Digital Art Zone

 
     
OT - real Trojan alert
Posted: 11 December 2012 11:16 PM   [ Ignore ]
Addict
Avatar
RankRankRankRank
Total Posts:  4682
Joined  2012-04-07

While surfing for stuff on Google with “sharecg.com” in the key words, came across a site which FF’s WOT had as Green.

I don’t know if anybody here has anything to do with WOT but if you do, kindly get it marked RED for iamnetizen. It’s an attack site.

Combing the computer I found 3 files which all appeared to be named the same ... as zip files. One in Downloads; and 2 others somewhere on the computer. I used W7’s search feature to find them. Although I have “show hidden extensions” these all appear to be as .zip files. They aren’t. The one in Downloads was an .exe and the other two were shortcuts to the ‘Net, calling home.

My AV flagged this as Trojan program HEUR:Trojan.Win32.Generic

As the apparent file extensions are bogus; the name to comb for and just delete them [do NOT click on them if you find them on your computer] is “daily_old_sharecg”.

 

 Signature 
Profile
 
 
Posted: 12 December 2012 04:28 AM   [ Ignore ]   [ # 1 ]
Administrator
Avatar
RankRankRankRank
Total Posts:  15127
Joined  2003-10-09

I would suggest that if you are worried about anything like this that you run an AV scan and also use Malwarebytes to check as well, as that often finds things that some AV’s do not.

 Signature 

Chohole’s Space        Neil’Vs Freebies and stuff        E Summer Bryce Rendering Challenge        July Freebie Challenge
My DAZ 3D Gallery    11915

Profile
 
 
Posted: 12 December 2012 10:21 AM   [ Ignore ]   [ # 2 ]
Power Member
Avatar
RankRankRank
Total Posts:  1042
Joined  2003-12-16

those who run malware sites are getting hip to WOT and spamming good ratings so they show up green in searches, even WOT is compromised these days.

 Signature 

Gravy to potatoes, Luke to Darth Vader, I’m a souped up sucker and I’ll see you all later

Profile
 
 
Posted: 13 December 2012 01:42 AM   [ Ignore ]   [ # 3 ]
Addict
Avatar
RankRankRankRank
Total Posts:  4682
Joined  2012-04-07

Yeah, that’s the first time WOT let me down. Should have trusted gut instinct. But WOT was green and so ....

 Signature 
Profile
 
 
Posted: 13 December 2012 03:46 AM   [ Ignore ]   [ # 4 ]
Addict
Avatar
RankRankRankRank
Total Posts:  2696
Joined  2009-02-24

After getting a ransomware virus earlier in the year, I can relate. Luckily for me, the malware was pretty easily circumvented after rebooting in safe mode, but it has made me twice shy about browsing randomly even on supposed safe sites.

 Signature 

Find me on DeviantArt
Download my free IBL presets for Luxus
Re-upload of Cresent’s awesome pwToon shaders
Create your own Smart Content

Profile
 
 
Posted: 13 December 2012 02:20 PM   [ Ignore ]   [ # 5 ]
Active Member
Avatar
RankRank
Total Posts:  674
Joined  2003-10-09
HeraldOfFire - 13 December 2012 03:46 AM

After getting a ransomware virus earlier in the year, I can relate. Luckily for me, the malware was pretty easily circumvented after rebooting in safe mode, but it has made me twice shy about browsing randomly even on supposed safe sites.

Yep, even an old perv like me has learned to be careful about where I stick my wicket.  I’ve got half the world filtered out of my web browser.  Never check out an animated advertisement.  Never stray from the main meat of a news website.  Run at the first sign of trouble.  Keep your privates private.  Don’t unzip willy-nilly.  And above all, avoid the itch to click without thinking.

 Signature 

I’m sooo confused…  I’ve come to grasp a little of the nature of reality and the answer to life, the universe, and everything.  I even have an inkling as to who and what I am. Auuummmmm…
But please, please, who the hell are you?  And why are you trampling my roses?

Profile
 
 
Posted: 13 December 2012 03:29 PM   [ Ignore ]   [ # 6 ]
Addict
Avatar
RankRankRankRank
Total Posts:  4682
Joined  2012-04-07

Watched a television show one day wherein the high tech computer geek’s computer [huge thing] was suddenly under reverse attack by something destructive he had launched actually pulling the cards out of the computer trying to prevent damage! Have to wonder some days ... just pull the plug.

 Signature 
Profile