New
#60
props to Talos Intelligence Group for coming up with a suitably clever headline for their blog post.
I use the portable versions of piriform softs, and actually delete the 32 bit executables because I never use them. I don't think I was ever in any danger from this, but I scanned with MBAM anyhow - nothing bad was found.
I did some experiment on a virtual machine with v5.33
At least, it is now detected by Windows Defender Antivirus & MalwareBytes
Code:Category: Backdoor Description: This program provides remote access to the computer it is installed on. Recommended action: Remove this software immediately. Items: taskscheduler:C:\Windows\System32\Tasks\CCleanerSkipUAC file:C:\Program Files\CCleaner\CCleaner.exe file:C:\Windows\System32\Tasks\CCleanerSkipUAC regkey:HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53F0D184-E624-492B-9E46-099A892E7B7B} regkey:HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC Get more information about this item online.
This confirm that the malware is only detected in the 32bits version (in CCleaner.exe only but not CCleaner64.exe)
Last edited by D4ni3l; 19 Sep 2017 at 08:52.
IMPORTANT: If You're A CCleaner User You Need To Read This. | Gizmo's Freeware
Well, make of it what you will. Nothing to lose by updating.. I guess!
Last night I went to update my wife's really old free version of CC and the website gave her computer an AVAST scan which I wasn't that pleased about. Later her AV indicated that when it did so it dropped two adware type infections on the machine. Think I'll be leaving ex- Piriform/AVAST products permanently.
In another forum I use, most users seem to be jumping ship of CC. Does anyone in here think this is really necessary at this point if you are using 64bit? I have used CC for so long, I guess i am to complacent in my thinking of it, maybe, but right now I think I will continue to use it. Using Windows Defender, MBAM (with rootkit scans, regular HitmanPro and regular EEK scans will hopefully keep me aware if a problem presents itself. Fingers crossed.