Category Archives: malware

CCleaner hacked and bundled with malware

CCleaner is a popular cleaning program that is often installed to help clean up a slow PC. It boasts that it “protects your privacy and makes your computer faster and more secure”.

A recent version of CCleaner, version 5.33, had been modified to include malware. Attackers had managed to compromise a server from which users download CCleaner. They were then able to add malware to the setup file and resign it with a legitimate certificate. This helped the malware to bypass any protections users had in place that might have otherwise stopped the installation.

The malware only affects 32-bit systems, and is removed with the latest update of CCleaner.

The malware that is included is known as Floxif. It is a Trojan that allows the attacker to run additional executable files on your PC as well as collect information regarding your PC.

If you are a user of CCleaner it is highly recommend installing the latest version from the Piriform website.

Telstra Phishing Email

Be wary of a Telstra phishing email doing the rounds. The email advises the recipient that their latest Telstra bill is available to download. Upon clicking the link you will be presented with a zip file containing a malicious javascript file. This javascript file, when run, will download a Trojan onto your PC.  A Trojan allows an attacker to remotely access your PC. This allows an attacker to possibly view what you are doing, steal passwords, or install other malware, such as ransomware onto your PC.

Perform a Malware Scan with Microsoft Malicious Software Removal tool

Microsoft Malicious Software Removal is a standalone malware scanning tool, included as part of Windows. This tool is updated each month, and a quick scan is performed.

A quick scan scans key parts of the hard drive, finding malware in the usual spots. Occasionally malware could be hiding on another part of the drive.

Performing a full scan can help detect hidden malware running on your PC.

Running a full scan is simple, and works great, running alongside your current Antivirus Solution, in helping to prevent malware from infecting your machine.

To run a scan, hold down the Windows Key on your keyboard and press R. You will be prompted with the run dialog box.

Type in mrt and press enter.

You will be presented with the Windows Malicious Software Removal Tool. Press Next.

Select the option to perform a Full Scan. This may take several hours.

The Microsoft Malicious Software Removal Tool will automatically remove infections it finds. You will be prompted you to run a second scan if infections are found, to ensure they have been fully removed.

Microsoft Malicious Software Removal Tool is not a replacement for Antivirus, but is a great tool to work alongside your current Antivirus to help keep your PC free from malware.