Virustotal says CCleaner 5.04.5151 has malware in it

[snow scorpion 2]

When I run the latest version of CCleaner through Virustotal I get this warning:

 

ESET-NOD32 says CCleaner is infected with Win32/Bundled.Toolbar.Google.D.

 

All the other virus scans say CCleaner is safe to use. I'm not interested in finding out the hard way who's right and who's wrong so I'm coming directly to the source.

 

Is CCleaner safe to use or is it trying to install malware on my computer? What say you?

[kroozer]

It's not malware. Eset is flagging the Google offer, which you can decline.

In the event you accidentally install the Chrome, you can easily uninstall in CCleaner\ Tools\ Uninstall.

fyi, Piriform earns a few cents by providing the offer. Helps pay for the programs.
 

[snow scorpion 2]

I don't see anyplace to decline the offer. I see the usual six "install options" and the install button. At what point do I get to decline Google's toolbar?

[kroozer]

You should see the offer box with decline option after waiting a few seconds. Cancel and try again.

[snow scorpion 2]

I accidentally installed CCleaner but my control panel says the Google Toolbar was not installed.

 

The option to decline never appeared.

 

Still I'm nervous about CCleaner now.

[Nergal]

If you've installed Ccleaner before, you've probably declined the offer, there is a registry (or ini) entry in ccleaner that delays the offer til an install of ccleaner x amount of time later (I think a year but don't quote me on that), however since the bundle is still in the installer eest detects it. Mostly it's because eest is strict in their any bundle is PUP.

 

That said, you should never think a single (or even treble) hit on virustotal is a definite postive, you want many hits to pop up.

 

Thirdly you said six options but no decline. I don't understand, what are the six options you mean?

[snow scorpion 2]

[Nergal]

Oh ok, now I understand