SCF Portal Stats

Members
  • Total Members: 14176
  • Latest: toxxxa
Stats
  • Total Posts: 42947
  • Total Topics: 16146
  • Online Today: 4867
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)

Post reply

Name:
Email:
Subject:
Message icon:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image

Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

shortcuts: hit alt+s to submit/post or alt+p to preview


Topic Summary

Posted by: Samker
« on: 20. July 2011., 18:35:29 »



Google's search engine is now fighting against a strain of malware that secretly intercepts Web browser activity on Windows PCs.

Infected users will see a big yellow box at the top of search results, directing them to a Google Web page that explains how to remove the malware: http://www.google.com/support/websearch/bin/answer.py?answer=1182191
That page urges users to download or update their antivirus software, and also provides manual instructions for removing the malware from Windows computers. (To see if you're infected, run any search on Google.com and look for the yellow box.)

Google doesn't explain the threat in detail, saying only that the malware routes Internet traffic through intermediary servers called proxies, and that the search engine is able to detect when traffic is coming from those servers: http://googleblog.blogspot.com/2011/07/using-data-to-protect-people-from.html

However, the primary IP address that Google is watching out for -- 74.125.45.100 -- has been flagged by security firms such as BitDefender: http://www.bitdefender.com/VIRUS-1000581-en--Trojan.FakeAV.XP.html and TrendMicro: http://about-threats.trendmicro.com/Malware.aspx?language=au&name=TROJ_FAKEAV.GXX as part of a Trojan that warns users to install fake antivirus software.

Because Google is looking for a specific proxy, businesses that use their own proxy servers to fight infections shouldn't see the warnings. Google does note that businesses could have their own proxies infected by this malware, which would trigger a warning for all users even if their individual computers are clean.

Matt Cutts, a Google search engineer, has called this effort against malware "an experiment to alert and protect consumers that we believe have infected machines." It's not hard to imagine the company expanding the effort to a wider range of proxy-based malware: https://plus.google.com/109412257237874861202/posts/T242zFDCFoZ

But don't take this as a sign that Google's entering the security software business; users still need proper antivirus software -- and possibly some technical know-how -- to rid themselves of infection.

(PCW)
Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising