I am running windows 8.1
I was downloading puttyagent from http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html. The http:// based download link points to http://the.earth.li/~sgtatham/putty/latest/x86/pageant.exe
After clicking on the link, the file downloaded and my McAfee alerted "Malware detected, reboot to remove". I rebooted, and submitted the original download link to virus total, and it returned clean.
I looked in my "Downloads Library" list within Mozilla Firefox (pasted below), and it showed the download as being present, but that the source of the download was not where I downloaded it from ....it was from tartarus.org which VirusTotal has two reports of being infected.
McCafe reports the details of the exploit downloaded in the subsequently pasted screenshot as GenericR variant trojan.
When I give the URL http://the.earth.li/~sgtatham/putty/latest/x86/pageant.exe to Virus Total, it gets one hit.
My question is, how/why was my computer redirected to download the file from the different site?
Edited by psiborger80, 15 April 2015 - 07:43 AM.