Google warns search users misdirected by fake antivirus to pay-per-click websites


Google warns search users misdirected by fake antivirus to pay-per-click websites

Warwick Ashford

Google has discovered malware misdirecting users of its internet search service.

Google has now taken steps to warn users their computers are infected with the malware.

The malware arrives on victims' desktops as fake antivirus or "scareware" programs. These use misleading warnings about security threats to trick people into purchasing worthless security software, according to security commentator Brian Krebs.

The malware intercepts traffic destined for high-profile domains like, and It routes the traffic through intermediate hosts or proxies controlled by the attackers, according to Google security engineer Damian Menscher.

The proxies modify the victim's search results and redirects traffic to pay-per-click schemes that pay for traffic to specific websites.

The malware was discovered after Google engineers noticed some unusual search traffic while performing routine maintenance on one of the company's datacentres.

As a result of the discovery, some people will see a prominent notification at the top of their Google web search results, Damian Menscher said in a blog post.

"We hope that by taking steps to notify users whose traffic is coming through these proxies, we can help them update their antivirus software and remove the infections," Menscher wrote.

Google has published guidelines for search users to scan their own computer systems.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy