DriveCleaner

Description:	Rogue Security Program
Risk Level:	Critical
Date of First Occurence:	Tuesday, April 15, 2008
Software Developer:	(unknown)
Brief Info:	Rogue/Suspect Anti-Spyware Product "Rogue/Suspect" means that these products are of unknown, questionable, or dubious value as anti-spyware protection.
Removal:	This threat can be removed using "Spyware Terminator"

SCAN & REMOVE NOW »

Geographical Distribution of Threat "DriveCleaner"

Threat Info

View All

Detected Items

Detected Files: %PROGRAMFILES%\DriveCleaner 2006 Free\unins000.exe MD5: 75E0D94794772EF8178D74698BDCEC1C Size:675204 MD5: 6831E53C1F7AAA8F5F0104E0E0CD6A9E Size:669002 %COMMONFILES%\DriveCleaner Freeware\dcsm.exe MD5: 791EF87EB93C99807CD8C6397D66D4F5 Size:548864 MD5: B0F7BEC7A1CBA4F26E613A852C88ACAB Size:622592 MD5: 830793BBB973C302B09DF9A31905A151 Size:618496 MD5: F85ABEC575F965460CF97E28860797A8 Size:622592 %PROGRAMFILES%\DriveCleaner Free\unins000.exe MD5: 7A25F8CDBCF8738C5B585026F8EFD78B Size:682330 MD5: 28F64F2F522CDA1E2A89DD31F3ACEDE2 Size:684540 MD5: BDCBBFF1AAF4FDDAB6D14AB180CFEDA7 Size:685591 MD5: 4DA2051ADEF95AD0A750D8D010BFDAF5 Size:676871 %PROGRAMFILES%\DriveCleaner Free\msvcr71.dll MD5: 86F1895AE8C5E8B17D99ECE768A70732 Size:348160 %PROGRAMFILES%\DriveCleaner Free\msvcp71.dll MD5: 561FA2ABB31DFA8FAB762145F81667C2 Size:499712 %PROGRAMFILES%\DriveCleaner Free\mfc71.dll MD5: F35A584E947A5B401FEB0FE01DB4A0D7 Size:1060864 %PROGRAMFILES%\DriveCleaner Free\InstHelp.exe MD5: EFDA0A7CE4A2AB8387650A73D84C195C Size:122880 MD5: FF2CB85F60069F0FBF3E1E25F6801970 Size:122368 MD5: 1842ACBE7C319CBC8AFABC6C521D0095 Size:122368 %PROGRAMFILES%\DriveCleaner Free\atl71.dll MD5: 8F2097E8B174F38178570C611464935F Size:89088 %COMMONFILES%\DriveCleaner Free\dcsm.exe MD5: 0CA55271E074F19A9AE825EAB45E116C Size:606208 MD5: 83A4B682EEB3E474547C83C2E3E53FD3 Size:618496 MD5: 4E55C9C40D436668693454D883B78110 Size:622592 %PROGRAMFILES%\DriveCleaner Free\UDCPChk.dll MD5: DBE53D76CCE4C759F286ED94DA6E2944 Size:34304 MD5: B68324A0AC6782FA45D753D89F95E7C0 Size:34304 %PROGRAMFILES%\DriveCleaner Free\pv.exe MD5: 83B972783AC6870F0E6FEF6BC0998760 Size:53248 %PROGRAMFILES%\DriveCleaner Free\UDC.exe MD5: 87C4404BC0FDB03F0E6EF9E4445CDD26 Size:1293312 MD5: 14CC042F8EF0E947C25D9BC018F2DDB1 Size:1288192 %COMMONFILES%\DriveCleaner Free\dnse.exe MD5: 8B5BD86F6DB95EC56E497DFBE030237A Size:172032 %PROGRAMFILES%\DriveCleaner Freeware\UDCPChk.dll MD5: BDB67F3CEF24E2D613BF992C84303BEE Size:33792 MD5: 95F0DFD4916C451C891AA7B382768A3B Size:34304 %PROGRAMFILES%\DriveCleaner Freeware\InstHelp.exe MD5: B2B7973974844CC85A1E36435ED29B31 Size:122880 MD5: 9E1A00DFCACE5D473594CE2094604795 Size:122880 MD5: 0129EBA808C35E9B147D0984E862ABF8 Size:137728 %PROGRAMFILES%\DriveCleaner Freeware\pv.exe MD5: 6682EF77C466173F912C24827BCAB011 Size:53248 MD5: 75DAD03936BB0A1B81F9C9CC6CA3BF72 Size:53248 %PROGRAMFILES%\DriveCleaner Freeware\UDC.exe MD5: 2B9ADE23CF3BD1AD5D74ED060E9DBA40 Size:1344000 MD5: 1650BEAFE5EA040F6A6D2D355469BB50 Size:1364992 %PROGRAMFILES%\DriveCleaner 2006 Free\Download\bugqtmjl\UDC6USS5.exe MD5: FE18958FF3C896CD88942E2F583005E7 Size:26624 %PROGRAMFILES%\DriveCleaner 2006 Free\UDCShell.dll MD5: DF83D9201BB6774CD9C254E12E968FFD Size:124416 %PROGRAMFILES%\DriveCleaner 2006 Free\Updater.exe MD5: 06A7DF70957756ADF162E999629908BD Size:536576 %PROGRAMFILES%\DriveCleaner 2006 Free\InstHelp.exe MD5: 58CC0B11DFB40B6E3F48113873F4E284 Size:111616 %PROGRAMFILES%\DriveCleaner 2006 Free\UDCPChk.dll MD5: 0214CDF73C2F006D6B1D22FC3096ED32 Size:33792 %PROGRAMFILES%\DriveCleaner 2006 Free\pv.exe MD5: A0F320028521333CD910D6936A1F3BE7 Size:53248 %PROGRAMFILES%\DriveCleaner Free\UDC6cw.exe MD5: 0F06E072FCDD3A7DDBB23F5F2B215AC5 Size:147456 MD5: 1EA74FF4B1322F233FC3F9A8A75BF881 Size:147456 %COMMONFILES%\DriveCleaner Free\DNSE.exe MD5: 702708FD5D4DAF52892136F0A7DC60E3 Size:180224 %PROGRAMFILES%\DriveCleaner Free\udc6cw.exe MD5: D195EBD7F347750DAB7F1E0FF1BDCADF Size:147456 %PROGRAMFILES%\DriveCleaner 2006 Free\Downloader.exe MD5: 30AF4174BAD04BE0E618379ADEEAD428 Size:142544
Detected Files with variable Filenames: MD5: 8054AA502A11235692C23CE0F3D60A3B Size: 4569112 %TEMP%\UDC6_0001_D22M1709\installer.exe %SystemDiskRoot%\Documents and Settings\camino2\Local Settings\Temp\UDC6_0001_D22M0802\installer.exe MD5: 5138F016E4E806950B815A0C59707E74 Size: 122648 %DESKTOP%\installdrivecleanerstart.exe %USERDOCUMENTS%\My Received Files\installdrivecleanerstart.exe %SystemDiskRoot%\RECYCLER\S-1-5-21-1417001333-1547161642-682003330-1003\Dc10\installdrivecleanerstart.exe MD5: 6831E53C1F7AAA8F5F0104E0E0CD6A9E Size: 669002 %PROGRAMFILES%\DriveCleaner 2006 Free\unins000.exe %PROGRAMFILES%\DriveCleaner Free\unins000.exe.ren %PROGRAMFILES%\DriveCleaner Free\unins000.exe

Detecting items list:

Files by Name %COMMONFILES%\DriveCleaner Free\dcsm.exe %COMMONFILES%\DriveCleaner Free\dnse.exe %PROGRAMFILES%\DriveCleaner Free\pv.exe %PROGRAMFILES%\DriveCleaner Free\UDC.exe %PROGRAMFILES%\DriveCleaner Free\UDC6cw.exe %PROGRAMFILES%\DriveCleaner Free\UDCPChk.dll %ProgramFiles%\DriveCleaner 200? Free\InstHelp.exe %ProgramFiles%\DriveCleaner 200? Free\ScanReport.dat %ProgramFiles%\DriveCleaner 200? Free\Schedule.dat %ProgramFiles%\DriveCleaner 200? Free\UDC200?.exe %ProgramFiles%\DriveCleaner 200? Free\UDC200?.xml %ProgramFiles%\DriveCleaner 200? Free\UDC6.url %ProgramFiles%\DriveCleaner 200? Free\UDCPChk.dll %ProgramFiles%\DriveCleaner 200? Free\UDCShell.dll %ProgramFiles%\DriveCleaner 200? Free\UDCShell.xml %ProgramFiles%\DriveCleaner 200? Free\UninstallPage.html %ProgramFiles%\DriveCleaner 200? Free\Updater.exe %ProgramFiles%\DriveCleaner 200? Free\bnlink.dat %ProgramFiles%\DriveCleaner 200? Free\lapv.dat %ProgramFiles%\DriveCleaner 200? Free\license.rtf %ProgramFiles%\DriveCleaner 200? Free\manual.url %ProgramFiles%\DriveCleaner 200? Free\pv.dat %ProgramFiles%\DriveCleaner 200? Free\pv.exe %ProgramFiles%\DriveCleaner 200? Free\support.url %ProgramFiles%\DriveCleaner 200? Free\unins000.dat %ProgramFiles%\DriveCleaner 200? Free\unins000.exe %ProgramFiles%\DriveCleaner 200? Free\up.dat %ProgramFiles%\DriveCleaner 200? Free\updater.dat %ProgramFiles%\DriveCleaner 200? Free\vbpv.dat %START_MENUall%\DriveCleaner 200? Free.lnk %START_MENUall%\DriveCleaner 200? Free\DriveCleaner 200? HomePage.lnk %START_MENUall%\DriveCleaner 200? Free\DriveCleaner 200? Online Manual.lnk %START_MENUall%\DriveCleaner 200? Free\DriveCleaner 200?.lnk %START_MENUall%\DriveCleaner 200? Free\DriveCleaner Online Support.lnk %START_MENUall%\DriveCleaner 200? Free\Uninstall DriveCleaner 200?.lnk %DESKTOP%\DriveCleaner 200? Free.lnk %COMMONFILES%\DriveCleaner Freeware\dcsm.exe %PROGRAMFILES%\DriveCleaner Freeware\InstHelp.exe %PROGRAMFILES%\DriveCleaner Freeware\pv.exe %PROGRAMFILES%\DriveCleaner Freeware\UDC.exe %PROGRAMFILES%\DriveCleaner Freeware\UDC6_cw.exe %PROGRAMFILES%\DriveCleaner Freeware\UDCPChk.dll %TEMP%\UDC6_0001_D22M1709\installer.exe
Files by MD5 MD5: 5138F016E4E806950B815A0C59707E74 Size: 122648 MD5: E2A3D9C6F6FDAE4913F47078DB6FD9C9 Size: 4513560 MD5: 83A4B682EEB3E474547C83C2E3E53FD3 Size: 618496 MD5: 8FA0FD84493ABF227F789E6619796ECF Size: 172032 MD5: 83B972783AC6870F0E6FEF6BC0998760 Size: 53248 MD5: 14CC042F8EF0E947C25D9BC018F2DDB1 Size: 1288192
Files by Directories %PROGRAMFILES%\DriveCleaner Free %ProgramFiles%\DriveCleaner 200? Free %START_MENUall%\DriveCleaner 200? Free
Files by CLSID or Name CLSID=943B96A4-9BF6-42fe-8D0B-4BCA71C3632F CLSID=22024DC7-D190-44ec-9D49-AEE5F244A466 CLSID=2BF3C5AD-F9EC-49d8-8568-D7DFFC77108B CLSID=7EC618F2-C506-4221-9F56-792B92BF762E CLSID=AE84FF0C-BABD-4D91-92A1-AF75D2D02E6D CLSID=C4C4786C-9861-46d2-BB63-AC782AB07046
Registry Keys HKLM\SOFTWARE\Classes\?\shellex\ContextMenuHandlers\UDCShell HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\UDCShell HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\UDCShell HKLM\SOFTWARE\Classes\Interface\{A22FBA1E-CAAF-4E45-8EFF-4A821AF03E69} HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\UDCShell HKLM\SOFTWARE\Classes\TypeLib\{0A89FF7F-1A12-42D9-ACCB-4217112DC7E0} HKLM\SOFTWARE\Classes\UDCPChk.UDCPChk HKLM\SOFTWARE\Classes\UDCPChk.UDCPChk.1 HKLM\SOFTWARE\Classes\UDCShell HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UDC6_is1 HKLM\SOFTWARE\DriveCleaner 200? Free HKCU\Software\DriveCleaner 200? Free HKCR\UDCPChk.UDCPChk HKCR\UDCPChk.UDCPChk.1 HKCU\Software\DriveCleaner Freeware HKLM\SOFTWARE\DriveCleaner Freeware
Registry Values HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=Salestart HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=UDC6_cw HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=DriveCleaner Freeware

« Go to Software Database

Search in Our Software Database

Browse Software Database

Latest Malware News

September 23, 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Older malware news »