninstall DriveCleaner 2006.lnk
  • %UserProfile%\Desktop\DriveCleaner 2006 Free.lnk
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905\accepted.txt
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905\installer.exe
  • %UserProfile%\Local Settings\Temp\UDC6_0001_D10M2905\size.dat

Next, the program creates the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\{7EC618F2-C506-4221-9F56-792B92BF762E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22024DC7-D190-44ec-9D49-AEE5F244A466}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2BF3C5AD-F9EC-49d8-8568-D7DFFC77108B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7EC618F2-C506-4221-9F56-792B92BF762E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE84FF0C-BABD-4D91-92A1-AF75D2D02E6D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C4C4786C-9861-46d2-BB63-AC782AB07046}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A22FBA1E-CAAF-4E45-8EFF-4A821AF03E69}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0A89FF7F-1A12-42D9-ACCB-4217112DC7E0}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCPChk.UDCPChk
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCPChk.UDCPChk.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UDC6_is1
HKEY_LOCAL_MACHINE\SOFTWARE\DriveCleaner 2006 Free
HKEY_ALL_USERS\\Software\DriveCleaner 2006 Free

It also creates the following registry entry so that it executes whenever Windows starts:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"DriveCleaner 2006 Free" = ""C:\Program Files\DriveCleaner 2006 Free\UDC2006.exe" /min"
Summary| Technical Details| Removal

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube