Popular software CCleaner infected with backdoor

Discussion in 'Frontpage news' started by Hilbert Hagedoorn, Sep 18, 2017.

  1. ViperAnaf

    ViperAnaf Master Guru

    Messages:
    328
    Likes Received:
    90
    GPU:
    ASUS TUF 3080 OC
    how can i check if i was infected? not enough details in the article....
     
  2. Pictus

    Pictus Member Guru

    Messages:
    141
    Likes Received:
    30
    GPU:
    RX 5600 XT
  3. Darkiee

    Darkiee Master Guru

    Messages:
    467
    Likes Received:
    41
    GPU:
    1080 Ti
    Thanks for the info Hilbert.
    +1
     
    airbud7 likes this.
  4. tsunami231

    tsunami231 Ancient Guru

    Messages:
    11,761
    Likes Received:
    859
    GPU:
    EVGA 1070Ti Black
    CCleaner version 5.33.6162 and CCleaner Cloud version 1.07.3191 those the only verison infected? i update CCleaner on my PC but never ever new build probably once few months? gona have to check and see when get access to my pc

    I normal only d/l the portable version though for reason, the install has 3rd party stuff asked to be installed
     

  5. Fyew-jit-tiv

    Fyew-jit-tiv Master Guru

    Messages:
    856
    Likes Received:
    4
    GPU:
    EVGA 580 Hydro 3GB x2
    I was thinking the same myself. Im sure Piriform was purhcased recently by an antivirus company. Maybe someone is upset over the sale of Piriform.
     
  6. BLEH!

    BLEH! Ancient Guru

    Messages:
    6,085
    Likes Received:
    155
    GPU:
    Sapphire Fury
    I'm on the old 5.3. Should be OK :)
     
  7. Aura89

    Aura89 Ancient Guru

    Messages:
    8,169
    Likes Received:
    1,279
    GPU:
    -
    [​IMG]
     
  8. Reddoguk

    Reddoguk Ancient Guru

    Messages:
    2,123
    Likes Received:
    265
    GPU:
    RTX3090 GB GamingOC
    I update every time there is one so now i'm concerned. Currently running v5.34.6207 (64-bit) and running scans as i type this.
     
  9. DarKSeeD

    DarKSeeD Member

    Messages:
    43
    Likes Received:
    3
    GPU:
    MSI GTX 1060 6GB
    They stated only the 32 bit version was affected!

    "We recently determined that older versions of our Piriform CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 had been compromised. We estimate that 2.27 million people used the affected software. We resolved this quickly and believe no harm was done to any of our users. This compromise only affected customers with the 32-bit version of the v5.33.6162 of CCleaner and the v1.07.3191 of CCleaner Cloud. No other Piriform or CCleaner products were affected. We encourage all users of the 32-bit version of CCleaner v5.33.6162 to download v5.34 here: download. We apologize and are taking extra measures to ensure this does not happen again."

    http://www.piriform.com/news/releas...eaner-cloud-v1073191-for-32-bit-windows-users
     
  10. tsunami231

    tsunami231 Ancient Guru

    Messages:
    11,761
    Likes Received:
    859
    GPU:
    EVGA 1070Ti Black
    that kind dont make sense to me seeing I have not see 32bit version of it in years? it been native 64bit for quiet some time no? well let me rephrase that 32 bit and 64bit are in installer/portable but i was under impression if your on 64 bit OS it automatic lunched 64 bit client cause manual clicking ccleaner.exe runs ccleaner64.exe for me.

    They also made it sound like the installer is what is infect? or was ccleaner exe infect? like said i dont use the installer i used the portable, so if it just installer that was compromised one would be safe if they used the portable?,
     
    Last edited: Sep 18, 2017

  11. Bansaku

    Bansaku Member Guru

    Messages:
    159
    Likes Received:
    7
    GPU:
    Gigabyte RX Vega 64
    I am glad I have been ignoring the update request for months! :p
     
  12. Darkiee

    Darkiee Master Guru

    Messages:
    467
    Likes Received:
    41
    GPU:
    1080 Ti
    Luckily, don´t have that version on any of my pc´s. But will run scans when got idle time.
     
  13. NewTRUMP Order

    NewTRUMP Order Master Guru

    Messages:
    496
    Likes Received:
    125
    GPU:
    STRIX GTX 1080
    You weren't taking any measures before this happened?
     
  14. The Laughing Ma

    The Laughing Ma Ancient Guru

    Messages:
    4,397
    Likes Received:
    846
    GPU:
    Gigabyte 2070 Super
    Wow haven't used CCleaner since I jumped to Win 8 some two and a bit years ago. Used to always have some form of it or another installed on my computer prior to that.
     
  15. tsunami231

    tsunami231 Ancient Guru

    Messages:
    11,761
    Likes Received:
    859
    GPU:
    EVGA 1070Ti Black
    most the time i dont update it less it stops working cause Windows 10 will stop it from working on account of "compatiablity"

    these days i just have manual cleaning of temp folders/firefox histroy and stuff like that set to run once day
     

  16. alanm

    alanm Ancient Guru

    Messages:
    10,229
    Likes Received:
    2,380
    GPU:
    Asus 2080 Dual OC
    Dont know why cc cleaner is seen as so unique, theres lot of good alternatives.
     
  17. schmidtbag

    schmidtbag Ancient Guru

    Messages:
    5,900
    Likes Received:
    2,292
    GPU:
    HIS R9 290
    Good thing I haven't really booted into Windows for extensive use in a couple months. I normally don't like tools like CCleaner but Windows has been becoming real tedious to clean up after.

    What I really don't understand is why CCleaner updates so often. There's nothing that special about it to warrant so many updates.
     
  18. WareTernal

    WareTernal Master Guru

    Messages:
    248
    Likes Received:
    39
    GPU:
    PNY RTX 3070
    I enjoy a good conspiracy theory, but really there is no mystery here. Piriform provides release notes with each version to tell you exactly what they updated. Try checking the version history. This should help you understand why the software is updated.
    https://www.piriform.com/ccleaner/version-history

    The real question here is whether this came from within the organization. They stated the software was "illegally modified before it was released to the public" , so it seems someone has access to their servers and maybe their source.
     
  19. schmidtbag

    schmidtbag Ancient Guru

    Messages:
    5,900
    Likes Received:
    2,292
    GPU:
    HIS R9 290
    Uh... I for one don't enjoy conspiracy theories, and I wasn't making one myself. I'm merely complaining that a simple tool gets an absurd amount of updates - I'm not implying that they're out to get me, collect my data, or anything shady, I just think they might be doing a crappy job at maintenance. Also to my recollection, I have had updates occur multiple times per month; something this changelog does not appear to specify.

    I looked at that version history and very little of it seems compelling. I don't want GUI "improvements"; the interface has been fine for a while. "Bug fixes" is uselessly vague, and a tool like this should not have any remaining bugs after this many years. Most of the bugs they explicitly mention (such as the "UI lock" or the issue regarding deleting Firefox extensions) seem to be a result of developer negligence, and again, things that should have been fixed a while ago. And I know I'm not wrong about the negligence, because why else is there a virus in this?

    Normally, frequent updates don't bother me that much, but CCleaner's installer is tedious and the application just isn't complex enough to warrant so many of them. So, I often just ignore updates.
    And yet I'm the one making conspiracy theories...
     
  20. AsiJu

    AsiJu Ancient Guru

    Messages:
    7,234
    Likes Received:
    2,185
    GPU:
    MSI 6800XT GamingX
    Are you saying people using 64-bit CCleaner are abnormal :p jk

    Too bad but can't say I'm surprised, since CCleaner and all other "free" software come bundled with ads and "install-this-and-that-as-well" every time.

    I mean you have to be extremely careful when installing to either tick or untick the right boxes, often even hidden in additional options, to avoid installing any unwanted extra software. Getting an infection with this type of "package" is just a matter of time.

    Which is sad because the software you actually want might be completely harmless and useful (like CCleaner is) but you refrain from using it because you need to navigate a s*itstorm of crapware to get to it.
     

Share This Page