CCleaner 5.33 impact after re-image

Archive
1

Hi,

Suppose I re-imaged my PC’s after the CCleaner 5.33 malware was in the news. I'm running 64-bit, so I still hope I was safe. 

If data has been collected from my old image by the CCleaner 5.33 malware, will it be useless after re-imaging?

Or will my new image contain the same data that potentially has been collected on the old image?

Thanks in advance!

SJW

2
sjwestra:
Yes - I read that one as well so I re-installed my PC’s. Still not clear if data can have been collected (before the re-install) that might be the same after the re-install...for example: pc names, ip addresses, mac addresses might be the same after the re-install. In that case, a re-install might remove all the malware and infected files, the collected data can still be a risk. Best regards, SJW

Some will be the same (MAC address), some may be the same (computer name -- that's your choice). Either way it won't make a difference. An attacker could only use that information to confirm he was dealing with your computer again.

He would have to break in all over again to check, and it would be just as hard to break into your "clean install" computer as any other computer in the world.

3

Yes - I read that one as well so I re-installed my PC’s.

Still not clear if data can have been collected (before the re-install) that might be the same after the re-install…for example: pc names, ip addresses, mac addresses might be the same after the re-install. In that case, a re-install might remove all the malware and infected files, the collected data can still be a risk.

Best regards,

SJW

4

Nope, not a Mod.  Just a Norton user who Symantec picked as a trusted adviser here on the forums, hence the Guru badge.

This post might also be of assistance.  Note, it was posted before the second component was found.

https://www.bleepingcomputer.com/how-to/security/ccleaner-malware-incident-what-you-need-to-know-and-how-to-remove/

For those who want to be truly safe, the best course of action is to always reinstall Windows to be 100% safe. It goes without saying that this is not always feasible, so at a minimum, the suggested actions should be completed before you use the computer again.

Edit:  Also  -  https://www.bleepingcomputer.com/news/security/avast-clarifies-details-surrounding-ccleaner-malware-incident/.

5

I agree I posted the issue as a sub-subpost somewhere else but realized it would clutter that post.

And I believe it’s important enough for a dedicated post.

Apologies…if you are the moderator.

6

There really is no need to post multiple threads about this issue, it just clutters the forums.

Thanks.