Skip to main content
  1. Home
  2. Computing
  3. News

Chrome is scanning Windows, but it may be a bug

By

A few days ago, Kelly Shortridge, a product manager at SecurityScorecard, discovered that Chrome was running AV scans of Windows devices.

This isn’t normal behavior from a web browser, but it does have a fairly benign explanation. Namely, it appears to be a bug related to some antivirus features that Google added to the Windows version of Chrome last year. The Chrome Cleanup tool is meant to help users restore control of hijacked systems. Justin Schuh, Google’s security lead, initially said that these scans were part of this anti-virus software.

Recommended Videos

“CCT isn’t a system-wide scan or filter,” Schuh tweeted. “It runs weekly, at background priority and normal user privs, for up to 15 mins. It scans browser hijacking points, which may cause it to follow links elsewhere. The engine is a heavily sandboxed subset of ESET.”

Related

It turns out that wasn’t the real problem, however. Google later discovered that a bug was causing Chrome to begin file checks upon startup. The tool is meant to scan previously downloaded files, but a bug moved the scan to the start-up path, meaning it runs scans every time Chrome is opened. This can cause Windows computers to slow down when starting the browser. Google has said that it will patch the bug in a future patch. Clearing your download history might help reduce the slowdowns in the meantime.

Even with these issues, Chrome is still a solid browser. If you’d rather explore some other options, you can check out our guide to the best web browsers in order to find one that suits you better.

Topics
Eric Brackett
Eric Brackett
Former Digital Trends Contributor

Editors’ Recommendations

Google reacts to questionable shopping Chrome extensions
chrome web store logo on computer

Google has updated its policies for Chrome extensions following a controversy over the Honey extension. The extension, from PayPal, has been accused by creators of misappropriating affiliate links without its users' knowledge, and Google now specifies that similar extensions are not permitted on its Chrome Web Store.

The issue regarding Honey came to light in December 2024, when YouTubers accused the extension of being a scam. The extension claimed to search through discount codes and automatically apply them to user's shopping baskets across many different websites. However, it has been accused of injecting its own affiliate links into users' purchases without their knowledge, taking revenue from content creators who also use affiliate links. In an ironic twist, this likely negatively affected the same tech influencers that Honey paid to promote its extension.

Read more
Microsoft just gave you a major reason to ditch Chrome
The Microsoft Edge browser on a flat surface.

Microsoft has introduced a new RAM control feature in Edge, allowing users to cap memory usage to prevent slowdowns. Now available in the stable version, this setting can be enabled in the browser's performance section, as reported by Windows Latest.

In the resource control panel, you'll see a slider that you can adjust to let Edge use as little as 1GB or as much as 31GB. You can set the cap to apply when gaming or at all times. You can adjust this setting anytime. If you put the slider all the way to the right, the Edge browser will show "no set limit," but if you move the slider anywhere else, a current limit will be displayed. The RAM control feature might not significantly improve your gaming experience, but every little bit helps.

Read more
Google will replace unsafe Gmail SMS codes with QR scan verification
Receiving two-step security code via SMS.

Ever since Google enabled two-step verification for Gmail and other tied authentication protocols in its ecosystem, SMS codes have been a mainstay. But according to security analyses, SMS codes are notoriously unsafe, especially when the communication channel is not encrypted. That is finally about to change, as SMS codes will soon be replaced with QR codes for Gmail authentication.

When it comes to account security, SMS is not the most reliable choice for receiving sensitive verification codes, or one-time passwords (OTP) on phones. That is why, over the past few years, Google has steadily developed password alternatives such as on-device Google prompts, authenticator apps, hardware security keys, and the Passkey system to minimize the risks such as SMS phishing.

Read more