« previous next »
Pages: [1]   Go Down

Author Topic: Blocked Google search result for "browser games"  (Read 3208 times)

0 Members and 1 Guest are viewing this topic.

2ma2

  • Guest
Blocked Google search result for "browser games"
« on: July 22, 2012, 07:30:30 PM »
Hi,

Found this interesting effect when googling the terms "browser games":

Infection Details

URL:   htXp://liamkincaid.com.sapo.pt/template/feathead.jpg
Process:   C:\Documents and Settings\riotamot\Local... (Chrome)
Infection:   URL:Mal

Running Win XP 32-bit with avast! Free:

Def: 120722-0
Prg: 7.0.1456

With avast! WebRep (allowed in incognito mode)

Have tested to google "browser" and "games" by themselves, and a couple of random queries as well. Have replicated googling for "browser games" four times, and avast! blocks the .JPG above every search. Dunno if it's a false positive or not. Would be horrible if it's a true positive :O

Best wishes,
Linus
« Last Edit: July 22, 2012, 07:59:04 PM by 2ma2 »
Logged

Offline !Donovan

  • Web Analyst
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 2219
    • The WAR Against Malware
Re: Blocked Google search result for "browser games"
« Reply #1 on: July 22, 2012, 07:47:27 PM »
If you would, please change http:// to hXtp:// in your post to avoid accidental clicks.

See: http://urlvoid.com/scan/liamkincaid.com.sapo.pt/
IP has hosted various malware in the past (over 100), thus avast! alerts.

Because avast! blocked the website, no harm was done to your computer.
Logged
Familiarize Yourself! | Educate Yourself! | Beautify Yourself! | Scan Yourself!
"People who say it cannot be done should not interrupt those who are doing it."

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33921
  • malware fighter
Re: Blocked Google search result for "browser games"
« Reply #2 on: July 22, 2012, 07:48:04 PM »
Could have been an IP block, from that IP TR/Spy.Banker.Gen was being launched, so break that live link using hxtp,

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

2ma2

  • Guest
Re: Blocked Google search result for "browser games"
« Reply #3 on: July 22, 2012, 08:01:59 PM »
Thanks for instructing me to disable the URL.
Logged

Offline !Donovan

  • Web Analyst
  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 2219
    • The WAR Against Malware
Re: Blocked Google search result for "browser games"
« Reply #4 on: July 22, 2012, 08:02:13 PM »
Logged
Familiarize Yourself! | Educate Yourself! | Beautify Yourself! | Scan Yourself!
"People who say it cannot be done should not interrupt those who are doing it."

2ma2

  • Guest
Re: Blocked Google search result for "browser games"
« Reply #5 on: July 22, 2012, 08:14:42 PM »
I apologise, I'm not experienced with these things, and cannot interpret these results thoroughly. A previous .JPG within this domain was infected with executable code. Dependant on what engine reading this .JPG, the machine might or might not execute it, thus being infected.

But does this effectually mean that Google search results (and syndicated feeds) may infect a client, if they retrieve the image file directly from the malware site (ie. not creating a thumbnail or equivalent of said image)?
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33921
  • malware fighter
Re: Blocked Google search result for "browser games"
« Reply #6 on: July 22, 2012, 09:00:38 PM »
You can a virus from what you believe to be a jpg file. All it needs is a double click to activate whenever you have been infected by a virus that attach itself to jpg files to make them executable, and you also have a doubtful viewer executable from that malware,

polonus

 
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »