chrisr78 Posted February 19, 2018 Share Posted February 19, 2018 I downloaded the current Speccy installer spsetup131.exe from ccleaner.com today (19 Feb 2018) and immediately got a notification from AVG antivirus that it was infected with malware (Rootkit-gen). I reported it to AVG as a false positive but you guys may wish to double-check and maybe liaise with AVG. Link to comment Share on other sites More sharing options...
trium Posted February 19, 2018 Share Posted February 19, 2018 i can not confirm it with my avg... but i have the download from 11.07.2017 Versions of CCleaner Cloud; Introduction Ccleaner Cloud; Ccleaner-->System-Requirements; Ccleaner FAQ´s; Ccleaner builds; Scheduling Ccleaner Free Es ist möglich, keine Fehler zu machen und dennoch zu verlieren. Das ist kein Zeichen von Schwäche. Das ist das Leben -> "Picard" Link to comment Share on other sites More sharing options...
Moderators mta Posted February 19, 2018 Moderators Share Posted February 19, 2018 and since AVG was taken over by Avast who in turn bought out Piriform, that should be a straight forward liaison. the Admin team do read these threads, eventually, but as to a follow-up or investigation, who can say. Backup now & backup often.It's your digital life - protect it with a backup.Three things are certain; Birth, Death and loss of data. You control the last. Link to comment Share on other sites More sharing options...
jm77 Posted February 20, 2018 Share Posted February 20, 2018 Same thing with Avast. Avast moved that setup file to chest. Says that its infected with virus Win32:Rootkit-gen Link to comment Share on other sites More sharing options...
Moderators Andavari Posted February 20, 2018 Moderators Share Posted February 20, 2018 If you're downloading the free version make sure the checksums/hashes match (even though they don't publish them on the download site), and also right-click the file and make sure the Digital Signature is valid and signed. File Name: spsetup131.exe MD5: 0F3457989D9F5CF05A8EA435CB26A704 SHA-1: 7BAF469001833D3A7B1D2E377426B439C7F981AE SHA-256: F52EC93F4EA0B4D7CCE5C4B495B8B2DA2657FF2073A1745993D972AE8D8389F2 One of the detections is by ESET/NOD which will always detect the included 3rd party Google software. Also since the installer was compiled with NSIS that may cause some scanners to produce a false positive every now and then. VirusTotal did have 4 detections earlier (from 2 hours ago), and now with the link provided below it has 2 detections. Scan results from online scanners: Jottihttps://virusscan.jotti.org/en-US/filescanjob/7odx8py36t VirusTotalhttps://www.virustotal.com/en/file/f52ec93f4ea0b4d7cce5c4b495b8b2da2657ff2073a1745993d972ae8d8389f2/analysis/1519127846/ Link to comment Share on other sites More sharing options...
jm77 Posted February 20, 2018 Share Posted February 20, 2018 1 hour ago, jm77 said: Same thing with Avast. Avast moved that setup file to chest. Says that its infected with virus Win32:Rootkit-gen after windows update the same installer is okey. Rescanned and everything seems ok. Not flagging anymore. Link to comment Share on other sites More sharing options...
chrisr78 Posted February 20, 2018 Author Share Posted February 20, 2018 I tried again, using a different PC, one running Sophos antivirus, and attempted to download Speccy 1.31 from the Piriform website (not FileHippo) and immediately got a Sophos pop-up to say "High Risk Website Blocked - Access to this page is blocked as the threat Mal/HTMLGen-A has been found on this website. " I think Piriform have some questions to answer, irrespective of the compiler used. Speccy version 1.29 seems safe to use. Andavari? Comments please? Link to comment Share on other sites More sharing options...
Moderators hazelnut Posted February 20, 2018 Moderators Share Posted February 20, 2018 (edited) No questions to answer as far as I can see. I get no problems with the website or the download. Virus total shows no detections for the URL https://www.virustotal.com/#/url/5b2e886f0e35d61b014e9e946b98956ed8054bb97c54774d810b59545c3e31fc/detection As you can see if you scroll down the link, Sophos hasn't rated it yet. Edited February 20, 2018 by hazelnut Support contact https://support.ccleaner.com/s/contact-form?language=en_US&form=general or support@ccleaner.com Link to comment Share on other sites More sharing options...
trium Posted February 20, 2018 Share Posted February 20, 2018 ps: after download yesterday the latest version of speccy my avg dont tell me something Versions of CCleaner Cloud; Introduction Ccleaner Cloud; Ccleaner-->System-Requirements; Ccleaner FAQ´s; Ccleaner builds; Scheduling Ccleaner Free Es ist möglich, keine Fehler zu machen und dennoch zu verlieren. Das ist kein Zeichen von Schwäche. Das ist das Leben -> "Picard" Link to comment Share on other sites More sharing options...
login123 Posted February 21, 2018 Share Posted February 21, 2018 Downloaded spsetup131 from filehippo also from Piriform, scanned with Avast AV, submitted to virustotal, got same hashes,same result as Andavari. The CCleaner SLIM version is always released a bit after any new version; when it is it will be HERE :-) Pssssst: ... It isn't really a cloud. Its a bunch of big, giant servers. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now