Author Topic: They google for good & google for bad  (Read 2688 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33973
  • malware fighter
They google for good & google for bad
« on: July 10, 2006, 09:50:23 PM »
Hi malware fighters,

Malware launchers use Google to search for "signature 00004550" and this gives result pages with various links to executable files of malware. This because Google is indexing a file and parses the PE extention of the executable as the signature "4550"a NT signature for valid Win 32 PE files. In this way thousands of malicious binairies can be found. Time for Google to obscure this.
Source: Security NL


« Last Edit: July 10, 2006, 09:52:13 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 48694
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: They google for good & google for bad
« Reply #1 on: July 11, 2006, 12:02:29 AM »
Sometimes these things are just posted to arrouse a fear factor.
Here's just one answer to this:
you'd have to be stupid enough to download the exe, then when IE tells you that the exe could contain viruses
(i assume FF does this too) you would have to ignore the warning and run it anyways.

So yeah you're right that most people on the internet should be on the lookout. (ie they are stupid enough to do the above)
You'll find some more Here
Free Security Seminar:  -  Important: -- My Web Site: - Win 11 Pro v24H2 64bit, 32 Gig Ram, 1TB SSD, Avast Free 24.4.6112, How to Successfully Install Avast & Clean Install -- My Online Activity