Latest CCleaner / Trojan

[jerryrice]

Every time I try to download the latest cc cleaner , bit defender says it has a trojan in it.  

attached image 

 

 

 

[Nergal]

It's a false positive if you're getting the installer from piriform.com. usually, if flagged, it's a "possible unwanted program" (PUP) because there's a google bundle.

[Remo]

In addition to Bitdefender Emsisoft and ESET-NOD32 are flagging it on Virus Total. Bundled software that the user is given the option to decline does not normally trigger this kind of warning. Something else has to be going on. Has Piriform checked and confirmed the current version hasn't been compromised?

[Nergal]

The Eset is definitely because the google bundle and has been like that for year or more

[mta]

to prove the point, try the Slim build of CC and see if your AV software still treats it as suspicious.

sadly, the Slim build won't be there for a few more days due to CC v5.30 only recently being released.

but the same theory is testable with the Portable build as well.

[hazelnut]

Most AV companies will have stopped flagging the installer by the end of today. This is because CCleaner has so many users and they helpfully report the false positive to their av company.

[tsewr72]

I got a notification that a new ccleaner update was available. I clicked on it and went to the piriform ccleaner download page. I chose to download the free version. It started to redirect me to filehippo.com. Before it could download, my f-secure flagged it as a malicious website. I closed it, went back to piriform and tried again. The same thing. So I pushed continue to website and then pushed download ccleaner. Well, the ccleaner kept downloading. I had 24 before I figured out that closing the browser would make it stop. I deleted all of the ccleaners and managed to find the one directly downloadable from piriform itself. I have a few questions:

 

1. Does piriform use filehippo as a mirror site?

2. Is filehippo safe?

3. Due to my carelessness, did I just download a virus?

 

I scanned each download with f-secure and malwarebytes. I then deleted all of the ccleaners downloaded from filehippo, but I'm afraid due to the fact that I was not paying close attention, that I downloaded a virus. Thanks to anyone who can help me.

[Nergal]

Yes filehippo is an authorized distributor of piriform products, though I've always just direct download from piriform.com

 

I just tried and couldn't recreate the file hippo default

On a clean browser in went to

http://www.piriform.com/ccleaner

I get the image below.

I press the green button

It drops me down the page to another green button says free version

Takes me to http://www.piriform.com/ccleaner/download I click the button for the free version (see second image) and the setup downloads from piriform.