"Ant"  wrote in message news:oqarc6$u77$1@gioia.aioe.org...
>
>"Buffalo" wrote:
>>"Ant"  wrote:
>>>"Buffalo" wrote:
>>>> Any late updates on how to clean your 32 bit system without a clean
>>>> reinstall of the OS to get rid of the CCleaner Malware.
>>>
>>>Just install the fixed version of CCleaner. See the security
>>>notification link at their site: http://www.piriform.com/
>>
>> I had seen that but there were other warnings that doing that didn't do
>> diddly if you were infected.
>
>According to what I've read the malware server has been shut down and
>execution of the 2nd stage payload has not been detected. Otherwise
>these links may help find registry entries and files that need to be
>removed:
>http://blog.talosintelligence.com/2017/09/avast-distributes-malware.html
>http://blog.talosintelligence.com/2017/09/ccleaner-c2-concern.html
>
>
My computers were fine, but my sister's PC is running Win XP 32 bit. (I am 
running Win 10 64 bit. Also Vista 32 bit and XP 32 bit on two different 
laptops- All are clean.)
I visited her around a month ago and, like a good brother, I did some PC 
maintenance on her PC and updated the old CCleaner I had installed a yr ago 
to the infected version.
I will try to talk her into going into her registry and see if AGOMO is 
listed under the HKLM\Software\Piriform key. She doesn't do banking on the 
Internet, but does buy a few things on the Internet every once in a while.
She was talking about possibly buying a new PC and I think it would be a 
good idea for her to do it anyways, but her computer skills are somewhat 
lacking, much more than even mine.
Thanks for the new links, Ant.
I'm still going through them.
-- 
Buffalo 

--- NewsGate v1.0 gamma 2