Download the latest CCleaner version to remove hidden malware

Milan Stanojevic
by Milan Stanojevic
Windows & Software Expert
Milan has been enthusiastic about PCs ever since his childhood days, and this led him to take interest in all PC-related technologies. Before joining WindowsReport, he worked as a front-end web developer. Read more
Affiliate Disclosure
  • Some users complained that the popular CCleaner has brought them malware to their PCs.
  • CCleaner malware has infected many PCs around the world due to security breaches.
  • We advise you to update CCleaner to a newer version to remove the malware.
  • You should also check your registry by following our guide below.
download ccleaner
ESET Antivirus comes with all the security tools that you may ever need to protect your data and privacy, including:

  • Zero-day malware protection
  • Intuitive setup and UI
  • Multi-platform support
  • Banking-level encryption
  • Low system requirements
  • Advanced anti-malware protection

An antivirus program needs to be fast, efficient, and cost-effective, and this one has them all.

CCleaner is one of the most popular cleaning tools for your PC, but it seems that hackers managed to use this tool to spread malware. If you got this tool recently, a malware infection is possible. The issue is already dealt with and you can get the latest clean version of CCleaner. However, before that, let’s remove the malware from your PC.

CCleaner malware: What is it and how to remove it?

According to recent reports, CCleaner 5.33 was released on August 15th was infected by malware. About 2.27 million users worldwide were affected. If you installed CCleaner after August 15th, it’s possible you have this malware on your PC. The name of this malware is Win.Trojan.Floxif-6336251-0 and in this article we’ll show you how to remove it.

Solution – Check your registry and update CCleaner

One of the easiest ways to find out if you’re infected by CCleaner malware is to check your registry. This is a simple process and you can do it by following these steps:

  1. Press Windows Key + R and enter regedit. Press Enter or click OK.
  2. Now in the left pane, navigate to HKEY_LOCAL_MACHINESOFTWAREPiriformAgomo key in the left pane.

If you can see the Agomo key available in your registry, it means that your PC is infected with CCleaner malware.

Piriform was quick to respond and they already released a new version that disables the malware. The updated version will replace the malicious executables but it won’t remove the Agomo key from your registry. According to Piriform’s vice president, Paul Yung, the security issue was resolved and the new version is available for download from the official download page.

CCleaner malware infected about 2.27 million users since August 15th and during that time, the malware collected various data such as computer names, a list of installed applications, a list of the running processes and unique IDs. If you still have version 5.33 of CCleaner, we advise you to update it to 5.34 or newer to remove the malware.

This article covers:Topics: