A Windows XP help forum. PCbanter

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Go Back   Home » PCbanter forum » Microsoft Windows 7 » Windows 7 Forum
Site Map Home Register Authors List Search Today's Posts Mark Forums Read Web Partners

Hackers hid malware in CCleaner software



 
 
Thread Tools Rate Thread Display Modes
  #1  
Old September 18th 17, 04:28 PM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Blake Snyder
external usenet poster
 
Posts: 72
Default Hackers hid malware in CCleaner software

One more reason to never automatically update software!

Hackers hid malware in CCleaner software
https://www.theverge.com/2017/9/18/1...lware-security

"download servers used by Avast (the company that owns CCleaner) were
compromised to distribute malware inside CCleaner"

"For a period of time, the legitimate signed version of CCleaner 5.33 being
distributed by Avast also contained a multi-stage malware payload that rode
on top of the installation of CCleaner"

IMHO, almost never does a software update confer any meaningful benefits.
Ads
  #2  
Old September 18th 17, 04:51 PM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Buffalo[_3_]
external usenet poster
 
Posts: 686
Default Hackers hid malware in CCleaner software

"Blake Snyder" wrote in message news

One more reason to never automatically update software!

Hackers hid malware in CCleaner software
https://www.theverge.com/2017/9/18/1...lware-security

"download servers used by Avast (the company that owns CCleaner) were
compromised to distribute malware inside CCleaner"

"For a period of time, the legitimate signed version of CCleaner 5.33 being
distributed by Avast also contained a multi-stage malware payload that rode
on top of the installation of CCleaner"

IMHO, almost never does a software update confer any meaningful benefits.



More info at :
http://www.piriform.com/news/blog/20...m_term=2617611



--
Buffalo

  #3  
Old September 18th 17, 05:51 PM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general,alt.fan.starwars,alt.conspiracy
Mr. Man-wai Chang
external usenet poster
 
Posts: 1,941
Default Hackers hid malware in CCleaner software

On 18/9/2017 11:28 PM, Blake Snyder wrote:
One more reason to never automatically update software!

Hackers hid malware in CCleaner software
https://www.theverge.com/2017/9/18/1...lware-security

"download servers used by Avast (the company that owns CCleaner) were
compromised to distribute malware inside CCleaner"


Star Wars: Revenge of Kaspersky?

--
@~@ Remain silent! Drink, Blink, Stretch! Live long and prosper!!
/ v \ Simplicity is Beauty!
/( _ )\ May the Force and farces be with you!
^ ^ (x86_64 Ubuntu 9.10) Linux 2.6.39.3
不借貸! 不詐騙! 不援交! 不打交! 不打劫! 不自殺! 請考慮綜援 (CSSA):
http://www.swd.gov.hk/tc/index/site_...sub_addressesa
  #4  
Old September 18th 17, 08:41 PM posted to alt.comp.os.windows-10,alt.windows7.general
al
external usenet poster
 
Posts: 45
Default Hackers hid malware in CCleaner software

On 9/18/2017 11:28 AM, Blake Snyder wrote:
One more reason to never automatically update software!

Hackers hid malware in CCleaner software
https://www.theverge.com/2017/9/18/1...lware-security

"download servers used by Avast (the company that owns CCleaner) were
compromised to distribute malware inside CCleaner"

"For a period of time, the legitimate signed version of CCleaner 5.33 being
distributed by Avast also contained a multi-stage malware payload that rode
on top of the installation of CCleaner"

IMHO, almost never does a software update confer any meaningful benefits.


I switched to Privacy Eraser (free version) and never looked back. Works
great. http://www.cybertronsoft.com/products/privacy-eraser/

  #5  
Old September 18th 17, 09:55 PM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
T
external usenet poster
 
Posts: 4,600
Default Hackers hid malware in CCleaner software

On 09/18/2017 08:28 AM, Blake Snyder wrote:
One more reason to never automatically update software!

Hackers hid malware in CCleaner software
https://www.theverge.com/2017/9/18/1...lware-security

"download servers used by Avast (the company that owns CCleaner) were
compromised to distribute malware inside CCleaner"

"For a period of time, the legitimate signed version of CCleaner 5.33 being
distributed by Avast also contained a multi-stage malware payload that rode
on top of the installation of CCleaner"

IMHO, almost never does a software update confer any meaningful benefits.



And did Avast catch this malware? Chuckle.
  #6  
Old September 18th 17, 09:56 PM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Mr. Man-wai Chang
external usenet poster
 
Posts: 1,941
Default Hackers hid malware in CCleaner software

On 19/9/2017 4:55 AM, T wrote:

And did Avast catch this malware? Chuckle.


Should have asked:

Did Avast trust this malware and hence befriended it?

--
@~@ Remain silent! Drink, Blink, Stretch! Live long and prosper!!
/ v \ Simplicity is Beauty!
/( _ )\ May the Force and farces be with you!
^ ^ (x86_64 Ubuntu 9.10) Linux 2.6.39.3
不借貸! 不詐騙! 不援交! 不打交! 不打劫! 不自殺! 請考慮綜援 (CSSA):
http://www.swd.gov.hk/tc/index/site_...sub_addressesa
  #7  
Old September 18th 17, 10:06 PM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
...winston[_2_]
external usenet poster
 
Posts: 1,861
Default Hackers hid malware in CCleaner software

"T" wrote in message news
And did Avast catch this malware? Chuckle.



Apparently, yes, on Sept. 12 but initially not made public until law
enforcement involvement and shutdown of the malware's recipient server in
the U.S. on Sept. 15.


--
....winston
ms mvp windows 2007-2016, insider mvp 2016-2018

  #8  
Old September 18th 17, 11:23 PM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Mayayana
external usenet poster
 
Posts: 6,438
Default Hackers hid malware in CCleaner software

"Blake Snyder" wrote

| IMHO, almost never does a software update confer any meaningful benefits.

Nor do "cleaners".

It used to be that updates came with easy-to-read
details about what was updated. That's rarely true
these days.


  #9  
Old September 19th 17, 12:13 AM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Buffalo[_3_]
external usenet poster
 
Posts: 686
Default Hackers hid malware in CCleaner software

"BurfordTJustice" wrote in message news

Link without all the CRAP

http://www.piriform.com/news/blog/20...-windows-users






"Buffalo" wrote in message
news
"Blake Snyder" wrote in message news

One more reason to never automatically update software!

Hackers hid malware in CCleaner software
https://www.theverge.com/2017/9/18/1...lware-security

"download servers used by Avast (the company that owns CCleaner) were
compromised to distribute malware inside CCleaner"

"For a period of time, the legitimate signed version of CCleaner 5.33
being
distributed by Avast also contained a multi-stage malware payload that
rode
on top of the installation of CCleaner"

IMHO, almost never does a software update confer any meaningful benefits.



More info at :
http://www.piriform.com/news/blog/20...m_term=2617611



--
Buffalo


Thanks, it sure gets you to that page a lot quicker, clever boy. B&F.
--
Buffalo

  #10  
Old September 19th 17, 01:21 AM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Blake Snyder
external usenet poster
 
Posts: 72
Default Hackers hid malware in CCleaner software

On Mon, 18 Sep 2017 18:23:00 -0400, in news Mayayana wrote:

| IMHO, almost never does a software update confer any meaningful benefits.

Nor do "cleaners".

It used to be that updates came with easy-to-read
details about what was updated. That's rarely true
these days.


The cCleaner cleaner keeps the registry reasonably clean.
It also cleans out cache & temp files reasonably well.

I use it mostly as my front end uninstaller.
It removes a lot of the BHOs and other hijacked autostarters.

CCleaner was never meant to be a malware cleaner.

But what freeware scanner do you recommend that would/should/did catch this
CCleaner malware infestation?

---
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus

  #11  
Old September 19th 17, 01:21 AM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Blake Snyder
external usenet poster
 
Posts: 72
Default Hackers hid malware in CCleaner software

On Mon, 18 Sep 2017 17:13:49 -0600, in news Buffalo wrote:

Thanks, it sure gets you to that page a lot quicker, clever boy


What free software do you recommend for checking this in the future?

I have Wireshark, for example, but it's complex to use (as you may know).
I also have Fiddler4, & TCPView, & Glasswire.

None of those would have caught it though because all are active sniffers.

What free software, as a passive sniffer, do you recommend that
would/should have caught the spyware in CCleaner when even Avast & Kapersky
didn't catch it?

---
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus

  #12  
Old September 19th 17, 02:41 AM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
B00ze
external usenet poster
 
Posts: 472
Default Hackers hid malware in CCleaner software

On 2017-09-18 18:23, Mayayana wrote:

"Blake Snyder" wrote

| IMHO, almost never does a software update confer any meaningful benefits.

Nor do "cleaners".


+1

It used to be that updates came with easy-to-read
details about what was updated. That's rarely true
these days.


+1 there too ;-)

--
! _\|/_ Sylvain /
! (o o) Memberavid-Suzuki-Fdn/EFF/Red+Cross/SPCA/Planetary-Society
oO-( )-Oo Always remember to pillage BEFORE you burn.

  #13  
Old September 19th 17, 02:48 AM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Mayayana
external usenet poster
 
Posts: 6,438
Default Hackers hid malware in CCleaner software

"Blake Snyder" wrote

| The cCleaner cleaner keeps the registry reasonably clean.
| It also cleans out cache & temp files reasonably well.
|

I keep a script on my Desktop to clean TEMP.
There's never any reason to "clean" the Registry.
That's a scam that can occasionally cause
problems.

| I use it mostly as my front end uninstaller.
| It removes a lot of the BHOs and other hijacked autostarters.
|

It sounds like you install a lot of dubious stuff.
A lot of BHOs? You shouldn't be getting any BHOs.
I don't understand what hijacked autostarter means.
If you have things setting themselves to run at
startup you should be able to fix that with Autoruns,
which can also be used to deactivate BHOs, browser
extensions, etc.

| CCleaner was never meant to be a malware cleaner.
|
| But what freeware scanner do you recommend that would/should/did catch
this
| CCleaner malware infestation?

I don't use those either, so I don't know.
I would *not* recommend Malwarebytes
without a big grain of salt. I guess if I were
in that boat I'd look up online to find the
specifics of the infestation.


  #14  
Old September 19th 17, 06:42 AM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
Blake Snyder
external usenet poster
 
Posts: 72
Default Hackers hid malware in CCleaner software

On Mon, 18 Sep 2017 21:48:23 -0400, in news Mayayana wrote:

I keep a script on my Desktop to clean TEMP.
There's never any reason to "clean" the Registry.
That's a scam that can occasionally cause
problems.


I don't know if cleaning the registry is a scam, and, I've never seen a
problem that I could attribute to the cleaning of the registry.

But I have seen *plenty* of left-over registry entries after uninstalling a
program which are cleaned by Ccleaner.

Do those leftover registry entries cause harm.
I can't say.

| I use it mostly as my front end uninstaller.
| It removes a lot of the BHOs and other hijacked autostarters.
|

It sounds like you install a lot of dubious stuff.


I'm way better than most people so I doubt I install "dubious" stuff.
You forget I know as much as you do about many things.
Nonetheless, I do use exclusively freeware - but only the best.
Ccleaner has always been in the list of the best, at least until Avast took
them over.

A lot of BHOs? You shouldn't be getting any BHOs.
I don't understand what hijacked autostarter means.


I probably led you astray with the letters BHO which, I agree, are specific
to browsers where anyone who gets a BHO is an idiot - so I see where you
got the idea that I install dubious software.

I used the wrong term.
There is in CCleaner a menu to check
CCleaner: Tools Startup {Windows,Scheduled Tasks,Context Menu}

I use Ccleaner to disable all of those.

If you have things setting themselves to run at
startup you should be able to fix that with Autoruns,
which can also be used to deactivate BHOs, browser
extensions, etc.


There are many programs which, when you install them, try to run all the
time.

| CCleaner was never meant to be a malware cleaner.
|
| But what freeware scanner do you recommend that would/should/did catch
this
| CCleaner malware infestation?

I don't use those either, so I don't know.
I would *not* recommend Malwarebytes
without a big grain of salt. I guess if I were
in that boat I'd look up online to find the
specifics of the infestation.


The US gov just deprecated Kapersky by the way.
I'm not sure what the threat is though.

---
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus

  #15  
Old September 19th 17, 10:23 AM posted to alt.comp.os.windows-10,alt.comp.freeware,alt.windows7.general
J. P. Gilliver (John)[_4_]
external usenet poster
 
Posts: 2,679
Default Hackers hid malware in CCleaner software

In message , Blake Snyder
writes:
[]
The cCleaner cleaner keeps the registry reasonably clean.
It also cleans out cache & temp files reasonably well.

I use it mostly as my front end uninstaller.
It removes a lot of the BHOs and other hijacked autostarters.

[]
Interesting. How would you say it compares to Revo?
---
This email has been checked for viruses by Avast antivirus software.
https://www.avast.com/antivirus

(1. It's not an email. 2. it may have been clean when it left you
[though I'd not trust that], but not when it reached me [though 2a. I
don't think I've ever seen malware in a text-only post]. 3. Someone'll
be along in a moment to tell you how to turn off the above.)
--
J. P. Gilliver. UMRA: 1960/1985 MB++G()AL-IS-Ch++(p)Ar@T+H+Sh0!:`)DNAf

# 10^-12 boos = 1 picoboo # 2*10^3 mockingbirds = 2 kilo mockingbird
# 10^21 piccolos = 1 gigolo # 10^12 microphones = 1 megaphone
# 10**9 questions = 1 gigawhat
 




Thread Tools
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off






All times are GMT +1. The time now is 12:20 PM.


Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Copyright 2004-2024 PCbanter.
The comments are property of their posters.