nukecad

I think we are almost agreed now that this is a know bug in Windows, a bug that is erratic in who and what it affects - but both Edge and Chrome browser saved passwords being wiped is one of the signs. @DreamDemonThe only way to satisfy yourself that it is the Windows bug and not CCleaner is to stop using CCleaner for a while. Then if it's still happening it's obviously not CCleaner doing it. Until Windows fixes this then if you have a lot of saved passwords you could set them all up again and then export them to a .csv file - Then import that csv back in at the start of a new session. If anyone is not sure how to do that in Edge Chromium: To export the saved passwords then in Profiles>Passwords click the three dots opposite 'Saved Passwords'. To import the csv then Profiles>Import browser data>Saved Passwords PS. I for one wasn't previously aware of this Windows bug, so this thread has been useful in one way although it hasn't realy helped DreamDemon keep his saved passwords. PPS. Having been playing about with Edge Chrome it's just confirmed my decision not to use it.

It's interesting to note that Malwarebytes and Red Canary's investigation has found that in most cases the infection can only be implied by one file that gets left behind after it 'self-destructs'. Which shows that it did run on those machines and then deleted itself. Whether it actually did anything when run (gathered data, files, etc) is unknow because of the way it 'phones home' for a package of instructions on what to do, and so those instructions and what they do are unknown. (and being a package can be changed to do different things). https://blog.malwarebytes.com/mac/2021/02/the-mystery-of-the-silver-sparrow-mac-malware/ PS. As of Tuesday the known infection count had risen to just under 40K.

I still suspect those crash handlers. With Chrome closed open Task Manager, right click on those two google crash hadlers in turn and 'End Task'. Then run CCleaner and see if it now removes those entries. If it does then it shows that it is indeed the crash handlers that are keeping those files open so that CCleaner can't clean them. Just in case it's something else though I'll ask again: Do you have any 'Live Tiles' on your Start menu? By that I mean any any tile that shows video, animation, or updates what it shows, eg. news, weather, etc. Let us know if 'End Task' on the crash handlers then running CCleaner works, if not we'll try something else to track down just what isn't being cleaned.

Thanks, this oddity has been noted (yours is the second post about it here). https://community.ccleaner.com/topic/60037-automatic-update-notice-installed-and-latest-version-are-the-same-number/?tab=comments#comment-327242 As you say it just seems to be a typo and doesn't affect the update, you get the correct new version. It was suggested by a staff member that it was a typo when the new version was first released and had been corrected after a couple of hours, but your screenshot shows that it's still there for some. How many are getting it and just why is another question, I suspect that not many people look that closely, don't notice it and just hit one of the buttons. I've tried to replicate it myself by reinstalling v5.76 and then seeing what that message says, and it always shows the two different version numbers for me.

Whilst you should do the above to satisfy yourself that CCleaner is not finding/removing that file: I'm pretty sure that what you are seeing is a long standing Windows bug and not CCleaner at all. Microsoft have promised a fix but maybe not until next month. See this press article from just before Christmas: https://www.express.co.uk/life-style/science-technology/1377755/Windows-10-bug-delete-saved-passwords-Google-Chrome I believe that you will find that even if you stop using CCleaner at all then the passwords will still keep getting deleted until Microsoft fix the bug. Here are another couple of articles about it, there are plenty more if you search for "windows credentials bug": https://www.windowslatest.com/2020/12/29/microsoft-is-finally-fixing-the-password-bug-in-windows-10/ https://www.zdnet.com/article/windows-10-password-problems-microsoft-says-its-fixing-bad-password-amnesia-bug/

Ok so something is wiping your saved passwords from Edge Chrome (and from Chrome itself).. We are trying to work out what is doing that for you, when it isn't doing it for others. That takes some testing and trying things one by one. So let's check first if your Custom Clean is removing them: Save a password in Edge and close Edge. In CCleaner set Options>Advanced to show the file list. In custom clean right-click on 'Edge Chromium' in blue and select 'Analyze Edge Cromium' in the popup. Look at the files found for "Users\name\AppData\Local\Microsoft\Edge\User Data\Default\Login Data" That is the file where saved passwords are stored for Edge. If the Analyse is not finding it then it's not Custom Clean that is cleaning it. If that is the case then are you running anything else in CCleaner - ie. The Registry Cleaner. Do you have any 'Includes' set in CCleaner?

Are you talking about "Cleanup" or "CCleaner"? or even "Tuneup"? They are 3 different applications from 3 different companies.

You have not answered the questions I asked there, please do so to make sure we are talking about the same thing. I've now set my CCleaner to the same as in your screenshot above and CCleaner is not removing saved passwords from Edge Chrome for me. Have you tried the 4 steps I used above, ie closing and reopening Edge without running CCleaner? What happens if you do?

Found it. In Edge go to- Settings>Privacy, search, and services>Clear browsing data>Choose what to clear every time you close the browser Turn off 'Passwords'

TBH as this virus doesn't seem to do anything (yet) you have to wonder if this was maybe the whole point; to show thousands of Mac users how easily they could get infected? If thousands of Mac users suddenly go out and buy AV's for their Macs that's a lot of profit for someone (with Apple taking a cut).

I've just tried something, with interesting results. I opened Edge Chrome and logged into a website, saving the login/password when prompted by Edge. Looking in Settings>Profiles>Passwords I could see the saved password. I closed Edge and reopened it, nothing else. Looking in Settings>Profiles>Passwords the saved password had gone. So it was Edge itself that had removed the password, I hadn't even touched CCleaner. EDIT- I can do this repeatedly, the saved passwords dissappear everytime I close/reopen Edge. I don't know why it's doing that, I'll take a look to see if I can find anything. Edit- There seems to be quite a number of complaints about it on the web.

OK, let's be clear here about what is being wiped so that we are talking about the same thing. Are you meaning that you are always logged out and have to login to sites again next time you open the browser? If so then is it all sites or just certain ones? or Are you meaning that the actual saved passwords have been wiped from the browser and you have to type them in manualy each time you want to login to a site? ie. in Edge Chrome if you go to Settings>Profiles>Passwords can you see the saved passwords, then after closing Edge running CCleaner and reopening Edge can you still see the saved passwords in Edge or have they gone?

Which browsers are you using? Untick 'Session' for the browsers, eg That is where what sites that you are currently logged into, what tabs you have open, etc. is saved when you close the browser 'Saved Passwords' are the list of passwords that you have told the browser to keep, not what you are currently logged into. Leave that one unticked unless you have your passwords recorded elsewhere.

Try that from Andavari. It could well be those running crash handlers that are causing what you are seeing. They create reports about how Chrome is working and send them back to Google. https://www.file.net/process/googlecrashhandler.exe.html Going back to that link I gave at first (you did read it didn't you?) do you have any 'Live Tiles' on your Start menu?

It is strange why they still think that, probably Apple's propaganda (marketing) department. It just makes them more vulnerable to widespread infections like this one, maybe this will wake them up? Although no doubt Apple will say it's a one-off anomaly.

Is your Chrome synced? Is it pre-loading? (With Chrome closed check in Task Manager to see if anything related to Chrome is running in the background). If you go to Custom Clean instead of Health Check and do an Ananlze what does it say it is finding for Chrome? Does it say 'Skipped'?

If you are on Windows 10 then just use the built in Windows Defender. It's a good as many you can buy, and better than a lot of them. https://www.techradar.com/uk/reviews/windows-defender You don't have to install it, it is already part of Windows and will run automatically if you haven't installed a different antivirus. If you uninstall (or disable) Avast Premium Security (or any other AV) then Windows Defender will take over automatically. I personally just use Windows Defender and have since 2015. I also run a weekly scan with Malwarebytes Free, just to double check for if anything did get through Defender - nothing has on my machine.

CCleaner is a junk file cleaner (with a few other tools); it is not an antivirus application and will not protect your computer from malware. Avast Premium Security is an antivirus application and will help to protect your computer from malware. The two things do different jobs. Other antivirus and malware protection is available, including Windows 10 built in virus and threat detetection (Windows Defender). Windows Defender will take over if you have no other antivirus installed on your computer.

The 'Space', Temporary System files, is nothing to worry about, there will always be something found there. (Windows remakes some of those as soon as they are cleaned, CCleaner itself puts a couple of files there each time you open it). The 'Privacy' (trackers) is just showing Temporary Internet files to remove, it's not showing any cookies (which is interesting). The Temporary Internet files are things like your browser history, browser cache(s), etc. The fact that there are no cookies there is interesting though, you would expect some cookies to be there if you had been browsing. My first thought is that the explanation for what you are seeing is that your browser is either pre-loading or it is synced, or both. (Pre-loading makes the most sense for what you are seeing). So it is remaking the caches again as soon as CCleaner removes them. (or not letting CCleane remove them in the first place because it is pre-loaded in the background). What browser(s) are you using, and is it synced? See that link above for how to stop browsers doing that - if you want to stop them doing that. If you want your browser synced across devices (and/or preloaded) then you just have to accept that it will always remake those temporary internet files if/when CCleaner clears them, so Health Check will always see them everytime.

They have now done it for cookies as well as supercookies: https://blog.mozilla.org/security/2021/02/23/total-cookie-protection/

https://www.bleepingcomputer.com/news/security/new-silver-sparrow-malware-infects-30-000-macs-for-unknown-purpose/

Only support can deal with licensing, it's not secure to give any license or purchase details on an open forum. Contact support by email: support@ccleaner.com They will want to know the email address that you used for the purchase and any invoice numbers/details that you have.

Try disconnecting from the internet and then installing CCleaner. If that works then it shows that your AV or your Firewall settings are blocking the CCleaner installer from reaching the servers that it needs to for certain functions. (EDIT- That's why Andrei suggests making CCleaner an exception in your AV). Although you have now installed offline that connection block may/will cause some of CCleaners tools or features to not work properly - in particular Health Check will probably 'hang' and not finish. To stop that happening you will have to make changes to your AV or firewalls to let CCleaner connect to the server(s).

In particular see this post in that thread: https://community.ccleaner.com/topic/59965-speechruntimeexe/?tab=comments#comment-327320

I believe that the particular entry discussed here is a new entry related to Cortana, as Hazelnut said above, also it's possibly related to the accessibility options for blind users. So it's related to the built in Windows utilities. Any/every Patch Tuesday, or other Windows 10 update, is liable to change the registry and add new entries. (New entries that a registry cleaner will not recognise, because they are new). At the moment Windows 10 updater is adding things in the background, and making changes in the registry, that will not be activated until the spring 2021 Feature Update in a month or two. (Windows 10 version 21H1) https://www.bleepingcomputer.com/news/microsoft/windows-10-21h1-coming-soon-here-are-the-new-features/ So yes; you will have things on your machine, especially in the registry, that don't seem to be connected with anything - YET. Registry cleaners will not recognise these new entries/changes, and may/will try to remove them. Microsoft do this so that when the update/activation comes it's an "Enablement Package" that switches on these already downloaded things making it much quicker than having to download everything at that time. If you remove them it just means that Windows will have to download them again. Think of it like getting the paint in ready for redecorating, and putting the right paint in each room for when you start. If you thrown that new paint out you'll just have to get it again when you come to do the actual painting.