Malware

Just had my Webroot anti virus remove a threat from CCleaner.exe...threat was W32.Malware.Gen

So what's the deal here..did I pick this up from somewhere and if so how did it get into my CCleaner pro

check it's not the embedded Avast and Chrome offering.

get the portable build of CC and see if Webroot flags that, the portable build does not have any offerings.

if it doesn't, than it's most likely those 'extra features' they push with the normal build.

if so, add CC to Webroot's whitelist.

Since 2011, a couple of AV engines would false-positive CCleaner because of the presence of the Google Toolbar as an optional install. However, Google Toolbar was removed as of version 5.58. Make sure that you are downloading the latest version from the official site https://www.ccleaner.com/ccleaner/download/standard

@dave

was Avast and Chrome also removed?

if not, would those offerings not also be flagged as 'malware' by some security software?

40 minutes ago, mta said:
<div class="ipsQuote_contents ipsClearfix">
	<p>
		@dave
	</p>

	<p>
		was Avast and Chrome also removed?


		if not, would those offerings not also be flagged as 'malware' by some security software?
	</p>
</div>

Stubs for optional downloading Avast and Chrome are still in the full build. As I recall, problems in the past have been specific to Eset vs the toolbar. On VirusTotal, at least, 5.58 shows no false positives - including WebRoot's engine.

image.png

image.png

Usually those online scanning sites are using a Linux/Unix version that might detect something, whereas their Windows versions may not. Classic example is ClamAV detecting something when for instance scanning on Jotti, then the Windows version ClamWin detecting nothing.:rolleyes:

Also if an online scanning site has integrated a Chinese AV those seem to pick up allot of English language software.