Windows Cleaning Tools
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Ranking: | 4,723 |
| Threat Level: | 20 % (Normal) |
| Infected Computers: | 13,429 |
| First Seen: | April 9, 2012 |
| Last Seen: | September 15, 2023 |
| OS(es) Affected: | Windows |
In its outward appearance, Windows Cleaning Tools resembles legitimate security programs like Microsoft Security Essentials or Windows Defender. It even starts up with an attractive splash screen, runs what appears to be a full scan of your computer system and keeps you constantly updated on the state of your PC's security. However, ESG security analysts have issued a warning about Windows Cleaning Tools. This application is actually a rogue security program, a fake anti-virus program that is used to carry out a common online scam. Windows Cleaning Tools has no real anti-malware capabilities, which is not surprising when you consider that Windows Cleaning Tools itself is part of a multi-component malware attack. Windows Cleaning Tools belongs to a family of rogue security programs known as FakeVimes, a group of bogus anti-virus software that has been around since 2009. There's been numerous reports of infections involving Windows Cleaning Tools and its clones, all part of a new batch of FakeVimes rogue security programs released in 2012. Some examples of clones of Windows Cleaning Tools include Virus Melt, Presto TuneUp, Fast Antivirus 2009, Extra Antivirus, Windows Security Suite, Smart Virus Eliminator, Packed.Generic.245, Volcano Security Suite, Windows Enterprise Suite, Enterprise Suite, Additional Guard, PC Live Guard, Live PC Care, Live Enterprise Suite, Security Antivirus, My Security Wall, CleanUp Antivirus, Smart Security, Windows Protection Suite, Windows Work Catalyst. If you notice that Windows Cleaning Tools is installed on your computer system, you should be aware that your computer has become infected with malware. A Windows Cleaning Tools infection should be removed immediately with an actual, fully-updated anti-malware application.
Table of Contents
Learn How Criminals Attempt to Use Windows Cleaning Tools to Steal Your Money
As was mentioned before, Windows Cleaning Tools is part of a well-known online scam. Basically, criminals attempt to convince their victims that their computer system is severely infected with malware. To do this, Windows Cleaning Tools is designed to display a constant stream of fake security alerts and highly-authentic error messages claiming the presence of a severe virus or Trojan infection. Then, Windows Cleaning Tools will attempt to convince the victim, through redirects to its website and various notifications, that these supposed problems can only be removed by the 'full version' of Windows Cleaning Tools. Of course, this supposed 'full version' is not free and will often set back a computer user a sizable amount of money. However, ESG security analysts strongly recommend against paying for this supposed full version of Windows Cleaning Tools, since doing so will result in no changes to your computer system or to Windows Cleaning Tools' status as a fake security program.
Windows Cleaning Tools Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | %appdata%\Inspector-[rnd].exe | |
| 2. | %appdata%\npswf32.dll | |
| 3. | %commonprograms%\Windows Cleaning Tools.lnk | |
| 4. | %desktopdir%\Windows Cleaning Tools .lnk |
Registry Details
URLs
Windows Cleaning Tools may call the following URLs:
| freedirtygame.com |
Messages
The following messages associated with Windows Cleaning Tools were found:
|
Error
Trojan activity detected. System data security is at risk. It is recommended to activate protection and run a full system scan. |
|
Warning
Firewall has blocked a program from accessing the Internet C:\program files\internet explorer\iexplore.exe is suspected to have infected your PC. This type of virus intercepts entered data and transmits them to a remote server. |
|
Warning! Identity theft attempt Detected
Hidden connection IP: 58.82.12.124 Target: Your passwords for sites |
