New Delhi: Reports emerging on April 10, 2026 have raised fresh concerns around the integrity of downloads for two widely used PC monitoring tools, CPU-Z and HWMonitor. The issue surfaced through multiple user posts on Reddit, where individuals flagged unusual behaviour while downloading updates from CPUID’s official pages.
The development has drawn attention within the cybersecurity community, especially as these tools are commonly used by gamers, system builders, and IT professionals. At the time of writing, CPUID’s website is reportedly offline, adding to uncertainty around the situation.
WARNING! HWMonitor 1.63 Download on the official “cpuid” page is a Virus!!!
by
u/DMkiIIer in
pcmasterrace
Suspicious downloads linked to the official update path
Users claim that the HWMonitor 1.63 update path delivered an unexpected installer file named HWiNFO_Monitor_Setup.exe instead of the standard CPUID package. The filename does not match CPUID’s usual naming pattern, which immediately raised suspicion.
Several users reported that Windows Defender flagged the installer during download or execution. In some cases, the setup process displayed prompts in Russian, which further deviates from the expected behaviour of CPUID software.
CRYPTBASE.dll inside cpu-z_2.19-en.zip flagged as Malicious by hybrid-analysis.com
The concern deepened after users tracked download links. Official product pages for HWMonitor and CPU-Z still listed current versions, including HWMonitor 1.63 released on April 3, 2026. These pages typically route downloads through CPUID-hosted links that redirect to download.cpuid.com or a Cloudflare R2 storage endpoint. However, affected users reported redirects to a different R2 hostname, with mismatched filenames.
Inconsistencies trigger security concerns
The combination of unusual file names, unexpected hosting endpoints, and antivirus alerts has led users and independent analysis pages to treat the downloads as potentially unsafe.
Security observers note that even a single mismatch in file naming or hosting source can indicate compromise. In this case, multiple indicators appeared together, which increases the level of concern.
CPUID got compromised via hijack! (Link to the original, falsely deleted post via Reddit System)
by
u/OthoAi5657 in
pcmasterrace
No official response yet from CPUID
As of now, CPUID has not issued a public statement addressing the reports. There is no confirmation of a breach or compromise, and the claims remain based on user observations.
Still, the situation highlights a broader risk in software distribution chains. Even trusted tools can become attack vectors if download infrastructure is tampered with.
Advisory for CPUID and HW Monitor users
Until clarity emerges, users are advised to exercise caution when downloading or updating CPU-Z and HWMonitor. Any installer that shows unexpected behaviour, including mismatched file names or antivirus warnings, should be treated as unsafe.