According to reports, around 3 percent – roughly 2.27 million computers – got infected by ccleaner malware. Specifically, computers running 32-bit Windows 10 and Users running version 5.33.6162 of CCleaner or CCleaner Cloud 1.07.3191, released on August 15th, 2017.
The ccleaner malware did not actively harm systems, but it did encrypt and collect information that could be used to harm your system in the future. In particular, according to Piriform, it created a unique identifier for the computer and collected:
- Name of the computer
- List of installed software, including Windows updates
- List of running processes
- MAC addresses of first three network adapters
- Additional information whether the process is running with administrator privileges, whether it is a 64-bit system, etc.
But the good news is piriform said threat has now been resolved in the sense that the rogue server is down, other potential servers are out of the control of the attacker, and they are moving all existing CCleaner v5.33.6162 users to the latest version. Users of CCleaner Cloud version 1.07.3191 have received an automatic update. In other words, to the best of their knowledge, they were able to disarm the threat before it was able to do any harm.