Clevo Overclocker's Lounge

I clean my system with water. So im safe.

 

\\

I don't juse it either, mostly because I have alternatives that are stronger for each task.

 

Exactly like that. And im Indian... sooo...

 

Cisco’s Talos Intelligence security research group found that CCleaner, a popular piece of software that allows users to do routine maintenance on their Windows PCs, has been distributing malware along with its installation file for almost a month. Piriform was the previous owner of CCleaner, but the company has recently been acquired by antivirus maker Avast, which makes the whole situation <quite ironic>.

 

Fortunately it was only the 32 bit version that was infected, and not the 64 bit version I use and recommend, and I missed that infected version completely. I've updated to the current 5.34 64 bit edition.

Here is the apology, non-technical and technical explanation by Piriform:

Security Notification for CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 for 32-bit Windows users
https://www.piriform.com/news/blog/...eaner-cloud-v1073191-for-32-bit-windows-users

"PAUL YUNG - VP, Products

Dear CCleaner customers, users and supporters,

We would like to apologize for a security incident that we have recently found in CCleaner version 5.33.6162 and CCleaner Cloud version 1.07.3191. A suspicious activity was identified on September 12th, 2017, where we saw an unknown IP address receiving data from software found in version 5.33.6162 of CCleaner, and CCleaner Cloud version 1.07.3191, on 32-bit Windows systems. Based on further analysis, we found that the 5.33.6162 version of CCleaner and the 1.07.3191 version of CCleaner Cloud was illegally modified before it was released to the public, and we started an investigation process.

We also immediately contacted law enforcement units and worked with them on resolving the issue. Before delving into the technical details, let me say that the threat has now been resolved in the sense that the rogue server is down, other potential servers are out of the control of the attacker, and we’re moving all existing CCleaner v5.33.6162 users to the latest version. Users of CCleaner Cloud version 1.07.3191 have received an automatic update.

In other words, to the best of our knowledge, we were able to disarm the threat before it was able to do any harm."

Further technical info is included, worth checking out...

"Again, we would like to apologize for any inconvenience this incident could have caused to our clients; we are taking detailed steps internally so that this does not happen again, and to ensure your security while using any of our Piriform products. Users of our cloud version have received an automated update.

For all other users, if you have not already done so, we encourage you to update your CCleaner software to version 5.34 or higher, the latest version is available for download here. "

 

That's the (pakka) way to do it, unless you are blessed with a dishwasher.

 

I stopped updating it when avast acquired the company.

 

Lol.

 

Ahahaha XD

No anti-virus for a folk who monitors their processes, heh?

Well... It was cool waaay back, but now I tend to sometimes used what Pririform makes, but CCcleaner went kinda insane at that point.

 

You could probably get away with it on a toughbook lol.

 

LLLLLLLLLOOOOOOOOOOLLLLLLLLLLLL

I mean to be honest if there was 0 electricity in it and you let it fully dry before using it again, it could be a-okay right xD

 

Try CCenhancer, add's a whole bunch of new apps and cleaning to ccleaner; be patient starting up ccleaner - click on the app tab and "wait" for them all to load, then it takes a while to select the ones you need. And, when you install new apps the option(s) to clean them show up to be selected, pretty cool stuff.

http://www.majorgeeks.com/files/details/ccenhancer.html

Way too much to clean on my own, automation is the way to go

Or do you use another automation tool(s) to cleanup the cruft that apps dump into your system?

 

This still is a version from when they were owned by Pririform though, right?

 

CCenhancer is a 3rd party app... Singular Labs

The transition from Piriform ccleaner to Piriform/Avast! ccleaner doesn't affect the code development - so far - they are independently developed.

Avast! is only the "owner of record", and provider of insecure servers outside the firewall

This kind of thing, incursions from "silly firewall" mistakes is more common than you hear of, so I wouldn't get excited. Avast! did a dumb thing like all big companies that acquire smaller companies can do, this is sad, but fixed.

Blame the overworked Avast! network server "group" that placed the server in the exposed network and/or didn't apply the right security profile when building the server to hand over to Piriform engineers.

 

That is cool to know actually!

 

I've checked my systems, even though I didn't have the 5.33 version 32 bit installer that was infected, and didn't find any registry traces.

CCleaner Command and Control Causes Concern
http://blog.talosintelligence.com/2017/09/ccleaner-c2-concern.html

Below are indicators of compromise associated with this attack.

Spoiler: Details...

Installer on the CC: dc9b5e8aa6ec86db8af0a7aa897ca61db3e5f3d2e0942e319074db1aaccfdc83 (GeeSetup_x86.dll)

64-bit trojanized binary: 128aca58be325174f0220bd7ca6030e4e206b4378796e82da460055733bb6f4f (EFACli64.dll)

32-bit trojanized binary: 07fb252d2e853a9b1b32f30ede411f2efbb9f01e4a7782db5eacf3f55cf34902 (TSMSISrv.dll)

DLL in registry: f0d1f88c59a005312faad902528d60acbf9cd5a7b36093db8ca811f763e1292a

Registry Keys:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\WbemPerf\001
HKLM\Software\Microsoft\Windows NT\CurrentVersion\WbemPerf\002
HKLM\Software\Microsoft\Windows NT\CurrentVersion\WbemPerf\003
HKLM\Software\Microsoft\Windows NT\CurrentVersion\WbemPerf\004
HKLM\Software\Microsoft\Windows NT\CurrentVersion\WbemPerf\HBP

Stage 2 Payload (SHA256):

dc9b5e8aa6ec86db8af0a7aa897ca61db3e5f3d2e0942e319074db1aaccfdc83

CCleaner Malware Infects Big Tech Companies With Second Backdoor
Wednesday, September 20, 2017 Mohit Kumar
http://thehackernews.com/2017/09/ccleaner-malware-hacking.html
Removing Malicious CCleaner Version would Not Help

Spoiler: Details

"Just removing the Avast's software application from the infected machines would not be enough to get rid of the CCleaner second stage malware payload from their network, with the attackers' still-active C2 server.

So, affected companies that have had their computers infected with the malicious version of CCleaner are strongly recommended to fully restore their systems from backup versions before the installation of the tainted security program.
"These findings also support and reinforce our previous recommendation that those impacted by this supply chain attack should not simply remove the affected version of CCleaner or update to the latest version, but should restore from backups or reimage systems to ensure that they completely remove not only the backdoored version of CCleaner but also any other malware that may be resident on the system," the researchers say.

For those who are unaware, the Windows 32-bit version of CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 were affected by the malware, and affected users should update the software to version 5.34 or higher."

Piriform Notifications

Thursday, September 21, 2017
Update to the CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 Security Notification
http://www.piriform.com/news/blog/2...ccleaner-cloud-v1073191-security-notification

Security Notification for CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 for 32-bit Windows users
https://forum.piriform.com/index.php?showtopic=48868

Security Notification for CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 for 32-bit Windows users
http://www.piriform.com/news/blog/2...eaner-cloud-v1073191-for-32-bit-windows-users

CCleaner v5.35
http://www.piriform.com/news/release-announcements/2017/9/20/ccleaner-v535

Avast Notifications

Progress on CCleaner Investigation
https://blog.avast.com/progress-on-ccleaner-investigation

Update to the CCleaner 5.33.6162 Security Incident
https://blog.avast.com/update-to-the-ccleaner-5.33.6162-security-incident
--------------------------------------------

The Talos article is worth reading in detail:

CCleaner Command and Control Causes Concern
http://blog.talosintelligence.com/2017/09/ccleaner-c2-concern.html

Another report on the overall situation:

THE CCLEANER MALWARE FIASCO TARGETED AT LEAST 20 SPECIFIC TECH FIRMS
https://www.wired.com/story/ccleaner-malware-targeted-tech-firms/

"...On Wednesday, researchers at Cisco's Talos security division revealed that they've now analyzed the hackers' "command-and-control" server to which those malicious versions of CCleaner connected.

On that server, they found evidence that the hackers had attempted to filter their collection of backdoored victim machines to find computers inside the networks of 20 tech firms, including Intel, Google, Microsoft, Akamai, Samsung, Sony, VMware, HTC, Linksys, D-Link and Cisco itself.

In about half of those cases, says Talos research manager Craig Williams, the hackers successfully found a machine they'd compromised within the company's network, and used their backdoor to infect it with another piece of malware intended to serve as a deeper foothold, one that Cisco now believes was likely intended for industrial espionage.

"When we found this initially, we knew it had infected a lot of companies," says Williams. "Now we know this was being used as a dragnet to target these 20 companies worldwide...to get footholds in companies that have valuable things to steal, including Cisco unfortunately."

Talos EP 13:A Vast CCleanup, Strutting Your Stuff, and the Ex$ploit Economy Podcast...
http://blog.talosintelligence.com/2017/09/beers-with-talos-ep-13a-vast-ccleanup.html

Earlier Talos post:

CCleanup: A Vast Number of Machines at Risk
http://blog.talosintelligence.com/2017/09/avast-distributes-malware.html

 

My first silver IHS (Intel heat spreader) has come . This one is the .925 solid silver variant with a cheaper finish. It is also UK Hallmarked (registered) so it is classed as an equity for an easy resale for the future. Tests will be coming soon...

There is another one being made elsewhere in a softer .999 (Hallmarked) solid silver for an easy squash against the heatsink and die (hopefully if it's that soft). This one will have a better finish, but it is more expensive to be made.

Some may call this stupidity! but someone had to do it
I know the bottleneck of the temps is the weld between the IHS and the heatsink. But I'm going to give it a shot!
These silver IHS prototypes cost me a kidney to be made. But if I ever need another, they will be a lot cheaper to buy as I have already been through the moulding, spruing, Hallmarking, registering, etc, etc setup.

I will like to apologize for the photo quality. It was done with my Galaxy S5 with a cracked camera lens... I don't have a camera, sorry.

The design has been taking from the BitsPower Kaby Lake IHS lid (left). The BitsPower lid looks a bit off due to the casting procedure.



The opposite side of the lids. Both sides of the BitsPower lid has been lapped before the silicone moulding procedure. The scruffy colour is from the torture of the moulding work. The next coming soon .999 silver IHS will have the 2 holes covered.



The rough side with a less cheaper finish as it is not needed on this area. Take note: the small stamp, is the Hallmark .925 stamp.



Dark room photo with the USB flash stick as a reference. Shines bright like a diamond

The .999 silver version will be coming soon. It will be much more superior. See you all after the prep work

 

too much of a scrooge to use solder I see





@TBoneSan @Mr. Fox @D2 Ultima @bloodhawk @Papusan @Phoenix

edit: 1st part

 

Boy, the amount of LM he had there would've been enough for three CPUs and both my GPUs

 

Hmm. I looked and I did not see them using too much. I apply it to both surfaces as well because it doesn't work correctly unless I apply it to both surfaces. I did not like seeing them using that fuzzy Q-Tip though. Not sure why they did not use the black densely wound cotton swab provided with Conductonaut.

Looking pretty awesome, bro +5 rep

 

The part where there was the pool he kept moving, that's a lot. I watched both videos, though, so I can't remember which one it was in.

 

Oh, I only watched the first one. Maybe it was in the second video. Everything looked fine to me in the first.

 

Yeah he was like, dipping the swab in the conductonaut on the die... and it was rippling like a small pool.

EASILY enough for multiple applications.

 

More like this?

 

That was the "less" bit

 

They sure do have a butt-load of surface mounted crap on the new HEDT chips. That kind of sucks. Need plenty of nail polish or varnish to cover that stuff.

 

aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

 

From my older post. But this guy shouldn’t touch Liquid metal

 

Well at least he was honest about it and explained things in good detail, instead of just saying or doing things totally wrong.

 

Yes, something I have criticized them for doing (like testing badly) in the past

Sent from my OnePlus 1 using a coconut

 

Test results for the .925 silver lid is here. Also the 17w thermal pad prep work.

http://forum.notebookreview.com/thr...876-owners-lounge-phoenix-3-0.800081/page-229

 

More cores and bigger packages mean you have to filter on package. That and they are using fivr.

 

I figured FIVR was part of the deal. I don't care for that much, but it is what it is. Just more heat under the IHS and extra crap to have to shield from liquid metal.

 

It's funny how people get locked into behaviours with paste and don't think.

 

You do need per core voltage control on an 18 core chip for proper 24/7

 

It's not even paste. It's in general.

I know people who won't buy outside of Corsair and ASUS, I know people who MUST toss 1000W PSUs at mainstream intel and a 1070 or won't let a PSU get within 20% of its rated wattage... Then you have the paste stuff, like I know people who swear by Arctic Silver 5 and MX-4

 

I totally get the PSU part... one and done, because then you're ready for more horsepower when you have the money to go bigger and badder and you don't have to buy a new PSU to facilitate components that are far more capable than what you started with. Having a lot more than what you need is a good thing there. However, that may not be the rationale of the people that you are referring to. If it is not, then I would have to agree that is pretty silly.

But, those other things... yeah... goofy stuff.

 

i7-4790K
GTX 1070 reference (150W limit)
everything stock
Corsair HX1000 PSU

 

Yeah a 450-500w unit would be far more efficient lol.

 

People in Romania are like that with MX-4, every single one of the bigger media influencers recommends MX-4. I do wonder why is that though, seems like other people are getting fat better results with other pastes.

 

They are probably not running laptops with crappy heat sinks and wimpy fan cooling. Is MX-4 easier to get in Romania than the better products? If so, that could have something to do with it.

 

P870KM1-G Gameplay temps and results for the .925 silver IHS lid and 17w/mk thermal pads on both. "Auto" fans and U3+ (3×) vardar fan mod with all fans set to 40%. More quieter that way. AlphaCool 17w thermal pads really work super. Big difference in overall GPU board cooling.

 

Good stuff, Brother @Stress Tech - nice job.

 

Seasonic M12II Bronze is my go-to recommendation for like half these builds. Or a corsair RMx 550W/EVGA Supernova G2/G3 550W, if they're cheap enough.

Hey @bloodhawk did you give him your black magic for cooling?

 

It is easier to get than most other solutions, at least if you're buying from a big shop, but there are small shops that sell all of the other cooling pastes locally, just not the biggest shops.

Huh, so Mx4 is okay for desktops then.

I don't know how good my heatsink is, but the cooling system shouldn't be wimpy on P775, is it that bad?

 

MX4 is definitely not okay for desktops.

 

There are some really cool SFX PSUs that would let you do a tiny build titan xp/7700k water cooled rig

 

Never heard of SFX, sounds good though

 

It's what I had in my dock, they are tiny but now go up to like 750w