CCleaner is one of the most popular cleaning tools for your PC, but it seems that hackers managed to use this tool to spread malware. If you installed this tool recently, it’s likely that your PC is infected. The issue is already patched and to remove the malware, you just need to install the latest version of CCleaner.
CCleaner malware: What is it and how to remove it?
According to recent reports, CCleaner 5.33 was released on August 15th was infected by malware. About 2.27 million users worldwide were affected. If you installed CCleaner after August 15th, it’s possible you have this malware on your PC. The name of this malware is Win.Trojan.Floxif-6336251-0 and in this article we’ll show you how to remove it.
Solution – Check your registry and update CCleaner
One of the easiest ways to find out if you’re infected by CCLeaner malware is to check your registry. This is a simple process and you can do it by following these steps:
- Press Windows Key + R and enter regedit. Press Enter or click OK.
- Now in the left pane, navigate to HKEY_LOCAL_MACHINESOFTWAREPiriformAgomo key in the left pane.
If you can see the Agomo key available in your registry, it means that your PC is infected with CCleaner malware.
Piriform was quick to respond and they already released a new version that disables the malware. The updated version will replace the malicious executables but it won’t remove the Agomo key from your registry. According to Piriform’s vice president, Paul Yung, the security issue was resolved and the new version is available for download from the official download page.
CCleaner malware infected about 2.27 million users since August 15th and during that time, the malware collected various data such as computer names, list of installed applications, list of running process and unique IDs. If you still have version 5.33 of CCleaner, we advise you to update it to 5.34 or newer to remove the malware.
RELATED STORIES YOU NEED TO CHECK OUT:
- CCleaner 5.22 adds full support for Windows 10 Anniversary Update
- “Your Windows Has Been Banned” malware is back, here’s what you need to know
- Ramnit Malware: How it works and how to remove it