On Mon, 25 Sep 2017 11:22:33 -0600, "Buffalo"
 wrote:
>"Ant"  wrote in message news:oqarc6$u77$1@gioia.aioe.org...
>>"Buffalo" wrote:
>>>"Ant"  wrote:
>>>>"Buffalo" wrote:
>>>>> Any late updates on how to clean your 32 bit system without a clean
>>>>> reinstall of the OS to get rid of the CCleaner Malware.
>>>>
>>>>Just install the fixed version of CCleaner. See the security
>>>>notification link at their site: http://www.piriform.com/
>>>
>>> I had seen that but there were other warnings that doing that didn't do
>>> diddly if you were infected.
>>
>>According to what I've read the malware server has been shut down and
>>execution of the 2nd stage payload has not been detected. Otherwise
>>these links may help find registry entries and files that need to be
>>removed:
>>http://blog.talosintelligence.com/2017/09/avast-distributes-malware.html
>>http://blog.talosintelligence.com/2017/09/ccleaner-c2-concern.html
>>
>>

>I will try to talk her into going into her registry and see if AGOMO is 
>listed under the HKLM\Software\Piriform key. She doesn't do banking on the 
>Internet, but does buy a few things on the Internet every once in a while.

Additional information:
https://blog.avast.com/additional-information-regarding-the-recent-ccleaner-apt
-security-incident

If your sister is in one of the mentioned companies affected
 she may have a problem.
If she is a private person she has nothing to fear.


-- 
Fred W. (nld)
--- NewsGate v1.0 gamma 2