Spyware and Adware Threats

You are here: HOME > COMPUTER > ANTIVIRUS

DriveCleaner

Reported: June 11, 2007

 

Description:

DriveCleaner is a rogue security assessment application that displays fake reports regarding the security of a computer. It will recommend the users to acquire the full registered version in order to remove the threat.

Technical Name:

DriveCleaner

Threat Level:

Medium

Type:

Adware

Systems Affected:

Windows All
 

DriveCleaner procedures requires technical know-how on  computer troubleshooting. It is better to consult your LAN Administrator or Technical Persons to avoid additional damage on your computer if modifications on Services and Registry have to be done.

 

MANUAL REMOVAL:

1. Temporarily Disable System Restore (Windows Me/XP). [how to]
2. Update the virus definitions.
3. Reboot computer in SafeMode [how to]

4. Run a full system scan and clean/delete all infected files
5. Delete any values added to the registry. [how to edit registry]

Navigate to and delete the following registry entry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\"DriveCleaner 2006 Free" = ""C:\Program Files\DriveCleaner 2006 Free\UDC2006.exe" /min"

Navigate to and delete the following registry subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\{7EC618F2-C506-4221-9F56-792B92BF762E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22024DC7-D190-44ec-9D49-AEE5F244A466}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2BF3C5AD-F9EC-49d8-8568-D7DFFC77108B}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7EC618F2-C506-4221-9F56-792B92BF762E}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AE84FF0C-BABD-4D91-92A1-AF75D2D02E6D}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C4C4786C-9861-46d2-BB63-AC782AB07046}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A22FBA1E-CAAF-4E45-8EFF-4A821AF03E69}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0A89FF7F-1A12-42D9-ACCB-4217112DC7E0}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCPChk.UDCPChk
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCPChk.UDCPChk.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\UDCShell
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UDC6_is1
HKEY_LOCAL_MACHINE\SOFTWARE\DriveCleaner 2006 Free
HKEY_ALL_USERS\\Software\DriveCleaner 2006 Free
 

6. Exit registry editor and restart the computer.

7. In order to make sure that DriveCleaner is completely eliminated from your computer, carry out a full scan of your computer using Online Virus Scanner. Scan at least on three different scanners.

 

  FREE ON-LINE VIRUS SCANNER:   

Click here to proceed

 

  SPYWARE REMOVAL TOOLS:

Download and run any of these Anti-Spyware

Home | Computer | PDA | Mobile Phone | Links & Resources | Contact Us

Copyright 2005-2009 PRECISESECURITYdotCOM
All Rights Reserved