| Index | Recent Threads | Unanswered Threads | Who's Active | Guidelines | Search |
 |
World Community Grid Forums
Category: Support
Forum: BOINC Agent Support
Thread: Reports from Symantec |
| No member browsing this thread |
|
Thread Status: Active Total posts in this thread: 7
|
|
| Author |
|
|
skywalker GCM
Cruncher Joined: Nov 19, 2004 Post Count: 2 Status: Offline Project Badges: 
|
Hi, Starting on 31 Aug 17, Symantec has reported 6+ multiple times on this file being downloaded by WCF from this project. Symantec is always up-to-date. Has the project been compromised?
Filename: wcgrid_ugm1_graphics_prod_32.exe.7.28 Threat name: Heur.AdvML.CFull Path: c:\programdata\boinc\projects\www.worldcommunitygrid.org\wcgrid_ugm1_graphics_prod_32.exe.7.28 On computers as of 6/13/2016 at 06:10:00 Last Used 9/16/2017 at 05:08:22 Threat type: Heuristic Virus. Detection of a threat based on malware heuristics. wcgrid_ugm1_graphics_prod_32.exe.7.28 Threat name: Heur.AdvML.C Mature This file was released 2 years 11 months ago. High This file risk is high. http://bdd7.http.cdn.softlayer.net/80BDD7/gri...graphics_prod_32.exe.7.28 Downloaded File from softlayer.net Source: External Media boinc.exe File Created: wcgrid_ugm1_graphics_prod_32.exe.7.28 File Thumbprint - SHA: 080c64ca96dbb7bf537ccbc22c812826559fa67d93860328cfa4d6ca86c1e47c File Thumbprint - MD5: 00ab336dfe32d9edf407c571c1f869bb Thanks, G. Mobley |
||
|
|
Former Member
Cruncher Joined: May 22, 2018 Post Count: 0 Status: Offline |
This probably should be moved to the boinc client forum. UGM doesn't run anymore.
|
||
|
|
adriverhoef
Master Cruncher The Netherlands Joined: Apr 3, 2009 Post Count: 2346 Status: Offline Project Badges: 
|
|
||
|
|
ErikaT
Former World Community Grid Admin USA Joined: Apr 27, 2009 Post Count: 912 Status: Offline Project Badges:
|
This thread is being moved to the BOINC Agent Support forum.
Thank you, ErikaT |
||
|
|
dumicat
Cruncher Limburg, Belgium Joined: Jun 25, 2014 Post Count: 44 Status: Offline Project Badges: 
|
If UGM isn't running anymore, why does it suddenly appear in the virusscanner as a threat ?
----------------------------------------Like mentionned in my thread about this 'problem', just exclude the boinc-path from scanning ?  |
||
|
|
Former Member
Cruncher Joined: May 22, 2018 Post Count: 0 Status: Offline |
Because the executables are still in the directory. They were not deleted when the project stopped. You can try to delete them from the directory but if the "sticky" indicator is set, they will be downloaded again. There are a lot of older stuff in the directory including programs, slideshows, etc. Just the way it is.. I've complained in the past but to no avail. Not a battle worth fighting
|
||
|
|
SekeRob
Master Cruncher Joined: Jan 7, 2013 Post Count: 2741 Status: Offline |
IIRC, detaching from WCG cleans out all the client knows, and then on adding WCG it would not try to pull UGM again, only the selected projects, as well as not pulling any old Beta test files. WCG just keeps those static files available to avoid endless nagging.
----------------------------------------That said, don't understand why WCG can't unstick those files on finished projects, so when the last task is done, all related to a done and dusted project is and remains unloaded? [Edit 1 times, last edit by SekeRob* at Sep 19, 2017 5:42:39 PM] |
||
|
|
|