PUP.Mr PC Cleaner

PUP.Mr PC Cleaner Description

Mr. PC Cleaner is a system optimization utility whose marketing methodology bears a strong resemblance to the traditional tactics of rogue file cleaners. Mr. PC Cleaner’s website sometimes is promoted through browser hijackers and adware products that modify your Web browser, seemingly in an effort to encourage you to purchase the Mr. PC Cleaner’s software. Although malware experts currently identify Mr. PC Cleaner as a Potentially Unwanted Program, its classification easily could be moved to that of a threat once additional analyzes are completed. Until then, whenever you’re provided system information from Mr. PC Cleaner or its site, you should act with all due caution, and remove Mr. PC Cleaner through traditional PC security strategies if Mr. PC Cleaner should be installed without your participation.

When Cleaning Your Computer is About Boasts More Than Hygiene

Although many invasive forms of fake system cleaners and security programs easily can be identified as misleading practices, the lines between unwanted and threatening software aren’t always clear-cut. Mr. PC Cleaner is one case of a ‘gray area’ product that currently is considered a PUP, which is a result of its apparent lack of significant harmful features. However, this classification isn’t an endorsement of Mr. PC Cleaner as a PC-cleaning product, and malware researchers recommend that you don’t take Mr.

» Learn more about SpyHunter's Spyware Detection Tool
and steps to uninstall SpyHunter.

PC Cleaner’s advice, alone, for determining any system optimization issues that you might have.

While Mr. PC Cleaner’s marketing points aren’t entirely truthful, malware researchers haven’t found Mr. PC Cleaner guilty of causing major security issues or attacks against PCs that have Mr. PC Cleaner installed. For now, Mr. PC Cleaner is categorized as a PUP, similar to adware or unwanted browser plugins, and its presence may be considered undesirable without being a security hazard that’s equivalent to that of an infection by a backdoor Trojan, worm or rootkit.

The PC-Cleaning Man’s Secretly Dirty Past

Even if you’re willing to overlook the exaggerations and questionable features of Mr. PC Cleaner, you may want to look askance at some of the promotional efforts that separate PC threats have used to encourage Mr. PC Cleaner’s purchase. Past attacks confirmed by malware experts have involved the installation of unrelated browser hijackers, adware and other Web browser-based PUPs that provide redirects to Mr. PC Cleaner’s website. These redirects also may block access to legitimate PC security websites, which makes them likely sources of various security problems.

Browsers being redirected to the Mr. PC Cleaner website or the unwanted installation of the actual Mr. PC Cleaner-related software should be dealt with via anti-malware tools that are designed to uninstall all types of unasked for computer products. DingoDeals and SearchDeals by Injekt are two types of adware that often are noted being installed with browser hijackers for Mr. PC Cleaner, although other PC threats also may be identified. So far, only Chrome has been confirmed to be affected by this issue, although the recent identification of this campaign (as of late 2013) makes it entirely probable that other browsers also could be modified.

PUP.Mr PC Cleaner Automatic Detection Tool (Recommended)

Is your PC infected with PUP.Mr PC Cleaner? To safely & quickly detect PUP.Mr PC Cleaner we highly recommend you run the malware scanner listed below.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
  • The following files were created in the system:
    # File Name Detection Count
    1 %ALLUSERSPROFILE%\cleanpc365 69
    2 %ALLUSERSPROFILE%\Application Data\cleanpc365 66
    3 %APPDATA%\cleanpc365 62
    4 %ALLUSERSPROFILE%\Application Data\Start Menu\Programs\cleanpc365 50
    5 %ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\cleanpc365 47
    6 %ALLUSERSPROFILE%\Application Data\Microsoft\Windows\Start Menu\Programs\cleanpc365 44
    7 CLEANPC365.lnk 41

Registry Modifications

Tutorial: To edit and delete registry entries manually, read the tutorial on how to remove malicious registry entries.

Tip & Warning: Editing and removing the wrong registry keys can severely damage your PC, so remember to backup your Windows Registry! To optimize your Windows Registry and speed up your PC, download RegHunter's registry cleaner.
  • The following newly produced Registry Values are:
    HKEY..\..\..\..{RegistryKeys}Applications\cleanpc365Tray.exeApplications\LicenseEN.rtfInstaller\UpgradeCodes\EAD39CDD5C107C34E85684B2D0B6ACEF, value: 25D6927ADE625F24591CDD95E56D3619SOFTWARE\Classes\Applications\cleanpc365Tray.exeSOFTWARE\Classes\Applications\LicenseEN.rtfSOFTWARE\Classes\Installer\Features\25D6927ADE625F24591CDD95E56D3619SOFTWARE\Classes\Installer\Products\25D6927ADE625F24591CDD95E56D3619SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D7BC3411-D64E-4B67-9EFC-47933B9935F6}SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D7BC3411-D64E-4B67-9EFC-47933B9935F6}SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLEANPC36564-user-NotificationSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLEANPC36564-user-StartupSOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileAssociation\NoStartPageAppUserModelIDs, value: Fighters.SLOW-PCfighter.UninstallSOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileAssociation\NoStartPageAppUserModelIDs, value: Fighters.SLOW-PCfighter.SyncSOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FileAssociation\NoStartPageAppUserModelIDs, value: Fighters.SLOW-PCfighter.LogsSOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\EAD39CDD5C107C34E85684B2D0B6ACEF, value: 25D6927ADE625F24591CDD95E56D3619SOFTWARE\Wow6432Node\cleanpc365SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\App Paths\CLEANPC365.exeSOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FileAssociation\NoStartPageAppUserModelIDs, value: Fighters.SLOW-PCfighter.EULASOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FileAssociation\NoStartPageAppUserModelIDs, value: Fighters.SLOW-PCfighter.LogCollectorSOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\FileAssociation\NoStartPageAppUserModelIDs, value: Fighters.SLOW-PCfighter.Logs
Posted: January 23, 2014 | By
Rate this article:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
Threat Metric
Threat Level: 1/10
Detection Count: 52,252
Home Possibly Unwanted Program PUP.Mr PC Cleaner

Leave a Reply

What is 10 + 5 ?
Please leave these two fields as-is:
IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)